Ahoj! Tak po delší době jsem tu zas. Poslední dobou se mi stává, že počítač jede pomaleji a ramky se nenačítají tak, jak by měli, z 8gb mám usable only 3,90.
Chci se ujistit. že to není virem.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Nix0ne at 2017-06-25 09:30:40
Microsoft Windows 10 Pro
System drive C: has 731 GB (77%) free of 953 GB
Total RAM: 3996 MB (48% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:30:45, on 25.06.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0953)
Boot mode: Normal
Running processes:
C:\Users\Nix0ne\Desktop\vibranceGUI.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Program Files\trend micro\Nix0ne.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKCU\..\Run: [AMDDVR] "C:\Program Files\AMD\CNext\CNext\amddvr.exe"
O4 - HKCU\..\Run: [vibranceGUI] "C:\Users\Nix0ne\Desktop\vibranceGUI.exe" -minimized
O4 - HKCU\..\Run: [Gyazo] C:\Program Files (x86)\Gyazo\GyStation.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: SteelSeries Engine 3.lnk = C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Windows Connectivity Manager for Gramblr (gramblrclient) - Unknown owner - C:\Program Files\Gramblr\gramblr.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 6742 bytes
======Listing Processes======
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"dwm.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\svchost.exe -k NetworkService
atieclxx
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\Gramblr\gramblr.exe"
dashost.exe {e37d3662-eaf3-4faa-858eb0d9cc3918b5}
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k appmodel
sihost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe atlogon
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Users\Nix0ne\Desktop\vibranceGUI.exe" -minimized
"C:\Program Files\Opera\45.0.2552.898\opera.exe" --ran-launcher --opener-id="hYQSsWeytLCRPIcnC:\Windows\explorer.exe"
"C:\Program Files\Opera\45.0.2552.898\opera_crashreporter.exe" --ran-launcher --opener-id="hYQSsWeytLCRPIcnC:\Windows\explorer.exe" --crash-reporter-parent-id=4920
"C:\Program Files\Opera\45.0.2552.898\opera.exe" --type=gpu-process --field-trial-handle=1632 --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=on --crash-reporter-pid=3224 --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,10,19,20,23,26,41,74 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --gpu-vendor-id=0x1002 --gpu-device-id=0x6811 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=22.19.171.257 --gpu-driver-date=6-12-2017 --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=on --crash-reporter-pid=3224 --service-request-channel-token=70213943DCF0850693EA029E7C56BF2A --mojo-platform-channel-handle=1648 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files\Opera\45.0.2552.898\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --field-trial-handle=1632 --primordial-pipe-token=C2CDFFB2214695770A4893CD13740198 --lang=cs --extension-process --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=on --crash-reporter-pid=3224 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=C2CDFFB2214695770A4893CD13740198 --renderer-client-id=3 --mojo-platform-channel-handle=2296 /prefetch:1
"C:\Program Files\Opera\45.0.2552.898\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --field-trial-handle=1632 --primordial-pipe-token=E0750894D3B2991EB5FC56EC36F4B056 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=on --crash-reporter-pid=3224 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=E0750894D3B2991EB5FC56EC36F4B056 --renderer-client-id=6 --mojo-platform-channel-handle=2700 /prefetch:1
"C:\Program Files\Opera\45.0.2552.898\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --field-trial-handle=1632 --primordial-pipe-token=411AFB111C3C4FD0B258659CD55D89AD --lang=cs --extension-process --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=on --crash-reporter-pid=3224 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=411AFB111C3C4FD0B258659CD55D89AD --renderer-client-id=4 --mojo-platform-channel-handle=3396 /prefetch:1
"C:\Program Files\Opera\45.0.2552.898\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --field-trial-handle=1632 --primordial-pipe-token=8803A966C9576553FD94F53AF1B0BD5E --lang=cs --extension-process --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=on --crash-reporter-pid=3224 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=8803A966C9576553FD94F53AF1B0BD5E --renderer-client-id=10 --mojo-platform-channel-handle=4356 /prefetch:1
"C:\Program Files\Opera\45.0.2552.898\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --field-trial-handle=1632 --primordial-pipe-token=66637C3DFA2340C36E69C8BE672E2D93 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=on --crash-reporter-pid=3224 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=66637C3DFA2340C36E69C8BE672E2D93 --renderer-client-id=11 --mojo-platform-channel-handle=5664 /prefetch:1
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85}
"C:\Program Files (x86)\Steam\Steam.exe"
"C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe" "-cachedir=C:\Users\Nix0ne\AppData\Local\Steam\htmlcache" "-steampid=4844" "-buildid=1496897923" "-steamid=0" "-clientui=C:\Program Files (x86)\Steam\clientui" --disable-spell-checking --disable-out-of-process-pac --disable-smooth-scrolling --disable-gpu-compositing --disable-gpu --enable-direct-write "--log-file=C:\Program Files (x86)\Steam\logs\cef_log.txt"
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Program Files\Windows Defender\\MpCmdRun.exe" SpyNetServiceDss -RestrictPrivileges -AccessKey FA23AF17-0C76-4D49-CA34-DFB66B5C0F9E -Reinvoke
"C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe" --type=renderer --disable-gpu-compositing --disable-smooth-scrolling --enable-pinch --primordial-pipe-token=061BB71EFFA3C253370B71A43F8C7E16 --lang=en-US --lang=cs-CZ --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --disable-spell-checking --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --disable-accelerated-video-decode --disable-webrtc-hw-vp8-encoding --disable-gpu-compositing --service-request-channel-token=061BB71EFFA3C253370B71A43F8C7E16 --renderer-client-id=5 --mojo-platform-channel-handle=2084 /prefetch:1
"C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe" --type=renderer --disable-gpu-compositing --disable-smooth-scrolling --enable-pinch --primordial-pipe-token=C2317F49DB2329F7BD6657E4A0231CCF --lang=en-US --lang=cs-CZ --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --disable-spell-checking --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --disable-accelerated-video-decode --disable-webrtc-hw-vp8-encoding --disable-gpu-compositing --service-request-channel-token=C2317F49DB2329F7BD6657E4A0231CCF --renderer-client-id=6 --mojo-platform-channel-handle=3536 /prefetch:1
