Dobrý den mám takové problémy s notebookem, který je starý cca 5 let. Notebook byl 21 vyčištěn od prachu a teploty jsou nyní normální.
Problémy:
Padá grafika od NVIDIA GeForce GT 635M vypíše hlášku - "Ovladac zobrazeni prestal odpovidat a byl obnoven. Ovladac zobrazeni NVIDIA Windows Kernerl Mode Driver, Version 368.81 prestal odpovidat a byl uspesne obnoven." - Tento problém jsem řešil už Márty84 viz - https://forum.viry.cz/viewtopic.php?f=30&t=151598 - Je možné, že odchází grafika. - Ovladač byl několikrát přeinstalován a stejný problem
Další problém je, že když hraji nějakou hru tak se mi samo od sebe vypnou aktualizace. http://imgur.com/3ohDPIt
Ještě jeden poznatek - mám pocit, že ramky se též chovají nějak divně, přeci jenom po zapnutí Je v mezipaměti kolem 2gb / 6gb, což jsi říkám, že je nějak moc.
Logfile of random's system information tool 1.16 (written by random/random)
Run by David Hynek at 2017-04-22 15:19:38
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 133 GB (43%) free of 307 GB
Total RAM: 6048 MB (48% free)
X64
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:19:44, on 22.4.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18639)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Users\David Hynek\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\TradeSkillMaster Application\app\TSMApplication.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\System Explorer\SystemExplorer.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Users\David Hynek\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Users\David Hynek\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\David Hynek_RSITx64.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
O4 - HKLM\..\Run: [SystemExplorerAutoStart] "C:\Program Files (x86)\System Explorer\SystemExplorer.exe" /TRAY
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\David Hynek\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [TSMApplication] "C:\TradeSkillMaster Application\app\TSMApplication.exe"
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = D:\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://D:\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software s.r.o. - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11214 bytes
====== Enumerating Processes ======
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\taskhost.exe
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -c
C:\Windows\system32\taskeng.exe
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
C:\Windows\system32\taskeng.exe
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\X-Mouse Button Control\XMouseButtonControl.exe" /notportable
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Users\David Hynek\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
"C:\TradeSkillMaster Application\app\TSMApplication.exe"
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\System Explorer\SystemExplorer.exe" /TRAY
"C:\Windows\AsScrPro.exe"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\CCleaner\CCleaner64.exe
"C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe"
"C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe"
"C:\Users\David Hynek\AppData\Local\Discord\app-0.0.297\Discord.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\Windows\system32\conhost.exe "1520552147-103754720643934440-105638541720361614633532829551713584943929973253
"C:\Users\David Hynek\AppData\Local\Discord\app-0.0.297\Discord.exe" --type=renderer --no-sandbox --primordial-pipe-token=0725413DD0701A08D585647A369223EC --lang=cs --app-user-model-id=com.squirrel.Discord.Discord --node-integration=true --background-color=#282b30 --enable-blink-features=EnumerateDevices,AudioOutputDevices --hidden-page --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --mojo-channel-token=8A8151B1DD538A9012F0B0FD4782B00B --mojo-application-channel-token=0725413DD0701A08D585647A369223EC --channel="6092.1.821010203\1069554811" --mojo-platform-channel-handle=1856 /prefetch:1
C:\Windows\system32\taskhost.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=57.0.2987.133 --initial-client-data=0xe0,0xe4,0xe8,0xdc,0xec,0x722d7dc8,0x722d7dbc,0x722d7dd4
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=6112 --on-initialized-event-handle=556 --parent-handle=572 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1888 --primordial-pipe-token=0381BB6047BC0B5F564D7BE95A1F4F29 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-gpu-compositing --service-request-channel-token=0381BB6047BC0B5F564D7BE95A1F4F29 --renderer-client-id=3 --mojo-platform-channel-handle=2384 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1888 --primordial-pipe-token=BEBC336D628238C80FB343EEED7F6F7D --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-gpu-compositing --service-request-channel-token=BEBC336D628238C80FB343EEED7F6F7D --renderer-client-id=4 --mojo-platform-channel-handle=2540 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1888 --primordial-pipe-token=928683591DCE227108AE093F634A2948 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-gpu-compositing --service-request-channel-token=928683591DCE227108AE093F634A2948 --renderer-client-id=9 --mojo-platform-channel-handle=4520 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1888 --primordial-pipe-token=611466DE0B8DC95EAC4D85A1D53E90B0 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-gpu-compositing --service-request-channel-token=611466DE0B8DC95EAC4D85A1D53E90B0 --renderer-client-id=11 --mojo-platform-channel-handle=2812 /prefetch:1
"C:\Windows\system32\NOTEPAD.EXE" C:\Users\David Hynek\Desktop\DxDiag.txt
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1888 --disable-direct-composition --use-gl=swiftshader --supports-dual-gpus=false --swiftshader-path="C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\SwiftShader\3.3.0.1" --gpu-driver-bug-workarounds=7,10,18,19,20,23,41,61,74 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --gpu-vendor-id=0x8086 --gpu-device-id=0x0126 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.4229 --gpu-driver-date=5-26-2015 --gpu-secondary-vendor-ids=0x10de --gpu-secondary-device-ids=0x1247 --service-request-channel-token=15F986E1C8C5F371FBF164EB766AB826 --mojo-platform-channel-handle=5480 --ignored=" --type=renderer " /prefetch:2
C:\Windows\system32\sppsvc.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\taskmgr.exe
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe6_ Global\UsGthrCtrlFltPipeMssGthrPipe6 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 532 536 544 65536 540
"C:\Users\David Hynek\Downloads\RSITx64.exe"
====== Scheduled tasks folder ======
C:\Windows\system32\tasks\Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Windows\system32\tasks\Adobe Flash Player PPAPI Notifier - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_25_0_0_148_pepper.exe -check pepperplugin
C:\Windows\system32\tasks\Adobe Flash Player Updater - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\system32\tasks\ATKOSD2 - C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Windows\system32\tasks\Avast Emergency Update - C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
C:\Windows\system32\tasks\CCleanerSkipUAC - "C:\CCleaner\CCleaner.exe" $(Arg0)
C:\Windows\system32\tasks\Driver Booster SkipUAC (David Hynek) - C:\Driver Booster\DriverBooster.exe /skipuac
C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\system32\tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
C:\Windows\system32\tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler
C:\Windows\system32\tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\Windows\system32\tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\Windows\system32\tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe
C:\Windows\system32\tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe --logon
C:\Windows\system32\tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe
C:\Windows\system32\tasks\SafeZone scheduled Autoupdate 1451238072 - C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate
C:\Windows\system32\tasks\SafeZone scheduled Autoupdate 1458681986 - C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate $(Arg0)
C:\Windows\system32\tasks\SidebarExecute - C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\system32\tasks\USBChargerPlus - C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Windows\system32\tasks\{125F7D28-1209-4A2D-A3EA-ECD570ECE3E3} - D:\Heroes of the Storm\Heroes of the Storm.exe
C:\Windows\system32\tasks\{35F6C9F1-D31A-48C2-86B2-D2FA052ACFA5} - C:\Users\David Hynek\Desktop\nba2k13\setup.exe
C:\Windows\system32\tasks\{37498FC8-1BCE-4565-821D-D5B1520D8148} - D:\Heroes of the Storm\Heroes of the Storm.exe
C:\Windows\system32\tasks\{3A8ABF8A-F4D3-4F96-AA2C-A2D2E6E9FFB7} - C:\Windows\system32\pcalua.exe -a D:\Steam\steam.exe -c steam://uninstall/211500
C:\Windows\system32\tasks\{3BE2355E-E9A1-4F87-B3AB-E0997C143308} - C:\Windows\system32\pcalua.exe -a "D:\Tony Hawks Pro Skater HD\redist\vcredist_x86.exe" -d "D:\Tony Hawks Pro Skater HD\redist"
C:\Windows\system32\tasks\{3EB5F546-57A4-433C-BFCF-C1F4FF6391CA} - D:\Steam\Steam.exe
C:\Windows\system32\tasks\{4B0ED2CF-260B-4243-9922-9D10409ED05A} - D:\Cata\Cata.exe
C:\Windows\system32\tasks\{4C9E7814-85E0-46FD-A3FA-AC88DB63AF4D} - D:\World of Warcraft\PandashanLauncher.exe
C:\Windows\system32\tasks\{638FF75C-0CE8-441F-BEC8-BF9555DD423D} - C:\Windows\system32\pcalua.exe -a C:\Avastantivir\aswRunDll.exe -c "C:\Avastantivir\Setup\setiface.dll" RunSetup
C:\Windows\system32\tasks\{6CFBCDD2-220F-4DE5-82B3-730A1C967817} - D:\World of Warcraft\PandashanLauncher.exe
C:\Windows\system32\tasks\{6D971D95-4BCE-475E-814D-7B5B7ED12181} - C:\Windows\system32\pcalua.exe -a "C:\Users\David Hynek\Desktop\nba2k13\setup.exe" -d "C:\Users\David Hynek\Desktop\nba2k13"
C:\Windows\system32\tasks\{71E8A89D-5150-4D4D-8883-F147BB9FFE09} - C:\Windows\system32\pcalua.exe -a "C:\Users\David Hynek\Desktop\Wowhead_Client.exe" -d "C:\Users\David Hynek\Desktop"
C:\Windows\system32\tasks\{78E95B85-BAAF-40BB-BCF5-0587C7344E46} - D:\Cata\Cata.exe
C:\Windows\system32\tasks\{7C5DB924-5773-46D0-8104-270422FD976D} - C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Windows\system32\tasks\{85E0E4B9-F1DF-4398-9A85-45276493CB01} - C:\Windows\system32\pcalua.exe -a "D:\Tony Hawks Pro Skater HD\redist\dotnetfx35_SP1.exe" -d "D:\Tony Hawks Pro Skater HD\redist"
C:\Windows\system32\tasks\{8B295764-4E2C-455F-BA43-5C73D460FD5E} - D:\Steam\Steam.exe
C:\Windows\system32\tasks\{8ECC7C99-91A0-4425-9848-D561C2F33333} - C:\Windows\system32\pcalua.exe -a "C:\Users\David Hynek\Desktop\MNA\setup.exe" -d "C:\Users\David Hynek\Desktop\MNA"
C:\Windows\system32\tasks\{A57794C3-074C-42C8-8E54-3C4C2B4C9CBC} - C:\Windows\system32\pcalua.exe -a "D:\Steam\steamapps\common\Left 4 Dead 2\bin\addoninstaller.exe" -d "D:\Steam\steamapps\common\Left 4 Dead 2" -c /register
C:\Windows\system32\tasks\{A5BE9FBF-B10A-4567-B881-9A805252C90C} - D:\WoW Cata\Wow.exe
C:\Windows\system32\tasks\{BC2709D5-BB76-410D-8FB9-88A8C762AFF0} - C:\Windows\system32\pcalua.exe -a "C:\Users\David Hynek\Desktop\Fifa\Installer.exe" -d "C:\Users\David Hynek\Desktop\Fifa"
C:\Windows\system32\tasks\{C2A36E6E-496D-4079-892B-50F051B6CB51} - D:\WoW Cata\Wow.exe
C:\Windows\system32\tasks\{E0DFF7C1-CD92-48A5-A76D-0544801851B2} - D:\World of Warcraft\PandashanLauncher.exe
C:\Windows\system32\tasks\{E13A5D63-5173-41FC-9CB8-2AC152375160} - C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Windows\system32\tasks\{F9CE0497-3BC9-4BF4-9875-9E52B8897540} - C:\WoW Cata\Wow.exe
C:\Windows\system32\tasks\WPD\SqmUpload_S-1-5-21-1206595139-1558415813-2062055028-1001 - %windir%\system32\rundll32.exe portabledeviceapi.dll,#1
C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask - %systemroot%\system32\sc.exe start osppsvc
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\ConfigNotification - %systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION
C:\Windows\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\Windows\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\Windows\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -queuereporting
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask - %SystemRoot%\system32\Wat\WatAdminSvc.exe /run
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline - %SystemRoot%\system32\schtasks.exe /run /I /TN "\Microsoft\Windows\Windows Activation Technologies\ValidationTask"
C:\Windows\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\Windows\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation
C:\Windows\system32\tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask - sc.exe start sppsvc
C:\Windows\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\Windows\system32\tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem - %SystemRoot%\System32\powercfg.exe -energy -auto
C:\Windows\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Lpksetup - C:\Windows\System32\lpksetup.exe -v
C:\Windows\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Mcbuilder - C:\Windows\System32\mcbuilder.exe
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService - %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks - %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ehDRMInit - %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\InstallPlayReady - %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate - %SystemRoot%\ehome\mcupdate $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate_scheduled - %SystemRoot%\ehome\mcupdate -crl -hms -pscn 15
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURActivate - %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURDiscovery - %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscovery - %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 - %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 - %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PeriodicScanRetry - %windir%\ehome\MCUpdate.exe -pscn 0
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrScheduleTask - %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RecordingRestart - %SystemRoot%\ehome\ehrec /RestartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RegisterSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ReindexSearchRoot - %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\StartRecording - %SystemRoot%\ehome\ehrec /StartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\UpdateRecordPath - %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotifications.exe
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\Windows\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Uploader - %windir%\system32\WSqmCons.exe -u
C:\Windows\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\AitAgent - aitagent
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattel\DiagTrackRunner.exe /UploadEtlFilesOnly
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\Windows\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\Windows\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\Windows\system32\tasks\AVAST Software\Avast settings backup - C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs
=========Mozilla firefox=========
ProfilePath - C:\Users\David Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\3x5rgwnq.default-1458296225216
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 25.0.0.148 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_148.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\ZEON/PDF,version=2.0]
"Description"=
"Path"=C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 25.0.0.148 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_148.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll
C:\Users\David Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\3x5rgwnq.default-1458296225216\addons.json
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
Firefox Hello Beta (discontinued) - extension - loop@mozilla.org
C:\Users\David Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\3x5rgwnq.default-1458296225216\extensions.json
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - C:\Users\David Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\3x5rgwnq.default-1458296225216\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
Firefox Hello - extension - loop@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\loop@mozilla.org.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Websense Helper - extension - websensehelper@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\websensehelper@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
Avast Online Security - extension - wrc@avast.com - C:\Program Files\AVAST Software\Avast\WebRep\FF
Avast SafePrice - extension - sp@avast.com - C:\Program Files\AVAST Software\Avast\SafePrice\FF
C:\Users\David Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\3x5rgwnq.default-1458296225216\pluginreg.dat
Plugin - Silverlight Plug-In - 5.1.50905.0 - c:\Program Files\Microsoft Silverlight\5.1.50905.0\npctrl.dll
Plugin - Shockwave Flash - 25.0.0.127 - C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_127.dll
=========Google Chrome=========
C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Store 0.2
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension cfhdojbkjhnklbpkdaibdccddilifddb 1 Adblock Plus 1.13.2
Extension coobgpohoikkiipiblmjeljniedjpjpf 1 Vyhledávání Google 0.0.0.30
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension efaidnbmnnnibpcajpcglclefindmkaj 1 Adobe Acrobat 15.1.0.6
Extension ennkphjdgehloodpbhlhldgbnhmacadg Settings 0.2
Extension eofcbnmajmjmplflapaojjnihcjkigck 2 Avast SafePrice 10.2.0.190
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension gomekmidlodglbbmalcneegieacbdmki 2 Avast Online Security 11.1.0.242
Extension ilkgeioneoemibpddeiamfgiofnpjifm 1 The West 1.5
Extension jcbbonmofdkklhmaapkllflmpoccpiad 1 Všechny hry - Twitch 2016.3.18.38154
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mfffpogegjflfpflabcdkioaeobkgjik 1 GaiaAuthExtension 0.0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.2
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.2
Extension pafkbggdmjlpgkdkcbjmhmfcdpncadgh Google Now 1.2.0.1
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5717.116.0.4
Homepage:
default_search_provider.search_url:
C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Preferences
Plugin 1.4.7.796 Widevine Content Decryption Module C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.7.796\_platform_specific\win_x86\widevinecdmadapter.dll
Plugin Chrome PDF Viewer chrome-extension://mhjfbmdgcfjbbpaeojofohoefgiehjai/
Plugin 17.0.0.169 Shockwave Flash C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\PepperFlash\pepflashplayer.dll
Plugin Chrome Remote Desktop Viewer internal-remoting-viewer
Plugin Native Client C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\internal-nacl-plugin
Plugin Chrome PDF Viewer internal-pdf-viewer
Homepage:
default_search_provider.search_url:
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj]
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck]
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki]
"Path"=C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
======Registry dump ======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-02-20 883520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - D:\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-03-13 60576]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-02-20 758384]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-01-11 1483264]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2011-03-21 361984]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-05-05 2785064]
"SynAsusAcpi"=C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [2011-05-05 97064]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-03-13 617120]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-03-13 379552]
"IntelTBRunOnce"=wscript.exe //b //nologo C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs []
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2011-10-18 10357008]
"XMouseButtonControl"=C:\X-Mouse Button Control\XMouseButtonControl.exe [2016-05-22 1161240]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2015-06-01 183216]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2015-06-01 411056]
"Persistence"=C:\Windows\system32\igfxpers.exe [2015-06-01 453552]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2017-01-11 16781824]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2017-03-28 1882048]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"=C:\Users\David Hynek\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2017-04-03 1446000]
"CCleaner Monitoring"=C:\CCleaner\CCleaner64.exe [2017-03-03 9364696]
"TSMApplication"=C:\TradeSkillMaster Application\app\TSMApplication.exe [2016-08-16 1623040]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Nuance PDF Reader-reminder"=C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [2008-11-03 328992]
"ASUSPRP"=C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2011-10-20 3331312]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2011-07-22 5716608]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-08 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2011-09-13 2317312]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-02-20 205512]
"SystemExplorerAutoStart"=C:\Program Files (x86)\System Explorer\SystemExplorer.exe [2015-08-19 3389160]
"ASUS Screen Saver Protector"=C:\Windows\AsScrPro.exe [2012-02-10 3058304]
"CLMLServer"=C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2010-08-20 107816]
C:\Users\David Hynek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - D:\Microsoft Office\Office12\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\System32\nvinitx.dll, C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=D:\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"midi1"=wdmaud.drv
"VIDC.XFR1"=xfcodec64.dll
"VIDC.FPS1"=frapsv64.dll
"vidc.xtor"=DxtoryCodec64.dll
"vidc.x264"=C:\X264VF~1\X264VF~1.DLL
"msacm.l3codecp"=l3codecp.acm
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
====== File associations ======
.js - edit - C:\Windows\System32\Notepad.exe %1
====== List of files/folders created in the last 1 month ======
2431-09-15 20:37:49 ----A---- C:\Windows\system32\drivers\Smb_driver_Intel.sys
2431-09-15 20:37:49 ----A---- C:\Windows\system32\drivers\HECIx64.sys
2017-04-22 15:19:38 ----D---- C:\rsit
2017-04-22 14:51:27 ----D---- C:\ProgramData\SWCUTemp
2017-04-21 23:31:49 ----D---- C:\Windows\SYSWOW64\NV
2017-04-21 23:31:49 ----D---- C:\Windows\system32\NV
2017-04-21 23:31:25 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2017-04-21 23:31:22 ----A---- C:\Windows\SYSWOW64\vulkaninfo.exe
2017-04-21 23:31:22 ----A---- C:\Windows\SYSWOW64\vulkan-1.dll
2017-04-21 23:31:22 ----A---- C:\Windows\system32\vulkaninfo.exe
2017-04-21 23:31:22 ----A---- C:\Windows\system32\vulkan-1.dll
2017-04-21 23:31:21 ----D---- C:\Program Files (x86)\VulkanRT
2017-04-21 23:26:08 ----A---- C:\Windows\SYSWOW64\nvptxJitCompiler.dll
2017-04-21 23:26:08 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2017-04-21 23:26:08 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2017-04-21 23:26:08 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2017-04-21 23:26:08 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\nvwgf2umx.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\nvptxJitCompiler.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\nvopencl.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\nvoglv64.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\nvoglshim64.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\NvIFR64.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2017-04-21 23:26:08 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2017-04-21 23:26:08 ----A---- C:\Windows\system32\drivers\nvkflt.sys
2017-04-21 23:26:07 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2017-04-21 23:26:07 ----A---- C:\Windows\SYSWOW64\nvfatbinaryLoader.dll
2017-04-21 23:26:07 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2017-04-21 23:26:07 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\NvFBC64.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvfatbinaryLoader.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvdispgenco6438165.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvdispco6438165.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvd3dumx.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvcuvid.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvcuda.dll
2017-04-21 23:26:01 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2017-04-21 23:26:01 ----A---- C:\Windows\system32\nvcompiler.dll
2017-04-21 23:15:32 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2017-04-21 23:15:32 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2017-04-21 23:15:32 ----A---- C:\Windows\system32\nvspcap64.dll
2017-04-21 23:15:32 ----A---- C:\Windows\system32\nvspbridge64.dll
2017-04-21 23:15:32 ----A---- C:\Windows\system32\NvRtmpStreamer64.dll
2017-04-21 23:15:02 ----A---- C:\Windows\NvTelemetryContainerRecovery.bat
2017-04-21 23:14:43 ----A---- C:\Windows\system32\drivers\nvvhci.sys
2017-04-21 23:14:42 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2017-04-21 23:14:42 ----A---- C:\Windows\system32\nvaudcap64v.dll
2017-04-21 23:14:42 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2017-04-21 17:59:27 ----A---- C:\Windows\NvContainerRecovery.bat
2017-04-21 17:59:09 ----D---- C:\temp
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nvsvcr.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nvsvc64.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nvshext.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nvmctray.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nvcpl.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nv3dappshextr.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nv3dappshext.dll
2017-04-21 17:31:48 ----A---- C:\Windows\system32\nvumdshimx.dll
2017-04-21 17:31:47 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2017-04-21 17:31:47 ----A---- C:\Windows\system32\nvinitx.dll
2017-04-21 17:31:47 ----A---- C:\Windows\system32\nvdispgenco6436510.dll
2017-04-21 17:31:47 ----A---- C:\Windows\system32\nvdispco6436510.dll
2017-04-21 17:31:46 ----A---- C:\Windows\system32\nvapi64.dll
2017-04-16 17:35:09 ----D---- C:\HWMonitor
2017-04-15 15:36:20 ----D---- C:\Users\David Hynek\AppData\Roaming\MAGIX
2017-04-14 10:21:30 ----D---- C:\ProgramData\Twitch
2017-04-14 10:21:28 ----D---- C:\Users\David Hynek\AppData\Roaming\Twitch
2017-04-12 11:25:40 ----A---- C:\Windows\system32\mshtml.dll
2017-04-12 11:25:38 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2017-04-12 11:25:36 ----A---- C:\Windows\system32\ieframe.dll
2017-04-12 11:25:35 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2017-04-12 11:25:34 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2017-04-12 11:25:33 ----A---- C:\Windows\SYSWOW64\wininet.dll
2017-04-12 11:25:33 ----A---- C:\Windows\system32\wininet.dll
2017-04-12 11:25:32 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2017-04-12 11:25:32 ----A---- C:\Windows\system32\wuaueng.dll
2017-04-12 11:25:32 ----A---- C:\Windows\system32\ole32.dll
2017-04-12 11:25:32 ----A---- C:\Windows\system32\iertutil.dll
2017-04-12 11:25:29 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2017-04-12 11:25:29 ----A---- C:\Windows\system32\win32k.sys
2017-04-12 11:25:29 ----A---- C:\Windows\system32\urlmon.dll
2017-04-12 11:25:28 ----A---- C:\Windows\system32\wucltux.dll
2017-04-12 11:25:27 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2017-04-12 11:25:27 ----A---- C:\Windows\system32\wuapi.dll
2017-04-12 11:25:27 ----A---- C:\Windows\system32\win32spl.dll
2017-04-12 11:25:27 ----A---- C:\Windows\system32\samsrv.dll
2017-04-12 11:25:27 ----A---- C:\Windows\system32\quartz.dll
2017-04-12 11:25:26 ----A---- C:\Windows\system32\ucrtbase.dll
2017-04-12 11:25:26 ----A---- C:\Windows\system32\msfeeds.dll
2017-04-12 11:25:26 ----A---- C:\Windows\system32\cdosys.dll
2017-04-12 11:25:26 ----A---- C:\Windows\system32\atmfd.dll
2017-04-12 11:25:25 ----A---- C:\Windows\system32\gdi32.dll
2017-04-12 11:25:24 ----A---- C:\Windows\SYSWOW64\quartz.dll
2017-04-12 11:25:24 ----A---- C:\Windows\SYSWOW64\ole32.dll
2017-04-12 11:25:24 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2017-04-12 11:25:23 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2017-04-12 11:25:23 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll
2017-04-12 11:25:23 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2017-04-12 11:25:23 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2017-04-12 11:25:23 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2017-04-12 11:25:23 ----A---- C:\Windows\system32\iedkcs32.dll
2017-04-12 11:25:23 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\jscript.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2017-04-12 11:25:21 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2017-04-12 11:25:21 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2017-04-12 11:25:20 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2017-04-12 11:25:20 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-04-12 11:25:19 ----A---- C:\Windows\system32\ntdll.dll
2017-04-12 11:25:19 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-04-12 11:25:16 ----A---- C:\Windows\system32\jscript9.dll
2017-04-12 11:25:16 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2017-04-12 11:25:16 ----A---- C:\Windows\system32\asycfilt.dll
2017-04-12 11:25:15 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2017-04-12 11:25:15 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2017-04-12 11:25:15 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2017-04-12 11:25:15 ----A---- C:\Windows\system32\samlib.dll
2017-04-12 11:25:15 ----A---- C:\Windows\system32\mfmjpegdec.dll
2017-04-12 11:25:14 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2017-04-12 11:25:14 ----A---- C:\Windows\SYSWOW64\samlib.dll
2017-04-12 11:25:14 ----A---- C:\Windows\SYSWOW64\mfmjpegdec.dll
2017-04-12 11:25:14 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2017-04-12 11:25:14 ----A---- C:\Windows\system32\webcheck.dll
2017-04-12 11:25:14 ----A---- C:\Windows\system32\rdpudd.dll
2017-04-12 11:25:14 ----A---- C:\Windows\system32\certcli.dll
2017-04-12 11:25:13 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2017-04-12 11:25:13 ----A---- C:\Windows\SYSWOW64\certcli.dll
2017-04-12 11:25:13 ----A---- C:\Windows\system32\wuwebv.dll
2017-04-12 11:25:13 ----A---- C:\Windows\system32\vbscript.dll
2017-04-12 11:25:13 ----A---- C:\Windows\system32\mshtmlmedia.dll
2017-04-12 11:25:13 ----A---- C:\Windows\system32\ie4uinit.exe
2017-04-12 11:25:12 ----A---- C:\Windows\SYSWOW64\wups.dll
2017-04-12 11:25:12 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2017-04-12 11:25:12 ----A---- C:\Windows\SYSWOW64\jscript.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\wups2.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\wups.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\wudriver.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\srcore.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\rpcrt4.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\ieapfltr.dll
2017-04-12 11:25:11 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2017-04-12 11:25:11 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2017-04-12 11:25:11 ----A---- C:\Windows\system32\wuauclt.exe
