Dobrý den, pravděpodobně mě trápí nějaký malware. Mohli byste mi poradit jaký program na to použít. Děkuji
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 31-08-2016
Ran by HP (administrator) on DESKTOP-7AG7CMM (02-09-2016 19:01:56)
Running from C:\Users\HP\Desktop
Loaded Profiles: HP (Available Profiles: HP)
Platform: Windows 10 Home Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(forum.viry.cz) C:\Users\HP\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585744 2015-03-13] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1514528 2015-03-13] (NVIDIA Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKU\S-1-5-21-1885177328-1543985305-2018638507-1001\...\MountPoints2: {1e8e7061-5a0d-11e6-b337-001644e703f3} - "D:\autorun.exe"
HKU\S-1-5-21-1885177328-1543985305-2018638507-1001\...\MountPoints2: {e2c761dd-4bf7-11e6-b333-001644e703f3} - "J:\autorun.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE OC_GURU.lnk [2016-08-04]
ShortcutTarget: GIGABYTE OC_GURU.lnk -> C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe (GIGABYTE Technology Co.,Ltd.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{167f9388-8ca3-4160-ad50-580fd0da006c}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{8cc65691-fa56-4aac-bd4f-fbae2d04d6c9}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-07-15] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-07-15] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-07-15] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-07-15] (Oracle Corporation)
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-07-15] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-07-15] (Oracle Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-07-15] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-07-15] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-07-13] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-07-13] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-31] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-31] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> mysearch.avg.com/?rvt=1
CHR StartupUrls: Default -> "hxxp://sketchtoy.com/66273269","hxxps://www.google.cz/?gws_rd=ssl"
CHR DefaultSearchURL: Default -> hxxps://mysearch.avg.com/search?rvt=1&sap=dsp&q={searchTerms}
CHR DefaultSearchKeyword: Default -> https://mysearch.avg.com
CHR DefaultSuggestURL: Default -> hxxps://toolbar.avg.com/acp?q={searchTerms}&o=1
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-14]
CHR Extension: (Dokumenty Google) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-14]
CHR Extension: (Disk Google) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-14]
CHR Extension: (Video MP3) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhphblkaomhhcfbpmgakpjpohoagkfje [2016-08-08]
CHR Extension: (YouTube) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-14]
CHR Extension: (AVG Secure Search) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2016-07-14]
CHR Extension: (Tabulky Google) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-14]
CHR Extension: (Dokumenty Google offline) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-15]
CHR Extension: (AdBlock) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-08-25]
CHR Extension: (Quick Earth) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\khodocggeplgfhppgagfdpbjkniadmdh [2016-07-14]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-14]
CHR Extension: (Gmail) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-14]
CHR Extension: (Chrome Media Router) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-31]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2015-03-13] (NVIDIA Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128 2015-03-13] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833360 2015-03-13] (NVIDIA Corporation)
S3 vmicvss; C:\Windows\System32\ICSvc.dll [511488 2015-10-30] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-07-01] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 DDJ-RBAudio; C:\Windows\system32\drivers\DDJ-RBAudio64.sys [40952 2016-04-19] (Pioneer DJ Corporation.)