"C:\Program Files\Opera\45.0.2552.898\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --field-trial-handle=1632 --primordial-pipe-token=F31D15044BB68C6EDD09FBE3C5B18401 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=on --crash-reporter-pid=3224 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=F31D15044BB68C6EDD09FBE3C5B18401 --renderer-client-id=34 --mojo-platform-channel-handle=404 /prefetch:1
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-98f05684-99c5-4e0c-bb3d-1003e1d48270 -SystemEventPortName:HostProcess-747b65f2-731d-4ef4-a1fd-06e6731845b4 -IoCancelEventPortName:HostProcess-a0535a42-c52b-4694-9e7b-fc1ed912032f -NonStateChangingEventPortName:HostProcess-c0aa974a-1a4a-421a-b183-a0acaeebd49d -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:0b22805d-3d26-42fa-b729-bdab618b2ba3 -DeviceGroupId:WudfDefaultDevicePool
"C:\Program Files\Opera\45.0.2552.898\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --field-trial-handle=1632 --primordial-pipe-token=FC5BFF1B382B39EA062C437EDAB988BD --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=on --crash-reporter-pid=3224 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=FC5BFF1B382B39EA062C437EDAB988BD --renderer-client-id=40 --mojo-platform-channel-handle=5672 /prefetch:1
"C:\Program Files\Opera\45.0.2552.898\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --field-trial-handle=1632 --primordial-pipe-token=A3A4A2AC20877A0B3AAA1D0F4BC19C3D --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=on --crash-reporter-pid=3224 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=A3A4A2AC20877A0B3AAA1D0F4BC19C3D --renderer-client-id=41 --mojo-platform-channel-handle=7652 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 648 652 660 8192 656
C:\WINDOWS\system32\AUDIODG.EXE 0x160
"C:\Users\Nix0ne\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"WindowsDefender"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-04-28 631808]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27 558496]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AMDDVR"=C:\Program Files\AMD\CNext\CNext\amddvr.exe []
"vibranceGUI"=C:\Users\Nix0ne\Desktop\vibranceGUI.exe [2017-05-02 795136]
"Gyazo"=C:\Program Files (x86)\Gyazo\GyStation.exe [2017-05-16 5077792]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
SteelSeries Engine 3.lnk - C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"FilterAdministratorToken"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-06-25 09:30:40 ----D---- C:\rsit
2017-06-25 09:30:40 ----D---- C:\Program Files\trend micro
2017-06-22 13:42:40 ----D---- C:\Users\Nix0ne\AppData\Roaming\11bitstudios
2017-06-21 12:18:08 ----AD---- C:\Program Files\Gramblr
2017-06-21 12:18:04 ----D---- C:\ProgramData\Gramblr
2017-06-18 12:02:45 ----D---- C:\WINDOWS\Microsoft Antimalware
2017-06-18 10:51:11 ----A---- C:\WINDOWS\system32\aspnet_counters.dll
2017-06-18 10:51:10 ----A---- C:\WINDOWS\SYSWOW64\aspnet_counters.dll
2017-06-18 10:50:58 ----A---- C:\WINDOWS\SYSWOW64\msvcp120_clr0400.dll
2017-06-18 10:50:58 ----A---- C:\WINDOWS\system32\msvcr100_clr0400.dll
2017-06-18 10:50:58 ----A---- C:\WINDOWS\system32\msvcp120_clr0400.dll
2017-06-18 10:50:56 ----A---- C:\WINDOWS\SYSWOW64\msvcr100_clr0400.dll
2017-06-18 10:50:49 ----A---- C:\WINDOWS\SYSWOW64\msvcr120_clr0400.dll
2017-06-18 10:50:49 ----A---- C:\WINDOWS\system32\msvcr120_clr0400.dll
2017-06-18 10:41:24 ----D---- C:\WINDOWS\pss
2017-06-16 23:12:57 ----D---- C:\AdwCleaner
2017-06-16 22:47:36 ----D---- C:\ProgramData\Origin
2017-06-16 21:54:43 ----D---- C:\WINDOWS\Minidump
2017-06-15 18:21:03 ----D---- C:\Users\Nix0ne\AppData\Roaming\Gyazo
2017-06-15 18:20:23 ----AD---- C:\Program Files (x86)\Gyazo
2017-06-15 12:49:32 ----AD---- C:\Program Files (x86)\AMD
2017-06-14 20:38:29 ----SD---- C:\WINDOWS\UpdateAssistantV2
2017-06-14 15:03:44 ----A---- C:\WINDOWS\SYSWOW64\netcorehc.dll
2017-06-14 15:03:41 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2017-06-14 15:03:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-06-14 15:03:36 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2017-06-14 15:03:34 ----A---- C:\WINDOWS\SYSWOW64\certutil.exe
2017-06-14 15:03:31 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2017-06-14 15:03:31 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2017-06-14 15:03:31 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2017-06-14 15:03:31 ----A---- C:\WINDOWS\SYSWOW64\fdProxy.dll
2017-06-14 15:03:27 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2017-06-14 15:03:27 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-06-14 15:03:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2017-06-14 15:03:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2017-06-14 15:03:24 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2017-06-14 15:03:24 ----A---- C:\WINDOWS\SYSWOW64\tcpipcfg.dll
2017-06-14 15:03:24 ----A---- C:\WINDOWS\SYSWOW64\ExSMime.dll
2017-06-14 15:03:24 ----A---- C:\WINDOWS\SYSWOW64\AppointmentActivation.dll
2017-06-14 15:03:23 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-06-14 15:03:23 ----A---- C:\WINDOWS\SYSWOW64\AuthBrokerUI.dll
2017-06-14 15:03:22 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2017-06-14 15:03:22 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2017-06-14 15:03:22 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2017-06-14 15:03:22 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-06-14 15:03:22 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2017-06-14 15:03:22 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-06-14 15:03:22 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2017-06-14 15:03:20 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2017-06-14 15:03:19 ----A---- C:\WINDOWS\SYSWOW64\NetSetupShim.dll
2017-06-14 15:03:19 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2017-06-14 15:03:19 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2017-06-14 15:03:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2017-06-14 15:03:14 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2017-06-14 15:03:12 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-06-14 15:03:11 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-06-14 15:03:11 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-06-14 15:03:10 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2017-06-14 15:03:08 ----A---- C:\WINDOWS\SYSWOW64\hnetcfg.dll
2017-06-14 15:03:07 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2017-06-14 15:03:07 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2017-06-14 15:03:07 ----A---- C:\WINDOWS\SYSWOW64\edputil.dll