2017-04-12 11:25:11 ----A---- C:\Windows\system32\lsasrv.dll
2017-04-12 11:25:11 ----A---- C:\Windows\system32\ieui.dll
2017-04-12 11:25:10 ----A---- C:\Windows\system32\dxtrans.dll
2017-04-12 11:25:10 ----A---- C:\Windows\system32\dxtmsft.dll
2017-04-12 11:25:10 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-04-12 11:25:09 ----A---- C:\Windows\system32\srclient.dll
2017-04-12 11:25:09 ----A---- C:\Windows\system32\smss.exe
2017-04-12 11:25:09 ----A---- C:\Windows\system32\msrating.dll
2017-04-12 11:25:09 ----A---- C:\Windows\system32\mshtmled.dll
2017-04-12 11:25:09 ----A---- C:\Windows\system32\kerberos.dll
2017-04-12 11:25:09 ----A---- C:\Windows\system32\advapi32.dll
2017-04-12 11:25:08 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2017-04-12 11:25:07 ----A---- C:\Windows\SYSWOW64\srclient.dll
2017-04-12 11:25:07 ----A---- C:\Windows\system32\WinSetupUI.dll
2017-04-12 11:25:07 ----A---- C:\Windows\system32\rstrui.exe
2017-04-12 11:25:07 ----A---- C:\Windows\system32\occache.dll
2017-04-12 11:25:07 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2017-04-12 11:25:07 ----A---- C:\Windows\system32\kernel32.dll
2017-04-12 11:25:07 ----A---- C:\Windows\system32\jsproxy.dll
2017-04-12 11:25:07 ----A---- C:\Windows\system32\jscript9diag.dll
2017-04-12 11:25:06 ----A---- C:\Windows\system32\schannel.dll
2017-04-12 11:25:06 ----A---- C:\Windows\system32\ieUnatt.exe
2017-04-12 11:25:06 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-04-12 11:25:06 ----A---- C:\Windows\system32\conhost.exe
2017-04-12 11:25:05 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2017-04-12 11:25:05 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2017-04-12 11:25:05 ----A---- C:\Windows\SYSWOW64\ieui.dll
2017-04-12 11:25:05 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2017-04-12 11:25:05 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\wow64win.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\winsrv.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\ncrypt.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\msv1_0.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\MshtmlDac.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\KernelBase.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\inseng.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\ieetwproxystub.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\occache.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\msrating.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\wuapp.exe
2017-04-12 11:25:04 ----A---- C:\Windows\system32\wow64.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\wdigest.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\TSpkg.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\sspicli.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\iesetup.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\bcrypt.dll
2017-04-12 11:25:03 ----A---- C:\Windows\system32\rpchttp.dll
2017-04-12 11:25:03 ----A---- C:\Windows\system32\iernonce.dll
2017-04-12 11:25:03 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-04-12 11:25:03 ----A---- C:\Windows\system32\cdd.dll
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\schannel.dll
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\inseng.dll
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2017-04-12 11:25:02 ----A---- C:\Windows\system32\ieetwcollector.exe
2017-04-12 11:25:02 ----A---- C:\Windows\system32\csrsrv.dll
2017-04-12 11:25:02 ----A---- C:\Windows\system32\cryptbase.dll
2017-04-12 11:24:59 ----A---- C:\Windows\system32\lsass.exe
2017-04-12 11:24:59 ----A---- C:\Windows\system32\drivers\appid.sys
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\secur32.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\wow64cpu.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\sspisrv.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\secur32.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\ntvdm64.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\lpk.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\fontsub.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\dciman32.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\credssp.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\appidsvc.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2017-04-12 11:24:58 ----A---- C:\Windows\system32\appidapi.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\wow32.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\lpk.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\credssp.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2017-04-12 11:24:57 ----A---- C:\Windows\system32\rdpcorets.dll
2017-04-12 11:24:57 ----A---- C:\Windows\system32\auditpol.exe
2017-04-12 11:24:57 ----A---- C:\Windows\system32\atmlib.dll
2017-04-12 11:24:57 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\user.exe
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\tzres.dll
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\setup16.exe
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\instnm.exe
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2017-04-12 11:24:55 ----A---- C:\Windows\system32\tzres.dll
2017-04-12 11:24:55 ----A---- C:\Windows\system32\msaudite.dll
2017-04-12 11:24:55 ----A---- C:\Windows\system32\apisetschema.dll
2017-04-12 11:24:55 ----A---- C:\Windows\system32\adtschema.dll
2017-04-12 11:24:54 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2017-04-12 11:24:54 ----A---- C:\Windows\system32\msobjs.dll
2017-04-12 11:24:53 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2017-04-12 11:24:52 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2017-03-29 14:53:40 ----A---- C:\Windows\system32\SRSWOW64.dll
2017-03-29 14:53:40 ----A---- C:\Windows\system32\SRSTSX64.dll
2017-03-29 14:53:39 ----A---- C:\Windows\system32\SRSTSH64.dll
2017-03-29 14:53:39 ----A---- C:\Windows\system32\SRSHP64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFSAPO64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFProc64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFNHK64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFHAPO64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFDAPO64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFComm64.dll
2017-03-29 14:53:33 ----A---- C:\Windows\SYSWOW64\SFCOM.dll
2017-03-29 14:53:33 ----A---- C:\Windows\system32\SFCOM64.dll
2017-03-29 14:53:33 ----A---- C:\Windows\system32\SFAPO64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtPgEx64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtkCfg64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtkApi64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RTEEP64A.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RTEEL64A.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RTEEG64A.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RTEED64A.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtDataProc64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RTCOM64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RP3DHT64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RP3DAA64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RltkAPO64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2017-03-29 14:53:32 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2017-03-29 14:53:31 ----A---- C:\Windows\system32\RCoRes64.dat
2017-03-29 14:53:31 ----A---- C:\Windows\system32\RCoInstII64.dll
2017-03-29 14:53:30 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2017-03-29 14:53:29 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2017-03-29 14:53:29 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2017-03-29 14:53:29 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2017-03-29 14:53:28 ----A---- C:\Windows\system32\FMAPO64.dll
2017-03-29 14:53:28 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2017-03-29 14:53:28 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2017-03-29 14:53:28 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2017-03-29 14:53:26 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2017-03-29 14:53:25 ----A---- C:\Windows\system32\AERTAR64.dll
2017-03-29 14:53:25 ----A---- C:\Windows\system32\AERTAC64.dll
====== List of files/folders modified in the last 1 month ======
2017-04-22 15:19:42 ----D---- C:\Program Files\trend micro
2017-04-22 15:17:44 ----D---- C:\Windows\system32\config
2017-04-22 15:17:38 ----D---- C:\Windows\SoftwareDistribution
2017-04-22 15:16:26 ----D---- C:\Windows\temp
2017-04-22 15:06:20 ----D---- C:\Windows
2017-04-22 15:03:27 ----D---- C:\Users\David Hynek\AppData\Roaming\uTorrent
2017-04-22 15:03:16 ----D---- C:\Windows\inf
2017-04-22 14:51:27 ----D---- C:\ProgramData
2017-04-22 14:47:57 ----D---- C:\ProgramData\NVIDIA
2017-04-22 13:48:04 ----D---- C:\Users\David Hynek\AppData\Roaming\TS3Client
2017-04-22 13:42:43 ----D---- C:\Windows\system32\NDF
2017-04-22 11:17:52 ----D---- C:\Windows\system32\drivers
2017-04-22 11:11:51 ----D---- C:\Windows\System32
2017-04-22 11:11:51 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-04-22 10:40:13 ----D---- C:\Windows\SysWOW64
2017-04-21 23:52:12 ----SHD---- C:\System Volume Information
2017-04-21 23:31:59 ----D---- C:\Program Files\NVIDIA Corporation
2017-04-21 23:31:57 ----D---- C:\ProgramData\NVIDIA Corporation
2017-04-21 23:31:21 ----RD---- C:\Program Files (x86)
2017-04-21 23:28:52 ----D---- C:\Windows\system32\DriverStore
2017-04-21 23:15:30 ----D---- C:\Windows\system32\Tasks
2017-04-21 23:15:22 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-04-21 17:34:19 ----D---- C:\Windows\Help
2017-04-20 13:02:21 ----D---- C:\Users\David Hynek\AppData\Roaming\Curse Client
2017-04-20 12:13:46 ----D---- C:\Windows\rescache
2017-04-18 23:50:34 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2017-04-18 23:50:27 ----D---- C:\Windows\system32\Macromed
2017-04-18 23:50:02 ----D---- C:\Windows\SYSWOW64\Macromed
2017-04-18 19:05:11 ----D---- C:\TeamSpeak 3 Client
2017-04-18 17:04:11 ----D---- C:\Program Files (x86)\vso
2017-04-18 17:04:09 ----D---- C:\Users\David Hynek\AppData\Roaming\Vso
2017-04-18 17:04:08 ----A---- C:\Users\David Hynek\AppData\Roaming\inst.exe
2017-04-18 16:54:31 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2017-04-18 16:54:29 ----SHD---- C:\Windows\Installer
2017-04-18 16:54:29 ----D---- C:\Config.Msi
2017-04-18 16:46:31 ----D---- C:\Program Files (x86)\ASUS
2017-04-18 16:45:57 ----D---- C:\Program Files (x86)\Common Files
2017-04-18 16:44:59 ----D---- C:\Program Files
2017-04-18 16:42:55 ----D---- C:\Program Files (x86)\CyberLink
2017-04-18 16:36:41 ----D---- C:\ProgramData\CyberLink
2017-04-18 16:17:13 ----A---- C:\Windows\SYSWOW64\acovcnt.exe
2017-04-18 12:31:06 ----D---- C:\Users\David Hynek\AppData\Roaming\Spotify
2017-04-16 20:30:28 ----D---- C:\Users\David Hynek\AppData\Roaming\discord
2017-04-15 16:07:05 ----D---- C:\Windows\debug
2017-04-15 15:47:21 ----D---- C:\ProgramData\Deadtime Stories
2017-04-15 15:47:02 ----D---- C:\ProgramData\Asus
2017-04-15 15:46:47 ----AD---- C:\ProgramData\Temp
2017-04-15 15:29:40 ----D---- C:\Program Files\P4G
2017-04-14 13:19:35 ----SD---- C:\Users\David Hynek\AppData\Roaming\Microsoft
2017-04-13 17:03:36 ----D---- C:\Windows\Prefetch
2017-04-12 14:56:49 ----D---- C:\Windows\Microsoft.NET
2017-04-12 14:52:20 ----RSD---- C:\Windows\assembly
2017-04-12 13:23:33 ----D---- C:\Windows\winsxs
2017-04-12 13:21:15 ----D---- C:\Program Files\Microsoft Silverlight
2017-04-12 13:21:15 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2017-04-12 13:18:28 ----D---- C:\Windows\SYSWOW64\en-US
2017-04-12 13:18:28 ----D---- C:\Windows\SYSWOW64\cs-CZ
2017-04-12 13:18:28 ----D---- C:\Program Files\Internet Explorer
2017-04-12 13:18:27 ----D---- C:\Windows\system32\cs-CZ
2017-04-12 13:18:26 ----D---- C:\Windows\system32\en-US
2017-04-12 13:18:25 ----D---- C:\Windows\AppPatch
2017-04-12 13:18:25 ----D---- C:\Program Files (x86)\Internet Explorer
2017-04-12 13:18:24 ----D---- C:\Windows\system32\Boot
2017-04-12 13:13:43 ----D---- C:\ProgramData\Microsoft Help
2017-04-12 13:05:16 ----D---- C:\Windows\system32\MRT
2017-04-12 13:04:46 ----AC---- C:\Windows\system32\MRT.exe
2017-04-12 13:02:00 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2017-04-12 11:00:27 ----D---- C:\Windows\system32\catroot2
2017-04-05 17:35:05 ----D---- C:\Users\David Hynek\AppData\Roaming\SimulationCraft
2017-04-05 17:25:59 ----D---- C:\Simulationcraft(x64)
2017-04-01 05:20:54 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2017-04-01 05:20:54 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2017-04-01 05:20:54 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2017-04-01 05:20:54 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2017-03-29 14:56:44 ----HD---- C:\Program Files (x86)\Temp
2017-03-29 14:54:53 ----D---- C:\Windows\SYSWOW64\RTCOM
2017-03-28 09:15:59 ----D---- C:\Program Files\Defraggler
File C:\Windows\system32\winlogon.exe is digitally signed
File C:\Windows\system32\wininit.exe is digitally signed
File C:\Windows\explorer.exe is digitally signed
File C:\Windows\SysWOW64\explorer.exe is digitally signed
File C:\Windows\system32\svchost.exe is digitally signed
File C:\Windows\SysWOW64\svchost.exe is digitally signed
File C:\Windows\system32\services.exe is digitally signed
File C:\Windows\system32\User32.dll is digitally signed
File C:\Windows\SysWOW64\User32.dll is digitally signed
File C:\Windows\system32\userinit.exe is digitally signed
File C:\Windows\SysWOW64\userinit.exe is digitally signed
File C:\Windows\system32\rpcss.dll is digitally signed
File C:\Windows\system32\Drivers\volsnap.sys is digitally signed
====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [2017-02-20 189768]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswbloga.sys [2017-02-20 334600]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [2017-02-20 48528]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2017-02-20 74680]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2017-02-20 337080]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-04-26 557848]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2017-04-01 38336]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [2017-02-20 309784]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2017-02-20 32088]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2017-02-20 100640]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2017-02-20 991496]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2017-02-20 547904]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
R1 nvkflt;nvkflt; C:\Windows\system32\DRIVERS\nvkflt.sys [2017-04-01 307768]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2017-02-20 126088]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2017-02-20 162528]
R2 speedfan;speedfan; \??\C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R2 TurboB;Turbo Boost UI Monitor driver; C:\Windows\system32\DRIVERS\TurboB.sys [2010-04-17 13832]
R3 AiCharger;ASUS Charger Driver; C:\Windows\system32\DRIVERS\AiCharger.sys [2011-09-20 16768]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-10-04 129512]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-10-04 394728]
R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2016-01-29 4171512]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-03-13 28832]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2015-06-01 5384176]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2017-01-11 5545472]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2013-07-16 129224]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-10-10 100312]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2017-03-28 47552]
R3 nvvhci;NVVHCI Enumerator Service; C:\Windows\system32\DRIVERS\nvvhci.sys [2017-03-28 57792]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2431-09-15 32496]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-05-05 1439792]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2017-02-20 38296]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-03-13 36000]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-03-13 298656]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-03-13 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-03-13 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-03-13 154272]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-03-13 280224]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-10-19 80384]
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2011-08-29 53760]
S3 DrvAgent64;DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [2016-03-18 21712]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2011-05-14 48488]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-03-28 30144]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 semav6msr64;semav6msr64; \??\C:\Windows\system32\drivers\semav6msr64.sys [2016-10-18 21984]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 t_mouse.sys;HID-compliand device; C:\Windows\system32\DRIVERS\t_mouse.sys [2012-12-19 6144]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2014-05-16 141600]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Problémy s notebookem - grafika,aktualizace,ramky
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Problémy s notebookem - grafika,aktualizace,ramky
Naposledy upravil(a) Simicek dne 22 dub 2017 16:00, celkem upraveno 1 x.
Re: Problémy s notebookem - grafika,aktualizace,ramky
====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2017-02-02 82640]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-02-20 262736]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; %SystemRoot%\System32\svchost.exe -k utcsvc;"ServiceDll" = %SystemRoot%\system32\diagtrack.dll
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-03-28 492480]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-04-01 462784]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-03-28 425408]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-10-17 76888]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2017-02-20 7142136]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
R3 SystemExplorerHelpService;System Explorer Service; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [2014-12-20 820960]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-03-20 105096]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-03-20 125064]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-04-18 271448]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2015-06-01 290224]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-05-14 1492840]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2017-03-25 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; D:\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-03-04 167880]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-03-28 492480]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-03-23 1590560]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-09-29 1255736]
S4 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-03-20 51320]
S4 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-03-13 138400]
S4 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-03-13 74912]
S4 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
S4 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-10-18 936272]
S4 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2011-10-18 1354064]
S4 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2011-10-18 1001808]
S4 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-10-06 325656]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-03-20 135800]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-03-20 135800]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-03-20 135800]
S4 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2009-04-17 247152]
S4 TurboBoost;Intel(R) Turbo Boost Technology Monitor; C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2010-04-17 134928]
S4 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-06 2655768]
-----------------EOF-----------------
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2017-02-02 82640]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-02-20 262736]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; %SystemRoot%\System32\svchost.exe -k utcsvc;"ServiceDll" = %SystemRoot%\system32\diagtrack.dll
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-03-28 492480]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-04-01 462784]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-03-28 425408]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-10-17 76888]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2017-02-20 7142136]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
R3 SystemExplorerHelpService;System Explorer Service; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [2014-12-20 820960]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-03-20 105096]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-03-20 125064]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-04-18 271448]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2015-06-01 290224]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-05-14 1492840]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2017-03-25 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; D:\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-03-04 167880]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-03-28 492480]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-03-23 1590560]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-09-29 1255736]
S4 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-03-20 51320]
S4 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-03-13 138400]
S4 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-03-13 74912]
S4 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
S4 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-10-18 936272]
S4 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2011-10-18 1354064]
S4 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2011-10-18 1001808]
S4 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-10-06 325656]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-03-20 135800]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-03-20 135800]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-03-20 135800]
S4 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2009-04-17 247152]
S4 TurboBoost;Intel(R) Turbo Boost Technology Monitor; C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2010-04-17 134928]
S4 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-06 2655768]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problémy s notebookem - grafika,aktualizace,ramky
Zdravím!
Můžeme NB vyčistit. Herní problematikou se nezabýváme a na to, zda opravdu odchází grfika jako kus hardwaru vám odpoví pouze servis. Spusťte tuto utilitu:
Můžeme NB vyčistit. Herní problematikou se nezabýváme a na to, zda opravdu odchází grfika jako kus hardwaru vám odpoví pouze servis. Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problémy s notebookem - grafika,aktualizace,ramky
# AdwCleaner v6.045 - Log vytvořen 22/04/2017 v 18:15:34
# Aktualizováno dne 28/03/2017 z Malwarebytes
# Databáze : 2017-04-22.1 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X64)
# Uživatelské jméno : David Hynek - DAVIDHYNEK-PC
# Spuštěno z : C:\Users\David Hynek\Desktop\adwcleaner_6.045.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
[-] Služba smazána: DrvAgent64
***** [ Složky ] *****
[-] Složka smazána: C:\Users\David Hynek\AppData\Local\eSupport.com
[-] Složka smazána: C:\ProgramData\IObit\ASCDownloader
[#] Složka smazána po restartu: C:\ProgramData\Application Data\IObit\ASCDownloader
***** [ Soubory ] *****
[-] Soubor smazán: C:\Windows\SysWOW64\drivers\DRVAGENT64.SYS
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
[-] Klíč smazán: HKU\S-1-5-21-1206595139-1558415813-2062055028-1001\Software\Conduit
[-] Klíč smazán: HKU\S-1-5-21-1206595139-1558415813-2062055028-1001\Software\eSupport.com
[#] Klíč smazán po restartu: HKCU\Software\Conduit
[#] Klíč smazán po restartu: HKCU\Software\eSupport.com
[-] Klíč smazán: HKLM\SOFTWARE\IOBIT\ASC
[#] Klíč smazán po restartu: [x64] HKCU\Software\Conduit
[#] Klíč smazán po restartu: [x64] HKCU\Software\eSupport.com
***** [ Prohlížeče ] *****
*************************
:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [1606 Bajty] - [22/04/2017 18:15:34]
C:\AdwCleaner\AdwCleaner[S0].txt - [1883 Bajty] - [22/04/2017 18:14:57]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1752 Bajty] ##########
# Aktualizováno dne 28/03/2017 z Malwarebytes
# Databáze : 2017-04-22.1 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X64)
# Uživatelské jméno : David Hynek - DAVIDHYNEK-PC
# Spuštěno z : C:\Users\David Hynek\Desktop\adwcleaner_6.045.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
[-] Služba smazána: DrvAgent64
***** [ Složky ] *****
[-] Složka smazána: C:\Users\David Hynek\AppData\Local\eSupport.com
[-] Složka smazána: C:\ProgramData\IObit\ASCDownloader
[#] Složka smazána po restartu: C:\ProgramData\Application Data\IObit\ASCDownloader
***** [ Soubory ] *****
[-] Soubor smazán: C:\Windows\SysWOW64\drivers\DRVAGENT64.SYS
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
[-] Klíč smazán: HKU\S-1-5-21-1206595139-1558415813-2062055028-1001\Software\Conduit
[-] Klíč smazán: HKU\S-1-5-21-1206595139-1558415813-2062055028-1001\Software\eSupport.com
[#] Klíč smazán po restartu: HKCU\Software\Conduit
[#] Klíč smazán po restartu: HKCU\Software\eSupport.com
[-] Klíč smazán: HKLM\SOFTWARE\IOBIT\ASC
[#] Klíč smazán po restartu: [x64] HKCU\Software\Conduit
[#] Klíč smazán po restartu: [x64] HKCU\Software\eSupport.com
***** [ Prohlížeče ] *****
*************************
:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [1606 Bajty] - [22/04/2017 18:15:34]
C:\AdwCleaner\AdwCleaner[S0].txt - [1883 Bajty] - [22/04/2017 18:14:57]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1752 Bajty] ##########
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problémy s notebookem - grafika,aktualizace,ramky
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problémy s notebookem - grafika,aktualizace,ramky
Logfile of random's system information tool 1.16 (written by random/random)
Run by David Hynek at 2017-04-22 19:59:09
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 132 GB (43%) free of 307 GB
Total RAM: 6048 MB (72% free)
X64
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:59:18, on 22.4.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18639)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Users\David Hynek\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\TradeSkillMaster Application\app\TSMApplication.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\System Explorer\SystemExplorer.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Users\David Hynek\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Users\David Hynek\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Program Files\trend micro\David Hynek_RSITx64.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
O4 - HKLM\..\Run: [SystemExplorerAutoStart] "C:\Program Files (x86)\System Explorer\SystemExplorer.exe" /TRAY
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\David Hynek\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [TSMApplication] "C:\TradeSkillMaster Application\app\TSMApplication.exe"
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = D:\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://D:\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software s.r.o. - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10726 bytes
====== Enumerating Processes ======
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -c
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
"C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\X-Mouse Button Control\XMouseButtonControl.exe" /notportable
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Users\David Hynek\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"C:\TradeSkillMaster Application\app\TSMApplication.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\System Explorer\SystemExplorer.exe" /TRAY
C:\CCleaner\CCleaner64.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
"C:\Windows\AsScrPro.exe"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\Windows\system32\conhost.exe "1448738425-1037571213-695779378-652169708-28632574-1382007323-1690905494-1677745693
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Miranda IM\miranda64.exe"
"C:\Users\David Hynek\AppData\Local\Discord\app-0.0.297\Discord.exe"
"C:\Users\David Hynek\AppData\Local\Discord\app-0.0.297\Discord.exe" --type=renderer --no-sandbox --primordial-pipe-token=7D7FC4A89A08668F555AEBD535310622 --lang=cs --app-user-model-id=com.squirrel.Discord.Discord --node-integration=true --background-color=#282b30 --enable-blink-features=EnumerateDevices,AudioOutputDevices --hidden-page --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --mojo-channel-token=435B1F6EDC02BB598EE401ECB425DB55 --mojo-application-channel-token=7D7FC4A89A08668F555AEBD535310622 --channel="4512.1.1368540893\361435267" --mojo-platform-channel-handle=1856 /prefetch:1
"C:\Users\David Hynek\Downloads\RSITx64.exe"
====== Scheduled tasks folder ======
C:\Windows\system32\tasks\Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Windows\system32\tasks\Adobe Flash Player PPAPI Notifier - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_25_0_0_148_pepper.exe -check pepperplugin
C:\Windows\system32\tasks\Adobe Flash Player Updater - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\system32\tasks\ATKOSD2 - C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Windows\system32\tasks\Avast Emergency Update - C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
C:\Windows\system32\tasks\CCleanerSkipUAC - "C:\CCleaner\CCleaner.exe" $(Arg0)
C:\Windows\system32\tasks\Driver Booster SkipUAC (David Hynek) - C:\Driver Booster\DriverBooster.exe /skipuac
C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\system32\tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
C:\Windows\system32\tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler
C:\Windows\system32\tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\Windows\system32\tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\Windows\system32\tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe
C:\Windows\system32\tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe --logon
C:\Windows\system32\tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe
C:\Windows\system32\tasks\SafeZone scheduled Autoupdate 1451238072 - C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate
C:\Windows\system32\tasks\SafeZone scheduled Autoupdate 1458681986 - C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate $(Arg0)
C:\Windows\system32\tasks\SidebarExecute - C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\system32\tasks\USBChargerPlus - C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Windows\system32\tasks\{125F7D28-1209-4A2D-A3EA-ECD570ECE3E3} - D:\Heroes of the Storm\Heroes of the Storm.exe
C:\Windows\system32\tasks\{35F6C9F1-D31A-48C2-86B2-D2FA052ACFA5} - C:\Users\David Hynek\Desktop\nba2k13\setup.exe
C:\Windows\system32\tasks\{37498FC8-1BCE-4565-821D-D5B1520D8148} - D:\Heroes of the Storm\Heroes of the Storm.exe