S3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [14376 2014-08-28] ()
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-03-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2015-03-13] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek )
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-09-02 19:01 - 2016-09-02 19:02 - 00011558 _____ C:\Users\HP\Desktop\FRST.txt
2016-09-02 19:01 - 2016-09-02 19:01 - 00000000 ____D C:\FRST
2016-09-02 19:00 - 2016-09-02 19:01 - 00112640 _____ (forum.viry.cz) C:\Users\HP\Desktop\FRSTLauncher.exe
2016-09-02 18:58 - 2016-09-02 19:01 - 02397696 _____ (Farbar) C:\Users\HP\Desktop\FRST64.exe
2016-08-28 19:49 - 2016-08-28 19:49 - 00000000 ____D C:\Users\HP\AppData\Local\NBTExplorer
2016-08-28 19:47 - 2016-08-28 19:47 - 00790528 _____ C:\Users\HP\Downloads\NBTExplorer-2.7.6.msi
2016-08-28 19:47 - 2016-08-28 19:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NBTExplorer
2016-08-28 19:47 - 2016-08-28 19:47 - 00000000 ____D C:\Program Files (x86)\NBTExplorer
2016-08-28 19:43 - 2016-08-28 19:43 - 00000000 ____D C:\Users\HP\AppData\Local\KVK_Consultancy
2016-08-28 19:42 - 2016-08-28 19:43 - 00120832 _____ (KVK Consultancy) C:\Users\HP\Downloads\MineBack.exe
2016-08-27 18:30 - 2016-08-27 18:30 - 00003330 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task
2016-08-27 18:29 - 2016-08-27 18:29 - 00000000 ____D C:\Users\HP\AppData\Roaming\Skype
2016-08-26 18:25 - 2016-08-26 18:25 - 00364820 _____ C:\Windows\Minidump\082616-23093-01.dmp
2016-08-25 20:55 - 2016-08-25 20:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pioneer
2016-08-25 20:38 - 2016-08-30 20:09 - 00000000 ____D C:\Users\HP\AppData\Roaming\PioneerLog
2016-08-25 20:38 - 2016-08-25 21:40 - 00000000 ____D C:\Users\HP\Documents\rekordbox
2016-08-25 20:37 - 2016-08-25 20:37 - 00000976 _____ C:\Users\HP\Desktop\rekordbox.lnk
2016-08-25 20:37 - 2016-08-25 20:37 - 00000000 ____D C:\Users\HP\AppData\Roaming\Pioneer
2016-08-25 20:37 - 2016-08-25 20:37 - 00000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pioneer
2016-08-25 18:45 - 2016-08-25 18:56 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-08-25 18:45 - 2016-08-25 18:45 - 00001175 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-08-25 18:44 - 2016-08-25 18:44 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-08-25 18:44 - 2016-08-25 18:44 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-08-25 18:44 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-08-25 18:44 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-08-25 18:44 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-08-25 18:43 - 2016-08-25 18:36 - 00150995 _____ C:\Users\HP\Documents\dj1.xml
2016-08-25 18:43 - 2016-08-25 18:36 - 00005433 _____ C:\Users\HP\Documents\DJ2.m3u8
2016-08-25 18:41 - 2016-08-25 18:41 - 06358671 _____ C:\Users\HP\Documents\rekordbox_bak_20160825.zip
2016-08-25 18:23 - 2016-08-25 18:44 - 30303344 _____ C:\Users\HP\Downloads\mbam-setup-2.2.1.1043.exe
2016-08-21 14:08 - 2016-08-21 14:09 - 00320652 _____ C:\Windows\Minidump\082116-22203-01.dmp
2016-08-20 09:28 - 2016-08-20 09:28 - 00363068 _____ C:\Windows\Minidump\082016-15734-01.dmp
2016-08-19 22:58 - 2016-08-19 22:58 - 00000000 ____D C:\Users\HP\Downloads\DDJ-RB_v102_Win
2016-08-19 22:55 - 2016-08-19 22:55 - 00871804 _____ C:\Users\HP\Downloads\DDJ-RB_update_manual_e.pdf
2016-08-19 22:52 - 2016-08-19 22:52 - 00708964 _____ C:\Users\HP\Downloads\DDJ-RB_v102_Win.zip
2016-08-19 22:47 - 2016-08-19 22:47 - 00000000 ____D C:\Windows\LastGood.Tmp
2016-08-19 22:46 - 2016-06-30 14:02 - 00109568 _____ (Pioneer DJ Corporation.) C:\Windows\system32\DDJ-RB_ASIO64.dll
2016-08-19 21:54 - 2012-06-19 16:54 - 04065296 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-08-19 21:54 - 2012-06-19 13:31 - 00293889 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-08-19 21:54 - 2012-06-08 16:18 - 03615888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2016-08-19 21:54 - 2012-06-06 10:44 - 00869520 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-08-19 21:54 - 2012-06-01 09:37 - 02674320 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-08-19 21:54 - 2012-05-31 18:08 - 00105616 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-08-19 21:54 - 2012-05-25 18:06 - 01706640 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2016-08-19 21:54 - 2012-05-10 15:22 - 01262696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-08-19 21:54 - 2012-04-10 14:40 - 02533952 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-08-19 21:54 - 2012-03-08 11:47 - 00202336 