2017-06-14 15:03:07 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2017-06-14 15:03:07 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2017-06-14 15:03:06 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2017-06-14 15:03:05 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2017-06-14 15:03:04 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2017-06-14 15:03:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2017-06-14 15:03:02 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2017-06-14 15:03:02 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2017-06-14 14:57:02 ----A---- C:\WINDOWS\system32\tquery.dll
2017-06-14 14:57:02 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2017-06-14 14:57:02 ----A---- C:\WINDOWS\system32\mssrch.dll
2017-06-14 14:57:02 ----A---- C:\WINDOWS\system32\mssprxy.dll
2017-06-14 14:56:27 ----A---- C:\WINDOWS\system32\winsrv.dll
2017-06-14 14:56:26 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-06-14 14:56:26 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-06-14 14:56:26 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-06-14 14:56:25 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-06-14 14:56:23 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-06-14 14:56:21 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-06-14 14:56:21 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-06-14 14:56:21 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2017-06-14 14:56:20 ----A---- C:\WINDOWS\system32\MusNotification.exe
2017-06-14 14:56:19 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-06-14 14:56:18 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-06-14 14:56:18 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2017-06-14 14:56:18 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2017-06-14 14:56:18 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2017-06-14 14:56:17 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2017-06-14 14:56:15 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2017-06-14 14:56:13 ----A---- C:\WINDOWS\system32\shell32.dll
2017-06-14 14:56:12 ----A---- C:\WINDOWS\system32\msv1_0.dll
2017-06-14 14:56:12 ----A---- C:\WINDOWS\system32\kerberos.dll
2017-06-14 14:56:12 ----A---- C:\WINDOWS\system32\AuthBrokerUI.dll
2017-06-14 14:56:11 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-06-14 14:56:11 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-06-14 14:56:11 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-06-14 14:56:11 ----A---- C:\WINDOWS\system32\cloudAP.dll
2017-06-14 14:56:11 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-06-14 14:56:09 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-06-14 14:55:54 ----A---- C:\WINDOWS\system32\win32spl.dll
2017-06-14 14:55:53 ----A---- C:\WINDOWS\system32\localspl.dll
2017-06-14 14:55:52 ----A---- C:\WINDOWS\system32\wpninprc.dll
2017-06-14 14:55:52 ----A---- C:\WINDOWS\system32\puiobj.dll
2017-06-14 14:55:52 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-06-14 14:55:51 ----A---- C:\WINDOWS\system32\OOBEUpdater.exe
2017-06-14 14:55:50 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2017-06-14 14:55:49 ----A---- C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2017-06-14 14:55:49 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2017-06-14 14:55:49 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2017-06-14 14:55:49 ----A---- C:\WINDOWS\system32\netcorehc.dll
2017-06-14 14:55:48 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2017-06-14 14:55:48 ----A---- C:\WINDOWS\system32\ImplatSetup.dll
2017-06-14 14:55:48 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2017-06-14 14:55:41 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-06-14 14:55:37 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-06-14 14:55:37 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2017-06-14 14:55:37 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-06-14 14:55:37 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2017-06-14 14:55:33 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-06-14 14:55:31 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-06-14 14:55:29 ----A---- C:\WINDOWS\system32\ieproxy.dll
2017-06-14 14:55:29 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-06-14 14:55:27 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-06-14 14:55:25 ----A---- C:\WINDOWS\system32\tzres.dll
2017-06-14 14:55:20 ----A---- C:\WINDOWS\system32\hnetcfg.dll
2017-06-14 14:55:18 ----A---- C:\WINDOWS\system32\HNetCfgClient.dll
2017-06-14 14:55:18 ----A---- C:\WINDOWS\HelpPane.exe
2017-06-14 14:55:16 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-06-14 14:55:16 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2017-06-14 14:55:16 ----A---- C:\WINDOWS\system32\atmlib.dll
2017-06-14 14:55:16 ----A---- C:\WINDOWS\system32\atmfd.dll
2017-06-14 14:55:10 ----A---- C:\WINDOWS\system32\efscore.dll
2017-06-14 14:55:10 ----A---- C:\WINDOWS\system32\edputil.dll
2017-06-14 14:55:09 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2017-06-14 14:55:08 ----A---- C:\WINDOWS\system32\FntCache.dll
2017-06-14 14:55:08 ----A---- C:\WINDOWS\system32\DWrite.dll
2017-06-14 14:55:06 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-06-14 14:55:06 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2017-06-14 14:55:06 ----A---- C:\WINDOWS\system32\dcntel.dll
2017-06-14 14:55:03 ----A---- C:\WINDOWS\system32\CPFilters.dll
2017-06-14 14:55:02 ----A---- C:\WINDOWS\system32\generaltel.dll
2017-06-14 14:55:02 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-06-14 14:55:02 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2017-06-14 14:55:02 ----A---- C:\WINDOWS\system32\appraiser.dll
2017-06-14 14:55:02 ----A---- C:\WINDOWS\system32\acmigration.dll
2017-06-14 14:55:00 ----A---- C:\WINDOWS\system32\certutil.exe
2017-06-14 14:54:54 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2017-06-14 14:54:42 ----A---- C:\WINDOWS\system32\invagent.dll
2017-06-14 14:54:42 ----A---- C:\WINDOWS\system32\devinv.dll
2017-06-14 14:54:42 ----A---- C:\WINDOWS\system32\aeinv.dll
2017-06-14 14:54:41 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-06-14 14:54:41 ----A---- C:\WINDOWS\system32\aepic.dll
2017-06-14 14:54:37 ----A---- C:\WINDOWS\system32\securekernel.exe
2017-06-14 14:54:37 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-06-14 14:54:35 ----A---- C:\WINDOWS\system32\hvix64.exe
2017-06-14 14:54:34 ----A---- C:\WINDOWS\system32\hvax64.exe
2017-06-14 14:54:32 ----A---- C:\WINDOWS\system32\fdProxy.dll
2017-06-14 14:54:06 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2017-06-14 14:54:06 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2017-06-14 14:54:06 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2017-06-14 14:54:06 ----A---- C:\WINDOWS\system32\drivers\BasicRender.sys
2017-06-13 21:53:00 ----A---- C:\WINDOWS\SYSWOW64\RapidFireServer.dll