C:\Windows\system32\tasks\{3A8ABF8A-F4D3-4F96-AA2C-A2D2E6E9FFB7} - C:\Windows\system32\pcalua.exe -a D:\Steam\steam.exe -c steam://uninstall/211500
C:\Windows\system32\tasks\{3BE2355E-E9A1-4F87-B3AB-E0997C143308} - C:\Windows\system32\pcalua.exe -a "D:\Tony Hawks Pro Skater HD\redist\vcredist_x86.exe" -d "D:\Tony Hawks Pro Skater HD\redist"
C:\Windows\system32\tasks\{3EB5F546-57A4-433C-BFCF-C1F4FF6391CA} - D:\Steam\Steam.exe
C:\Windows\system32\tasks\{4B0ED2CF-260B-4243-9922-9D10409ED05A} - D:\Cata\Cata.exe
C:\Windows\system32\tasks\{4C9E7814-85E0-46FD-A3FA-AC88DB63AF4D} - D:\World of Warcraft\PandashanLauncher.exe
C:\Windows\system32\tasks\{638FF75C-0CE8-441F-BEC8-BF9555DD423D} - C:\Windows\system32\pcalua.exe -a C:\Avastantivir\aswRunDll.exe -c "C:\Avastantivir\Setup\setiface.dll" RunSetup
C:\Windows\system32\tasks\{6CFBCDD2-220F-4DE5-82B3-730A1C967817} - D:\World of Warcraft\PandashanLauncher.exe
C:\Windows\system32\tasks\{6D971D95-4BCE-475E-814D-7B5B7ED12181} - C:\Windows\system32\pcalua.exe -a "C:\Users\David Hynek\Desktop\nba2k13\setup.exe" -d "C:\Users\David Hynek\Desktop\nba2k13"
C:\Windows\system32\tasks\{71E8A89D-5150-4D4D-8883-F147BB9FFE09} - C:\Windows\system32\pcalua.exe -a "C:\Users\David Hynek\Desktop\Wowhead_Client.exe" -d "C:\Users\David Hynek\Desktop"
C:\Windows\system32\tasks\{78E95B85-BAAF-40BB-BCF5-0587C7344E46} - D:\Cata\Cata.exe
C:\Windows\system32\tasks\{7C5DB924-5773-46D0-8104-270422FD976D} - C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Windows\system32\tasks\{85E0E4B9-F1DF-4398-9A85-45276493CB01} - C:\Windows\system32\pcalua.exe -a "D:\Tony Hawks Pro Skater HD\redist\dotnetfx35_SP1.exe" -d "D:\Tony Hawks Pro Skater HD\redist"
C:\Windows\system32\tasks\{8B295764-4E2C-455F-BA43-5C73D460FD5E} - D:\Steam\Steam.exe
C:\Windows\system32\tasks\{8ECC7C99-91A0-4425-9848-D561C2F33333} - C:\Windows\system32\pcalua.exe -a "C:\Users\David Hynek\Desktop\MNA\setup.exe" -d "C:\Users\David Hynek\Desktop\MNA"
C:\Windows\system32\tasks\{A57794C3-074C-42C8-8E54-3C4C2B4C9CBC} - C:\Windows\system32\pcalua.exe -a "D:\Steam\steamapps\common\Left 4 Dead 2\bin\addoninstaller.exe" -d "D:\Steam\steamapps\common\Left 4 Dead 2" -c /register
C:\Windows\system32\tasks\{A5BE9FBF-B10A-4567-B881-9A805252C90C} - D:\WoW Cata\Wow.exe
C:\Windows\system32\tasks\{BC2709D5-BB76-410D-8FB9-88A8C762AFF0} - C:\Windows\system32\pcalua.exe -a "C:\Users\David Hynek\Desktop\Fifa\Installer.exe" -d "C:\Users\David Hynek\Desktop\Fifa"
C:\Windows\system32\tasks\{C2A36E6E-496D-4079-892B-50F051B6CB51} - D:\WoW Cata\Wow.exe
C:\Windows\system32\tasks\{E0DFF7C1-CD92-48A5-A76D-0544801851B2} - D:\World of Warcraft\PandashanLauncher.exe
C:\Windows\system32\tasks\{E13A5D63-5173-41FC-9CB8-2AC152375160} - C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Windows\system32\tasks\{F9CE0497-3BC9-4BF4-9875-9E52B8897540} - C:\WoW Cata\Wow.exe
C:\Windows\system32\tasks\WPD\SqmUpload_S-1-5-21-1206595139-1558415813-2062055028-1001 - %windir%\system32\rundll32.exe portabledeviceapi.dll,#1
C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask - %systemroot%\system32\sc.exe start osppsvc
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\ConfigNotification - %systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION
C:\Windows\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\Windows\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\Windows\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -queuereporting
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask - %SystemRoot%\system32\Wat\WatAdminSvc.exe /run
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline - %SystemRoot%\system32\schtasks.exe /run /I /TN "\Microsoft\Windows\Windows Activation Technologies\ValidationTask"
C:\Windows\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\Windows\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation
C:\Windows\system32\tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask - sc.exe start sppsvc
C:\Windows\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\Windows\system32\tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem - %SystemRoot%\System32\powercfg.exe -energy -auto
C:\Windows\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Lpksetup - C:\Windows\System32\lpksetup.exe -v
C:\Windows\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Mcbuilder - C:\Windows\System32\mcbuilder.exe
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService - %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks - %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ehDRMInit - %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\InstallPlayReady - %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate - %SystemRoot%\ehome\mcupdate $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate_scheduled - %SystemRoot%\ehome\mcupdate -crl -hms -pscn 15
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURActivate - %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURDiscovery - %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscovery - %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 - %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 - %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PeriodicScanRetry - %windir%\ehome\MCUpdate.exe -pscn 0
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrScheduleTask - %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RecordingRestart - %SystemRoot%\ehome\ehrec /RestartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RegisterSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ReindexSearchRoot - %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\StartRecording - %SystemRoot%\ehome\ehrec /StartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\UpdateRecordPath - %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotifications.exe
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\Windows\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Uploader - %windir%\system32\WSqmCons.exe -u
C:\Windows\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\AitAgent - aitagent
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattel\DiagTrackRunner.exe /UploadEtlFilesOnly
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\Windows\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\Windows\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\Windows\system32\tasks\AVAST Software\Avast settings backup - C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs
=========Mozilla firefox=========
ProfilePath - C:\Users\David Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\3x5rgwnq.default-1458296225216
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 25.0.0.148 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_148.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\ZEON/PDF,version=2.0]
"Description"=
"Path"=C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 25.0.0.148 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_148.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll
C:\Users\David Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\3x5rgwnq.default-1458296225216\addons.json
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
Firefox Hello Beta (discontinued) - extension - loop@mozilla.org
C:\Users\David Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\3x5rgwnq.default-1458296225216\extensions.json
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - C:\Users\David Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\3x5rgwnq.default-1458296225216\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
Firefox Hello - extension - loop@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\loop@mozilla.org.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Websense Helper - extension - websensehelper@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\websensehelper@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
Avast Online Security - extension - wrc@avast.com - C:\Program Files\AVAST Software\Avast\WebRep\FF
Avast SafePrice - extension - sp@avast.com - C:\Program Files\AVAST Software\Avast\SafePrice\FF
C:\Users\David Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\3x5rgwnq.default-1458296225216\pluginreg.dat
Plugin - Silverlight Plug-In - 5.1.50905.0 - c:\Program Files\Microsoft Silverlight\5.1.50905.0\npctrl.dll
Plugin - Shockwave Flash - 25.0.0.127 - C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_127.dll
=========Google Chrome=========
C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Store 0.2
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension cfhdojbkjhnklbpkdaibdccddilifddb 1 Adblock Plus 1.13.2
Extension coobgpohoikkiipiblmjeljniedjpjpf 1 Vyhledávání Google 0.0.0.30
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension efaidnbmnnnibpcajpcglclefindmkaj 1 Adobe Acrobat 15.1.0.6
Extension ennkphjdgehloodpbhlhldgbnhmacadg Settings 0.2
Extension eofcbnmajmjmplflapaojjnihcjkigck 2 Avast SafePrice 10.2.0.190
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension gomekmidlodglbbmalcneegieacbdmki 2 Avast Online Security 11.1.0.242
Extension ilkgeioneoemibpddeiamfgiofnpjifm 1 The West 1.5
Extension jcbbonmofdkklhmaapkllflmpoccpiad 1 Všechny hry - Twitch 2016.3.18.38154
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mfffpogegjflfpflabcdkioaeobkgjik 1 GaiaAuthExtension 0.0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.2
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.2
Extension pafkbggdmjlpgkdkcbjmhmfcdpncadgh Google Now 1.2.0.1
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5717.116.0.4
Homepage:
default_search_provider.search_url:
C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Preferences
Plugin 1.4.7.796 Widevine Content Decryption Module C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.7.796\_platform_specific\win_x86\widevinecdmadapter.dll
Plugin Chrome PDF Viewer chrome-extension://mhjfbmdgcfjbbpaeojofohoefgiehjai/
Plugin 17.0.0.169 Shockwave Flash C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\PepperFlash\pepflashplayer.dll
Plugin Chrome Remote Desktop Viewer internal-remoting-viewer
Plugin Native Client C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\internal-nacl-plugin
Plugin Chrome PDF Viewer internal-pdf-viewer
Homepage:
default_search_provider.search_url:
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj]
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck]
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki]
"Path"=C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
======Registry dump ======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-02-20 883520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - D:\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-03-13 60576]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-02-20 758384]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-01-11 1483264]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2011-03-21 361984]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-05-05 2785064]
"SynAsusAcpi"=C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [2011-05-05 97064]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-03-13 617120]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-03-13 379552]
"IntelTBRunOnce"=wscript.exe //b //nologo C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs []
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2011-10-18 10357008]
"XMouseButtonControl"=C:\X-Mouse Button Control\XMouseButtonControl.exe [2016-05-22 1161240]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2015-06-01 183216]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2015-06-01 411056]
"Persistence"=C:\Windows\system32\igfxpers.exe [2015-06-01 453552]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2017-01-11 16781824]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2017-03-28 1882048]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"=C:\Users\David Hynek\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2017-04-03 1446000]
"CCleaner Monitoring"=C:\CCleaner\CCleaner64.exe [2017-03-03 9364696]
"TSMApplication"=C:\TradeSkillMaster Application\app\TSMApplication.exe [2016-08-16 1623040]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Nuance PDF Reader-reminder"=C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [2008-11-03 328992]
"ASUSPRP"=C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2011-10-20 3331312]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2011-07-22 5716608]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-08 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2011-09-13 2317312]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-02-20 205512]
"SystemExplorerAutoStart"=C:\Program Files (x86)\System Explorer\SystemExplorer.exe [2015-08-19 3389160]
"ASUS Screen Saver Protector"=C:\Windows\AsScrPro.exe [2012-02-10 3058304]
"CLMLServer"=C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2010-08-20 107816]
C:\Users\David Hynek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - D:\Microsoft Office\Office12\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\System32\nvinitx.dll, C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=D:\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"midi1"=wdmaud.drv
"VIDC.XFR1"=xfcodec64.dll
"VIDC.FPS1"=frapsv64.dll
"vidc.xtor"=DxtoryCodec64.dll
"vidc.x264"=C:\X264VF~1\X264VF~1.DLL
"msacm.l3codecp"=l3codecp.acm
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
====== File associations ======
.js - edit - C:\Windows\System32\Notepad.exe %1
====== List of files/folders created in the last 1 month ======
2431-09-15 20:37:49 ----A---- C:\Windows\system32\drivers\Smb_driver_Intel.sys
2431-09-15 20:37:49 ----A---- C:\Windows\system32\drivers\HECIx64.sys
2017-04-22 19:59:14 ----D---- C:\ProgramData\SWCUTemp
2017-04-22 18:13:22 ----D---- C:\AdwCleaner
2017-04-22 15:19:38 ----D---- C:\rsit
2017-04-21 23:31:49 ----D---- C:\Windows\SYSWOW64\NV
2017-04-21 23:31:49 ----D---- C:\Windows\system32\NV
2017-04-21 23:31:25 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2017-04-21 23:31:22 ----A---- C:\Windows\SYSWOW64\vulkaninfo.exe
2017-04-21 23:31:22 ----A---- C:\Windows\SYSWOW64\vulkan-1.dll
2017-04-21 23:31:22 ----A---- C:\Windows\system32\vulkaninfo.exe
2017-04-21 23:31:22 ----A---- C:\Windows\system32\vulkan-1.dll
2017-04-21 23:31:21 ----D---- C:\Program Files (x86)\VulkanRT
2017-04-21 23:26:08 ----A---- C:\Windows\SYSWOW64\nvptxJitCompiler.dll
2017-04-21 23:26:08 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2017-04-21 23:26:08 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2017-04-21 23:26:08 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2017-04-21 23:26:08 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\nvwgf2umx.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\nvptxJitCompiler.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\nvopencl.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\nvoglv64.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\nvoglshim64.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\NvIFR64.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2017-04-21 23:26:08 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2017-04-21 23:26:08 ----A---- C:\Windows\system32\drivers\nvkflt.sys
2017-04-21 23:26:07 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2017-04-21 23:26:07 ----A---- C:\Windows\SYSWOW64\nvfatbinaryLoader.dll
2017-04-21 23:26:07 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2017-04-21 23:26:07 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\NvFBC64.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvfatbinaryLoader.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvdispgenco6438165.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvdispco6438165.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvd3dumx.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvcuvid.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvcuda.dll
2017-04-21 23:26:01 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2017-04-21 23:26:01 ----A---- C:\Windows\system32\nvcompiler.dll
2017-04-21 23:15:32 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2017-04-21 23:15:32 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2017-04-21 23:15:32 ----A---- C:\Windows\system32\nvspcap64.dll
2017-04-21 23:15:32 ----A---- C:\Windows\system32\nvspbridge64.dll
2017-04-21 23:15:32 ----A---- C:\Windows\system32\NvRtmpStreamer64.dll
2017-04-21 23:15:02 ----A---- C:\Windows\NvTelemetryContainerRecovery.bat
2017-04-21 23:14:43 ----A---- C:\Windows\system32\drivers\nvvhci.sys
2017-04-21 23:14:42 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2017-04-21 23:14:42 ----A---- C:\Windows\system32\nvaudcap64v.dll
2017-04-21 23:14:42 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2017-04-21 17:59:27 ----A---- C:\Windows\NvContainerRecovery.bat
2017-04-21 17:59:09 ----D---- C:\temp
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nvsvcr.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nvsvc64.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nvshext.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nvmctray.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nvcpl.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nv3dappshextr.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nv3dappshext.dll
2017-04-21 17:31:48 ----A---- C:\Windows\system32\nvumdshimx.dll
2017-04-21 17:31:47 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2017-04-21 17:31:47 ----A---- C:\Windows\system32\nvinitx.dll
2017-04-21 17:31:47 ----A---- C:\Windows\system32\nvdispgenco6436510.dll
2017-04-21 17:31:47 ----A---- C:\Windows\system32\nvdispco6436510.dll
2017-04-21 17:31:46 ----A---- C:\Windows\system32\nvapi64.dll
2017-04-16 17:35:09 ----D---- C:\HWMonitor
2017-04-15 15:36:20 ----D---- C:\Users\David Hynek\AppData\Roaming\MAGIX
2017-04-14 10:21:30 ----D---- C:\ProgramData\Twitch
2017-04-14 10:21:28 ----D---- C:\Users\David Hynek\AppData\Roaming\Twitch
2017-04-12 11:25:40 ----A---- C:\Windows\system32\mshtml.dll
2017-04-12 11:25:38 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2017-04-12 11:25:36 ----A---- C:\Windows\system32\ieframe.dll
2017-04-12 11:25:35 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2017-04-12 11:25:34 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2017-04-12 11:25:33 ----A---- C:\Windows\SYSWOW64\wininet.dll
2017-04-12 11:25:33 ----A---- C:\Windows\system32\wininet.dll
2017-04-12 11:25:32 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2017-04-12 11:25:32 ----A---- C:\Windows\system32\wuaueng.dll
2017-04-12 11:25:32 ----A---- C:\Windows\system32\ole32.dll
2017-04-12 11:25:32 ----A---- C:\Windows\system32\iertutil.dll
2017-04-12 11:25:29 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2017-04-12 11:25:29 ----A---- C:\Windows\system32\win32k.sys
2017-04-12 11:25:29 ----A---- C:\Windows\system32\urlmon.dll
2017-04-12 11:25:28 ----A---- C:\Windows\system32\wucltux.dll
2017-04-12 11:25:27 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2017-04-12 11:25:27 ----A---- C:\Windows\system32\wuapi.dll
2017-04-12 11:25:27 ----A---- C:\Windows\system32\win32spl.dll
2017-04-12 11:25:27 ----A---- C:\Windows\system32\samsrv.dll
2017-04-12 11:25:27 ----A---- C:\Windows\system32\quartz.dll
2017-04-12 11:25:26 ----A---- C:\Windows\system32\ucrtbase.dll
2017-04-12 11:25:26 ----A---- C:\Windows\system32\msfeeds.dll
2017-04-12 11:25:26 ----A---- C:\Windows\system32\cdosys.dll
2017-04-12 11:25:26 ----A---- C:\Windows\system32\atmfd.dll
2017-04-12 11:25:25 ----A---- C:\Windows\system32\gdi32.dll
2017-04-12 11:25:24 ----A---- C:\Windows\SYSWOW64\quartz.dll
2017-04-12 11:25:24 ----A---- C:\Windows\SYSWOW64\ole32.dll
2017-04-12 11:25:24 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2017-04-12 11:25:23 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2017-04-12 11:25:23 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll
2017-04-12 11:25:23 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2017-04-12 11:25:23 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2017-04-12 11:25:23 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2017-04-12 11:25:23 ----A---- C:\Windows\system32\iedkcs32.dll
2017-04-12 11:25:23 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\jscript.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2017-04-12 11:25:21 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2017-04-12 11:25:21 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2017-04-12 11:25:20 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2017-04-12 11:25:20 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-04-12 11:25:19 ----A---- C:\Windows\system32\ntdll.dll
2017-04-12 11:25:19 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-04-12 11:25:16 ----A---- C:\Windows\system32\jscript9.dll
2017-04-12 11:25:16 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2017-04-12 11:25:16 ----A---- C:\Windows\system32\asycfilt.dll
2017-04-12 11:25:15 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2017-04-12 11:25:15 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2017-04-12 11:25:15 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2017-04-12 11:25:15 ----A---- C:\Windows\system32\samlib.dll
2017-04-12 11:25:15 ----A---- C:\Windows\system32\mfmjpegdec.dll
2017-04-12 11:25:14 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2017-04-12 11:25:14 ----A---- C:\Windows\SYSWOW64\samlib.dll
2017-04-12 11:25:14 ----A---- C:\Windows\SYSWOW64\mfmjpegdec.dll
2017-04-12 11:25:14 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2017-04-12 11:25:14 ----A---- C:\Windows\system32\webcheck.dll
2017-04-12 11:25:14 ----A---- C:\Windows\system32\rdpudd.dll
2017-04-12 11:25:14 ----A---- C:\Windows\system32\certcli.dll
2017-04-12 11:25:13 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2017-04-12 11:25:13 ----A---- C:\Windows\SYSWOW64\certcli.dll
2017-04-12 11:25:13 ----A---- C:\Windows\system32\wuwebv.dll
2017-04-12 11:25:13 ----A---- C:\Windows\system32\vbscript.dll
2017-04-12 11:25:13 ----A---- C:\Windows\system32\mshtmlmedia.dll
2017-04-12 11:25:13 ----A---- C:\Windows\system32\ie4uinit.exe
2017-04-12 11:25:12 ----A---- C:\Windows\SYSWOW64\wups.dll
2017-04-12 11:25:12 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2017-04-12 11:25:12 ----A---- C:\Windows\SYSWOW64\jscript.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\wups2.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\wups.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\wudriver.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\srcore.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\rpcrt4.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\ieapfltr.dll
2017-04-12 11:25:11 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2017-04-12 11:25:11 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2017-04-12 11:25:11 ----A---- C:\Windows\system32\wuauclt.exe
2017-04-12 11:25:11 ----A---- C:\Windows\system32\lsasrv.dll
2017-04-12 11:25:11 ----A---- C:\Windows\system32\ieui.dll
2017-04-12 11:25:10 ----A---- C:\Windows\system32\dxtrans.dll
2017-04-12 11:25:10 ----A---- C:\Windows\system32\dxtmsft.dll
2017-04-12 11:25:10 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-04-12 11:25:09 ----A---- C:\Windows\system32\srclient.dll
2017-04-12 11:25:09 ----A---- C:\Windows\system32\smss.exe
2017-04-12 11:25:09 ----A---- C:\Windows\system32\msrating.dll
2017-04-12 11:25:09 ----A---- C:\Windows\system32\mshtmled.dll
2017-04-12 11:25:09 ----A---- C:\Windows\system32\kerberos.dll
2017-04-12 11:25:09 ----A---- C:\Windows\system32\advapi32.dll
2017-04-12 11:25:08 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2017-04-12 11:25:07 ----A---- C:\Windows\SYSWOW64\srclient.dll
2017-04-12 11:25:07 ----A---- C:\Windows\system32\WinSetupUI.dll
2017-04-12 11:25:07 ----A---- C:\Windows\system32\rstrui.exe
2017-04-12 11:25:07 ----A---- C:\Windows\system32\occache.dll
2017-04-12 11:25:07 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2017-04-12 11:25:07 ----A---- C:\Windows\system32\kernel32.dll
2017-04-12 11:25:07 ----A---- C:\Windows\system32\jsproxy.dll
2017-04-12 11:25:07 ----A---- C:\Windows\system32\jscript9diag.dll
2017-04-12 11:25:06 ----A---- C:\Windows\system32\schannel.dll
2017-04-12 11:25:06 ----A---- C:\Windows\system32\ieUnatt.exe
2017-04-12 11:25:06 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-04-12 11:25:06 ----A---- C:\Windows\system32\conhost.exe
2017-04-12 11:25:05 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2017-04-12 11:25:05 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2017-04-12 11:25:05 ----A---- C:\Windows\SYSWOW64\ieui.dll
2017-04-12 11:25:05 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2017-04-12 11:25:05 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\wow64win.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\winsrv.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\ncrypt.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\msv1_0.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\MshtmlDac.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\KernelBase.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\inseng.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\ieetwproxystub.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\occache.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\msrating.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\wuapp.exe
2017-04-12 11:25:04 ----A---- C:\Windows\system32\wow64.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\wdigest.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\TSpkg.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\sspicli.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\iesetup.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\bcrypt.dll
2017-04-12 11:25:03 ----A---- C:\Windows\system32\rpchttp.dll
2017-04-12 11:25:03 ----A---- C:\Windows\system32\iernonce.dll
2017-04-12 11:25:03 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-04-12 11:25:03 ----A---- C:\Windows\system32\cdd.dll
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\schannel.dll
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\inseng.dll
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2017-04-12 11:25:02 ----A---- C:\Windows\system32\ieetwcollector.exe
2017-04-12 11:25:02 ----A---- C:\Windows\system32\csrsrv.dll
2017-04-12 11:25:02 ----A---- C:\Windows\system32\cryptbase.dll
2017-04-12 11:24:59 ----A---- C:\Windows\system32\lsass.exe
2017-04-12 11:24:59 ----A---- C:\Windows\system32\drivers\appid.sys
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\secur32.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\wow64cpu.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\sspisrv.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\secur32.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\ntvdm64.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\lpk.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\fontsub.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\dciman32.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\credssp.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\appidsvc.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2017-04-12 11:24:58 ----A---- C:\Windows\system32\appidapi.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\wow32.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\lpk.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\credssp.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2017-04-12 11:24:57 ----A---- C:\Windows\system32\rdpcorets.dll
2017-04-12 11:24:57 ----A---- C:\Windows\system32\auditpol.exe
2017-04-12 11:24:57 ----A---- C:\Windows\system32\atmlib.dll
2017-04-12 11:24:57 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\user.exe
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\tzres.dll
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\setup16.exe
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\instnm.exe
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2017-04-12 11:24:55 ----A---- C:\Windows\system32\tzres.dll
2017-04-12 11:24:55 ----A---- C:\Windows\system32\msaudite.dll
2017-04-12 11:24:55 ----A---- C:\Windows\system32\apisetschema.dll
2017-04-12 11:24:55 ----A---- C:\Windows\system32\adtschema.dll
2017-04-12 11:24:54 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2017-04-12 11:24:54 ----A---- C:\Windows\system32\msobjs.dll
2017-04-12 11:24:53 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2017-04-12 11:24:52 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2017-03-29 14:53:40 ----A---- C:\Windows\system32\SRSWOW64.dll
2017-03-29 14:53:40 ----A---- C:\Windows\system32\SRSTSX64.dll
2017-03-29 14:53:39 ----A---- C:\Windows\system32\SRSTSH64.dll
2017-03-29 14:53:39 ----A---- C:\Windows\system32\SRSHP64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFSAPO64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFProc64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFNHK64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFHAPO64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFDAPO64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFComm64.dll
2017-03-29 14:53:33 ----A---- C:\Windows\SYSWOW64\SFCOM.dll
2017-03-29 14:53:33 ----A---- C:\Windows\system32\SFCOM64.dll
2017-03-29 14:53:33 ----A---- C:\Windows\system32\SFAPO64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtPgEx64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtkCfg64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtkApi64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RTEEP64A.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RTEEL64A.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RTEEG64A.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RTEED64A.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtDataProc64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RTCOM64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RP3DHT64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RP3DAA64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RltkAPO64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2017-03-29 14:53:32 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2017-03-29 14:53:31 ----A---- C:\Windows\system32\RCoRes64.dat
2017-03-29 14:53:31 ----A---- C:\Windows\system32\RCoInstII64.dll
2017-03-29 14:53:30 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2017-03-29 14:53:29 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2017-03-29 14:53:29 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2017-03-29 14:53:29 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2017-03-29 14:53:28 ----A---- C:\Windows\system32\FMAPO64.dll
2017-03-29 14:53:28 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2017-03-29 14:53:28 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2017-03-29 14:53:28 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2017-03-29 14:53:26 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2017-03-29 14:53:25 ----A---- C:\Windows\system32\AERTAR64.dll
2017-03-29 14:53:25 ----A---- C:\Windows\system32\AERTAC64.dll
====== List of files/folders modified in the last 1 month ======
2017-04-22 19:59:14 ----D---- C:\ProgramData
2017-04-22 19:59:13 ----D---- C:\Program Files\trend micro
2017-04-22 19:57:45 ----D---- C:\Windows\temp
2017-04-22 18:35:56 ----D---- C:\Windows\system32\config
2017-04-22 18:19:05 ----D---- C:\ProgramData\NVIDIA