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-08-19 21:54 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-08-19 21:54 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-08-19 21:54 - 2011-12-13 16:58 - 01560168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-08-19 21:54 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-08-19 21:54 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-08-19 21:54 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-08-19 21:54 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-08-19 21:54 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-08-19 21:54 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-08-19 21:54 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-08-19 21:54 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-08-19 21:54 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-08-19 21:54 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-08-19 21:52 - 2016-08-19 21:52 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-08-19 21:51 - 2016-08-19 21:55 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-08-19 21:41 - 2016-08-19 21:51 - 56324562 _____ (Realtek Semiconductor Corp.) C:\Users\HP\Downloads\64bit_Vista_Win7_Win8_R270.exe
2016-08-13 16:51 - 2016-08-13 16:51 - 00000000 ____D C:\Program Files (x86)\MSXML 4.0
2016-08-13 16:50 - 2016-08-13 16:51 - 02434048 _____ C:\Users\HP\Downloads\msxml.msi
2016-08-13 16:50 - 2016-08-13 16:50 - 00710976 _____ (Microsoft Corporation) C:\Users\HP\Downloads\msxmlcab.exe
2016-08-13 16:50 - 2016-08-13 16:50 - 00051318 _____ C:\Users\HP\Downloads\MSXML4 SP3 RTM Release Note.htm
2016-08-13 16:46 - 2016-08-13 16:46 - 00118592 _____ C:\Users\HP\Downloads\msxslsrc.exe
2016-08-13 16:46 - 2016-08-13 16:46 - 00024896 _____ (Microsoft) C:\Users\HP\Downloads\msxsl.exe
2016-08-13 16:45 - 2016-08-13 16:45 - 00000000 ____D C:\Users\HP\Documents\My Games
2016-08-13 16:37 - 2016-08-13 16:37 - 00000000 ____D C:\Users\HP\Downloads\Age of Mythology Gold Edition
2016-08-13 13:00 - 2016-08-13 16:37 - 1003154506 _____ C:\Users\HP\Downloads\Age-of-Mythology-cz-Gold-Edition.exe
2016-08-09 20:15 - 2016-08-03 12:36 - 00099680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2016-08-09 20:15 - 2016-08-03 12:23 - 00693600 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll
2016-08-09 20:15 - 2016-08-03 12:23 - 00115040 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll
2016-08-09 20:15 - 2016-08-03 12:22 - 00808288 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2016-08-09 20:15 - 2016-08-03 12:21 - 00566112 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2016-08-09 20:15 - 2016-08-03 12:19 - 00604928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-08-09 20:15 - 2016-08-03 12:19 - 00161632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-08-09 20:15 - 2016-08-03 12:13 - 01988448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-08-09 20:15 - 2016-08-03 12:13 - 00576864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2016-08-09 20:15 - 2016-08-03 12:13 - 00393056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-08-09 20:15 - 2016-08-03 11:51 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-08-09 20:15 - 2016-08-03 11:44 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2016-08-09 20:15 - 2016-08-03 11:44 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2016-08-09 20:15 - 2016-08-03 11:43 - 16985088 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2016-08-09 20:15 - 2016-08-03 11:40 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2016-08-09 20:15 - 2016-08-03 11:40 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2016-08-09 20:15 - 2016-08-03 11:39 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-08-09 20:15 - 2016-08-03 11:38 - 00379392 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2016-08-09 20:15 - 2016-08-03 11:36 - 00211456 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll
2016-08-09 20:15 - 2016-08-03 11:36 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-08-09 20:15 - 2016-08-03 11:35 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2016-08-09 20:15 - 2016-08-03 11:31 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\wevtutil.exe