2017-06-13 21:53:00 ----A---- C:\WINDOWS\SYSWOW64\Rapidfire.dll
2017-06-13 21:53:00 ----A---- C:\WINDOWS\SYSWOW64\mantleaxl32.dll
2017-06-13 21:53:00 ----A---- C:\WINDOWS\SYSWOW64\mantle32.dll
2017-06-13 21:53:00 ----A---- C:\WINDOWS\SYSWOW64\hsa-thunk.dll
2017-06-13 21:53:00 ----A---- C:\WINDOWS\system32\RapidFireServer64.dll
2017-06-13 21:53:00 ----A---- C:\WINDOWS\system32\Rapidfire64.dll
2017-06-13 21:53:00 ----A---- C:\WINDOWS\system32\mantleaxl64.dll
2017-06-13 21:53:00 ----A---- C:\WINDOWS\system32\mantle64.dll
2017-06-13 21:53:00 ----A---- C:\WINDOWS\system32\hsa-thunk64.dll
2017-06-13 21:53:00 ----A---- C:\WINDOWS\system32\GameManager64.dll
2017-06-13 21:53:00 ----A---- C:\WINDOWS\system32\dgtrayicon.exe
2017-06-13 21:53:00 ----A---- C:\WINDOWS\system32\clinfo.exe
2017-06-13 21:52:58 ----A---- C:\WINDOWS\SYSWOW64\atisamu32.dll
2017-06-13 21:52:58 ----A---- C:\WINDOWS\system32\atisamu64.dll
2017-06-13 21:52:56 ----A---- C:\WINDOWS\SYSWOW64\atimpc32.dll
2017-06-13 21:52:56 ----A---- C:\WINDOWS\system32\atimuixx.dll
2017-06-13 21:52:56 ----A---- C:\WINDOWS\system32\atimpc64.dll
2017-06-13 21:52:54 ----A---- C:\WINDOWS\SYSWOW64\atigktxx.dll
2017-06-13 21:52:54 ----A---- C:\WINDOWS\SYSWOW64\atieah32.exe
2017-06-13 21:52:54 ----A---- C:\WINDOWS\SYSWOW64\atidxx32.dll
2017-06-13 21:52:54 ----A---- C:\WINDOWS\SYSWOW64\aticfx32.dll
2017-06-13 21:52:54 ----A---- C:\WINDOWS\system32\atig6txx.dll
2017-06-13 21:52:54 ----A---- C:\WINDOWS\system32\atiesrxx.exe
2017-06-13 21:52:54 ----A---- C:\WINDOWS\system32\atieclxx.exe
2017-06-13 21:52:54 ----A---- C:\WINDOWS\system32\atieah64.exe
2017-06-13 21:52:54 ----A---- C:\WINDOWS\system32\atidxx64.dll
2017-06-13 21:52:54 ----A---- C:\WINDOWS\system32\atidemgy.dll
2017-06-13 21:52:54 ----A---- C:\WINDOWS\system32\aticfx64.dll
2017-06-13 21:52:52 ----A---- C:\WINDOWS\SYSWOW64\atiadlxx.dll
2017-06-13 21:52:52 ----A---- C:\WINDOWS\SYSWOW64\amfrt32.dll
2017-06-13 21:52:52 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2017-06-13 21:52:52 ----A---- C:\WINDOWS\system32\ati2erec.dll
2017-06-13 21:52:52 ----A---- C:\WINDOWS\system32\amfrt64.dll
2017-06-13 21:52:50 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2017-06-13 21:52:50 ----A---- C:\WINDOWS\SYSWOW64\amdxc32.dll
2017-06-13 21:52:50 ----A---- C:\WINDOWS\SYSWOW64\amdvlk32.dll
2017-06-13 21:52:50 ----A---- C:\WINDOWS\SYSWOW64\amdpcom32.dll
2017-06-13 21:52:50 ----A---- C:\WINDOWS\system32\OpenCL.dll
2017-06-13 21:52:50 ----A---- C:\WINDOWS\system32\amdxc64.dll
2017-06-13 21:52:50 ----A---- C:\WINDOWS\system32\amdvlk64.dll
2017-06-13 21:52:50 ----A---- C:\WINDOWS\system32\amdpcom64.dll
2017-06-13 21:52:46 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2017-06-13 21:52:44 ----A---- C:\WINDOWS\SYSWOW64\amdmcl32.dll
2017-06-13 21:52:44 ----A---- C:\WINDOWS\SYSWOW64\amdlvr32.dll
2017-06-13 21:52:44 ----A---- C:\WINDOWS\SYSWOW64\amdhcp32.dll
2017-06-13 21:52:44 ----A---- C:\WINDOWS\SYSWOW64\amdgfxinfo32.dll
2017-06-13 21:52:44 ----A---- C:\WINDOWS\SYSWOW64\amdave32.dll
2017-06-13 21:52:44 ----A---- C:\WINDOWS\system32\amdmcl64.dll
2017-06-13 21:52:44 ----A---- C:\WINDOWS\system32\amdlvr64.dll
2017-06-13 21:52:44 ----A---- C:\WINDOWS\system32\amdhcp64.dll
2017-06-13 21:52:44 ----A---- C:\WINDOWS\system32\amdgfxinfo64.dll
2017-06-13 21:52:44 ----A---- C:\WINDOWS\system32\amdave64.dll
2017-06-10 22:49:18 ----D---- C:\ProgramData\VS Revo Group
2017-06-10 22:49:17 ----A---- C:\WINDOWS\system32\drivers\revoflt.sys
2017-06-10 22:49:16 ----D---- C:\Program Files\VS Revo Group
2017-06-10 22:15:01 ----D---- C:\ProgramData\Movavi
2017-06-10 21:00:55 ----AD---- C:\Program Files (x86)\Free AVI to MP4 Converter
2017-06-09 11:17:11 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-06-09 11:17:11 ----D---- C:\Program Files (x86)\AGEIA Technologies
2017-06-06 19:19:14 ----D---- C:\Users\Nix0ne\AppData\Roaming\FACEIT
2017-06-05 21:53:14 ----A---- C:\WINDOWS\system32\drivers\FACEIT.sys
2017-06-05 21:53:06 ----AD---- C:\Program Files\FACEIT Client
2017-05-31 22:48:13 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2017-05-31 22:47:55 ----AD---- C:\Program Files\Adobe
2017-05-31 22:45:05 ----D---- C:\Program Files\Common Files\Adobe
2017-05-31 22:43:24 ----D---- C:\Users\Nix0ne\AppData\Roaming\Macromedia
2017-05-31 22:43:21 ----D---- C:\ProgramData\Adobe
2017-05-30 11:19:26 ----D---- C:\Program Files (x86)\SpeedFan
======List of files/folders modified in the last 1 month======
2017-06-25 09:30:40 ----RD---- C:\Program Files
2017-06-25 09:24:40 ----D---- C:\WINDOWS\Temp
2017-06-25 09:24:26 ----D---- C:\Program Files (x86)\Steam
2017-06-25 09:19:10 ----D---- C:\WINDOWS\System32
2017-06-25 09:19:10 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-06-25 09:11:36 ----D---- C:\WINDOWS\system32\sru
2017-06-25 09:08:34 ----D---- C:\WINDOWS\system32\SleepStudy
2017-06-25 08:53:33 ----D---- C:\WINDOWS\system32\Macromed
2017-06-25 08:53:31 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2017-06-24 23:39:44 ----D---- C:\WINDOWS\AppReadiness
2017-06-24 23:39:42 ----HD---- C:\Program Files\WindowsApps
2017-06-22 14:03:44 ----D---- C:\Users\Nix0ne\AppData\Roaming\TS3Client
2017-06-22 13:42:37 ----SHD---- C:\WINDOWS\Installer
2017-06-22 13:42:31 ----D---- C:\WINDOWS\WinSxS
2017-06-22 13:42:10 ----SHD---- C:\System Volume Information
2017-06-22 13:41:42 ----D---- C:\WINDOWS\system32\config
2017-06-22 13:10:10 ----AD---- C:\Program Files (x86)\Blizzard App
2017-06-22 12:19:00 ----RD---- C:\WINDOWS\Microsoft.NET
2017-06-21 12:18:04 ----HD---- C:\ProgramData
2017-06-21 11:17:55 ----D---- C:\WINDOWS\Prefetch
2017-06-18 12:02:45 ----D---- C:\Windows
2017-06-18 11:29:50 ----D---- C:\WINDOWS\system32\drivers
2017-06-18 11:28:16 ----D---- C:\WINDOWS\system32\WDI
2017-06-18 11:02:05 ----D---- C:\WINDOWS\system32\catroot2
2017-06-18 11:01:25 ----D---- C:\WINDOWS\SysWOW64
2017-06-18 10:55:44 ----D---- C:\WINDOWS\CbsTemp
2017-06-18 10:26:35 ----D---- C:\WINDOWS\INF
2017-06-17 17:24:16 ----RSD---- C:\WINDOWS\assembly
2017-06-16 22:46:22 ----D---- C:\Games
2017-06-16 13:47:25 ----D---- C:\Users\Nix0ne\AppData\Roaming\uTorrent
2017-06-16 12:34:21 ----D---- C:\WINDOWS\rescache
2017-06-15 18:20:26 ----D---- C:\WINDOWS\system32\Tasks
2017-06-15 18:20:23 ----D---- C:\Program Files (x86)
2017-06-15 16:26:28 ----D---- C:\WINDOWS\system32\DriverStore
2017-06-15 13:00:40 ----D---- C:\WINDOWS\system32\CatRoot
2017-06-15 12:38:23 ----D---- C:\AMD
2017-06-15 12:05:21 ----AD---- C:\Program Files\Opera
2017-06-14 20:38:33 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2017-06-14 20:38:32 ----D---- C:\WINDOWS\system32\wbem
2017-06-14 20:38:32 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2017-06-14 20:38:30 ----D---- C:\WINDOWS\system32\cs-CZ
2017-06-14 20:38:30 ----D---- C:\WINDOWS\system32\appraiser