2017-04-22 18:16:32 ----D---- C:\Windows
2017-04-22 18:15:28 ----D---- C:\Windows\SYSWOW64\drivers
2017-04-22 18:15:28 ----D---- C:\ProgramData\IObit
2017-04-22 18:10:57 ----D---- C:\Windows\inf
2017-04-22 15:17:38 ----D---- C:\Windows\SoftwareDistribution
2017-04-22 15:03:27 ----D---- C:\Users\David Hynek\AppData\Roaming\uTorrent
2017-04-22 13:48:04 ----D---- C:\Users\David Hynek\AppData\Roaming\TS3Client
2017-04-22 13:42:43 ----D---- C:\Windows\system32\NDF
2017-04-22 11:17:52 ----D---- C:\Windows\system32\drivers
2017-04-22 11:11:51 ----D---- C:\Windows\System32
2017-04-22 11:11:51 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-04-22 10:40:13 ----D---- C:\Windows\SysWOW64
2017-04-21 23:52:12 ----SHD---- C:\System Volume Information
2017-04-21 23:31:59 ----D---- C:\Program Files\NVIDIA Corporation
2017-04-21 23:31:57 ----D---- C:\ProgramData\NVIDIA Corporation
2017-04-21 23:31:21 ----RD---- C:\Program Files (x86)
2017-04-21 23:28:52 ----D---- C:\Windows\system32\DriverStore
2017-04-21 23:15:30 ----D---- C:\Windows\system32\Tasks
2017-04-21 23:15:22 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-04-21 17:34:19 ----D---- C:\Windows\Help
2017-04-20 13:02:21 ----D---- C:\Users\David Hynek\AppData\Roaming\Curse Client
2017-04-20 12:13:46 ----D---- C:\Windows\rescache
2017-04-18 23:50:34 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2017-04-18 23:50:27 ----D---- C:\Windows\system32\Macromed
2017-04-18 23:50:02 ----D---- C:\Windows\SYSWOW64\Macromed
2017-04-18 19:05:11 ----D---- C:\TeamSpeak 3 Client
2017-04-18 17:04:11 ----D---- C:\Program Files (x86)\vso
2017-04-18 17:04:09 ----D---- C:\Users\David Hynek\AppData\Roaming\Vso
2017-04-18 17:04:08 ----A---- C:\Users\David Hynek\AppData\Roaming\inst.exe
2017-04-18 16:54:31 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2017-04-18 16:54:29 ----SHD---- C:\Windows\Installer
2017-04-18 16:54:29 ----D---- C:\Config.Msi
2017-04-18 16:46:31 ----D---- C:\Program Files (x86)\ASUS
2017-04-18 16:45:57 ----D---- C:\Program Files (x86)\Common Files
2017-04-18 16:44:59 ----D---- C:\Program Files
2017-04-18 16:42:55 ----D---- C:\Program Files (x86)\CyberLink
2017-04-18 16:36:41 ----D---- C:\ProgramData\CyberLink
2017-04-18 16:17:13 ----A---- C:\Windows\SYSWOW64\acovcnt.exe
2017-04-18 12:31:06 ----D---- C:\Users\David Hynek\AppData\Roaming\Spotify
2017-04-16 20:30:28 ----D---- C:\Users\David Hynek\AppData\Roaming\discord
2017-04-15 16:07:05 ----D---- C:\Windows\debug
2017-04-15 15:47:21 ----D---- C:\ProgramData\Deadtime Stories
2017-04-15 15:47:02 ----D---- C:\ProgramData\Asus
2017-04-15 15:46:47 ----AD---- C:\ProgramData\Temp
2017-04-15 15:29:40 ----D---- C:\Program Files\P4G
2017-04-14 13:19:35 ----SD---- C:\Users\David Hynek\AppData\Roaming\Microsoft
2017-04-13 17:03:36 ----D---- C:\Windows\Prefetch
2017-04-12 14:56:49 ----D---- C:\Windows\Microsoft.NET
2017-04-12 14:52:20 ----RSD---- C:\Windows\assembly
2017-04-12 13:23:33 ----D---- C:\Windows\winsxs
2017-04-12 13:21:15 ----D---- C:\Program Files\Microsoft Silverlight
2017-04-12 13:21:15 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2017-04-12 13:18:28 ----D---- C:\Windows\SYSWOW64\en-US
2017-04-12 13:18:28 ----D---- C:\Windows\SYSWOW64\cs-CZ
2017-04-12 13:18:28 ----D---- C:\Program Files\Internet Explorer
2017-04-12 13:18:27 ----D---- C:\Windows\system32\cs-CZ
2017-04-12 13:18:26 ----D---- C:\Windows\system32\en-US
2017-04-12 13:18:25 ----D---- C:\Windows\AppPatch
2017-04-12 13:18:25 ----D---- C:\Program Files (x86)\Internet Explorer
2017-04-12 13:18:24 ----D---- C:\Windows\system32\Boot
2017-04-12 13:13:43 ----D---- C:\ProgramData\Microsoft Help
2017-04-12 13:05:16 ----D---- C:\Windows\system32\MRT
2017-04-12 13:04:46 ----AC---- C:\Windows\system32\MRT.exe
2017-04-12 13:02:00 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2017-04-12 11:00:27 ----D---- C:\Windows\system32\catroot2
2017-04-05 17:35:05 ----D---- C:\Users\David Hynek\AppData\Roaming\SimulationCraft
2017-04-05 17:25:59 ----D---- C:\Simulationcraft(x64)
2017-04-01 05:20:54 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2017-04-01 05:20:54 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2017-04-01 05:20:54 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2017-04-01 05:20:54 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2017-03-29 14:56:44 ----HD---- C:\Program Files (x86)\Temp
2017-03-29 14:54:53 ----D---- C:\Windows\SYSWOW64\RTCOM
2017-03-28 09:15:59 ----D---- C:\Program Files\Defraggler
File C:\Windows\system32\winlogon.exe is digitally signed
File C:\Windows\system32\wininit.exe is digitally signed
File C:\Windows\explorer.exe is digitally signed
File C:\Windows\SysWOW64\explorer.exe is digitally signed
File C:\Windows\system32\svchost.exe is digitally signed
File C:\Windows\SysWOW64\svchost.exe is digitally signed
File C:\Windows\system32\services.exe is digitally signed
File C:\Windows\system32\User32.dll is digitally signed
File C:\Windows\SysWOW64\User32.dll is digitally signed
File C:\Windows\system32\userinit.exe is digitally signed
File C:\Windows\SysWOW64\userinit.exe is digitally signed
File C:\Windows\system32\rpcss.dll is digitally signed
File C:\Windows\system32\Drivers\volsnap.sys is digitally signed
====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [2017-02-20 189768]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswbloga.sys [2017-02-20 334600]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [2017-02-20 48528]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2017-02-20 74680]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2017-02-20 337080]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-04-26 557848]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2017-04-01 38336]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [2017-02-20 309784]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2017-02-20 32088]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2017-02-20 100640]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2017-02-20 991496]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2017-02-20 547904]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
R1 nvkflt;nvkflt; C:\Windows\system32\DRIVERS\nvkflt.sys [2017-04-01 307768]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2017-02-20 126088]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2017-02-20 162528]
R2 speedfan;speedfan; \??\C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R2 TurboB;Turbo Boost UI Monitor driver; C:\Windows\system32\DRIVERS\TurboB.sys [2010-04-17 13832]
R3 AiCharger;ASUS Charger Driver; C:\Windows\system32\DRIVERS\AiCharger.sys [2011-09-20 16768]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-10-04 129512]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-10-04 394728]
R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2016-01-29 4171512]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-03-13 28832]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2015-06-01 5384176]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2017-01-11 5545472]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2013-07-16 129224]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-10-10 100312]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2017-03-28 47552]
R3 nvvhci;NVVHCI Enumerator Service; C:\Windows\system32\DRIVERS\nvvhci.sys [2017-03-28 57792]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2431-09-15 32496]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-05-05 1439792]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2017-02-20 38296]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-03-13 36000]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-03-13 298656]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-03-13 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-03-13 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-03-13 154272]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-03-13 280224]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-10-19 80384]
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2011-08-29 53760]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2011-05-14 48488]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-03-28 30144]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 semav6msr64;semav6msr64; \??\C:\Windows\system32\drivers\semav6msr64.sys [2016-10-18 21984]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 t_mouse.sys;HID-compliand device; C:\Windows\system32\DRIVERS\t_mouse.sys [2012-12-19 6144]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2014-05-16 141600]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2017-02-02 82640]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-02-20 262736]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; %SystemRoot%\System32\svchost.exe -k utcsvc;"ServiceDll" = %SystemRoot%\system32\diagtrack.dll
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-03-28 492480]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-04-01 462784]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-03-28 425408]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-10-17 76888]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2017-02-20 7142136]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
R3 SystemExplorerHelpService;System Explorer Service; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [2014-12-20 820960]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-03-20 105096]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-03-20 125064]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-04-18 271448]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2015-06-01 290224]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-05-14 1492840]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2017-03-25 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; D:\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-03-04 167880]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-03-28 492480]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-03-23 1590560]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-09-29 1255736]
S4 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-03-20 51320]
S4 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-03-13 138400]
S4 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-03-13 74912]
S4 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
S4 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-10-18 936272]
S4 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2011-10-18 1354064]
S4 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2011-10-18 1001808]
S4 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-10-06 325656]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-03-20 135800]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-03-20 135800]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-03-20 135800]
S4 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2009-04-17 247152]
S4 TurboBoost;Intel(R) Turbo Boost Technology Monitor; C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2010-04-17 134928]
S4 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-06 2655768]
-----------------EOF-----------------
Run by David Hynek at 2017-04-22 19:59:09
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 132 GB (43%) free of 307 GB
Total RAM: 6048 MB (72% free)
X64
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:59:18, on 22.4.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18639)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Users\David Hynek\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\TradeSkillMaster Application\app\TSMApplication.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\System Explorer\SystemExplorer.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Users\David Hynek\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Users\David Hynek\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Program Files\trend micro\David Hynek_RSITx64.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
O4 - HKLM\..\Run: [SystemExplorerAutoStart] "C:\Program Files (x86)\System Explorer\SystemExplorer.exe" /TRAY
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\David Hynek\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [TSMApplication] "C:\TradeSkillMaster Application\app\TSMApplication.exe"
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = D:\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://D:\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software s.r.o. - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10726 bytes
====== Enumerating Processes ======
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -c
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
"C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\X-Mouse Button Control\XMouseButtonControl.exe" /notportable
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Users\David Hynek\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"C:\TradeSkillMaster Application\app\TSMApplication.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\System Explorer\SystemExplorer.exe" /TRAY
C:\CCleaner\CCleaner64.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
"C:\Windows\AsScrPro.exe"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\Windows\system32\conhost.exe "1448738425-1037571213-695779378-652169708-28632574-1382007323-1690905494-1677745693
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Miranda IM\miranda64.exe"
"C:\Users\David Hynek\AppData\Local\Discord\app-0.0.297\Discord.exe"
"C:\Users\David Hynek\AppData\Local\Discord\app-0.0.297\Discord.exe" --type=renderer --no-sandbox --primordial-pipe-token=7D7FC4A89A08668F555AEBD535310622 --lang=cs --app-user-model-id=com.squirrel.Discord.Discord --node-integration=true --background-color=#282b30 --enable-blink-features=EnumerateDevices,AudioOutputDevices --hidden-page --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --mojo-channel-token=435B1F6EDC02BB598EE401ECB425DB55 --mojo-application-channel-token=7D7FC4A89A08668F555AEBD535310622 --channel="4512.1.1368540893\361435267" --mojo-platform-channel-handle=1856 /prefetch:1
"C:\Users\David Hynek\Downloads\RSITx64.exe"
====== Scheduled tasks folder ======
C:\Windows\system32\tasks\Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Windows\system32\tasks\Adobe Flash Player PPAPI Notifier - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_25_0_0_148_pepper.exe -check pepperplugin
C:\Windows\system32\tasks\Adobe Flash Player Updater - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\system32\tasks\ATKOSD2 - C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Windows\system32\tasks\Avast Emergency Update - C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
C:\Windows\system32\tasks\CCleanerSkipUAC - "C:\CCleaner\CCleaner.exe" $(Arg0)
C:\Windows\system32\tasks\Driver Booster SkipUAC (David Hynek) - C:\Driver Booster\DriverBooster.exe /skipuac
C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\system32\tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
C:\Windows\system32\tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler
C:\Windows\system32\tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\Windows\system32\tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\Windows\system32\tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe
C:\Windows\system32\tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe --logon
C:\Windows\system32\tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe
C:\Windows\system32\tasks\SafeZone scheduled Autoupdate 1451238072 - C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate
C:\Windows\system32\tasks\SafeZone scheduled Autoupdate 1458681986 - C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate $(Arg0)
C:\Windows\system32\tasks\SidebarExecute - C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\system32\tasks\USBChargerPlus - C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Windows\system32\tasks\{125F7D28-1209-4A2D-A3EA-ECD570ECE3E3} - D:\Heroes of the Storm\Heroes of the Storm.exe
C:\Windows\system32\tasks\{35F6C9F1-D31A-48C2-86B2-D2FA052ACFA5} - C:\Users\David Hynek\Desktop\nba2k13\setup.exe
C:\Windows\system32\tasks\{37498FC8-1BCE-4565-821D-D5B1520D8148} - D:\Heroes of the Storm\Heroes of the Storm.exe
C:\Windows\system32\tasks\{3A8ABF8A-F4D3-4F96-AA2C-A2D2E6E9FFB7} - C:\Windows\system32\pcalua.exe -a D:\Steam\steam.exe -c steam://uninstall/211500
C:\Windows\system32\tasks\{3BE2355E-E9A1-4F87-B3AB-E0997C143308} - C:\Windows\system32\pcalua.exe -a "D:\Tony Hawks Pro Skater HD\redist\vcredist_x86.exe" -d "D:\Tony Hawks Pro Skater HD\redist"
C:\Windows\system32\tasks\{3EB5F546-57A4-433C-BFCF-C1F4FF6391CA} - D:\Steam\Steam.exe
C:\Windows\system32\tasks\{4B0ED2CF-260B-4243-9922-9D10409ED05A} - D:\Cata\Cata.exe
C:\Windows\system32\tasks\{4C9E7814-85E0-46FD-A3FA-AC88DB63AF4D} - D:\World of Warcraft\PandashanLauncher.exe
C:\Windows\system32\tasks\{638FF75C-0CE8-441F-BEC8-BF9555DD423D} - C:\Windows\system32\pcalua.exe -a C:\Avastantivir\aswRunDll.exe -c "C:\Avastantivir\Setup\setiface.dll" RunSetup
C:\Windows\system32\tasks\{6CFBCDD2-220F-4DE5-82B3-730A1C967817} - D:\World of Warcraft\PandashanLauncher.exe
C:\Windows\system32\tasks\{6D971D95-4BCE-475E-814D-7B5B7ED12181} - C:\Windows\system32\pcalua.exe -a "C:\Users\David Hynek\Desktop\nba2k13\setup.exe" -d "C:\Users\David Hynek\Desktop\nba2k13"
C:\Windows\system32\tasks\{71E8A89D-5150-4D4D-8883-F147BB9FFE09} - C:\Windows\system32\pcalua.exe -a "C:\Users\David Hynek\Desktop\Wowhead_Client.exe" -d "C:\Users\David Hynek\Desktop"
C:\Windows\system32\tasks\{78E95B85-BAAF-40BB-BCF5-0587C7344E46} - D:\Cata\Cata.exe
C:\Windows\system32\tasks\{7C5DB924-5773-46D0-8104-270422FD976D} - C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Windows\system32\tasks\{85E0E4B9-F1DF-4398-9A85-45276493CB01} - C:\Windows\system32\pcalua.exe -a "D:\Tony Hawks Pro Skater HD\redist\dotnetfx35_SP1.exe" -d "D:\Tony Hawks Pro Skater HD\redist"
C:\Windows\system32\tasks\{8B295764-4E2C-455F-BA43-5C73D460FD5E} - D:\Steam\Steam.exe
C:\Windows\system32\tasks\{8ECC7C99-91A0-4425-9848-D561C2F33333} - C:\Windows\system32\pcalua.exe -a "C:\Users\David Hynek\Desktop\MNA\setup.exe" -d "C:\Users\David Hynek\Desktop\MNA"
C:\Windows\system32\tasks\{A57794C3-074C-42C8-8E54-3C4C2B4C9CBC} - C:\Windows\system32\pcalua.exe -a "D:\Steam\steamapps\common\Left 4 Dead 2\bin\addoninstaller.exe" -d "D:\Steam\steamapps\common\Left 4 Dead 2" -c /register
C:\Windows\system32\tasks\{A5BE9FBF-B10A-4567-B881-9A805252C90C} - D:\WoW Cata\Wow.exe
C:\Windows\system32\tasks\{BC2709D5-BB76-410D-8FB9-88A8C762AFF0} - C:\Windows\system32\pcalua.exe -a "C:\Users\David Hynek\Desktop\Fifa\Installer.exe" -d "C:\Users\David Hynek\Desktop\Fifa"
C:\Windows\system32\tasks\{C2A36E6E-496D-4079-892B-50F051B6CB51} - D:\WoW Cata\Wow.exe
C:\Windows\system32\tasks\{E0DFF7C1-CD92-48A5-A76D-0544801851B2} - D:\World of Warcraft\PandashanLauncher.exe
C:\Windows\system32\tasks\{E13A5D63-5173-41FC-9CB8-2AC152375160} - C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Windows\system32\tasks\{F9CE0497-3BC9-4BF4-9875-9E52B8897540} - C:\WoW Cata\Wow.exe
C:\Windows\system32\tasks\WPD\SqmUpload_S-1-5-21-1206595139-1558415813-2062055028-1001 - %windir%\system32\rundll32.exe portabledeviceapi.dll,#1
C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask - %systemroot%\system32\sc.exe start osppsvc
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\ConfigNotification - %systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION
C:\Windows\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\Windows\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\Windows\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -queuereporting
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask - %SystemRoot%\system32\Wat\WatAdminSvc.exe /run
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline - %SystemRoot%\system32\schtasks.exe /run /I /TN "\Microsoft\Windows\Windows Activation Technologies\ValidationTask"
C:\Windows\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\Windows\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation
C:\Windows\system32\tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask - sc.exe start sppsvc
C:\Windows\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\Windows\system32\tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem - %SystemRoot%\System32\powercfg.exe -energy -auto
C:\Windows\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Lpksetup - C:\Windows\System32\lpksetup.exe -v
C:\Windows\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Mcbuilder - C:\Windows\System32\mcbuilder.exe
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService - %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks - %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ehDRMInit - %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\InstallPlayReady - %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate - %SystemRoot%\ehome\mcupdate $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate_scheduled - %SystemRoot%\ehome\mcupdate -crl -hms -pscn 15
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURActivate - %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURDiscovery - %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscovery - %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 - %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 - %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PeriodicScanRetry - %windir%\ehome\MCUpdate.exe -pscn 0
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrScheduleTask - %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RecordingRestart - %SystemRoot%\ehome\ehrec /RestartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RegisterSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ReindexSearchRoot - %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\StartRecording - %SystemRoot%\ehome\ehrec /StartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\UpdateRecordPath - %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotifications.exe
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\Windows\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Uploader - %windir%\system32\WSqmCons.exe -u
C:\Windows\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\AitAgent - aitagent
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattel\DiagTrackRunner.exe /UploadEtlFilesOnly
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\Windows\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\Windows\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\Windows\system32\tasks\AVAST Software\Avast settings backup - C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs
=========Mozilla firefox=========
ProfilePath - C:\Users\David Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\3x5rgwnq.default-1458296225216
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 25.0.0.148 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_148.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\ZEON/PDF,version=2.0]
"Description"=
"Path"=C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 25.0.0.148 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_148.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll
C:\Users\David Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\3x5rgwnq.default-1458296225216\addons.json
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
Firefox Hello Beta (discontinued) - extension - loop@mozilla.org
C:\Users\David Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\3x5rgwnq.default-1458296225216\extensions.json
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - C:\Users\David Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\3x5rgwnq.default-1458296225216\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
Firefox Hello - extension - loop@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\loop@mozilla.org.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Websense Helper - extension - websensehelper@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\websensehelper@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
Avast Online Security - extension - wrc@avast.com - C:\Program Files\AVAST Software\Avast\WebRep\FF
Avast SafePrice - extension - sp@avast.com - C:\Program Files\AVAST Software\Avast\SafePrice\FF
C:\Users\David Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\3x5rgwnq.default-1458296225216\pluginreg.dat
Plugin - Silverlight Plug-In - 5.1.50905.0 - c:\Program Files\Microsoft Silverlight\5.1.50905.0\npctrl.dll
Plugin - Shockwave Flash - 25.0.0.127 - C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_127.dll
=========Google Chrome=========
C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Store 0.2
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension cfhdojbkjhnklbpkdaibdccddilifddb 1 Adblock Plus 1.13.2
Extension coobgpohoikkiipiblmjeljniedjpjpf 1 Vyhledávání Google 0.0.0.30
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension efaidnbmnnnibpcajpcglclefindmkaj 1 Adobe Acrobat 15.1.0.6
Extension ennkphjdgehloodpbhlhldgbnhmacadg Settings 0.2
Extension eofcbnmajmjmplflapaojjnihcjkigck 2 Avast SafePrice 10.2.0.190
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension gomekmidlodglbbmalcneegieacbdmki 2 Avast Online Security 11.1.0.242
Extension ilkgeioneoemibpddeiamfgiofnpjifm 1 The West 1.5
Extension jcbbonmofdkklhmaapkllflmpoccpiad 1 Všechny hry - Twitch 2016.3.18.38154
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mfffpogegjflfpflabcdkioaeobkgjik 1 GaiaAuthExtension 0.0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.2
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.2
Extension pafkbggdmjlpgkdkcbjmhmfcdpncadgh Google Now 1.2.0.1
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5717.116.0.4
Homepage:
default_search_provider.search_url:
C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Preferences
Plugin 1.4.7.796 Widevine Content Decryption Module C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.7.796\_platform_specific\win_x86\widevinecdmadapter.dll
Plugin Chrome PDF Viewer chrome-extension://mhjfbmdgcfjbbpaeojofohoefgiehjai/
Plugin 17.0.0.169 Shockwave Flash C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\PepperFlash\pepflashplayer.dll
Plugin Chrome Remote Desktop Viewer internal-remoting-viewer
Plugin Native Client C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\internal-nacl-plugin
Plugin Chrome PDF Viewer internal-pdf-viewer
Homepage:
default_search_provider.search_url:
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj]
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck]
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki]
"Path"=C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
======Registry dump ======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-02-20 883520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - D:\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-03-13 60576]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-02-20 758384]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-01-11 1483264]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2011-03-21 361984]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-05-05 2785064]
"SynAsusAcpi"=C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [2011-05-05 97064]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-03-13 617120]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-03-13 379552]
"IntelTBRunOnce"=wscript.exe //b //nologo C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs []
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2011-10-18 10357008]
"XMouseButtonControl"=C:\X-Mouse Button Control\XMouseButtonControl.exe [2016-05-22 1161240]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2015-06-01 183216]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2015-06-01 411056]
"Persistence"=C:\Windows\system32\igfxpers.exe [2015-06-01 453552]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2017-01-11 16781824]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2017-03-28 1882048]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"=C:\Users\David Hynek\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2017-04-03 1446000]
"CCleaner Monitoring"=C:\CCleaner\CCleaner64.exe [2017-03-03 9364696]
"TSMApplication"=C:\TradeSkillMaster Application\app\TSMApplication.exe [2016-08-16 1623040]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Nuance PDF Reader-reminder"=C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [2008-11-03 328992]
"ASUSPRP"=C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2011-10-20 3331312]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2011-07-22 5716608]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-08 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2011-09-13 2317312]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-02-20 205512]
"SystemExplorerAutoStart"=C:\Program Files (x86)\System Explorer\SystemExplorer.exe [2015-08-19 3389160]
"ASUS Screen Saver Protector"=C:\Windows\AsScrPro.exe [2012-02-10 3058304]
"CLMLServer"=C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2010-08-20 107816]
C:\Users\David Hynek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - D:\Microsoft Office\Office12\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\System32\nvinitx.dll, C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=D:\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"midi1"=wdmaud.drv
"VIDC.XFR1"=xfcodec64.dll
"VIDC.FPS1"=frapsv64.dll
"vidc.xtor"=DxtoryCodec64.dll
"vidc.x264"=C:\X264VF~1\X264VF~1.DLL
"msacm.l3codecp"=l3codecp.acm
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
====== File associations ======
.js - edit - C:\Windows\System32\Notepad.exe %1
====== List of files/folders created in the last 1 month ======
2431-09-15 20:37:49 ----A---- C:\Windows\system32\drivers\Smb_driver_Intel.sys
2431-09-15 20:37:49 ----A---- C:\Windows\system32\drivers\HECIx64.sys
2017-04-22 19:59:14 ----D---- C:\ProgramData\SWCUTemp
2017-04-22 18:13:22 ----D---- C:\AdwCleaner
2017-04-22 15:19:38 ----D---- C:\rsit
2017-04-21 23:31:49 ----D---- C:\Windows\SYSWOW64\NV
2017-04-21 23:31:49 ----D---- C:\Windows\system32\NV
2017-04-21 23:31:25 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2017-04-21 23:31:22 ----A---- C:\Windows\SYSWOW64\vulkaninfo.exe
2017-04-21 23:31:22 ----A---- C:\Windows\SYSWOW64\vulkan-1.dll
2017-04-21 23:31:22 ----A---- C:\Windows\system32\vulkaninfo.exe
2017-04-21 23:31:22 ----A---- C:\Windows\system32\vulkan-1.dll
2017-04-21 23:31:21 ----D---- C:\Program Files (x86)\VulkanRT
2017-04-21 23:26:08 ----A---- C:\Windows\SYSWOW64\nvptxJitCompiler.dll
2017-04-21 23:26:08 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2017-04-21 23:26:08 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2017-04-21 23:26:08 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2017-04-21 23:26:08 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\nvwgf2umx.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\nvptxJitCompiler.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\nvopencl.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\nvoglv64.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\nvoglshim64.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\NvIFR64.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2017-04-21 23:26:08 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2017-04-21 23:26:08 ----A---- C:\Windows\system32\drivers\nvkflt.sys