2016-08-09 20:15 - 2016-08-03 11:30 - 00515072 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2016-08-09 20:15 - 2016-08-03 11:29 - 14252544 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-08-09 20:15 - 2016-08-03 11:29 - 01500160 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2016-08-09 20:15 - 2016-08-03 11:29 - 01387520 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2016-08-09 20:15 - 2016-08-03 11:28 - 01213440 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2016-08-09 20:15 - 2016-08-03 11:27 - 07536640 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2016-08-09 20:15 - 2016-08-03 11:27 - 01717760 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2016-08-09 20:15 - 2016-08-03 11:18 - 06974464 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2016-08-09 20:15 - 2016-08-03 11:18 - 01388032 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-08-09 20:15 - 2016-08-03 11:16 - 05123072 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2016-08-09 20:15 - 2016-08-03 11:16 - 03589120 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2016-08-09 20:15 - 2016-08-03 11:14 - 01997824 _____ (Microsoft Corporation) C:\Windows\system32\ActiveSyncProvider.dll
2016-08-09 20:15 - 2016-08-03 11:11 - 04171264 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-08-09 20:15 - 2016-08-03 07:52 - 00034088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wldp.dll
2016-08-09 20:15 - 2016-08-03 07:34 - 00501592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll
2016-08-09 20:15 - 2016-08-03 07:34 - 00084832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupApi.dll
2016-08-09 20:15 - 2016-08-03 07:33 - 00051128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsNativeApi.dll
2016-08-09 20:15 - 2016-08-03 07:31 - 02921368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-08-09 20:15 - 2016-08-03 07:31 - 00703840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2016-08-09 20:15 - 2016-08-03 06:57 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdlrecover.exe
2016-08-09 20:15 - 2016-08-03 06:48 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshbth.dll
2016-08-09 20:15 - 2016-08-03 06:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryClient.dll
2016-08-09 20:15 - 2016-08-03 06:44 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryBroker.dll
2016-08-09 20:15 - 2016-08-03 06:42 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BluetoothApis.dll
2016-08-09 20:15 - 2016-08-03 06:37 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEEventDispatcher.dll
2016-08-09 20:15 - 2016-08-03 06:34 - 00792064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-08-09 20:15 - 2016-08-03 06:32 - 12585984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-08-09 20:15 - 2016-08-03 06:32 - 00434688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll
2016-08-09 20:15 - 2016-08-03 06:31 - 06743040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2016-08-09 20:15 - 2016-08-03 06:31 - 00705536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-08-09 20:15 - 2016-08-03 06:25 - 04078080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2016-08-09 20:15 - 2016-08-03 06:19 - 02180096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2016-08-09 20:14 - 2016-08-03 13:14 - 01505984 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-08-09 20:14 - 2016-08-03 13:14 - 00092352 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-08-09 20:14 - 2016-08-03 13:14 - 00050368 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-08-09 20:14 - 2016-08-03 12:36 - 07469408 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-08-09 20:14 - 2016-08-03 12:36 - 00037744 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2016-08-09 20:14 - 2016-08-03 12:30 - 00026408 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-08-09 20:14 - 2016-08-03 12:22 - 01322760 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-08-09 20:14 - 2016-08-03 12:22 - 00465248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2016-08-09 20:14 - 2016-08-03 12:22 - 00331616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2016-08-09 20:14 - 2016-08-03 12:22 - 00058408 _____ (Microsoft Corporation) C:\Windows\system32\SensorsNativeApi.dll
2016-08-09 20:14 - 2016-08-03 12:21 - 22561256 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-08-09 20:14 - 2016-08-03 12:21 - 03675512 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-08-09 20:14 - 2016-08-03 12:21 - 00303216 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe
2016-08-09 20:14 - 2016-08-03 12:20 - 01540224 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2016-08-09 20:14 - 2016-08-03 12:20 - 00692136 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2016-08-09 20:14 - 2016-08-03 12:11 - 00422744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2016-08-09 20:14 - 2016-08-03 11:51 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\tdlrecover.exe