2017-06-14 20:38:29 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-06-14 20:38:29 ----D---- C:\WINDOWS\ShellExperiences
2017-06-14 20:38:29 ----D---- C:\WINDOWS\AppPatch
2017-06-14 15:16:44 ----D---- C:\WINDOWS\system32\MRT
2017-06-14 15:15:18 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-06-14 13:55:34 ----AD---- C:\Program Files (x86)\Hearthstone
2017-06-13 21:53:00 ----A---- C:\WINDOWS\SYSWOW64\GameManager32.dll
2017-06-13 21:53:00 ----A---- C:\WINDOWS\SYSWOW64\detoured.dll
2017-06-13 21:53:00 ----A---- C:\WINDOWS\system32\detoured.dll
2017-06-13 21:53:00 ----A---- C:\WINDOWS\system32\coinst_17.10.dll
2017-06-13 21:52:52 ----A---- C:\WINDOWS\SYSWOW64\atiadlxy.dll
2017-06-13 21:52:52 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2017-06-10 22:49:58 ----D---- C:\Program Files (x86)\Common Files
2017-06-05 14:38:01 ----D---- C:\ProgramData\Package Cache
2017-06-04 22:28:11 ----D---- C:\WINDOWS\Logs
2017-06-03 08:36:03 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2017-06-02 21:30:46 ----D---- C:\WINDOWS\system32\LogFiles
2017-05-31 22:48:48 ----D---- C:\Users\Nix0ne\AppData\Roaming\Adobe
2017-05-31 22:48:18 ----D---- C:\WINDOWS\debug
2017-05-31 22:45:21 ----D---- C:\Program Files\Common Files\microsoft shared
2017-05-31 22:45:05 ----D---- C:\Program Files\Common Files
2017-05-31 14:15:56 ----N---- C:\WINDOWS\system32\MpSigStub.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R1 FACEIT;FACEIT; \??\C:\WINDOWS\System32\Drivers\FACEIT.sys [2017-06-19 7976416]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-07-16 88576]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2016-07-16 8192]
R1 MpKsl380214af;MpKsl380214af; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{243DF4E1-1D65-437C-9541-D7D468EA46F8}\MpKsl380214af.sys [2017-06-25 44928]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2016-07-16 48128]
R2 speedfan;speedfan; \??\C:\WINDOWS\SysWOW64\speedfan.sys [2012-12-29 28664]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2016-07-16 78336]
R3 amdkmdag;amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0315159.inf_amd64_b01c1e8cccf04a67\atikmdag.sys [2017-06-13 36571640]
R3 amdkmdap;amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0315159.inf_amd64_b01c1e8cccf04a67\atikmpag.sys [2017-06-13 529912]
R3 AtiHDAudioService;@oem5.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2017-04-26 110088]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2016-07-16 589824]
R3 ssdevfactory;@oem9.inf,%ssdevfactory.SVCDESC%;SteelSeries Device Factory Service; C:\WINDOWS\System32\drivers\ssdevfactory.sys [2017-04-06 46440]
R3 sshid;@oem10.inf,%sshid.SvcDesc%;SteelSeries HID Service; C:\WINDOWS\System32\drivers\sshid.sys [2017-03-29 45928]
S0 amdkmafd;@oem6.inf,%AMDKMAFD_svcdesc%;AMD Audio Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmafd.sys [2016-08-18 49448]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2016-07-16 105824]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2016-07-16 101216]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2016-07-16 58720]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2016-07-16 61792]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-04-28 88416]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2016-07-16 32096]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2016-09-15 127328]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2016-07-17 157024]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2016-07-17 141152]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2016-07-16 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2016-07-16 38912]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-09-10 118272]
S3 cpuz140;cpuz140; \??\C:\Users\Nix0ne\AppData\Local\Temp\cpuz140\cpuz140_x64.sys [2017-06-19 43840]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2016-07-16 20480]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2016-07-16 50016]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-08-06 73568]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2016-07-16 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2016-07-16 176384]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2016-07-16 526176]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2016-07-16 842584]
S3 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2016-07-17 179040]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2016-07-16 108896]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2016-07-16 928608]
S3 Revoflt;Revoflt; C:\WINDOWS\system32\DRIVERS\revoflt.sys [2016-12-21 40240]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2016-07-16 95744]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [2016-07-16 108544]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2016-07-16 50688]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2016-07-16 45568]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2016-07-16 263008]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2016-07-16 96608]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2016-07-16 137056]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2016-07-16 57696]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2016-07-16 28512]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2016-07-16 27488]
S4 UevAgentDriver;@%systemroot%\system32\drivers\UevAgentDriver.sys,-101; C:\WINDOWS\system32\drivers\UevAgentDriver.sys [2016-07-17 40288]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2017-06-13 552440]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CDPUserSvc_2e802;CDPUserSvc_2e802; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 gramblrclient;Windows Connectivity Manager for Gramblr; C:\Program Files\Gramblr\gramblr.exe [2017-05-08 10466896]
R2 OneSyncSvc_2e802;Hostitel synchronizace_2e802; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-06-08 1607968]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-05-25 153168]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2017-06-12 1522184]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-07-16 93184]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-05-25 153168]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService_2e802;Služba zasílání zpráv_2e802; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc_2e802;Data kontaktů_2e802; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2016-09-15 2889896]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2017-03-04 1312768]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2016-07-16 287744]
S3 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 UnistoreSvc_2e802;Úložiště uživatelských dat_2e802; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2016-12-14 822624]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S4 UevAgentService;@%systemroot%\system32\AgentService.exe,-102; C:\WINDOWS\system32\AgentService.exe [2016-07-17 1227264]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Možné viry