2017-04-21 23:26:07 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2017-04-21 23:26:07 ----A---- C:\Windows\SYSWOW64\nvfatbinaryLoader.dll
2017-04-21 23:26:07 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2017-04-21 23:26:07 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\NvFBC64.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvfatbinaryLoader.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvdispgenco6438165.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvdispco6438165.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvd3dumx.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvcuvid.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvcuda.dll
2017-04-21 23:26:01 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2017-04-21 23:26:01 ----A---- C:\Windows\system32\nvcompiler.dll
2017-04-21 23:15:32 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2017-04-21 23:15:32 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2017-04-21 23:15:32 ----A---- C:\Windows\system32\nvspcap64.dll
2017-04-21 23:15:32 ----A---- C:\Windows\system32\nvspbridge64.dll
2017-04-21 23:15:32 ----A---- C:\Windows\system32\NvRtmpStreamer64.dll
2017-04-21 23:15:02 ----A---- C:\Windows\NvTelemetryContainerRecovery.bat
2017-04-21 23:14:43 ----A---- C:\Windows\system32\drivers\nvvhci.sys
2017-04-21 23:14:42 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2017-04-21 23:14:42 ----A---- C:\Windows\system32\nvaudcap64v.dll
2017-04-21 23:14:42 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2017-04-21 17:59:27 ----A---- C:\Windows\NvContainerRecovery.bat
2017-04-21 17:59:09 ----D---- C:\temp
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nvsvcr.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nvsvc64.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nvshext.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nvmctray.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nvcpl.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nv3dappshextr.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nv3dappshext.dll
2017-04-21 17:31:48 ----A---- C:\Windows\system32\nvumdshimx.dll
2017-04-21 17:31:47 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2017-04-21 17:31:47 ----A---- C:\Windows\system32\nvinitx.dll
2017-04-21 17:31:47 ----A---- C:\Windows\system32\nvdispgenco6436510.dll
2017-04-21 17:31:47 ----A---- C:\Windows\system32\nvdispco6436510.dll
2017-04-21 17:31:46 ----A---- C:\Windows\system32\nvapi64.dll
2017-04-16 17:35:09 ----D---- C:\HWMonitor
2017-04-15 15:36:20 ----D---- C:\Users\David Hynek\AppData\Roaming\MAGIX
2017-04-14 10:21:30 ----D---- C:\ProgramData\Twitch
2017-04-14 10:21:28 ----D---- C:\Users\David Hynek\AppData\Roaming\Twitch
2017-04-12 11:25:40 ----A---- C:\Windows\system32\mshtml.dll
2017-04-12 11:25:38 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2017-04-12 11:25:36 ----A---- C:\Windows\system32\ieframe.dll
2017-04-12 11:25:35 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2017-04-12 11:25:34 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2017-04-12 11:25:33 ----A---- C:\Windows\SYSWOW64\wininet.dll
2017-04-12 11:25:33 ----A---- C:\Windows\system32\wininet.dll
2017-04-12 11:25:32 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2017-04-12 11:25:32 ----A---- C:\Windows\system32\wuaueng.dll
2017-04-12 11:25:32 ----A---- C:\Windows\system32\ole32.dll
2017-04-12 11:25:32 ----A---- C:\Windows\system32\iertutil.dll
2017-04-12 11:25:29 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2017-04-12 11:25:29 ----A---- C:\Windows\system32\win32k.sys
2017-04-12 11:25:29 ----A---- C:\Windows\system32\urlmon.dll
2017-04-12 11:25:28 ----A---- C:\Windows\system32\wucltux.dll
2017-04-12 11:25:27 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2017-04-12 11:25:27 ----A---- C:\Windows\system32\wuapi.dll
2017-04-12 11:25:27 ----A---- C:\Windows\system32\win32spl.dll
2017-04-12 11:25:27 ----A---- C:\Windows\system32\samsrv.dll
2017-04-12 11:25:27 ----A---- C:\Windows\system32\quartz.dll
2017-04-12 11:25:26 ----A---- C:\Windows\system32\ucrtbase.dll
2017-04-12 11:25:26 ----A---- C:\Windows\system32\msfeeds.dll
2017-04-12 11:25:26 ----A---- C:\Windows\system32\cdosys.dll
2017-04-12 11:25:26 ----A---- C:\Windows\system32\atmfd.dll
2017-04-12 11:25:25 ----A---- C:\Windows\system32\gdi32.dll
2017-04-12 11:25:24 ----A---- C:\Windows\SYSWOW64\quartz.dll
2017-04-12 11:25:24 ----A---- C:\Windows\SYSWOW64\ole32.dll
2017-04-12 11:25:24 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2017-04-12 11:25:23 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2017-04-12 11:25:23 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll
2017-04-12 11:25:23 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2017-04-12 11:25:23 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2017-04-12 11:25:23 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2017-04-12 11:25:23 ----A---- C:\Windows\system32\iedkcs32.dll
2017-04-12 11:25:23 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\jscript.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2017-04-12 11:25:21 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2017-04-12 11:25:21 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2017-04-12 11:25:20 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2017-04-12 11:25:20 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-04-12 11:25:19 ----A---- C:\Windows\system32\ntdll.dll
2017-04-12 11:25:19 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-04-12 11:25:16 ----A---- C:\Windows\system32\jscript9.dll
2017-04-12 11:25:16 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2017-04-12 11:25:16 ----A---- C:\Windows\system32\asycfilt.dll
2017-04-12 11:25:15 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2017-04-12 11:25:15 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2017-04-12 11:25:15 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2017-04-12 11:25:15 ----A---- C:\Windows\system32\samlib.dll
2017-04-12 11:25:15 ----A---- C:\Windows\system32\mfmjpegdec.dll
2017-04-12 11:25:14 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2017-04-12 11:25:14 ----A---- C:\Windows\SYSWOW64\samlib.dll
2017-04-12 11:25:14 ----A---- C:\Windows\SYSWOW64\mfmjpegdec.dll
2017-04-12 11:25:14 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2017-04-12 11:25:14 ----A---- C:\Windows\system32\webcheck.dll
2017-04-12 11:25:14 ----A---- C:\Windows\system32\rdpudd.dll
2017-04-12 11:25:14 ----A---- C:\Windows\system32\certcli.dll
2017-04-12 11:25:13 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2017-04-12 11:25:13 ----A---- C:\Windows\SYSWOW64\certcli.dll
2017-04-12 11:25:13 ----A---- C:\Windows\system32\wuwebv.dll
2017-04-12 11:25:13 ----A---- C:\Windows\system32\vbscript.dll
2017-04-12 11:25:13 ----A---- C:\Windows\system32\mshtmlmedia.dll
2017-04-12 11:25:13 ----A---- C:\Windows\system32\ie4uinit.exe
2017-04-12 11:25:12 ----A---- C:\Windows\SYSWOW64\wups.dll
2017-04-12 11:25:12 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2017-04-12 11:25:12 ----A---- C:\Windows\SYSWOW64\jscript.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\wups2.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\wups.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\wudriver.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\srcore.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\rpcrt4.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\ieapfltr.dll
2017-04-12 11:25:11 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2017-04-12 11:25:11 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2017-04-12 11:25:11 ----A---- C:\Windows\system32\wuauclt.exe
2017-04-12 11:25:11 ----A---- C:\Windows\system32\lsasrv.dll
2017-04-12 11:25:11 ----A---- C:\Windows\system32\ieui.dll
2017-04-12 11:25:10 ----A---- C:\Windows\system32\dxtrans.dll
2017-04-12 11:25:10 ----A---- C:\Windows\system32\dxtmsft.dll
2017-04-12 11:25:10 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-04-12 11:25:09 ----A---- C:\Windows\system32\srclient.dll
2017-04-12 11:25:09 ----A---- C:\Windows\system32\smss.exe
2017-04-12 11:25:09 ----A---- C:\Windows\system32\msrating.dll
2017-04-12 11:25:09 ----A---- C:\Windows\system32\mshtmled.dll
2017-04-12 11:25:09 ----A---- C:\Windows\system32\kerberos.dll
2017-04-12 11:25:09 ----A---- C:\Windows\system32\advapi32.dll
2017-04-12 11:25:08 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2017-04-12 11:25:07 ----A---- C:\Windows\SYSWOW64\srclient.dll
2017-04-12 11:25:07 ----A---- C:\Windows\system32\WinSetupUI.dll
2017-04-12 11:25:07 ----A---- C:\Windows\system32\rstrui.exe
2017-04-12 11:25:07 ----A---- C:\Windows\system32\occache.dll
2017-04-12 11:25:07 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2017-04-12 11:25:07 ----A---- C:\Windows\system32\kernel32.dll
2017-04-12 11:25:07 ----A---- C:\Windows\system32\jsproxy.dll
2017-04-12 11:25:07 ----A---- C:\Windows\system32\jscript9diag.dll
2017-04-12 11:25:06 ----A---- C:\Windows\system32\schannel.dll
2017-04-12 11:25:06 ----A---- C:\Windows\system32\ieUnatt.exe
2017-04-12 11:25:06 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-04-12 11:25:06 ----A---- C:\Windows\system32\conhost.exe
2017-04-12 11:25:05 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2017-04-12 11:25:05 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2017-04-12 11:25:05 ----A---- C:\Windows\SYSWOW64\ieui.dll
2017-04-12 11:25:05 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2017-04-12 11:25:05 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\wow64win.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\winsrv.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\ncrypt.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\msv1_0.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\MshtmlDac.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\KernelBase.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\inseng.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\ieetwproxystub.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\occache.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\msrating.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\wuapp.exe
2017-04-12 11:25:04 ----A---- C:\Windows\system32\wow64.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\wdigest.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\TSpkg.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\sspicli.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\iesetup.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\bcrypt.dll
2017-04-12 11:25:03 ----A---- C:\Windows\system32\rpchttp.dll
2017-04-12 11:25:03 ----A---- C:\Windows\system32\iernonce.dll
2017-04-12 11:25:03 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-04-12 11:25:03 ----A---- C:\Windows\system32\cdd.dll
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\schannel.dll
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\inseng.dll
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2017-04-12 11:25:02 ----A---- C:\Windows\system32\ieetwcollector.exe
2017-04-12 11:25:02 ----A---- C:\Windows\system32\csrsrv.dll
2017-04-12 11:25:02 ----A---- C:\Windows\system32\cryptbase.dll
2017-04-12 11:24:59 ----A---- C:\Windows\system32\lsass.exe
2017-04-12 11:24:59 ----A---- C:\Windows\system32\drivers\appid.sys
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\secur32.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\wow64cpu.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\sspisrv.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\secur32.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\ntvdm64.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\lpk.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\fontsub.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\dciman32.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\credssp.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\appidsvc.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2017-04-12 11:24:58 ----A---- C:\Windows\system32\appidapi.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\wow32.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\lpk.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\credssp.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2017-04-12 11:24:57 ----A---- C:\Windows\system32\rdpcorets.dll
2017-04-12 11:24:57 ----A---- C:\Windows\system32\auditpol.exe
2017-04-12 11:24:57 ----A---- C:\Windows\system32\atmlib.dll
2017-04-12 11:24:57 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\user.exe
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\tzres.dll
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\setup16.exe
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\instnm.exe
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2017-04-12 11:24:55 ----A---- C:\Windows\system32\tzres.dll
2017-04-12 11:24:55 ----A---- C:\Windows\system32\msaudite.dll
2017-04-12 11:24:55 ----A---- C:\Windows\system32\apisetschema.dll
2017-04-12 11:24:55 ----A---- C:\Windows\system32\adtschema.dll
2017-04-12 11:24:54 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2017-04-12 11:24:54 ----A---- C:\Windows\system32\msobjs.dll
2017-04-12 11:24:53 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2017-04-12 11:24:52 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2017-03-29 14:53:40 ----A---- C:\Windows\system32\SRSWOW64.dll
2017-03-29 14:53:40 ----A---- C:\Windows\system32\SRSTSX64.dll
2017-03-29 14:53:39 ----A---- C:\Windows\system32\SRSTSH64.dll
2017-03-29 14:53:39 ----A---- C:\Windows\system32\SRSHP64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFSAPO64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFProc64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFNHK64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFHAPO64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFDAPO64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFComm64.dll
2017-03-29 14:53:33 ----A---- C:\Windows\SYSWOW64\SFCOM.dll
2017-03-29 14:53:33 ----A---- C:\Windows\system32\SFCOM64.dll
2017-03-29 14:53:33 ----A---- C:\Windows\system32\SFAPO64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtPgEx64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtkCfg64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtkApi64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RTEEP64A.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RTEEL64A.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RTEEG64A.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RTEED64A.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtDataProc64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RTCOM64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RP3DHT64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RP3DAA64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RltkAPO64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2017-03-29 14:53:32 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2017-03-29 14:53:31 ----A---- C:\Windows\system32\RCoRes64.dat
2017-03-29 14:53:31 ----A---- C:\Windows\system32\RCoInstII64.dll
2017-03-29 14:53:30 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2017-03-29 14:53:29 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2017-03-29 14:53:29 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2017-03-29 14:53:29 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2017-03-29 14:53:28 ----A---- C:\Windows\system32\FMAPO64.dll
2017-03-29 14:53:28 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2017-03-29 14:53:28 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2017-03-29 14:53:28 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2017-03-29 14:53:26 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2017-03-29 14:53:25 ----A---- C:\Windows\system32\AERTAR64.dll
2017-03-29 14:53:25 ----A---- C:\Windows\system32\AERTAC64.dll
====== List of files/folders modified in the last 1 month ======
2017-04-22 19:59:14 ----D---- C:\ProgramData
2017-04-22 19:59:13 ----D---- C:\Program Files\trend micro
2017-04-22 19:57:45 ----D---- C:\Windows\temp
2017-04-22 18:35:56 ----D---- C:\Windows\system32\config
2017-04-22 18:19:05 ----D---- C:\ProgramData\NVIDIA
2017-04-22 18:16:32 ----D---- C:\Windows
2017-04-22 18:15:28 ----D---- C:\Windows\SYSWOW64\drivers
2017-04-22 18:15:28 ----D---- C:\ProgramData\IObit
2017-04-22 18:10:57 ----D---- C:\Windows\inf
2017-04-22 15:17:38 ----D---- C:\Windows\SoftwareDistribution
2017-04-22 15:03:27 ----D---- C:\Users\David Hynek\AppData\Roaming\uTorrent
2017-04-22 13:48:04 ----D---- C:\Users\David Hynek\AppData\Roaming\TS3Client
2017-04-22 13:42:43 ----D---- C:\Windows\system32\NDF
2017-04-22 11:17:52 ----D---- C:\Windows\system32\drivers
2017-04-22 11:11:51 ----D---- C:\Windows\System32
2017-04-22 11:11:51 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-04-22 10:40:13 ----D---- C:\Windows\SysWOW64
2017-04-21 23:52:12 ----SHD---- C:\System Volume Information
2017-04-21 23:31:59 ----D---- C:\Program Files\NVIDIA Corporation
2017-04-21 23:31:57 ----D---- C:\ProgramData\NVIDIA Corporation
2017-04-21 23:31:21 ----RD---- C:\Program Files (x86)
2017-04-21 23:28:52 ----D---- C:\Windows\system32\DriverStore
2017-04-21 23:15:30 ----D---- C:\Windows\system32\Tasks
2017-04-21 23:15:22 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-04-21 17:34:19 ----D---- C:\Windows\Help
2017-04-20 13:02:21 ----D---- C:\Users\David Hynek\AppData\Roaming\Curse Client
2017-04-20 12:13:46 ----D---- C:\Windows\rescache
2017-04-18 23:50:34 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2017-04-18 23:50:27 ----D---- C:\Windows\system32\Macromed
2017-04-18 23:50:02 ----D---- C:\Windows\SYSWOW64\Macromed
2017-04-18 19:05:11 ----D---- C:\TeamSpeak 3 Client
2017-04-18 17:04:11 ----D---- C:\Program Files (x86)\vso
2017-04-18 17:04:09 ----D---- C:\Users\David Hynek\AppData\Roaming\Vso
2017-04-18 17:04:08 ----A---- C:\Users\David Hynek\AppData\Roaming\inst.exe
2017-04-18 16:54:31 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2017-04-18 16:54:29 ----SHD---- C:\Windows\Installer
2017-04-18 16:54:29 ----D---- C:\Config.Msi
2017-04-18 16:46:31 ----D---- C:\Program Files (x86)\ASUS
2017-04-18 16:45:57 ----D---- C:\Program Files (x86)\Common Files
2017-04-18 16:44:59 ----D---- C:\Program Files
2017-04-18 16:42:55 ----D---- C:\Program Files (x86)\CyberLink
2017-04-18 16:36:41 ----D---- C:\ProgramData\CyberLink
2017-04-18 16:17:13 ----A---- C:\Windows\SYSWOW64\acovcnt.exe
2017-04-18 12:31:06 ----D---- C:\Users\David Hynek\AppData\Roaming\Spotify
2017-04-16 20:30:28 ----D---- C:\Users\David Hynek\AppData\Roaming\discord
2017-04-15 16:07:05 ----D---- C:\Windows\debug
2017-04-15 15:47:21 ----D---- C:\ProgramData\Deadtime Stories
2017-04-15 15:47:02 ----D---- C:\ProgramData\Asus
2017-04-15 15:46:47 ----AD---- C:\ProgramData\Temp
2017-04-15 15:29:40 ----D---- C:\Program Files\P4G
2017-04-14 13:19:35 ----SD---- C:\Users\David Hynek\AppData\Roaming\Microsoft
2017-04-13 17:03:36 ----D---- C:\Windows\Prefetch
2017-04-12 14:56:49 ----D---- C:\Windows\Microsoft.NET
2017-04-12 14:52:20 ----RSD---- C:\Windows\assembly
2017-04-12 13:23:33 ----D---- C:\Windows\winsxs
2017-04-12 13:21:15 ----D---- C:\Program Files\Microsoft Silverlight
2017-04-12 13:21:15 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2017-04-12 13:18:28 ----D---- C:\Windows\SYSWOW64\en-US
2017-04-12 13:18:28 ----D---- C:\Windows\SYSWOW64\cs-CZ
2017-04-12 13:18:28 ----D---- C:\Program Files\Internet Explorer
2017-04-12 13:18:27 ----D---- C:\Windows\system32\cs-CZ
2017-04-12 13:18:26 ----D---- C:\Windows\system32\en-US
2017-04-12 13:18:25 ----D---- C:\Windows\AppPatch
2017-04-12 13:18:25 ----D---- C:\Program Files (x86)\Internet Explorer
2017-04-12 13:18:24 ----D---- C:\Windows\system32\Boot
2017-04-12 13:13:43 ----D---- C:\ProgramData\Microsoft Help
2017-04-12 13:05:16 ----D---- C:\Windows\system32\MRT
2017-04-12 13:04:46 ----AC---- C:\Windows\system32\MRT.exe
2017-04-12 13:02:00 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2017-04-12 11:00:27 ----D---- C:\Windows\system32\catroot2
2017-04-05 17:35:05 ----D---- C:\Users\David Hynek\AppData\Roaming\SimulationCraft
2017-04-05 17:25:59 ----D---- C:\Simulationcraft(x64)
2017-04-01 05:20:54 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2017-04-01 05:20:54 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2017-04-01 05:20:54 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2017-04-01 05:20:54 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2017-03-29 14:56:44 ----HD---- C:\Program Files (x86)\Temp
2017-03-29 14:54:53 ----D---- C:\Windows\SYSWOW64\RTCOM
2017-03-28 09:15:59 ----D---- C:\Program Files\Defraggler
File C:\Windows\system32\winlogon.exe is digitally signed
File C:\Windows\system32\wininit.exe is digitally signed
File C:\Windows\explorer.exe is digitally signed
File C:\Windows\SysWOW64\explorer.exe is digitally signed
File C:\Windows\system32\svchost.exe is digitally signed
File C:\Windows\SysWOW64\svchost.exe is digitally signed
File C:\Windows\system32\services.exe is digitally signed
File C:\Windows\system32\User32.dll is digitally signed
File C:\Windows\SysWOW64\User32.dll is digitally signed
File C:\Windows\system32\userinit.exe is digitally signed
File C:\Windows\SysWOW64\userinit.exe is digitally signed
File C:\Windows\system32\rpcss.dll is digitally signed
File C:\Windows\system32\Drivers\volsnap.sys is digitally signed
====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [2017-02-20 189768]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswbloga.sys [2017-02-20 334600]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [2017-02-20 48528]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2017-02-20 74680]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2017-02-20 337080]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-04-26 557848]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2017-04-01 38336]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [2017-02-20 309784]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2017-02-20 32088]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2017-02-20 100640]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2017-02-20 991496]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2017-02-20 547904]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
R1 nvkflt;nvkflt; C:\Windows\system32\DRIVERS\nvkflt.sys [2017-04-01 307768]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2017-02-20 126088]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2017-02-20 162528]
R2 speedfan;speedfan; \??\C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R2 TurboB;Turbo Boost UI Monitor driver; C:\Windows\system32\DRIVERS\TurboB.sys [2010-04-17 13832]
R3 AiCharger;ASUS Charger Driver; C:\Windows\system32\DRIVERS\AiCharger.sys [2011-09-20 16768]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-10-04 129512]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-10-04 394728]
R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2016-01-29 4171512]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-03-13 28832]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2015-06-01 5384176]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2017-01-11 5545472]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2013-07-16 129224]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-10-10 100312]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2017-03-28 47552]
R3 nvvhci;NVVHCI Enumerator Service; C:\Windows\system32\DRIVERS\nvvhci.sys [2017-03-28 57792]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2431-09-15 32496]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-05-05 1439792]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2017-02-20 38296]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-03-13 36000]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-03-13 298656]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-03-13 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-03-13 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-03-13 154272]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-03-13 280224]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-10-19 80384]
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2011-08-29 53760]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2011-05-14 48488]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-03-28 30144]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 semav6msr64;semav6msr64; \??\C:\Windows\system32\drivers\semav6msr64.sys [2016-10-18 21984]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 t_mouse.sys;HID-compliand device; C:\Windows\system32\DRIVERS\t_mouse.sys [2012-12-19 6144]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2014-05-16 141600]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2017-02-02 82640]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-02-20 262736]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; %SystemRoot%\System32\svchost.exe -k utcsvc;"ServiceDll" = %SystemRoot%\system32\diagtrack.dll
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-03-28 492480]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-04-01 462784]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-03-28 425408]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-10-17 76888]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2017-02-20 7142136]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
R3 SystemExplorerHelpService;System Explorer Service; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [2014-12-20 820960]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-03-20 105096]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-03-20 125064]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-04-18 271448]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2015-06-01 290224]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-05-14 1492840]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2017-03-25 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; D:\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-03-04 167880]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-03-28 492480]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-03-23 1590560]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-09-29 1255736]
S4 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-03-20 51320]
S4 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-03-13 138400]
S4 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-03-13 74912]
S4 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
S4 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-10-18 936272]
S4 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2011-10-18 1354064]
S4 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2011-10-18 1001808]
S4 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-10-06 325656]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-03-20 135800]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-03-20 135800]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-03-20 135800]
S4 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2009-04-17 247152]
S4 TurboBoost;Intel(R) Turbo Boost Technology Monitor; C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2010-04-17 134928]
S4 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-06 2655768]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problémy s notebookem - grafika,aktualizace,ramky
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.:files
C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore
C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\tasks\{3A8ABF8A-F4D3-4F96-AA2C-A2D2E6E9FFB7}
C:\Windows\system32\tasks\{3BE2355E-E9A1-4F87-B3AB-E0997C143308}
C:\Windows\system32\tasks\{638FF75C-0CE8-441F-BEC8-BF9555DD423D}
C:\Windows\system32\tasks\{78E95B85-BAAF-40BB-BCF5-0587C7344E46}
C:\Windows\system32\tasks\{7C5DB924-5773-46D0-8104-270422FD976D}
C:\Windows\system32\tasks\{85E0E4B9-F1DF-4398-9A85-45276493CB01}
C:\Windows\system32\tasks\{A57794C3-074C-42C8-8E54-3C4C2B4C9CBC}
C:\Windows\system32\tasks\{BC2709D5-BB76-410D-8FB9-88A8C762AFF0}
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]/64
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problémy s notebookem - grafika,aktualizace,ramky
Logfile of random's system information tool 1.16 (written by random/random)
Run by David Hynek at 2017-04-22 23:39:28
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 133 GB (43%) free of 307 GB
Total RAM: 6048 MB (69% free)
X64
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:39:33, on 22.4.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18639)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Users\David Hynek\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\TradeSkillMaster Application\app\TSMApplication.exe
C:\Program Files (x86)\ASUS\APRP\aprp.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files\AVAST Software\Avast\AvLaunch.exe
C:\Program Files (x86)\System Explorer\SystemExplorer.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files\trend micro\David Hynek_RSITx64.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
O4 - HKLM\..\Run: [SystemExplorerAutoStart] "C:\Program Files (x86)\System Explorer\SystemExplorer.exe" /TRAY
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\David Hynek\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [TSMApplication] "C:\TradeSkillMaster Application\app\TSMApplication.exe"
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = D:\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://D:\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software s.r.o. - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10685 bytes
====== Enumerating Processes ======
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskeng.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\Windows\system32\taskeng.exe
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -c
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe"
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\Windows\system32\conhost.exe "-1455689382696615189-1206937094131061187-1144085349971547246-1782699426-1823758450
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\notepad.exe" C:\_OTM\MovedFiles\04222017_233422.log
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
C:\Windows\system32\sppsvc.exe
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
"C:\X-Mouse Button Control\XMouseButtonControl.exe" /notportable
"C:\Windows\System32\igfxtray.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Users\David Hynek\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\TradeSkillMaster Application\app\TSMApplication.exe"
"C:\Program Files (x86)\ASUS\APRP\aprp.exe"
C:\CCleaner\CCleaner64.exe
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Windows\system32\SearchFilterHost.exe" 0 532 536 544 65536 540
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
"C:\Program Files (x86)\System Explorer\SystemExplorer.exe" /TRAY
C:\Program Files\AVAST Software\Avast\AvastUI.exe
"C:\Windows\AsScrPro.exe"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Users\David Hynek\Downloads\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
====== Scheduled tasks folder ======
C:\Windows\system32\tasks\Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Windows\system32\tasks\Adobe Flash Player PPAPI Notifier - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_25_0_0_148_pepper.exe -check pepperplugin