2016-08-09 20:14 - 2016-08-03 11:46 - 22384128 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2016-08-09 20:14 - 2016-08-03 11:44 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll
2016-08-09 20:14 - 2016-08-03 11:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryClient.dll
2016-08-09 20:14 - 2016-08-03 11:41 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryBroker.dll
2016-08-09 20:14 - 2016-08-03 11:40 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\VEDataLayerHelpers.dll
2016-08-09 20:14 - 2016-08-03 11:40 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\bthserv.dll
2016-08-09 20:14 - 2016-08-03 11:39 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\BluetoothApis.dll
2016-08-09 20:14 - 2016-08-03 11:38 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2016-08-09 20:14 - 2016-08-03 11:37 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\IdCtrls.dll
2016-08-09 20:14 - 2016-08-03 11:36 - 00221696 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-08-09 20:14 - 2016-08-03 11:35 - 00764928 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2016-08-09 20:14 - 2016-08-03 11:34 - 00383488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-08-09 20:14 - 2016-08-03 11:33 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\SensorService.dll
2016-08-09 20:14 - 2016-08-03 11:33 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\VEEventDispatcher.dll
2016-08-09 20:14 - 2016-08-03 11:31 - 00506880 _____ (Microsoft Corporation) C:\Windows\system32\tileobjserver.dll
2016-08-09 20:14 - 2016-08-03 11:31 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2016-08-09 20:14 - 2016-08-03 11:30 - 24613888 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-08-09 20:14 - 2016-08-03 11:30 - 00970752 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-08-09 20:14 - 2016-08-03 11:29 - 02127360 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-08-09 20:14 - 2016-08-03 11:29 - 00784384 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-08-09 20:14 - 2016-08-03 11:28 - 00848896 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-08-09 20:14 - 2016-08-03 11:28 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2016-08-09 20:14 - 2016-08-03 11:27 - 01752576 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-08-09 20:14 - 2016-08-03 11:27 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2016-08-09 20:14 - 2016-08-03 11:20 - 13390336 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-08-09 20:14 - 2016-08-03 11:18 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2016-08-09 20:14 - 2016-08-03 11:17 - 02175488 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2016-08-09 20:14 - 2016-08-03 11:16 - 02635776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2016-08-09 20:14 - 2016-08-03 11:16 - 01732096 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-08-09 20:14 - 2016-08-03 11:15 - 07833088 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2016-08-09 20:14 - 2016-08-03 11:14 - 04895232 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-08-09 20:14 - 2016-08-03 11:13 - 03025920 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-08-09 20:14 - 2016-08-03 11:13 - 02280960 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-08-09 20:14 - 2016-08-03 11:12 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
2016-08-09 20:14 - 2016-08-03 07:31 - 00957608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-08-09 20:14 - 2016-08-03 07:30 - 21123320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-08-09 20:14 - 2016-08-03 07:30 - 00465760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2016-08-09 20:14 - 2016-08-03 07:30 - 00255168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppHost.exe
2016-08-09 20:14 - 2016-08-03 06:47 - 13018112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2016-08-09 20:14 - 2016-08-03 06:40 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IdCtrls.dll
2016-08-09 20:14 - 2016-08-03 06:39 - 19351040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-08-09 20:14 - 2016-08-03 06:37 - 00335872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-08-09 20:14 - 2016-08-03 06:35 - 00286208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2016-08-09 20:14 - 2016-08-03 06:35 - 00178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtutil.exe