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119315
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Možné viry
Zdravcím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Možné viry
# AdwCleaner v6.047 - Log vytvořen 25/06/2017 v 13:58:14
# Aktualizováno dne 19/05/2017 z Malwarebytes
# Databáze : 2017-06-23.1 [Server]
# Operační systém : Windows 10 Pro (X64)
# Uživatelské jméno : Nix0ne - DESKTOP-7B41P97
# Spuštěno z : C:\Users\Nix0ne\Desktop\adwcleaner_6.047.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
***** [ Složky ] *****
[-] Složka smazána: C:\Users\Nix0ne\AppData\Local\Temp\VideoConverter
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
***** [ Prohlížeče ] *****
[-] [C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: eu.ask.com
[-] [C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: slunecnice.cz
*************************
:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [1110 Bajty] - [25/06/2017 13:58:14]
C:\AdwCleaner\AdwCleaner[S0].txt - [1822 Bajty] - [16/06/2017 23:14:25]
C:\AdwCleaner\AdwCleaner[S1].txt - [1863 Bajty] - [25/06/2017 13:57:56]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1329 Bajty] ##########
# Aktualizováno dne 19/05/2017 z Malwarebytes
# Databáze : 2017-06-23.1 [Server]
# Operační systém : Windows 10 Pro (X64)
# Uživatelské jméno : Nix0ne - DESKTOP-7B41P97
# Spuštěno z : C:\Users\Nix0ne\Desktop\adwcleaner_6.047.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
***** [ Složky ] *****
[-] Složka smazána: C:\Users\Nix0ne\AppData\Local\Temp\VideoConverter
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
***** [ Prohlížeče ] *****
[-] [C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: eu.ask.com
[-] [C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: slunecnice.cz
*************************
:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [1110 Bajty] - [25/06/2017 13:58:14]
C:\AdwCleaner\AdwCleaner[S0].txt - [1822 Bajty] - [16/06/2017 23:14:25]
C:\AdwCleaner\AdwCleaner[S1].txt - [1863 Bajty] - [25/06/2017 13:57:56]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1329 Bajty] ##########
-
Rudy
- Site Admin
- Příspěvky: 119315
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Možné viry
Teď dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Možné viry
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 25-06-2017
Ran by Nix0ne (administrator) on DESKTOP-7B41P97 (25-06-2017 17:44:24)
Running from C:\Users\Nix0ne\Desktop
Loaded Profiles: Nix0ne (Available Profiles: defaultuser0 & Nix0ne)
Platform: Windows 10 Pro Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\Program Files\Gramblr\gramblr.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(juvlarN) C:\Users\Nix0ne\Desktop\vibranceGUI.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera_crashreporter.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(forum.viry.cz) C:\Users\Nix0ne\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2017-04-28] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\Run: [AMDDVR] => "C:\Program Files\AMD\CNext\CNext\amddvr.exe"
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\Run: [vibranceGUI] => C:\Users\Nix0ne\Desktop\vibranceGUI.exe [795136 2017-05-02] (juvlarN)
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [5077792 2017-05-16] (Nota Inc.)
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\MountPoints2: {2775ed99-4ed7-11e7-b4e6-9c5c8e82137d} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\MountPoints2: {2775ee47-4ed7-11e7-b4e6-9c5c8e82137d} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\MountPoints2: {32921ceb-4d37-11e7-b4e3-9c5c8e82137d} - "D:\Lenovo_Suite.exe"
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\MountPoints2: {97a35488-4e7c-11e7-b4e4-9c5c8e82137d} - "E:\HiSuiteDownLoader.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2017-05-15]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{6d72c261-ead7-4d07-b290-5267d1c46aff}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
FireFox:
========
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-25] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-25] (Google Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems)
Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR NewTab: Default -> Active:"chrome-extension://jpfpebmajhhopeonhlcgidhclcccjcik/newtab.html"
CHR Profile: C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default [2017-06-25]
CHR Extension: (Prezentace Google) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-05-15]
CHR Extension: (Dokumenty Google) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-05-15]
CHR Extension: (Disk Google) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-05-15]
CHR Extension: (YouTube) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-15]
CHR Extension: (Ban Checker for Steam) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki [2017-05-15]
CHR Extension: (Tabulky Google) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-05-15]
CHR Extension: (Dokumenty Google offline) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-05-25]
CHR Extension: (AdBlock) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-06-21]
CHR Extension: (Speed Dial 2) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik [2017-06-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-05-15]
CHR Extension: (Enhanced Steam) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\okadibdjfemgnhjiembecghcbfknbfhg [2017-06-21]
CHR Extension: (Click&Clean App) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2017-06-04]
CHR Extension: (Gmail) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-05-15]
CHR Extension: (Chrome Media Router) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-15]
Opera:
=======
OPR Extension: (Steam Inventory Helper) - C:\Users\Nix0ne\AppData\Roaming\Opera Software\Opera Stable\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2017-06-25]
OPR Extension: (TastyPlug) - C:\Users\Nix0ne\AppData\Roaming\Opera Software\Opera Stable\Extensions\faccgibalfdoihmenknhpfhldkmgaang [2017-06-11]
OPR Extension: (Download Chrome Extension) - C:\Users\Nix0ne\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2017-06-05]
StartMenuInternet: (HKLM) OperaStable - C:\Program Files\Opera\Launcher.exe
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1522184 2017-06-12] ()
R2 gramblrclient; C:\Program Files\Gramblr\gramblr.exe [10466896 2017-05-08] () [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-09-15] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-04-28] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [49448 2016-08-18] (Advanced Micro Devices, Inc.)