C:\Windows\system32\tasks\Adobe Flash Player Updater - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\system32\tasks\ATKOSD2 - C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Windows\system32\tasks\Avast Emergency Update - C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
C:\Windows\system32\tasks\CCleanerSkipUAC - "C:\CCleaner\CCleaner.exe" $(Arg0)
C:\Windows\system32\tasks\Driver Booster SkipUAC (David Hynek) - C:\Driver Booster\DriverBooster.exe /skipuac
C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\system32\tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
C:\Windows\system32\tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler
C:\Windows\system32\tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\Windows\system32\tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\Windows\system32\tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe
C:\Windows\system32\tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe --logon
C:\Windows\system32\tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe
C:\Windows\system32\tasks\SafeZone scheduled Autoupdate 1451238072 - C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate
C:\Windows\system32\tasks\SafeZone scheduled Autoupdate 1458681986 - C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate $(Arg0)
C:\Windows\system32\tasks\SidebarExecute - C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\system32\tasks\USBChargerPlus - C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Windows\system32\tasks\{125F7D28-1209-4A2D-A3EA-ECD570ECE3E3} - D:\Heroes of the Storm\Heroes of the Storm.exe
C:\Windows\system32\tasks\{35F6C9F1-D31A-48C2-86B2-D2FA052ACFA5} - C:\Users\David Hynek\Desktop\nba2k13\setup.exe
C:\Windows\system32\tasks\{37498FC8-1BCE-4565-821D-D5B1520D8148} - D:\Heroes of the Storm\Heroes of the Storm.exe
C:\Windows\system32\tasks\{3A8ABF8A-F4D3-4F96-AA2C-A2D2E6E9FFB7} - C:\Windows\system32\pcalua.exe -a D:\Steam\steam.exe -c steam://uninstall/211500
C:\Windows\system32\tasks\{3BE2355E-E9A1-4F87-B3AB-E0997C143308} - C:\Windows\system32\pcalua.exe -a "D:\Tony Hawks Pro Skater HD\redist\vcredist_x86.exe" -d "D:\Tony Hawks Pro Skater HD\redist"
C:\Windows\system32\tasks\{3EB5F546-57A4-433C-BFCF-C1F4FF6391CA} - D:\Steam\Steam.exe
C:\Windows\system32\tasks\{4B0ED2CF-260B-4243-9922-9D10409ED05A} - D:\Cata\Cata.exe
C:\Windows\system32\tasks\{4C9E7814-85E0-46FD-A3FA-AC88DB63AF4D} - D:\World of Warcraft\PandashanLauncher.exe
C:\Windows\system32\tasks\{638FF75C-0CE8-441F-BEC8-BF9555DD423D} - C:\Windows\system32\pcalua.exe -a C:\Avastantivir\aswRunDll.exe -c "C:\Avastantivir\Setup\setiface.dll" RunSetup
C:\Windows\system32\tasks\{6CFBCDD2-220F-4DE5-82B3-730A1C967817} - D:\World of Warcraft\PandashanLauncher.exe
C:\Windows\system32\tasks\{6D971D95-4BCE-475E-814D-7B5B7ED12181} - C:\Windows\system32\pcalua.exe -a "C:\Users\David Hynek\Desktop\nba2k13\setup.exe" -d "C:\Users\David Hynek\Desktop\nba2k13"
C:\Windows\system32\tasks\{71E8A89D-5150-4D4D-8883-F147BB9FFE09} - C:\Windows\system32\pcalua.exe -a "C:\Users\David Hynek\Desktop\Wowhead_Client.exe" -d "C:\Users\David Hynek\Desktop"
C:\Windows\system32\tasks\{78E95B85-BAAF-40BB-BCF5-0587C7344E46} - D:\Cata\Cata.exe
C:\Windows\system32\tasks\{7C5DB924-5773-46D0-8104-270422FD976D} - C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Windows\system32\tasks\{85E0E4B9-F1DF-4398-9A85-45276493CB01} - C:\Windows\system32\pcalua.exe -a "D:\Tony Hawks Pro Skater HD\redist\dotnetfx35_SP1.exe" -d "D:\Tony Hawks Pro Skater HD\redist"
C:\Windows\system32\tasks\{8B295764-4E2C-455F-BA43-5C73D460FD5E} - D:\Steam\Steam.exe
C:\Windows\system32\tasks\{8ECC7C99-91A0-4425-9848-D561C2F33333} - C:\Windows\system32\pcalua.exe -a "C:\Users\David Hynek\Desktop\MNA\setup.exe" -d "C:\Users\David Hynek\Desktop\MNA"
C:\Windows\system32\tasks\{A57794C3-074C-42C8-8E54-3C4C2B4C9CBC} - C:\Windows\system32\pcalua.exe -a "D:\Steam\steamapps\common\Left 4 Dead 2\bin\addoninstaller.exe" -d "D:\Steam\steamapps\common\Left 4 Dead 2" -c /register
C:\Windows\system32\tasks\{A5BE9FBF-B10A-4567-B881-9A805252C90C} - D:\WoW Cata\Wow.exe
C:\Windows\system32\tasks\{BC2709D5-BB76-410D-8FB9-88A8C762AFF0} - C:\Windows\system32\pcalua.exe -a "C:\Users\David Hynek\Desktop\Fifa\Installer.exe" -d "C:\Users\David Hynek\Desktop\Fifa"
C:\Windows\system32\tasks\{C2A36E6E-496D-4079-892B-50F051B6CB51} - D:\WoW Cata\Wow.exe
C:\Windows\system32\tasks\{E0DFF7C1-CD92-48A5-A76D-0544801851B2} - D:\World of Warcraft\PandashanLauncher.exe
C:\Windows\system32\tasks\{E13A5D63-5173-41FC-9CB8-2AC152375160} - C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Windows\system32\tasks\{F9CE0497-3BC9-4BF4-9875-9E52B8897540} - C:\WoW Cata\Wow.exe
C:\Windows\system32\tasks\WPD\SqmUpload_S-1-5-21-1206595139-1558415813-2062055028-1001 - %windir%\system32\rundll32.exe portabledeviceapi.dll,#1
C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask - %systemroot%\system32\sc.exe start osppsvc
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\ConfigNotification - %systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION
C:\Windows\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\Windows\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\Windows\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -queuereporting
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask - %SystemRoot%\system32\Wat\WatAdminSvc.exe /run
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline - %SystemRoot%\system32\schtasks.exe /run /I /TN "\Microsoft\Windows\Windows Activation Technologies\ValidationTask"
C:\Windows\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\Windows\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation
C:\Windows\system32\tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask - sc.exe start sppsvc
C:\Windows\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\Windows\system32\tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem - %SystemRoot%\System32\powercfg.exe -energy -auto
C:\Windows\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Lpksetup - C:\Windows\System32\lpksetup.exe -v
C:\Windows\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Mcbuilder - C:\Windows\System32\mcbuilder.exe
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService - %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks - %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ehDRMInit - %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\InstallPlayReady - %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate - %SystemRoot%\ehome\mcupdate $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate_scheduled - %SystemRoot%\ehome\mcupdate -crl -hms -pscn 15
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURActivate - %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURDiscovery - %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscovery - %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 - %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 - %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PeriodicScanRetry - %windir%\ehome\MCUpdate.exe -pscn 0
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrScheduleTask - %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RecordingRestart - %SystemRoot%\ehome\ehrec /RestartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RegisterSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ReindexSearchRoot - %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\StartRecording - %SystemRoot%\ehome\ehrec /StartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\UpdateRecordPath - %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotifications.exe
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\Windows\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Uploader - %windir%\system32\WSqmCons.exe -u
C:\Windows\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\AitAgent - aitagent
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattel\DiagTrackRunner.exe /UploadEtlFilesOnly
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\Windows\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\Windows\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\Windows\system32\tasks\AVAST Software\Avast settings backup - C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs
=========Mozilla firefox=========
ProfilePath - C:\Users\David Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\3x5rgwnq.default-1458296225216
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 25.0.0.148 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_148.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\ZEON/PDF,version=2.0]
"Description"=
"Path"=C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 25.0.0.148 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_148.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll
C:\Users\David Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\3x5rgwnq.default-1458296225216\addons.json
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
Firefox Hello Beta (discontinued) - extension - loop@mozilla.org
C:\Users\David Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\3x5rgwnq.default-1458296225216\extensions.json
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - C:\Users\David Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\3x5rgwnq.default-1458296225216\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
Firefox Hello - extension - loop@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\loop@mozilla.org.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Websense Helper - extension - websensehelper@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\websensehelper@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
Avast Online Security - extension - wrc@avast.com - C:\Program Files\AVAST Software\Avast\WebRep\FF
Avast SafePrice - extension - sp@avast.com - C:\Program Files\AVAST Software\Avast\SafePrice\FF
C:\Users\David Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\3x5rgwnq.default-1458296225216\pluginreg.dat
Plugin - Silverlight Plug-In - 5.1.50905.0 - c:\Program Files\Microsoft Silverlight\5.1.50905.0\npctrl.dll
Plugin - Shockwave Flash - 25.0.0.127 - C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_127.dll
=========Google Chrome=========
C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Store 0.2
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension cfhdojbkjhnklbpkdaibdccddilifddb 1 Adblock Plus 1.13.2
Extension coobgpohoikkiipiblmjeljniedjpjpf 1 Vyhledávání Google 0.0.0.30
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension efaidnbmnnnibpcajpcglclefindmkaj 1 Adobe Acrobat 15.1.0.6
Extension ennkphjdgehloodpbhlhldgbnhmacadg Settings 0.2
Extension eofcbnmajmjmplflapaojjnihcjkigck 2 Avast SafePrice 10.2.0.190
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension gomekmidlodglbbmalcneegieacbdmki 2 Avast Online Security 11.1.0.242
Extension ilkgeioneoemibpddeiamfgiofnpjifm 1 The West 1.5
Extension jcbbonmofdkklhmaapkllflmpoccpiad 1 Všechny hry - Twitch 2016.3.18.38154
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mfffpogegjflfpflabcdkioaeobkgjik 1 GaiaAuthExtension 0.0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.2
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.2
Extension pafkbggdmjlpgkdkcbjmhmfcdpncadgh Google Now 1.2.0.1
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5717.116.0.4
Homepage:
default_search_provider.search_url:
C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Preferences
Plugin 1.4.7.796 Widevine Content Decryption Module C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.7.796\_platform_specific\win_x86\widevinecdmadapter.dll
Plugin Chrome PDF Viewer chrome-extension://mhjfbmdgcfjbbpaeojofohoefgiehjai/
Plugin 17.0.0.169 Shockwave Flash C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\PepperFlash\pepflashplayer.dll
Plugin Chrome Remote Desktop Viewer internal-remoting-viewer
Plugin Native Client C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\internal-nacl-plugin
Plugin Chrome PDF Viewer internal-pdf-viewer
Homepage:
default_search_provider.search_url:
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj]
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck]
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki]
"Path"=C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
======Registry dump ======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-02-20 883520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - D:\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-03-13 60576]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-02-20 758384]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-01-11 1483264]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2011-03-21 361984]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-05-05 2785064]
"SynAsusAcpi"=C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [2011-05-05 97064]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-03-13 617120]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-03-13 379552]
"IntelTBRunOnce"=wscript.exe //b //nologo C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs []
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2011-10-18 10357008]
"XMouseButtonControl"=C:\X-Mouse Button Control\XMouseButtonControl.exe [2016-05-22 1161240]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2015-06-01 183216]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2015-06-01 411056]
"Persistence"=C:\Windows\system32\igfxpers.exe [2015-06-01 453552]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2017-01-11 16781824]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2017-03-28 1882048]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"=C:\Users\David Hynek\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2017-04-03 1446000]
"CCleaner Monitoring"=C:\CCleaner\CCleaner64.exe [2017-03-03 9364696]
"TSMApplication"=C:\TradeSkillMaster Application\app\TSMApplication.exe [2016-08-16 1623040]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Nuance PDF Reader-reminder"=C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [2008-11-03 328992]
"ASUSPRP"=C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2011-10-20 3331312]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2011-07-22 5716608]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-08 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2011-09-13 2317312]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-02-20 205512]
"SystemExplorerAutoStart"=C:\Program Files (x86)\System Explorer\SystemExplorer.exe [2015-08-19 3389160]
"ASUS Screen Saver Protector"=C:\Windows\AsScrPro.exe [2012-02-10 3058304]
"CLMLServer"=C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2010-08-20 107816]
C:\Users\David Hynek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - D:\Microsoft Office\Office12\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\System32\nvinitx.dll, C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=D:\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"midi1"=wdmaud.drv
"VIDC.XFR1"=xfcodec64.dll
"VIDC.FPS1"=frapsv64.dll
"vidc.xtor"=DxtoryCodec64.dll
"vidc.x264"=C:\X264VF~1\X264VF~1.DLL
"msacm.l3codecp"=l3codecp.acm
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
====== File associations ======
.js - edit - C:\Windows\System32\Notepad.exe %1
====== List of files/folders created in the last 1 month ======
2431-09-15 20:37:49 ----A---- C:\Windows\system32\drivers\Smb_driver_Intel.sys
2431-09-15 20:37:49 ----A---- C:\Windows\system32\drivers\HECIx64.sys
2017-04-22 23:39:30 ----D---- C:\ProgramData\SWCUTemp
2017-04-22 23:34:22 ----D---- C:\_OTM
2017-04-22 18:13:22 ----D---- C:\AdwCleaner
2017-04-22 15:19:38 ----D---- C:\rsit
2017-04-21 23:31:49 ----D---- C:\Windows\SYSWOW64\NV
2017-04-21 23:31:49 ----D---- C:\Windows\system32\NV
2017-04-21 23:31:25 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2017-04-21 23:31:22 ----A---- C:\Windows\SYSWOW64\vulkaninfo.exe
2017-04-21 23:31:22 ----A---- C:\Windows\SYSWOW64\vulkan-1.dll
2017-04-21 23:31:22 ----A---- C:\Windows\system32\vulkaninfo.exe
2017-04-21 23:31:22 ----A---- C:\Windows\system32\vulkan-1.dll
2017-04-21 23:31:21 ----D---- C:\Program Files (x86)\VulkanRT
2017-04-21 23:26:08 ----A---- C:\Windows\SYSWOW64\nvptxJitCompiler.dll
2017-04-21 23:26:08 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2017-04-21 23:26:08 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2017-04-21 23:26:08 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2017-04-21 23:26:08 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\nvwgf2umx.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\nvptxJitCompiler.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\nvopencl.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\nvoglv64.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\nvoglshim64.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\NvIFR64.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2017-04-21 23:26:08 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2017-04-21 23:26:08 ----A---- C:\Windows\system32\drivers\nvkflt.sys
2017-04-21 23:26:07 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2017-04-21 23:26:07 ----A---- C:\Windows\SYSWOW64\nvfatbinaryLoader.dll
2017-04-21 23:26:07 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2017-04-21 23:26:07 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\NvFBC64.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvfatbinaryLoader.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvdispgenco6438165.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvdispco6438165.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvd3dumx.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvcuvid.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvcuda.dll
2017-04-21 23:26:01 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2017-04-21 23:26:01 ----A---- C:\Windows\system32\nvcompiler.dll
2017-04-21 23:15:32 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2017-04-21 23:15:32 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2017-04-21 23:15:32 ----A---- C:\Windows\system32\nvspcap64.dll
2017-04-21 23:15:32 ----A---- C:\Windows\system32\nvspbridge64.dll
2017-04-21 23:15:32 ----A---- C:\Windows\system32\NvRtmpStreamer64.dll
2017-04-21 23:15:02 ----A---- C:\Windows\NvTelemetryContainerRecovery.bat
2017-04-21 23:14:43 ----A---- C:\Windows\system32\drivers\nvvhci.sys
2017-04-21 23:14:42 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2017-04-21 23:14:42 ----A---- C:\Windows\system32\nvaudcap64v.dll
2017-04-21 23:14:42 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2017-04-21 17:59:27 ----A---- C:\Windows\NvContainerRecovery.bat
2017-04-21 17:59:09 ----D---- C:\temp
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nvsvcr.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nvsvc64.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nvshext.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nvmctray.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nvcpl.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nv3dappshextr.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nv3dappshext.dll
2017-04-21 17:31:48 ----A---- C:\Windows\system32\nvumdshimx.dll
2017-04-21 17:31:47 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2017-04-21 17:31:47 ----A---- C:\Windows\system32\nvinitx.dll
2017-04-21 17:31:47 ----A---- C:\Windows\system32\nvdispgenco6436510.dll
2017-04-21 17:31:47 ----A---- C:\Windows\system32\nvdispco6436510.dll
2017-04-21 17:31:46 ----A---- C:\Windows\system32\nvapi64.dll
2017-04-16 17:35:09 ----D---- C:\HWMonitor
2017-04-15 15:36:20 ----D---- C:\Users\David Hynek\AppData\Roaming\MAGIX
2017-04-14 10:21:30 ----D---- C:\ProgramData\Twitch
2017-04-14 10:21:28 ----D---- C:\Users\David Hynek\AppData\Roaming\Twitch
2017-04-12 11:25:40 ----A---- C:\Windows\system32\mshtml.dll
2017-04-12 11:25:38 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2017-04-12 11:25:36 ----A---- C:\Windows\system32\ieframe.dll
2017-04-12 11:25:35 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2017-04-12 11:25:34 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2017-04-12 11:25:33 ----A---- C:\Windows\SYSWOW64\wininet.dll
2017-04-12 11:25:33 ----A---- C:\Windows\system32\wininet.dll
2017-04-12 11:25:32 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2017-04-12 11:25:32 ----A---- C:\Windows\system32\wuaueng.dll
2017-04-12 11:25:32 ----A---- C:\Windows\system32\ole32.dll
2017-04-12 11:25:32 ----A---- C:\Windows\system32\iertutil.dll
2017-04-12 11:25:29 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2017-04-12 11:25:29 ----A---- C:\Windows\system32\win32k.sys
2017-04-12 11:25:29 ----A---- C:\Windows\system32\urlmon.dll
2017-04-12 11:25:28 ----A---- C:\Windows\system32\wucltux.dll
2017-04-12 11:25:27 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2017-04-12 11:25:27 ----A---- C:\Windows\system32\wuapi.dll
2017-04-12 11:25:27 ----A---- C:\Windows\system32\win32spl.dll
2017-04-12 11:25:27 ----A---- C:\Windows\system32\samsrv.dll
2017-04-12 11:25:27 ----A---- C:\Windows\system32\quartz.dll
2017-04-12 11:25:26 ----A---- C:\Windows\system32\ucrtbase.dll
2017-04-12 11:25:26 ----A---- C:\Windows\system32\msfeeds.dll
2017-04-12 11:25:26 ----A---- C:\Windows\system32\cdosys.dll
2017-04-12 11:25:26 ----A---- C:\Windows\system32\atmfd.dll
2017-04-12 11:25:25 ----A---- C:\Windows\system32\gdi32.dll
2017-04-12 11:25:24 ----A---- C:\Windows\SYSWOW64\quartz.dll
2017-04-12 11:25:24 ----A---- C:\Windows\SYSWOW64\ole32.dll
2017-04-12 11:25:24 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2017-04-12 11:25:23 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2017-04-12 11:25:23 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll
2017-04-12 11:25:23 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2017-04-12 11:25:23 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2017-04-12 11:25:23 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2017-04-12 11:25:23 ----A---- C:\Windows\system32\iedkcs32.dll
2017-04-12 11:25:23 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\jscript.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2017-04-12 11:25:21 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2017-04-12 11:25:21 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2017-04-12 11:25:20 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2017-04-12 11:25:20 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-04-12 11:25:19 ----A---- C:\Windows\system32\ntdll.dll
2017-04-12 11:25:19 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-04-12 11:25:16 ----A---- C:\Windows\system32\jscript9.dll
2017-04-12 11:25:16 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2017-04-12 11:25:16 ----A---- C:\Windows\system32\asycfilt.dll
2017-04-12 11:25:15 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2017-04-12 11:25:15 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2017-04-12 11:25:15 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2017-04-12 11:25:15 ----A---- C:\Windows\system32\samlib.dll
2017-04-12 11:25:15 ----A---- C:\Windows\system32\mfmjpegdec.dll
2017-04-12 11:25:14 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2017-04-12 11:25:14 ----A---- C:\Windows\SYSWOW64\samlib.dll
2017-04-12 11:25:14 ----A---- C:\Windows\SYSWOW64\mfmjpegdec.dll
2017-04-12 11:25:14 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2017-04-12 11:25:14 ----A---- C:\Windows\system32\webcheck.dll
2017-04-12 11:25:14 ----A---- C:\Windows\system32\rdpudd.dll
2017-04-12 11:25:14 ----A---- C:\Windows\system32\certcli.dll
2017-04-12 11:25:13 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2017-04-12 11:25:13 ----A---- C:\Windows\SYSWOW64\certcli.dll
2017-04-12 11:25:13 ----A---- C:\Windows\system32\wuwebv.dll
2017-04-12 11:25:13 ----A---- C:\Windows\system32\vbscript.dll
2017-04-12 11:25:13 ----A---- C:\Windows\system32\mshtmlmedia.dll
2017-04-12 11:25:13 ----A---- C:\Windows\system32\ie4uinit.exe
2017-04-12 11:25:12 ----A---- C:\Windows\SYSWOW64\wups.dll
2017-04-12 11:25:12 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2017-04-12 11:25:12 ----A---- C:\Windows\SYSWOW64\jscript.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\wups2.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\wups.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\wudriver.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\srcore.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\rpcrt4.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\ieapfltr.dll
2017-04-12 11:25:11 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2017-04-12 11:25:11 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2017-04-12 11:25:11 ----A---- C:\Windows\system32\wuauclt.exe
2017-04-12 11:25:11 ----A---- C:\Windows\system32\lsasrv.dll
2017-04-12 11:25:11 ----A---- C:\Windows\system32\ieui.dll
2017-04-12 11:25:10 ----A---- C:\Windows\system32\dxtrans.dll
2017-04-12 11:25:10 ----A---- C:\Windows\system32\dxtmsft.dll
2017-04-12 11:25:10 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-04-12 11:25:09 ----A---- C:\Windows\system32\srclient.dll
2017-04-12 11:25:09 ----A---- C:\Windows\system32\smss.exe
2017-04-12 11:25:09 ----A---- C:\Windows\system32\msrating.dll
2017-04-12 11:25:09 ----A---- C:\Windows\system32\mshtmled.dll
2017-04-12 11:25:09 ----A---- C:\Windows\system32\kerberos.dll
2017-04-12 11:25:09 ----A---- C:\Windows\system32\advapi32.dll
2017-04-12 11:25:08 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2017-04-12 11:25:07 ----A---- C:\Windows\SYSWOW64\srclient.dll
2017-04-12 11:25:07 ----A---- C:\Windows\system32\WinSetupUI.dll
2017-04-12 11:25:07 ----A---- C:\Windows\system32\rstrui.exe
2017-04-12 11:25:07 ----A---- C:\Windows\system32\occache.dll
2017-04-12 11:25:07 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2017-04-12 11:25:07 ----A---- C:\Windows\system32\kernel32.dll
2017-04-12 11:25:07 ----A---- C:\Windows\system32\jsproxy.dll
2017-04-12 11:25:07 ----A---- C:\Windows\system32\jscript9diag.dll
2017-04-12 11:25:06 ----A---- C:\Windows\system32\schannel.dll
2017-04-12 11:25:06 ----A---- C:\Windows\system32\ieUnatt.exe
2017-04-12 11:25:06 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-04-12 11:25:06 ----A---- C:\Windows\system32\conhost.exe
2017-04-12 11:25:05 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2017-04-12 11:25:05 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2017-04-12 11:25:05 ----A---- C:\Windows\SYSWOW64\ieui.dll
2017-04-12 11:25:05 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2017-04-12 11:25:05 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\wow64win.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\winsrv.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\ncrypt.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\msv1_0.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\MshtmlDac.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\KernelBase.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\inseng.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\ieetwproxystub.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\occache.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\msrating.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\wuapp.exe
2017-04-12 11:25:04 ----A---- C:\Windows\system32\wow64.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\wdigest.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\TSpkg.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\sspicli.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\iesetup.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\bcrypt.dll
2017-04-12 11:25:03 ----A---- C:\Windows\system32\rpchttp.dll
2017-04-12 11:25:03 ----A---- C:\Windows\system32\iernonce.dll
2017-04-12 11:25:03 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-04-12 11:25:03 ----A---- C:\Windows\system32\cdd.dll
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\schannel.dll
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\inseng.dll
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2017-04-12 11:25:02 ----A---- C:\Windows\system32\ieetwcollector.exe
2017-04-12 11:25:02 ----A---- C:\Windows\system32\csrsrv.dll
2017-04-12 11:25:02 ----A---- C:\Windows\system32\cryptbase.dll
2017-04-12 11:24:59 ----A---- C:\Windows\system32\lsass.exe
2017-04-12 11:24:59 ----A---- C:\Windows\system32\drivers\appid.sys
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\secur32.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\wow64cpu.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\sspisrv.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\secur32.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\ntvdm64.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\lpk.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\fontsub.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\dciman32.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\credssp.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\appidsvc.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2017-04-12 11:24:58 ----A---- C:\Windows\system32\appidapi.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\wow32.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\lpk.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\credssp.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2017-04-12 11:24:57 ----A---- C:\Windows\system32\rdpcorets.dll
2017-04-12 11:24:57 ----A---- C:\Windows\system32\auditpol.exe
2017-04-12 11:24:57 ----A---- C:\Windows\system32\atmlib.dll
2017-04-12 11:24:57 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\user.exe
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\tzres.dll
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\setup16.exe
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\instnm.exe
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2017-04-12 11:24:55 ----A---- C:\Windows\system32\tzres.dll
2017-04-12 11:24:55 ----A---- C:\Windows\system32\msaudite.dll
2017-04-12 11:24:55 ----A---- C:\Windows\system32\apisetschema.dll
2017-04-12 11:24:55 ----A---- C:\Windows\system32\adtschema.dll
2017-04-12 11:24:54 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2017-04-12 11:24:54 ----A---- C:\Windows\system32\msobjs.dll
2017-04-12 11:24:53 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2017-04-12 11:24:52 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2017-03-29 14:53:40 ----A---- C:\Windows\system32\SRSWOW64.dll
2017-03-29 14:53:40 ----A---- C:\Windows\system32\SRSTSX64.dll
2017-03-29 14:53:39 ----A---- C:\Windows\system32\SRSTSH64.dll
2017-03-29 14:53:39 ----A---- C:\Windows\system32\SRSHP64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFSAPO64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFProc64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFNHK64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFHAPO64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFDAPO64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFComm64.dll
2017-03-29 14:53:33 ----A---- C:\Windows\SYSWOW64\SFCOM.dll
2017-03-29 14:53:33 ----A---- C:\Windows\system32\SFCOM64.dll