2016-08-09 20:14 - 2016-08-03 06:34 - 00400896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2016-08-09 20:14 - 2016-08-03 06:33 - 18677760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2016-08-09 20:14 - 2016-08-03 06:33 - 02050048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-08-09 20:14 - 2016-08-03 06:33 - 00687616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-08-09 20:14 - 2016-08-03 06:32 - 01526272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-08-09 20:14 - 2016-08-03 06:32 - 01467392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2016-08-09 20:14 - 2016-08-03 06:29 - 12133376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-08-09 20:14 - 2016-08-03 06:28 - 03663360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-08-09 20:14 - 2016-08-03 06:25 - 05323776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2016-08-09 20:14 - 2016-08-03 06:23 - 05660672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2016-08-09 20:14 - 2016-08-03 06:23 - 01799680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2016-08-09 20:14 - 2016-08-03 06:22 - 02501120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-08-09 20:14 - 2016-08-03 06:22 - 01502208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-08-09 20:14 - 2016-08-03 06:21 - 01708032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActiveSyncProvider.dll
2016-08-07 12:35 - 2016-08-07 12:35 - 00000000 ____D C:\Users\HP\Downloads\Hardwell Sylenth1 Soundset - Alonso
2016-08-07 12:34 - 2016-08-07 12:35 - 01485384 _____ C:\Users\HP\Downloads\Hardwell Sylenth1 Soundset - Alonso.zip
2016-08-07 12:29 - 2016-08-07 12:29 - 00000000 ____D C:\Users\HP\Downloads\TRY-AS_Hardwell_Sylenth1_Soundset_Vol_2
2016-08-07 12:28 - 2016-08-07 12:28 - 01500920 _____ C:\Users\HP\Downloads\TRY-AS_Hardwell_Sylenth1_Soundset_Vol_2.zip
2016-08-07 12:27 - 2016-08-07 12:29 - 15612070 _____ C:\Users\HP\Downloads\Sylenth1 v2.2.1.1 Soundbanks.rar
2016-08-07 12:21 - 2016-08-07 12:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sylenth1
2016-08-07 12:21 - 2016-08-07 12:21 - 00000000 ____D C:\Program Files (x86)\Steinberg
2016-08-07 12:20 - 2016-08-07 12:20 - 00000000 ____D C:\Users\HP\Downloads\Sylenth1 V2.2.1
2016-08-07 12:18 - 2016-08-07 12:19 - 05551573 _____ C:\Users\HP\Downloads\Sylenth1 V2.2.1.zip
2016-08-07 12:06 - 2016-08-07 12:06 - 00003842 _____ C:\Users\HP\Downloads\d-aeolian-midi.mid
2016-08-07 11:51 - 2016-08-07 11:51 - 00003393 _____ C:\Users\HP\Downloads\d-major-midi.mid
2016-08-07 11:46 - 2016-08-07 11:46 - 00001211 _____ C:\Users\HP\Desktop\ASIO4ALL v2 Instruction Manual.lnk
2016-08-07 11:46 - 2016-08-07 11:46 - 00000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2
2016-08-07 11:46 - 2016-08-07 11:46 - 00000000 ____D C:\Program Files (x86)\ASIO4ALL v2
2016-08-07 11:45 - 2016-08-07 11:45 - 00000000 ____D C:\Users\HP\Documents\Image-Line
2016-08-07 11:45 - 2016-08-07 11:45 - 00000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
2016-08-07 11:45 - 2016-08-07 11:45 - 00000000 ____D C:\Users\HP\AppData\Roaming\Image-Line
2016-08-07 11:45 - 2016-08-07 11:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line
2016-08-07 11:45 - 2016-08-07 11:45 - 00000000 ____D C:\Program Files\Image-Line
2016-08-07 11:45 - 2016-08-07 11:45 - 00000000 ____D C:\Program Files\Common Files\VST2
2016-08-07 11:45 - 2016-08-07 11:45 - 00000000 ____D C:\Program Files\Common Files\Propellerhead Software
2016-08-07 11:45 - 2016-08-07 11:45 - 00000000 ____D C:\Program Files (x86)\VstPlugins
2016-08-07 11:37 - 2016-08-07 11:46 - 00000000 ____D C:\Program Files (x86)\Image-Line
2016-08-07 11:37 - 2016-08-07 11:37 - 00001839 _____ C:\Users\HP\Downloads\FLstudioREG.zip
2016-08-05 21:50 - 2016-08-07 11:36 - 646524744 _____ (Image-Line) C:\Users\HP\Downloads\flstudio_12.3.exe
2016-08-04 12:58 - 2016-08-19 21:44 - 00000000 ____D C:\Users\HP\AppData\Local\NVIDIA Corporation
2016-08-04 08:44 - 2015-07-13 19:17 - 00572048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2016-08-04 08:05 - 2016-08-04 08:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-08-04 08:05 - 2015-03-13 21:41 - 01756424 ____R (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2016-08-04 08:05 - 2015-03-13 21:41 - 01514528 ____R (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2016-08-04 08:05 - 2015-03-13 21:41 - 01316184 ____R (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2016-08-04 08:05 - 2015-03-13 21:41 - 01278920 ____R (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2016-08-04 08:05 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2016-08-04 08:05 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2016-08-04 08:05 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2016-08-04 08:05 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2016-08-04 08:05 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2016-08-04 08:05 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2016-08-04 08:04 - 2016-09-02 18:53 - 00000000 ____D C:\ProgramData\NVIDIA