R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0315159.inf_amd64_b01c1e8cccf04a67\atikmdag.sys [36571640 2017-06-13] (Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0315159.inf_amd64_b01c1e8cccf04a67\atikmpag.sys [529912 2017-06-13] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [110088 2017-04-26] (Advanced Micro Devices)
S3 cpuz140; C:\Users\Nix0ne\AppData\Local\Temp\cpuz140\cpuz140_x64.sys [43840 2017-06-19] (CPUID) <==== ATTENTION
R1 FACEIT; C:\WINDOWS\System32\Drivers\FACEIT.sys [7976416 2017-06-19] ()
R1 MpKsla3823fc3; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{782E1477-6D5D-4857-A81C-4799B2902277}\MpKsla3823fc3.sys [44928 2017-06-25] (Microsoft Corporation)
R1 MpKsle09e10e1; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2A10588E-6614-4D09-85E6-F8CC447E7F3F}\MpKsle09e10e1.sys [44928 2017-06-25] (Microsoft Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek )
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46440 2017-04-06] (SteelSeries ApS)
R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [45928 2017-03-29] (SteelSeries ApS)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-06-25 17:44 - 2017-06-25 17:44 - 00112640 _____ (forum.viry.cz) C:\Users\Nix0ne\Desktop\FRSTLauncher.exe
2017-06-25 17:44 - 2017-06-25 17:44 - 00029696 _____ C:\Users\Nix0ne\AppData\Local\MSGBOX.EXE
2017-06-25 17:44 - 2017-06-25 17:44 - 00015327 _____ C:\Users\Nix0ne\Desktop\LM.bat
2017-06-25 17:44 - 2017-06-25 17:44 - 00011548 _____ C:\Users\Nix0ne\Desktop\FRST.txt
2017-06-25 17:44 - 2017-06-25 17:44 - 00000000 ____D C:\FRST
2017-06-25 17:40 - 2017-06-25 17:40 - 02441216 _____ (Farbar) C:\Users\Nix0ne\Desktop\FRST64.exe
2017-06-25 13:56 - 2017-06-25 13:56 - 04110280 _____ C:\Users\Nix0ne\Desktop\adwcleaner_6.047.exe
2017-06-25 09:30 - 2017-06-25 09:30 - 01222144 _____ C:\Users\Nix0ne\Desktop\RSITx64.exe
2017-06-25 09:30 - 2017-06-25 09:30 - 00000000 ____D C:\rsit
2017-06-25 09:30 - 2017-06-25 09:30 - 00000000 ____D C:\Program Files\trend micro
2017-06-25 08:51 - 2017-06-25 08:51 - 01202184 _____ (Adobe Systems Incorporated) C:\Users\Nix0ne\Downloads\flashplayer26pp_fa_install.exe
2017-06-25 08:47 - 2017-06-25 08:47 - 01202184 _____ (Adobe Systems Incorporated) C:\Users\Nix0ne\Downloads\ra.exe
2017-06-22 13:42 - 2017-06-22 13:42 - 00000000 ____D C:\Users\Nix0ne\AppData\Roaming\11bitstudios
2017-06-21 12:18 - 2017-06-25 17:45 - 00000000 ____D C:\ProgramData\Gramblr
2017-06-21 12:18 - 2017-06-21 12:18 - 00001024 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gramblr.lnk
2017-06-21 12:18 - 2017-06-21 12:18 - 00000000 ____D C:\Program Files\Gramblr
2017-06-21 12:18 - 2017-05-08 13:05 - 10466896 _____ C:\Users\Nix0ne\Desktop\gramblr.exe
2017-06-21 12:17 - 2017-06-21 12:17 - 03622079 _____ C:\Users\Nix0ne\Downloads\gramblr2_win64.zip
2017-06-18 12:02 - 2017-06-18 12:07 - 00000000 ____D C:\WINDOWS\Microsoft Antimalware
2017-06-18 10:52 - 2017-06-18 10:52 - 64232976 _____ (Malwarebytes ) C:\Users\Nix0ne\Downloads\mb3-setup-consumer-3.1.2.1733-1.0.141-1.0.2092.exe
2017-06-18 10:51 - 2017-04-21 23:53 - 00029376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2017-06-18 10:51 - 2017-04-21 23:50 - 00030912 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2017-06-18 10:50 - 2017-04-21 23:53 - 00018600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll
2017-06-18 10:50 - 2017-04-21 23:50 - 00018592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll
2017-06-18 10:50 - 2017-04-11 20:27 - 00993632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2017-06-18 10:50 - 2017-04-11 20:27 - 00690008 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll
2017-06-18 10:50 - 2017-03-15 20:15 - 00987840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2017-06-18 10:50 - 2017-03-15 20:15 - 00485576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll
2017-06-18 10:44 - 2017-06-18 10:44 - 06919904 _____ (AVAST Software) C:\Users\Nix0ne\Downloads\avast_free_antivirus_setup_online.exe
2017-06-18 10:42 - 2017-06-18 10:42 - 00000000 _____ C:\Users\Nix0ne\AppData\Local\{4E4610EA-662C-4C17-BECA-9B941F4EEA8E}
2017-06-18 10:41 - 2017-06-25 09:24 - 00000000 ____D C:\WINDOWS\pss
2017-06-18 10:28 - 2017-06-18 10:28 - 01202184 _____ (Adobe Systems Incorporated) C:\Users\Nix0ne\Downloads\513B.tmp
2017-06-16 23:12 - 2017-06-25 13:58 - 00000000 ____D C:\AdwCleaner
2017-06-16 22:58 - 2017-06-16 22:58 - 00059435 _____ C:\Users\Nix0ne\Downloads\memtest86+-5.01.iso.zip
2017-06-16 22:48 - 2017-06-16 22:48 - 54854408 _____ (Electronic Arts) C:\Users\Nix0ne\Downloads\OriginThinSetup.exe
2017-06-16 22:47 - 2017-06-16 22:47 - 00000000 ____D C:\ProgramData\Origin
2017-06-16 22:46 - 2017-06-16 22:46 - 00001602 _____ C:\Users\Nix0ne\Desktop\Play FIFA 15.lnk
2017-06-16 21:54 - 2017-06-18 10:48 - 00000000 ____D C:\WINDOWS\Minidump
2017-06-16 21:54 - 2017-06-18 10:47 - 501476107 _____ C:\WINDOWS\MEMORY.DMP
2017-06-16 13:25 - 2015-02-01 20:32 - 00000000 ____D C:\Users\Nix0ne\Downloads\Pack TeamSpeak Icons
2017-06-16 13:24 - 2017-06-16 13:25 - 02934135 _____ C:\Users\Nix0ne\Downloads\Pack TeamSpeak Icons.rar
2017-06-16 13:06 - 2017-06-16 13:39 - 00000000 ____D C:\Users\Nix0ne\Downloads\FIFA 15 PC full game ^^nosTEAM^^
2017-06-16 12:54 - 2017-06-16 12:59 - 53586651 _____ C:\Users\Nix0ne\Downloads\F1FA-15.exe
2017-06-15 22:50 - 2017-06-15 22:50 - 112069345 _____ C:\Users\Nix0ne\Downloads\6k_Layer_Styles_Pack_-_Nelson_Designs.psd
2017-06-15 22:47 - 2017-06-15 22:47 - 00596219 _____ C:\Users\Nix0ne\Downloads\steam.design (1).zip
2017-06-15 22:39 - 2017-06-15 22:40 - 09606005 _____ C:\Users\Nix0ne\Downloads\Steam Artwork Design Cyber Girl.zip
2017-06-15 18:21 - 2017-06-15 18:21 - 00000000 ____D C:\Users\Nix0ne\AppData\Roaming\Gyazo
2017-06-15 18:20 - 2017-06-16 11:00 - 00000000 ____D C:\Program Files (x86)\Gyazo
2017-06-15 18:20 - 2017-06-15 18:20 - 00003548 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachineDaily
2017-06-15 18:20 - 2017-06-15 18:20 - 00003412 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachine
2017-06-15 18:20 - 2017-06-15 18:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo
2017-06-15 14:48 - 2017-06-15 14:48 - 00007152 _____ C:\Users\Nix0ne\Downloads\ts3-ikonky-16x16.rar
2017-06-15 12:49 - 2017-06-15 12:49 - 00003160 _____ C:\WINDOWS\System32\Tasks\StartCN
2017-06-15 12:49 - 2017-06-15 12:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Settings
2017-06-15 12:49 - 2017-06-15 12:49 - 00000000 ____D C:\Program Files (x86)\AMD
2017-06-15 12:47 - 2017-06-15 12:47 - 00000000 ____D C:\Users\Nix0ne\AppData\LocalLow\AMD
2017-06-15 12:38 - 2017-06-15 12:38 - 41315000 _____ (AMD Inc.) C:\Users\Nix0ne\Downloads\radeon-crimson-relive-17.6.2-minimalsetup-170613_64bit.exe
2017-06-14 20:38 - 2017-06-14 20:38 - 00000000 ___SD C:\WINDOWS\UpdateAssistantV2
2017-06-14 19:44 - 2017-06-14 19:44 - 00001419 _____ C:\Users\Nix0ne\Desktop\Steam No Browser.lnk