2017-03-29 14:53:33 ----A---- C:\Windows\system32\SFAPO64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtPgEx64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtkCfg64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtkApi64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RTEEP64A.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RTEEL64A.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RTEEG64A.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RTEED64A.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtDataProc64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RTCOM64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RP3DHT64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RP3DAA64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RltkAPO64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2017-03-29 14:53:32 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2017-03-29 14:53:31 ----A---- C:\Windows\system32\RCoRes64.dat
2017-03-29 14:53:31 ----A---- C:\Windows\system32\RCoInstII64.dll
2017-03-29 14:53:30 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2017-03-29 14:53:29 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2017-03-29 14:53:29 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2017-03-29 14:53:29 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2017-03-29 14:53:28 ----A---- C:\Windows\system32\FMAPO64.dll
2017-03-29 14:53:28 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2017-03-29 14:53:28 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2017-03-29 14:53:28 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2017-03-29 14:53:26 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2017-03-29 14:53:25 ----A---- C:\Windows\system32\AERTAR64.dll
2017-03-29 14:53:25 ----A---- C:\Windows\system32\AERTAC64.dll
====== List of files/folders modified in the last 1 month ======
2017-04-22 23:39:31 ----D---- C:\Program Files\trend micro
2017-04-22 23:39:30 ----D---- C:\ProgramData
2017-04-22 23:39:18 ----D---- C:\Windows\temp
2017-04-22 23:38:15 ----D---- C:\ProgramData\NVIDIA
2017-04-22 23:36:33 ----D---- C:\Windows\system32\config
2017-04-22 23:34:44 ----D---- C:\Windows\SysWOW64
2017-04-22 18:16:32 ----D---- C:\Windows
2017-04-22 18:15:28 ----D---- C:\Windows\SYSWOW64\drivers
2017-04-22 18:15:28 ----D---- C:\ProgramData\IObit
2017-04-22 18:10:57 ----D---- C:\Windows\inf
2017-04-22 15:17:38 ----D---- C:\Windows\SoftwareDistribution
2017-04-22 15:03:27 ----D---- C:\Users\David Hynek\AppData\Roaming\uTorrent
2017-04-22 13:48:04 ----D---- C:\Users\David Hynek\AppData\Roaming\TS3Client
2017-04-22 13:42:43 ----D---- C:\Windows\system32\NDF
2017-04-22 11:17:52 ----D---- C:\Windows\system32\drivers
2017-04-22 11:11:51 ----D---- C:\Windows\System32
2017-04-22 11:11:51 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-04-21 23:52:12 ----SHD---- C:\System Volume Information
2017-04-21 23:31:59 ----D---- C:\Program Files\NVIDIA Corporation
2017-04-21 23:31:57 ----D---- C:\ProgramData\NVIDIA Corporation
2017-04-21 23:31:21 ----RD---- C:\Program Files (x86)
2017-04-21 23:28:52 ----D---- C:\Windows\system32\DriverStore
2017-04-21 23:15:30 ----D---- C:\Windows\system32\Tasks
2017-04-21 23:15:22 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-04-21 17:34:19 ----D---- C:\Windows\Help
2017-04-20 13:02:21 ----D---- C:\Users\David Hynek\AppData\Roaming\Curse Client
2017-04-20 12:13:46 ----D---- C:\Windows\rescache
2017-04-18 23:50:34 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2017-04-18 23:50:27 ----D---- C:\Windows\system32\Macromed
2017-04-18 23:50:02 ----D---- C:\Windows\SYSWOW64\Macromed
2017-04-18 19:05:11 ----D---- C:\TeamSpeak 3 Client
2017-04-18 17:04:11 ----D---- C:\Program Files (x86)\vso
2017-04-18 17:04:09 ----D---- C:\Users\David Hynek\AppData\Roaming\Vso
2017-04-18 17:04:08 ----A---- C:\Users\David Hynek\AppData\Roaming\inst.exe
2017-04-18 16:54:31 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2017-04-18 16:54:29 ----SHD---- C:\Windows\Installer
2017-04-18 16:54:29 ----D---- C:\Config.Msi
2017-04-18 16:46:31 ----D---- C:\Program Files (x86)\ASUS
2017-04-18 16:45:57 ----D---- C:\Program Files (x86)\Common Files
2017-04-18 16:44:59 ----D---- C:\Program Files
2017-04-18 16:42:55 ----D---- C:\Program Files (x86)\CyberLink
2017-04-18 16:36:41 ----D---- C:\ProgramData\CyberLink
2017-04-18 16:17:13 ----A---- C:\Windows\SYSWOW64\acovcnt.exe
2017-04-18 12:31:06 ----D---- C:\Users\David Hynek\AppData\Roaming\Spotify
2017-04-16 20:30:28 ----D---- C:\Users\David Hynek\AppData\Roaming\discord
2017-04-15 16:07:05 ----D---- C:\Windows\debug
2017-04-15 15:47:21 ----D---- C:\ProgramData\Deadtime Stories
2017-04-15 15:47:02 ----D---- C:\ProgramData\Asus
2017-04-15 15:46:47 ----AD---- C:\ProgramData\Temp
2017-04-15 15:29:40 ----D---- C:\Program Files\P4G
2017-04-14 13:19:35 ----SD---- C:\Users\David Hynek\AppData\Roaming\Microsoft
2017-04-13 17:03:36 ----D---- C:\Windows\Prefetch
2017-04-12 14:56:49 ----D---- C:\Windows\Microsoft.NET
2017-04-12 14:52:20 ----RSD---- C:\Windows\assembly
2017-04-12 13:23:33 ----D---- C:\Windows\winsxs
2017-04-12 13:21:15 ----D---- C:\Program Files\Microsoft Silverlight
2017-04-12 13:21:15 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2017-04-12 13:18:28 ----D---- C:\Windows\SYSWOW64\en-US
2017-04-12 13:18:28 ----D---- C:\Windows\SYSWOW64\cs-CZ
2017-04-12 13:18:28 ----D---- C:\Program Files\Internet Explorer
2017-04-12 13:18:27 ----D---- C:\Windows\system32\cs-CZ
2017-04-12 13:18:26 ----D---- C:\Windows\system32\en-US
2017-04-12 13:18:25 ----D---- C:\Windows\AppPatch
2017-04-12 13:18:25 ----D---- C:\Program Files (x86)\Internet Explorer
2017-04-12 13:18:24 ----D---- C:\Windows\system32\Boot
2017-04-12 13:13:43 ----D---- C:\ProgramData\Microsoft Help
2017-04-12 13:05:16 ----D---- C:\Windows\system32\MRT
2017-04-12 13:04:46 ----AC---- C:\Windows\system32\MRT.exe
2017-04-12 13:02:00 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2017-04-12 11:00:27 ----D---- C:\Windows\system32\catroot2
2017-04-05 17:35:05 ----D---- C:\Users\David Hynek\AppData\Roaming\SimulationCraft
2017-04-05 17:25:59 ----D---- C:\Simulationcraft(x64)
2017-04-01 05:20:54 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2017-04-01 05:20:54 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2017-04-01 05:20:54 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2017-04-01 05:20:54 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2017-03-29 14:56:44 ----HD---- C:\Program Files (x86)\Temp
2017-03-29 14:54:53 ----D---- C:\Windows\SYSWOW64\RTCOM
2017-03-28 09:15:59 ----D---- C:\Program Files\Defraggler
File C:\Windows\system32\winlogon.exe is digitally signed
File C:\Windows\system32\wininit.exe is digitally signed
File C:\Windows\explorer.exe is digitally signed
File C:\Windows\SysWOW64\explorer.exe is digitally signed
File C:\Windows\system32\svchost.exe is digitally signed
File C:\Windows\SysWOW64\svchost.exe is digitally signed
File C:\Windows\system32\services.exe is digitally signed
File C:\Windows\system32\User32.dll is digitally signed
File C:\Windows\SysWOW64\User32.dll is digitally signed
File C:\Windows\system32\userinit.exe is digitally signed
File C:\Windows\SysWOW64\userinit.exe is digitally signed
File C:\Windows\system32\rpcss.dll is digitally signed
File C:\Windows\system32\Drivers\volsnap.sys is digitally signed
====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [2017-02-20 189768]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswbloga.sys [2017-02-20 334600]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [2017-02-20 48528]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2017-02-20 74680]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2017-02-20 337080]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-04-26 557848]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2017-04-01 38336]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [2017-02-20 309784]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2017-02-20 32088]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2017-02-20 100640]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2017-02-20 991496]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2017-02-20 547904]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
R1 nvkflt;nvkflt; C:\Windows\system32\DRIVERS\nvkflt.sys [2017-04-01 307768]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2017-02-20 126088]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2017-02-20 162528]
R2 speedfan;speedfan; \??\C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R2 TurboB;Turbo Boost UI Monitor driver; C:\Windows\system32\DRIVERS\TurboB.sys [2010-04-17 13832]
R3 AiCharger;ASUS Charger Driver; C:\Windows\system32\DRIVERS\AiCharger.sys [2011-09-20 16768]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-10-04 129512]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-10-04 394728]
R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2016-01-29 4171512]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-03-13 28832]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2015-06-01 5384176]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2017-01-11 5545472]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2013-07-16 129224]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-10-10 100312]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2017-03-28 47552]
R3 nvvhci;NVVHCI Enumerator Service; C:\Windows\system32\DRIVERS\nvvhci.sys [2017-03-28 57792]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2431-09-15 32496]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-05-05 1439792]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2017-02-20 38296]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-03-13 36000]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-03-13 298656]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-03-13 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-03-13 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-03-13 154272]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-03-13 280224]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-10-19 80384]
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2011-08-29 53760]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2011-05-14 48488]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-03-28 30144]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 semav6msr64;semav6msr64; \??\C:\Windows\system32\drivers\semav6msr64.sys [2016-10-18 21984]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 t_mouse.sys;HID-compliand device; C:\Windows\system32\DRIVERS\t_mouse.sys [2012-12-19 6144]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2014-05-16 141600]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2017-02-02 82640]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-02-20 262736]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; %SystemRoot%\System32\svchost.exe -k utcsvc;"ServiceDll" = %SystemRoot%\system32\diagtrack.dll
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-03-28 492480]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-04-01 462784]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-03-28 425408]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-10-17 76888]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2017-02-20 7142136]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
R3 SystemExplorerHelpService;System Explorer Service; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [2014-12-20 820960]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-03-20 105096]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-03-20 125064]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-04-18 271448]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2015-06-01 290224]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-05-14 1492840]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2017-03-25 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; D:\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-03-04 167880]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-03-28 492480]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-03-23 1590560]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-09-29 1255736]
S4 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-03-20 51320]
S4 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-03-13 138400]
S4 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-03-13 74912]
S4 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
S4 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-10-18 936272]
S4 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2011-10-18 1354064]
S4 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2011-10-18 1001808]
S4 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-10-06 325656]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-03-20 135800]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-03-20 135800]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-03-20 135800]
S4 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2009-04-17 247152]
S4 TurboBoost;Intel(R) Turbo Boost Technology Monitor; C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2010-04-17 134928]
S4 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-06 2655768]
-----------------EOF-----------------
Run by David Hynek at 2017-04-22 23:39:28
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 133 GB (43%) free of 307 GB
Total RAM: 6048 MB (69% free)
X64
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:39:33, on 22.4.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18639)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Users\David Hynek\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\TradeSkillMaster Application\app\TSMApplication.exe
C:\Program Files (x86)\ASUS\APRP\aprp.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files\AVAST Software\Avast\AvLaunch.exe
C:\Program Files (x86)\System Explorer\SystemExplorer.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files\trend micro\David Hynek_RSITx64.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
O4 - HKLM\..\Run: [SystemExplorerAutoStart] "C:\Program Files (x86)\System Explorer\SystemExplorer.exe" /TRAY
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\David Hynek\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [TSMApplication] "C:\TradeSkillMaster Application\app\TSMApplication.exe"
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = D:\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://D:\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software s.r.o. - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10685 bytes
====== Enumerating Processes ======
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskeng.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\Windows\system32\taskeng.exe
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -c
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe"
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\Windows\system32\conhost.exe "-1455689382696615189-1206937094131061187-1144085349971547246-1782699426-1823758450
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\notepad.exe" C:\_OTM\MovedFiles\04222017_233422.log
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
C:\Windows\system32\sppsvc.exe
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
"C:\X-Mouse Button Control\XMouseButtonControl.exe" /notportable
"C:\Windows\System32\igfxtray.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Users\David Hynek\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\TradeSkillMaster Application\app\TSMApplication.exe"
"C:\Program Files (x86)\ASUS\APRP\aprp.exe"
C:\CCleaner\CCleaner64.exe
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Windows\system32\SearchFilterHost.exe" 0 532 536 544 65536 540
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
"C:\Program Files (x86)\System Explorer\SystemExplorer.exe" /TRAY
C:\Program Files\AVAST Software\Avast\AvastUI.exe
"C:\Windows\AsScrPro.exe"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Users\David Hynek\Downloads\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
====== Scheduled tasks folder ======
C:\Windows\system32\tasks\Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Windows\system32\tasks\Adobe Flash Player PPAPI Notifier - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_25_0_0_148_pepper.exe -check pepperplugin
C:\Windows\system32\tasks\Adobe Flash Player Updater - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\system32\tasks\ATKOSD2 - C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Windows\system32\tasks\Avast Emergency Update - C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
C:\Windows\system32\tasks\CCleanerSkipUAC - "C:\CCleaner\CCleaner.exe" $(Arg0)
C:\Windows\system32\tasks\Driver Booster SkipUAC (David Hynek) - C:\Driver Booster\DriverBooster.exe /skipuac
C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\system32\tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
C:\Windows\system32\tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler
C:\Windows\system32\tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\Windows\system32\tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\Windows\system32\tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe
C:\Windows\system32\tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe --logon
C:\Windows\system32\tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe
C:\Windows\system32\tasks\SafeZone scheduled Autoupdate 1451238072 - C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate
C:\Windows\system32\tasks\SafeZone scheduled Autoupdate 1458681986 - C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate $(Arg0)
C:\Windows\system32\tasks\SidebarExecute - C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\system32\tasks\USBChargerPlus - C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Windows\system32\tasks\{125F7D28-1209-4A2D-A3EA-ECD570ECE3E3} - D:\Heroes of the Storm\Heroes of the Storm.exe
C:\Windows\system32\tasks\{35F6C9F1-D31A-48C2-86B2-D2FA052ACFA5} - C:\Users\David Hynek\Desktop\nba2k13\setup.exe
C:\Windows\system32\tasks\{37498FC8-1BCE-4565-821D-D5B1520D8148} - D:\Heroes of the Storm\Heroes of the Storm.exe
C:\Windows\system32\tasks\{3A8ABF8A-F4D3-4F96-AA2C-A2D2E6E9FFB7} - C:\Windows\system32\pcalua.exe -a D:\Steam\steam.exe -c steam://uninstall/211500
C:\Windows\system32\tasks\{3BE2355E-E9A1-4F87-B3AB-E0997C143308} - C:\Windows\system32\pcalua.exe -a "D:\Tony Hawks Pro Skater HD\redist\vcredist_x86.exe" -d "D:\Tony Hawks Pro Skater HD\redist"
C:\Windows\system32\tasks\{3EB5F546-57A4-433C-BFCF-C1F4FF6391CA} - D:\Steam\Steam.exe
C:\Windows\system32\tasks\{4B0ED2CF-260B-4243-9922-9D10409ED05A} - D:\Cata\Cata.exe
C:\Windows\system32\tasks\{4C9E7814-85E0-46FD-A3FA-AC88DB63AF4D} - D:\World of Warcraft\PandashanLauncher.exe
C:\Windows\system32\tasks\{638FF75C-0CE8-441F-BEC8-BF9555DD423D} - C:\Windows\system32\pcalua.exe -a C:\Avastantivir\aswRunDll.exe -c "C:\Avastantivir\Setup\setiface.dll" RunSetup
C:\Windows\system32\tasks\{6CFBCDD2-220F-4DE5-82B3-730A1C967817} - D:\World of Warcraft\PandashanLauncher.exe
C:\Windows\system32\tasks\{6D971D95-4BCE-475E-814D-7B5B7ED12181} - C:\Windows\system32\pcalua.exe -a "C:\Users\David Hynek\Desktop\nba2k13\setup.exe" -d "C:\Users\David Hynek\Desktop\nba2k13"
C:\Windows\system32\tasks\{71E8A89D-5150-4D4D-8883-F147BB9FFE09} - C:\Windows\system32\pcalua.exe -a "C:\Users\David Hynek\Desktop\Wowhead_Client.exe" -d "C:\Users\David Hynek\Desktop"
C:\Windows\system32\tasks\{78E95B85-BAAF-40BB-BCF5-0587C7344E46} - D:\Cata\Cata.exe
C:\Windows\system32\tasks\{7C5DB924-5773-46D0-8104-270422FD976D} - C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Windows\system32\tasks\{85E0E4B9-F1DF-4398-9A85-45276493CB01} - C:\Windows\system32\pcalua.exe -a "D:\Tony Hawks Pro Skater HD\redist\dotnetfx35_SP1.exe" -d "D:\Tony Hawks Pro Skater HD\redist"
C:\Windows\system32\tasks\{8B295764-4E2C-455F-BA43-5C73D460FD5E} - D:\Steam\Steam.exe
C:\Windows\system32\tasks\{8ECC7C99-91A0-4425-9848-D561C2F33333} - C:\Windows\system32\pcalua.exe -a "C:\Users\David Hynek\Desktop\MNA\setup.exe" -d "C:\Users\David Hynek\Desktop\MNA"
C:\Windows\system32\tasks\{A57794C3-074C-42C8-8E54-3C4C2B4C9CBC} - C:\Windows\system32\pcalua.exe -a "D:\Steam\steamapps\common\Left 4 Dead 2\bin\addoninstaller.exe" -d "D:\Steam\steamapps\common\Left 4 Dead 2" -c /register
C:\Windows\system32\tasks\{A5BE9FBF-B10A-4567-B881-9A805252C90C} - D:\WoW Cata\Wow.exe
C:\Windows\system32\tasks\{BC2709D5-BB76-410D-8FB9-88A8C762AFF0} - C:\Windows\system32\pcalua.exe -a "C:\Users\David Hynek\Desktop\Fifa\Installer.exe" -d "C:\Users\David Hynek\Desktop\Fifa"
C:\Windows\system32\tasks\{C2A36E6E-496D-4079-892B-50F051B6CB51} - D:\WoW Cata\Wow.exe
C:\Windows\system32\tasks\{E0DFF7C1-CD92-48A5-A76D-0544801851B2} - D:\World of Warcraft\PandashanLauncher.exe
C:\Windows\system32\tasks\{E13A5D63-5173-41FC-9CB8-2AC152375160} - C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Windows\system32\tasks\{F9CE0497-3BC9-4BF4-9875-9E52B8897540} - C:\WoW Cata\Wow.exe
C:\Windows\system32\tasks\WPD\SqmUpload_S-1-5-21-1206595139-1558415813-2062055028-1001 - %windir%\system32\rundll32.exe portabledeviceapi.dll,#1
C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask - %systemroot%\system32\sc.exe start osppsvc
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\ConfigNotification - %systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION
C:\Windows\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\Windows\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\Windows\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -queuereporting
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask - %SystemRoot%\system32\Wat\WatAdminSvc.exe /run
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline - %SystemRoot%\system32\schtasks.exe /run /I /TN "\Microsoft\Windows\Windows Activation Technologies\ValidationTask"
C:\Windows\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\Windows\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation
C:\Windows\system32\tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask - sc.exe start sppsvc
C:\Windows\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\Windows\system32\tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem - %SystemRoot%\System32\powercfg.exe -energy -auto
C:\Windows\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Lpksetup - C:\Windows\System32\lpksetup.exe -v
C:\Windows\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Mcbuilder - C:\Windows\System32\mcbuilder.exe
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService - %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks - %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ehDRMInit - %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\InstallPlayReady - %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate - %SystemRoot%\ehome\mcupdate $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate_scheduled - %SystemRoot%\ehome\mcupdate -crl -hms -pscn 15
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURActivate - %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURDiscovery - %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscovery - %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 - %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 - %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PeriodicScanRetry - %windir%\ehome\MCUpdate.exe -pscn 0
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrScheduleTask - %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RecordingRestart - %SystemRoot%\ehome\ehrec /RestartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RegisterSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ReindexSearchRoot - %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\StartRecording - %SystemRoot%\ehome\ehrec /StartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\UpdateRecordPath - %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotifications.exe
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\Windows\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Uploader - %windir%\system32\WSqmCons.exe -u
C:\Windows\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\AitAgent - aitagent
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattel\DiagTrackRunner.exe /UploadEtlFilesOnly
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\Windows\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\Windows\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\Windows\system32\tasks\AVAST Software\Avast settings backup - C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs
=========Mozilla firefox=========
ProfilePath - C:\Users\David Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\3x5rgwnq.default-1458296225216
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 25.0.0.148 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_148.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\ZEON/PDF,version=2.0]
"Description"=
"Path"=C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 25.0.0.148 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_148.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll
C:\Users\David Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\3x5rgwnq.default-1458296225216\addons.json
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
Firefox Hello Beta (discontinued) - extension - loop@mozilla.org
C:\Users\David Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\3x5rgwnq.default-1458296225216\extensions.json
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - C:\Users\David Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\3x5rgwnq.default-1458296225216\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
Firefox Hello - extension - loop@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\loop@mozilla.org.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Websense Helper - extension - websensehelper@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\websensehelper@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
Avast Online Security - extension - wrc@avast.com - C:\Program Files\AVAST Software\Avast\WebRep\FF
Avast SafePrice - extension - sp@avast.com - C:\Program Files\AVAST Software\Avast\SafePrice\FF
C:\Users\David Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\3x5rgwnq.default-1458296225216\pluginreg.dat
Plugin - Silverlight Plug-In - 5.1.50905.0 - c:\Program Files\Microsoft Silverlight\5.1.50905.0\npctrl.dll
Plugin - Shockwave Flash - 25.0.0.127 - C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_127.dll
=========Google Chrome=========
C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Store 0.2
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension cfhdojbkjhnklbpkdaibdccddilifddb 1 Adblock Plus 1.13.2
Extension coobgpohoikkiipiblmjeljniedjpjpf 1 Vyhledávání Google 0.0.0.30
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension efaidnbmnnnibpcajpcglclefindmkaj 1 Adobe Acrobat 15.1.0.6
Extension ennkphjdgehloodpbhlhldgbnhmacadg Settings 0.2
Extension eofcbnmajmjmplflapaojjnihcjkigck 2 Avast SafePrice 10.2.0.190
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension gomekmidlodglbbmalcneegieacbdmki 2 Avast Online Security 11.1.0.242
Extension ilkgeioneoemibpddeiamfgiofnpjifm 1 The West 1.5
Extension jcbbonmofdkklhmaapkllflmpoccpiad 1 Všechny hry - Twitch 2016.3.18.38154
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mfffpogegjflfpflabcdkioaeobkgjik 1 GaiaAuthExtension 0.0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.2
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.2
Extension pafkbggdmjlpgkdkcbjmhmfcdpncadgh Google Now 1.2.0.1
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5717.116.0.4
Homepage:
default_search_provider.search_url:
C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Preferences
Plugin 1.4.7.796 Widevine Content Decryption Module C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.7.796\_platform_specific\win_x86\widevinecdmadapter.dll
Plugin Chrome PDF Viewer chrome-extension://mhjfbmdgcfjbbpaeojofohoefgiehjai/
Plugin 17.0.0.169 Shockwave Flash C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\PepperFlash\pepflashplayer.dll
Plugin Chrome Remote Desktop Viewer internal-remoting-viewer
Plugin Native Client C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\internal-nacl-plugin
Plugin Chrome PDF Viewer internal-pdf-viewer
Homepage:
default_search_provider.search_url:
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj]
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck]
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki]
"Path"=C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
======Registry dump ======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-02-20 883520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - D:\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-03-13 60576]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-02-20 758384]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-01-11 1483264]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2011-03-21 361984]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-05-05 2785064]
"SynAsusAcpi"=C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [2011-05-05 97064]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-03-13 617120]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-03-13 379552]
"IntelTBRunOnce"=wscript.exe //b //nologo C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs []
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2011-10-18 10357008]
"XMouseButtonControl"=C:\X-Mouse Button Control\XMouseButtonControl.exe [2016-05-22 1161240]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2015-06-01 183216]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2015-06-01 411056]
"Persistence"=C:\Windows\system32\igfxpers.exe [2015-06-01 453552]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2017-01-11 16781824]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2017-03-28 1882048]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"=C:\Users\David Hynek\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2017-04-03 1446000]
"CCleaner Monitoring"=C:\CCleaner\CCleaner64.exe [2017-03-03 9364696]
"TSMApplication"=C:\TradeSkillMaster Application\app\TSMApplication.exe [2016-08-16 1623040]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Nuance PDF Reader-reminder"=C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [2008-11-03 328992]
"ASUSPRP"=C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2011-10-20 3331312]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2011-07-22 5716608]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-08 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2011-09-13 2317312]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-02-20 205512]
"SystemExplorerAutoStart"=C:\Program Files (x86)\System Explorer\SystemExplorer.exe [2015-08-19 3389160]
"ASUS Screen Saver Protector"=C:\Windows\AsScrPro.exe [2012-02-10 3058304]
"CLMLServer"=C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2010-08-20 107816]
C:\Users\David Hynek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - D:\Microsoft Office\Office12\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\System32\nvinitx.dll, C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=D:\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"midi1"=wdmaud.drv
"VIDC.XFR1"=xfcodec64.dll
"VIDC.FPS1"=frapsv64.dll
"vidc.xtor"=DxtoryCodec64.dll
"vidc.x264"=C:\X264VF~1\X264VF~1.DLL
"msacm.l3codecp"=l3codecp.acm