2016-08-04 08:04 - 2016-08-04 08:04 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2016-08-04 08:04 - 2015-07-13 19:37 - 06873744 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-08-04 08:04 - 2015-07-13 19:37 - 03493008 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-08-04 08:04 - 2015-07-13 19:37 - 02558792 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-08-04 08:04 - 2015-07-13 19:37 - 00937616 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2016-08-04 08:04 - 2015-07-13 19:37 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-08-04 08:04 - 2015-07-13 19:37 - 00062792 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-08-04 08:04 - 2015-07-13 18:28 - 05096627 _____ C:\Windows\system32\nvcoproc.bin
2016-08-04 08:04 - 2015-04-16 19:03 - 00195912 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2016-08-04 08:04 - 2015-04-16 07:19 - 01558848 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2016-08-04 08:04 - 2015-03-13 21:41 - 00038032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2016-08-04 08:04 - 2015-03-13 21:41 - 00035472 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2016-08-04 08:04 - 2015-03-13 21:41 - 00032400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2016-08-04 08:03 - 2016-08-04 12:58 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-08-04 08:03 - 2015-07-13 20:45 - 00112784 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-08-04 08:03 - 2015-07-13 20:45 - 00105104 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-08-04 08:03 - 2015-07-13 20:45 - 00031976 _____ C:\Windows\system32\nvinfo.pb
2016-08-04 08:03 - 2015-03-13 21:41 - 01896136 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434788.dll
2016-08-04 08:03 - 2015-03-13 21:41 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434788.dll
2016-08-04 07:59 - 2015-07-13 20:45 - 18514616 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-08-04 07:59 - 2015-07-13 20:45 - 11139216 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-08-04 07:59 - 2015-07-13 20:45 - 03344672 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-08-04 07:59 - 2015-07-13 20:45 - 01165192 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-08-04 07:59 - 2015-03-13 21:41 - 00833680 _____ C:\Windows\system32\nvmcumd.dll
2016-08-04 07:54 - 2016-08-04 07:54 - 00000000 ____D C:\Users\HP\Documents\temp
2016-08-04 07:54 - 2016-08-04 07:54 - 00000000 ____D C:\GvTemp
2016-08-04 07:53 - 2016-08-19 21:54 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-08-04 07:53 - 2016-08-04 07:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIGABYTE
2016-08-04 07:53 - 2016-08-04 07:53 - 00000000 ____D C:\Program Files (x86)\GIGABYTE
2016-08-04 07:49 - 2016-08-04 07:50 - 00348516 _____ C:\Windows\Minidump\080416-16031-01.dmp
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-09-02 18:59 - 2016-07-12 15:00 - 01683934 _____ C:\Windows\system32\PerfStringBackup.INI
2016-09-02 18:59 - 2015-10-30 20:31 - 00715612 _____ C:\Windows\system32\perfh005.dat
2016-09-02 18:59 - 2015-10-30 20:31 - 00142874 _____ C:\Windows\system32\perfc005.dat
2016-09-02 18:59 - 2015-10-30 09:21 - 00000000 ____D C:\Windows\INF
2016-09-02 18:54 - 2016-07-14 22:15 - 00000988 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-09-02 18:53 - 2016-07-12 15:02 - 00000000 ____D C:\Users\HP
2016-09-02 18:53 - 2016-07-12 14:56 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-09-02 18:53 - 2015-10-30 08:28 - 00524288 ___SH C:\Windows\system32\config\BBI
2016-09-02 18:27 - 2016-07-15 17:52 - 00004206 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{0CF4E694-D0E9-43CF-B656-26EEF1624F92}
2016-08-31 00:30 - 2016-07-14 22:15 - 00000992 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-30 22:15 - 2016-07-15 13:24 - 00000000 ____D C:\Users\HP\Desktop\FTB_Pack_Install
2016-08-30 22:14 - 2016-07-15 12:48 - 00000000 ____D C:\Users\HP\Documents\FTB_Pack_Install
2016-08-28 19:43 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\AppReadiness
2016-08-27 19:06 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-08-27 18:30 - 2016-07-12 15:04 - 00002382 _____ C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-08-27 18:30 - 2016-07-12 15:04 - 00000000 ___RD C:\Users\HP\OneDrive
2016-08-26 18:52 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\rescache
2016-08-26 18:37 - 2016-07-21 16:44 - 00000000 ____D C:\Users\HP\AppData\Local\ElevatedDiagnostics
2016-08-26 18:25 - 2016-07-17 10:24 - 817829500 _____ C:\Windows\MEMORY.DMP
2016-08-26 18:25 - 2016-07-12 15:54 - 00000000 ____D C:\Windows\Minidump
2016-08-25 21:00 - 2016-07-18 12:02 - 00000000 ____D C:\Users\HP\Documents\Sequences
2016-08-25 20:55 - 2016-07-14 23:01 - 00000000 ____D C:\Program Files (x86)\Pioneer
2016-08-25 18:41 - 2016-07-21 17:06 - 00000000 ____D C:\Users\HP\Documents\rekordbox_bak
2016-08-19 21:54 - 2016-07-12 15:14 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-08-19 21:45 - 2016-07-12 15:37 - 00000000 ____D C:\Users\HP\AppData\Local\NVIDIA
2016-08-19 21:36 - 2016-07-12 15:02 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-08-15 10:45 - 2015-10-30 20:35 - 00000000 ____D C:\Program Files\Windows Journal
2016-08-15 10:45 - 2015-10-30 09:24 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2016-08-15 10:45 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\appraiser
2016-08-13 18:03 - 2016-07-15 11:31 - 00000000 ___RD C:\Users\HP\Desktop\Hry
2016-08-13 16:41 - 2015-10-30 09:17 - 00480256 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2016-08-13 16:41 - 2015-10-30 09:17 - 00395264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2016-08-13 16:41 - 2015-10-30 09:17 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplayx.dll
2016-08-13 16:41 - 2015-10-30 09:17 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2016-08-13 16:41 - 2015-10-30 09:17 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll
2016-08-13 16:41 - 2015-10-30 09:17 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpwsockx.dll
2016-08-13 16:41 - 2015-10-30 09:17 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2016-08-13 16:41 - 2015-10-30 09:17 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpmodemx.dll
2016-08-13 16:41 - 2015-10-30 09:17 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe
2016-08-13 16:41 - 2015-10-30 09:17 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplaysvr.exe
2016-08-13 16:41 - 2015-10-30 09:17 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2016-08-13 16:41 - 2015-10-30 09:17 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2016-08-13 16:41 - 2015-10-30 09:17 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll
2016-08-13 16:41 - 2015-10-30 09:17 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll
2016-08-13 16:41 - 2015-10-30 09:17 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll
2016-08-13 16:41 - 2015-10-30 09:17 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2016-08-13 16:41 - 2015-10-30 09:17 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll
2016-08-13 16:41 - 2015-10-30 09:17 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll
2016-08-13 16:41 - 2015-10-30 09:11 - 00000000 ____D C:\Windows\CbsTemp
2016-08-09 21:05 - 2016-07-15 11:31 - 00000000 ___RD C:\Users\HP\Desktop\Programy
2016-08-09 20:52 - 2016-07-12 15:19 - 00000000 ____D C:\Windows\system32\MRT
2016-08-09 20:52 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\SecureBootUpdates
2016-08-09 20:49 - 2016-07-12 15:19 - 147640136 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-08-08 22:32 - 2016-07-14 22:21 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-08 22:07 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\LiveKernelReports
2016-08-07 12:23 - 2016-07-12 15:02 - 00000000 ____D C:\Users\HP\AppData\Local\VirtualStore
2016-08-04 08:05 - 2016-07-12 15:18 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-08-04 08:05 - 2016-07-12 15:18 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-08-04 08:04 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\Help
2016-08-03 23:28 - 2016-07-12 16:42 - 00004562 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-08-03 23:28 - 2016-07-12 16:42 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
==================== Files in the root of some directories =======
Some files in TEMP:
====================
C:\Users\HP\AppData\Local\Temp\12345.exe
C:\Users\HP\AppData\Local\Temp\Fix-Hauppauge-Permissions.exe
C:\Users\HP\AppData\Local\Temp\hcwclear.exe
C:\Users\HP\AppData\Local\Temp\jre-8u101-windows-au.exe
C:\Users\HP\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\HP\AppData\Local\Temp\nvStInst.exe
C:\Users\HP\AppData\Local\Temp\Uninstall.exe
C:\Users\HP\AppData\Local\Temp\vcredist_x86.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\HP\Desktop" je 356 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
==================== End Of Log ==============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Malware
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Malware
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?