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
====== File associations ======
.js - edit - C:\Windows\System32\Notepad.exe %1
====== List of files/folders created in the last 1 month ======
2431-09-15 20:37:49 ----A---- C:\Windows\system32\drivers\Smb_driver_Intel.sys
2431-09-15 20:37:49 ----A---- C:\Windows\system32\drivers\HECIx64.sys
2017-04-22 23:39:30 ----D---- C:\ProgramData\SWCUTemp
2017-04-22 23:34:22 ----D---- C:\_OTM
2017-04-22 18:13:22 ----D---- C:\AdwCleaner
2017-04-22 15:19:38 ----D---- C:\rsit
2017-04-21 23:31:49 ----D---- C:\Windows\SYSWOW64\NV
2017-04-21 23:31:49 ----D---- C:\Windows\system32\NV
2017-04-21 23:31:25 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2017-04-21 23:31:22 ----A---- C:\Windows\SYSWOW64\vulkaninfo.exe
2017-04-21 23:31:22 ----A---- C:\Windows\SYSWOW64\vulkan-1.dll
2017-04-21 23:31:22 ----A---- C:\Windows\system32\vulkaninfo.exe
2017-04-21 23:31:22 ----A---- C:\Windows\system32\vulkan-1.dll
2017-04-21 23:31:21 ----D---- C:\Program Files (x86)\VulkanRT
2017-04-21 23:26:08 ----A---- C:\Windows\SYSWOW64\nvptxJitCompiler.dll
2017-04-21 23:26:08 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2017-04-21 23:26:08 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2017-04-21 23:26:08 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2017-04-21 23:26:08 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\nvwgf2umx.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\nvptxJitCompiler.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\nvopencl.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\nvoglv64.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\nvoglshim64.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\NvIFR64.dll
2017-04-21 23:26:08 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2017-04-21 23:26:08 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2017-04-21 23:26:08 ----A---- C:\Windows\system32\drivers\nvkflt.sys
2017-04-21 23:26:07 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2017-04-21 23:26:07 ----A---- C:\Windows\SYSWOW64\nvfatbinaryLoader.dll
2017-04-21 23:26:07 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2017-04-21 23:26:07 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\NvFBC64.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvfatbinaryLoader.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvdispgenco6438165.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvdispco6438165.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvd3dumx.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvcuvid.dll
2017-04-21 23:26:07 ----A---- C:\Windows\system32\nvcuda.dll
2017-04-21 23:26:01 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2017-04-21 23:26:01 ----A---- C:\Windows\system32\nvcompiler.dll
2017-04-21 23:15:32 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2017-04-21 23:15:32 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2017-04-21 23:15:32 ----A---- C:\Windows\system32\nvspcap64.dll
2017-04-21 23:15:32 ----A---- C:\Windows\system32\nvspbridge64.dll
2017-04-21 23:15:32 ----A---- C:\Windows\system32\NvRtmpStreamer64.dll
2017-04-21 23:15:02 ----A---- C:\Windows\NvTelemetryContainerRecovery.bat
2017-04-21 23:14:43 ----A---- C:\Windows\system32\drivers\nvvhci.sys
2017-04-21 23:14:42 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2017-04-21 23:14:42 ----A---- C:\Windows\system32\nvaudcap64v.dll
2017-04-21 23:14:42 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2017-04-21 17:59:27 ----A---- C:\Windows\NvContainerRecovery.bat
2017-04-21 17:59:09 ----D---- C:\temp
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nvsvcr.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nvsvc64.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nvshext.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nvmctray.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nvcpl.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nv3dappshextr.dll
2017-04-21 17:34:21 ----A---- C:\Windows\system32\nv3dappshext.dll
2017-04-21 17:31:48 ----A---- C:\Windows\system32\nvumdshimx.dll
2017-04-21 17:31:47 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2017-04-21 17:31:47 ----A---- C:\Windows\system32\nvinitx.dll
2017-04-21 17:31:47 ----A---- C:\Windows\system32\nvdispgenco6436510.dll
2017-04-21 17:31:47 ----A---- C:\Windows\system32\nvdispco6436510.dll
2017-04-21 17:31:46 ----A---- C:\Windows\system32\nvapi64.dll
2017-04-16 17:35:09 ----D---- C:\HWMonitor
2017-04-15 15:36:20 ----D---- C:\Users\David Hynek\AppData\Roaming\MAGIX
2017-04-14 10:21:30 ----D---- C:\ProgramData\Twitch
2017-04-14 10:21:28 ----D---- C:\Users\David Hynek\AppData\Roaming\Twitch
2017-04-12 11:25:40 ----A---- C:\Windows\system32\mshtml.dll
2017-04-12 11:25:38 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2017-04-12 11:25:36 ----A---- C:\Windows\system32\ieframe.dll
2017-04-12 11:25:35 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2017-04-12 11:25:34 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2017-04-12 11:25:33 ----A---- C:\Windows\SYSWOW64\wininet.dll
2017-04-12 11:25:33 ----A---- C:\Windows\system32\wininet.dll
2017-04-12 11:25:32 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2017-04-12 11:25:32 ----A---- C:\Windows\system32\wuaueng.dll
2017-04-12 11:25:32 ----A---- C:\Windows\system32\ole32.dll
2017-04-12 11:25:32 ----A---- C:\Windows\system32\iertutil.dll
2017-04-12 11:25:29 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2017-04-12 11:25:29 ----A---- C:\Windows\system32\win32k.sys
2017-04-12 11:25:29 ----A---- C:\Windows\system32\urlmon.dll
2017-04-12 11:25:28 ----A---- C:\Windows\system32\wucltux.dll
2017-04-12 11:25:27 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2017-04-12 11:25:27 ----A---- C:\Windows\system32\wuapi.dll
2017-04-12 11:25:27 ----A---- C:\Windows\system32\win32spl.dll
2017-04-12 11:25:27 ----A---- C:\Windows\system32\samsrv.dll
2017-04-12 11:25:27 ----A---- C:\Windows\system32\quartz.dll
2017-04-12 11:25:26 ----A---- C:\Windows\system32\ucrtbase.dll
2017-04-12 11:25:26 ----A---- C:\Windows\system32\msfeeds.dll
2017-04-12 11:25:26 ----A---- C:\Windows\system32\cdosys.dll
2017-04-12 11:25:26 ----A---- C:\Windows\system32\atmfd.dll
2017-04-12 11:25:25 ----A---- C:\Windows\system32\gdi32.dll
2017-04-12 11:25:24 ----A---- C:\Windows\SYSWOW64\quartz.dll
2017-04-12 11:25:24 ----A---- C:\Windows\SYSWOW64\ole32.dll
2017-04-12 11:25:24 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2017-04-12 11:25:23 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2017-04-12 11:25:23 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll
2017-04-12 11:25:23 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2017-04-12 11:25:23 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2017-04-12 11:25:23 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2017-04-12 11:25:23 ----A---- C:\Windows\system32\iedkcs32.dll
2017-04-12 11:25:23 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2017-04-12 11:25:22 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\jscript.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2017-04-12 11:25:22 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2017-04-12 11:25:21 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2017-04-12 11:25:21 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2017-04-12 11:25:21 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2017-04-12 11:25:20 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2017-04-12 11:25:20 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-04-12 11:25:19 ----A---- C:\Windows\system32\ntdll.dll
2017-04-12 11:25:19 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-04-12 11:25:16 ----A---- C:\Windows\system32\jscript9.dll
2017-04-12 11:25:16 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2017-04-12 11:25:16 ----A---- C:\Windows\system32\asycfilt.dll
2017-04-12 11:25:15 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2017-04-12 11:25:15 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2017-04-12 11:25:15 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2017-04-12 11:25:15 ----A---- C:\Windows\system32\samlib.dll
2017-04-12 11:25:15 ----A---- C:\Windows\system32\mfmjpegdec.dll
2017-04-12 11:25:14 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2017-04-12 11:25:14 ----A---- C:\Windows\SYSWOW64\samlib.dll
2017-04-12 11:25:14 ----A---- C:\Windows\SYSWOW64\mfmjpegdec.dll
2017-04-12 11:25:14 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2017-04-12 11:25:14 ----A---- C:\Windows\system32\webcheck.dll
2017-04-12 11:25:14 ----A---- C:\Windows\system32\rdpudd.dll
2017-04-12 11:25:14 ----A---- C:\Windows\system32\certcli.dll
2017-04-12 11:25:13 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2017-04-12 11:25:13 ----A---- C:\Windows\SYSWOW64\certcli.dll
2017-04-12 11:25:13 ----A---- C:\Windows\system32\wuwebv.dll
2017-04-12 11:25:13 ----A---- C:\Windows\system32\vbscript.dll
2017-04-12 11:25:13 ----A---- C:\Windows\system32\mshtmlmedia.dll
2017-04-12 11:25:13 ----A---- C:\Windows\system32\ie4uinit.exe
2017-04-12 11:25:12 ----A---- C:\Windows\SYSWOW64\wups.dll
2017-04-12 11:25:12 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2017-04-12 11:25:12 ----A---- C:\Windows\SYSWOW64\jscript.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\wups2.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\wups.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\wudriver.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\srcore.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\rpcrt4.dll
2017-04-12 11:25:12 ----A---- C:\Windows\system32\ieapfltr.dll
2017-04-12 11:25:11 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2017-04-12 11:25:11 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2017-04-12 11:25:11 ----A---- C:\Windows\system32\wuauclt.exe
2017-04-12 11:25:11 ----A---- C:\Windows\system32\lsasrv.dll
2017-04-12 11:25:11 ----A---- C:\Windows\system32\ieui.dll
2017-04-12 11:25:10 ----A---- C:\Windows\system32\dxtrans.dll
2017-04-12 11:25:10 ----A---- C:\Windows\system32\dxtmsft.dll
2017-04-12 11:25:10 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-04-12 11:25:09 ----A---- C:\Windows\system32\srclient.dll
2017-04-12 11:25:09 ----A---- C:\Windows\system32\smss.exe
2017-04-12 11:25:09 ----A---- C:\Windows\system32\msrating.dll
2017-04-12 11:25:09 ----A---- C:\Windows\system32\mshtmled.dll
2017-04-12 11:25:09 ----A---- C:\Windows\system32\kerberos.dll
2017-04-12 11:25:09 ----A---- C:\Windows\system32\advapi32.dll
2017-04-12 11:25:08 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2017-04-12 11:25:07 ----A---- C:\Windows\SYSWOW64\srclient.dll
2017-04-12 11:25:07 ----A---- C:\Windows\system32\WinSetupUI.dll
2017-04-12 11:25:07 ----A---- C:\Windows\system32\rstrui.exe
2017-04-12 11:25:07 ----A---- C:\Windows\system32\occache.dll
2017-04-12 11:25:07 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2017-04-12 11:25:07 ----A---- C:\Windows\system32\kernel32.dll
2017-04-12 11:25:07 ----A---- C:\Windows\system32\jsproxy.dll
2017-04-12 11:25:07 ----A---- C:\Windows\system32\jscript9diag.dll
2017-04-12 11:25:06 ----A---- C:\Windows\system32\schannel.dll
2017-04-12 11:25:06 ----A---- C:\Windows\system32\ieUnatt.exe
2017-04-12 11:25:06 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-04-12 11:25:06 ----A---- C:\Windows\system32\conhost.exe
2017-04-12 11:25:05 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2017-04-12 11:25:05 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2017-04-12 11:25:05 ----A---- C:\Windows\SYSWOW64\ieui.dll
2017-04-12 11:25:05 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2017-04-12 11:25:05 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\wow64win.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\winsrv.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\ncrypt.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\msv1_0.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\MshtmlDac.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\KernelBase.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\inseng.dll
2017-04-12 11:25:05 ----A---- C:\Windows\system32\ieetwproxystub.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\occache.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\msrating.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2017-04-12 11:25:04 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\wuapp.exe
2017-04-12 11:25:04 ----A---- C:\Windows\system32\wow64.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\wdigest.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\TSpkg.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\sspicli.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\iesetup.dll
2017-04-12 11:25:04 ----A---- C:\Windows\system32\bcrypt.dll
2017-04-12 11:25:03 ----A---- C:\Windows\system32\rpchttp.dll
2017-04-12 11:25:03 ----A---- C:\Windows\system32\iernonce.dll
2017-04-12 11:25:03 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-04-12 11:25:03 ----A---- C:\Windows\system32\cdd.dll
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\schannel.dll
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\inseng.dll
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2017-04-12 11:25:02 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2017-04-12 11:25:02 ----A---- C:\Windows\system32\ieetwcollector.exe
2017-04-12 11:25:02 ----A---- C:\Windows\system32\csrsrv.dll
2017-04-12 11:25:02 ----A---- C:\Windows\system32\cryptbase.dll
2017-04-12 11:24:59 ----A---- C:\Windows\system32\lsass.exe
2017-04-12 11:24:59 ----A---- C:\Windows\system32\drivers\appid.sys
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\secur32.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2017-04-12 11:24:58 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\wow64cpu.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\sspisrv.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\secur32.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\ntvdm64.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\lpk.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\fontsub.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\dciman32.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\credssp.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\appidsvc.dll
2017-04-12 11:24:58 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2017-04-12 11:24:58 ----A---- C:\Windows\system32\appidapi.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-04-12 11:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\wow32.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\lpk.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\credssp.dll
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2017-04-12 11:24:57 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2017-04-12 11:24:57 ----A---- C:\Windows\system32\rdpcorets.dll
2017-04-12 11:24:57 ----A---- C:\Windows\system32\auditpol.exe
2017-04-12 11:24:57 ----A---- C:\Windows\system32\atmlib.dll
2017-04-12 11:24:57 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-04-12 11:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-04-12 11:24:55 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\user.exe
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\tzres.dll
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\setup16.exe
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\instnm.exe
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2017-04-12 11:24:55 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2017-04-12 11:24:55 ----A---- C:\Windows\system32\tzres.dll
2017-04-12 11:24:55 ----A---- C:\Windows\system32\msaudite.dll
2017-04-12 11:24:55 ----A---- C:\Windows\system32\apisetschema.dll
2017-04-12 11:24:55 ----A---- C:\Windows\system32\adtschema.dll
2017-04-12 11:24:54 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2017-04-12 11:24:54 ----A---- C:\Windows\system32\msobjs.dll
2017-04-12 11:24:53 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2017-04-12 11:24:52 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2017-03-29 14:53:40 ----A---- C:\Windows\system32\SRSWOW64.dll
2017-03-29 14:53:40 ----A---- C:\Windows\system32\SRSTSX64.dll
2017-03-29 14:53:39 ----A---- C:\Windows\system32\SRSTSH64.dll
2017-03-29 14:53:39 ----A---- C:\Windows\system32\SRSHP64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFSAPO64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFProc64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFNHK64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFHAPO64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFDAPO64.dll
2017-03-29 14:53:34 ----A---- C:\Windows\system32\SFComm64.dll
2017-03-29 14:53:33 ----A---- C:\Windows\SYSWOW64\SFCOM.dll
2017-03-29 14:53:33 ----A---- C:\Windows\system32\SFCOM64.dll
2017-03-29 14:53:33 ----A---- C:\Windows\system32\SFAPO64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtPgEx64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtkCfg64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtkApi64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RTEEP64A.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RTEEL64A.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RTEEG64A.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RTEED64A.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RtDataProc64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RTCOM64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RP3DHT64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RP3DAA64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\RltkAPO64.dll
2017-03-29 14:53:32 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2017-03-29 14:53:32 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2017-03-29 14:53:31 ----A---- C:\Windows\system32\RCoRes64.dat
2017-03-29 14:53:31 ----A---- C:\Windows\system32\RCoInstII64.dll
2017-03-29 14:53:30 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2017-03-29 14:53:29 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2017-03-29 14:53:29 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2017-03-29 14:53:29 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2017-03-29 14:53:28 ----A---- C:\Windows\system32\FMAPO64.dll
2017-03-29 14:53:28 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2017-03-29 14:53:28 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2017-03-29 14:53:28 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2017-03-29 14:53:27 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2017-03-29 14:53:26 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2017-03-29 14:53:25 ----A---- C:\Windows\system32\AERTAR64.dll
2017-03-29 14:53:25 ----A---- C:\Windows\system32\AERTAC64.dll
====== List of files/folders modified in the last 1 month ======
2017-04-22 23:39:31 ----D---- C:\Program Files\trend micro
2017-04-22 23:39:30 ----D---- C:\ProgramData
2017-04-22 23:39:18 ----D---- C:\Windows\temp
2017-04-22 23:38:15 ----D---- C:\ProgramData\NVIDIA
2017-04-22 23:36:33 ----D---- C:\Windows\system32\config
2017-04-22 23:34:44 ----D---- C:\Windows\SysWOW64
2017-04-22 18:16:32 ----D---- C:\Windows
2017-04-22 18:15:28 ----D---- C:\Windows\SYSWOW64\drivers
2017-04-22 18:15:28 ----D---- C:\ProgramData\IObit
2017-04-22 18:10:57 ----D---- C:\Windows\inf
2017-04-22 15:17:38 ----D---- C:\Windows\SoftwareDistribution
2017-04-22 15:03:27 ----D---- C:\Users\David Hynek\AppData\Roaming\uTorrent
2017-04-22 13:48:04 ----D---- C:\Users\David Hynek\AppData\Roaming\TS3Client
2017-04-22 13:42:43 ----D---- C:\Windows\system32\NDF
2017-04-22 11:17:52 ----D---- C:\Windows\system32\drivers
2017-04-22 11:11:51 ----D---- C:\Windows\System32
2017-04-22 11:11:51 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-04-21 23:52:12 ----SHD---- C:\System Volume Information
2017-04-21 23:31:59 ----D---- C:\Program Files\NVIDIA Corporation
2017-04-21 23:31:57 ----D---- C:\ProgramData\NVIDIA Corporation
2017-04-21 23:31:21 ----RD---- C:\Program Files (x86)
2017-04-21 23:28:52 ----D---- C:\Windows\system32\DriverStore
2017-04-21 23:15:30 ----D---- C:\Windows\system32\Tasks
2017-04-21 23:15:22 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-04-21 17:34:19 ----D---- C:\Windows\Help
2017-04-20 13:02:21 ----D---- C:\Users\David Hynek\AppData\Roaming\Curse Client
2017-04-20 12:13:46 ----D---- C:\Windows\rescache
2017-04-18 23:50:34 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2017-04-18 23:50:27 ----D---- C:\Windows\system32\Macromed
2017-04-18 23:50:02 ----D---- C:\Windows\SYSWOW64\Macromed
2017-04-18 19:05:11 ----D---- C:\TeamSpeak 3 Client
2017-04-18 17:04:11 ----D---- C:\Program Files (x86)\vso
2017-04-18 17:04:09 ----D---- C:\Users\David Hynek\AppData\Roaming\Vso
2017-04-18 17:04:08 ----A---- C:\Users\David Hynek\AppData\Roaming\inst.exe
2017-04-18 16:54:31 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2017-04-18 16:54:29 ----SHD---- C:\Windows\Installer
2017-04-18 16:54:29 ----D---- C:\Config.Msi
2017-04-18 16:46:31 ----D---- C:\Program Files (x86)\ASUS
2017-04-18 16:45:57 ----D---- C:\Program Files (x86)\Common Files
2017-04-18 16:44:59 ----D---- C:\Program Files
2017-04-18 16:42:55 ----D---- C:\Program Files (x86)\CyberLink
2017-04-18 16:36:41 ----D---- C:\ProgramData\CyberLink
2017-04-18 16:17:13 ----A---- C:\Windows\SYSWOW64\acovcnt.exe
2017-04-18 12:31:06 ----D---- C:\Users\David Hynek\AppData\Roaming\Spotify
2017-04-16 20:30:28 ----D---- C:\Users\David Hynek\AppData\Roaming\discord
2017-04-15 16:07:05 ----D---- C:\Windows\debug
2017-04-15 15:47:21 ----D---- C:\ProgramData\Deadtime Stories
2017-04-15 15:47:02 ----D---- C:\ProgramData\Asus
2017-04-15 15:46:47 ----AD---- C:\ProgramData\Temp
2017-04-15 15:29:40 ----D---- C:\Program Files\P4G
2017-04-14 13:19:35 ----SD---- C:\Users\David Hynek\AppData\Roaming\Microsoft
2017-04-13 17:03:36 ----D---- C:\Windows\Prefetch
2017-04-12 14:56:49 ----D---- C:\Windows\Microsoft.NET
2017-04-12 14:52:20 ----RSD---- C:\Windows\assembly
2017-04-12 13:23:33 ----D---- C:\Windows\winsxs
2017-04-12 13:21:15 ----D---- C:\Program Files\Microsoft Silverlight
2017-04-12 13:21:15 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2017-04-12 13:18:28 ----D---- C:\Windows\SYSWOW64\en-US
2017-04-12 13:18:28 ----D---- C:\Windows\SYSWOW64\cs-CZ
2017-04-12 13:18:28 ----D---- C:\Program Files\Internet Explorer
2017-04-12 13:18:27 ----D---- C:\Windows\system32\cs-CZ
2017-04-12 13:18:26 ----D---- C:\Windows\system32\en-US
2017-04-12 13:18:25 ----D---- C:\Windows\AppPatch
2017-04-12 13:18:25 ----D---- C:\Program Files (x86)\Internet Explorer
2017-04-12 13:18:24 ----D---- C:\Windows\system32\Boot
2017-04-12 13:13:43 ----D---- C:\ProgramData\Microsoft Help
2017-04-12 13:05:16 ----D---- C:\Windows\system32\MRT
2017-04-12 13:04:46 ----AC---- C:\Windows\system32\MRT.exe
2017-04-12 13:02:00 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2017-04-12 11:00:27 ----D---- C:\Windows\system32\catroot2
2017-04-05 17:35:05 ----D---- C:\Users\David Hynek\AppData\Roaming\SimulationCraft
2017-04-05 17:25:59 ----D---- C:\Simulationcraft(x64)
2017-04-01 05:20:54 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2017-04-01 05:20:54 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2017-04-01 05:20:54 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2017-04-01 05:20:54 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2017-03-29 14:56:44 ----HD---- C:\Program Files (x86)\Temp
2017-03-29 14:54:53 ----D---- C:\Windows\SYSWOW64\RTCOM
2017-03-28 09:15:59 ----D---- C:\Program Files\Defraggler
File C:\Windows\system32\winlogon.exe is digitally signed
File C:\Windows\system32\wininit.exe is digitally signed
File C:\Windows\explorer.exe is digitally signed
File C:\Windows\SysWOW64\explorer.exe is digitally signed
File C:\Windows\system32\svchost.exe is digitally signed
File C:\Windows\SysWOW64\svchost.exe is digitally signed
File C:\Windows\system32\services.exe is digitally signed
File C:\Windows\system32\User32.dll is digitally signed
File C:\Windows\SysWOW64\User32.dll is digitally signed
File C:\Windows\system32\userinit.exe is digitally signed
File C:\Windows\SysWOW64\userinit.exe is digitally signed
File C:\Windows\system32\rpcss.dll is digitally signed
File C:\Windows\system32\Drivers\volsnap.sys is digitally signed
====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [2017-02-20 189768]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswbloga.sys [2017-02-20 334600]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [2017-02-20 48528]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2017-02-20 74680]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2017-02-20 337080]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-04-26 557848]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2017-04-01 38336]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [2017-02-20 309784]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2017-02-20 32088]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2017-02-20 100640]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2017-02-20 991496]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2017-02-20 547904]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
R1 nvkflt;nvkflt; C:\Windows\system32\DRIVERS\nvkflt.sys [2017-04-01 307768]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2017-02-20 126088]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2017-02-20 162528]
R2 speedfan;speedfan; \??\C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R2 TurboB;Turbo Boost UI Monitor driver; C:\Windows\system32\DRIVERS\TurboB.sys [2010-04-17 13832]
R3 AiCharger;ASUS Charger Driver; C:\Windows\system32\DRIVERS\AiCharger.sys [2011-09-20 16768]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-10-04 129512]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-10-04 394728]
R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2016-01-29 4171512]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-03-13 28832]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2015-06-01 5384176]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2017-01-11 5545472]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2013-07-16 129224]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-10-10 100312]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2017-03-28 47552]
R3 nvvhci;NVVHCI Enumerator Service; C:\Windows\system32\DRIVERS\nvvhci.sys [2017-03-28 57792]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2431-09-15 32496]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-05-05 1439792]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2017-02-20 38296]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-03-13 36000]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-03-13 298656]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-03-13 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-03-13 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-03-13 154272]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-03-13 280224]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-10-19 80384]
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2011-08-29 53760]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2011-05-14 48488]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-03-28 30144]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 semav6msr64;semav6msr64; \??\C:\Windows\system32\drivers\semav6msr64.sys [2016-10-18 21984]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 t_mouse.sys;HID-compliand device; C:\Windows\system32\DRIVERS\t_mouse.sys [2012-12-19 6144]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2014-05-16 141600]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2017-02-02 82640]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-02-20 262736]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; %SystemRoot%\System32\svchost.exe -k utcsvc;"ServiceDll" = %SystemRoot%\system32\diagtrack.dll
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-03-28 492480]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-04-01 462784]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-03-28 425408]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-10-17 76888]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2017-02-20 7142136]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
R3 SystemExplorerHelpService;System Explorer Service; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [2014-12-20 820960]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-03-20 105096]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-03-20 125064]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-04-18 271448]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2015-06-01 290224]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-05-14 1492840]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2017-03-25 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; D:\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-03-04 167880]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-03-28 492480]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-03-23 1590560]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-09-29 1255736]
S4 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-03-20 51320]
S4 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-03-13 138400]
S4 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-03-13 74912]
S4 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
S4 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-10-18 936272]
S4 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2011-10-18 1354064]
S4 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2011-10-18 1001808]
S4 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-10-06 325656]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-03-20 135800]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-03-20 135800]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-03-20 135800]
S4 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2009-04-17 247152]
S4 TurboBoost;Intel(R) Turbo Boost Technology Monitor; C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2010-04-17 134928]
S4 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-06 2655768]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problémy s notebookem - grafika,aktualizace,ramky
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problémy s notebookem - grafika,aktualizace,ramky
Počítač při bootování byl o něco rychlejší. Ostatní věci budu stále monitorovat.
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problémy s notebookem - grafika,aktualizace,ramky
OK. Ozvěte se.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problémy s notebookem - grafika,aktualizace,ramky
Problém s aktualizace je stále stejný.
Grafika stále padá dokonce se objevila i modrá smrt, ale minidump v složce windows ani není.
Grafika stále padá dokonce se objevila i modrá smrt, ale minidump v složce windows ani není.
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problémy s notebookem - grafika,aktualizace,ramky
Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problémy s notebookem - grafika,aktualizace,ramky
Kompletní sken myslíte - Vlastní skenování se zaškrtnutí Skenování na Rootkity a oba disky C a D?
PS: Mám free verzi..
PS: Mám free verzi..
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problémy s notebookem - grafika,aktualizace,ramky
Rootkity a stačí systémový disk.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?