2017-06-14 15:03 - 2017-06-03 12:50 - 00315744 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-06-14 15:03 - 2017-06-03 12:50 - 00192856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2017-06-14 15:03 - 2017-06-03 12:11 - 01706488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-06-14 15:03 - 2017-06-03 12:06 - 02048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-06-14 15:03 - 2017-06-03 11:58 - 00340832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-06-14 15:03 - 2017-06-03 11:55 - 00780640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-06-14 15:03 - 2017-06-03 11:52 - 01021784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2017-06-14 15:03 - 2017-06-03 11:52 - 00607072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2017-06-14 15:03 - 2017-06-03 11:52 - 00111968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2017-06-14 15:03 - 2017-06-03 11:49 - 20967840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-06-14 15:03 - 2017-06-03 11:44 - 01412640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-06-14 15:03 - 2017-06-03 11:44 - 00545944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-06-14 15:03 - 2017-06-03 11:39 - 05686272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-06-14 15:03 - 2017-06-03 11:33 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-06-14 15:03 - 2017-06-03 11:32 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2017-06-14 15:03 - 2017-06-03 11:31 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2017-06-14 15:03 - 2017-06-03 11:31 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2017-06-14 15:03 - 2017-06-03 11:28 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2017-06-14 15:03 - 2017-06-03 11:28 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edputil.dll
2017-06-14 15:03 - 2017-06-03 11:26 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-06-14 15:03 - 2017-06-03 11:26 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBrokerUI.dll
2017-06-14 15:03 - 2017-06-03 11:23 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-06-14 15:03 - 2017-06-03 11:22 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2017-06-14 15:03 - 2017-06-03 11:22 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcorehc.dll
2017-06-14 15:03 - 2017-06-03 11:22 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tcpipcfg.dll
2017-06-14 15:03 - 2017-06-03 11:20 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-06-14 15:03 - 2017-06-03 11:19 - 01164288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2017-06-14 15:03 - 2017-06-03 11:16 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2017-06-14 15:03 - 2017-06-03 11:15 - 19414016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-06-14 15:03 - 2017-06-03 11:15 - 18364928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-06-14 15:03 - 2017-06-03 11:15 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-06-14 15:03 - 2017-06-03 11:12 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdProxy.dll
2017-06-14 15:03 - 2017-06-03 11:08 - 12187648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-06-14 15:03 - 2017-06-03 11:08 - 02643968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-06-14 15:03 - 2017-06-03 11:08 - 01221120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2017-06-14 15:03 - 2017-06-03 11:06 - 03664384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-06-14 15:03 - 2017-06-03 11:05 - 01883648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2017-06-14 15:03 - 2017-06-03 11:05 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hnetcfg.dll
2017-06-14 15:03 - 2017-06-03 11:04 - 06042624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-06-14 15:03 - 2017-06-03 11:04 - 02006528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2017-06-14 15:03 - 2017-06-03 11:04 - 00773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2017-06-14 15:03 - 2017-06-03 11:03 - 01988096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2017-06-14 15:03 - 2017-06-03 11:02 - 02997760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-06-14 15:03 - 2017-06-03 10:40 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-06-14 15:03 - 2017-03-04 08:22 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-06-14 15:03 - 2017-03-04 08:19 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2017-06-14 15:03 - 2017-03-04 08:16 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2017-06-14 15:03 - 2016-09-07 06:53 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2017-06-14 14:57 - 2017-06-03 11:14 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-06-14 14:57 - 2017-06-03 10:52 - 03403264 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-06-14 14:57 - 2017-06-03 10:50 - 02538496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-06-14 14:57 - 2017-06-03 10:49 - 00903680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-06-14 14:56 - 2017-06-03 12:11 - 00128864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2017-06-14 14:56 - 2017-06-03 11:59 - 00118112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-06-14 14:56 - 2017-06-03 11:53 - 00404824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-06-14 14:56 - 2017-06-03 11:50 - 00857440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-06-14 14:56 - 2017-06-03 11:49 - 00509280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-06-14 14:56 - 2017-06-03 11:45 - 22220864 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-06-14 14:56 - 2017-06-03 11:44 - 01600624 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-06-14 14:56 - 2017-06-03 11:39 - 02532192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-06-14 14:56 - 2017-06-03 11:16 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-06-14 14:56 - 2017-06-03 11:15 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-06-14 14:56 - 2017-06-03 11:14 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-06-14 14:56 - 2017-06-03 11:14 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2017-06-14 14:56 - 2017-06-03 11:11 - 00353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2017-06-14 14:56 - 2017-06-03 11:10 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-06-14 14:56 - 2017-06-03 11:10 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBrokerUI.dll
2017-06-14 14:56 - 2017-06-03 11:08 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-06-14 14:56 - 2017-06-03 11:07 - 00552960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-06-14 14:56 - 2017-06-03 11:03 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-06-14 14:56 - 2017-06-03 10:53 - 08125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-06-14 14:56 - 2017-06-03 10:52 - 02510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-06-14 14:56 - 2017-06-03 10:50 - 04744704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-06-14 14:56 - 2017-06-03 10:49 - 03615744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-06-14 14:56 - 2017-06-03 10:49 - 02691072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-06-14 14:56 - 2017-06-03 10:49 - 02318848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-06-14 14:56 - 2017-06-03 10:49 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-06-14 14:56 - 2017-06-03 10:48 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-06-14 14:56 - 2017-06-03 10:46 - 01121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-06-14 14:55 - 2017-06-03 12:14 - 01564512 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-06-14 14:55 - 2017-06-03 12:14 - 00629088 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-06-14 14:55 - 2017-06-03 12:14 - 00379232 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-06-14 14:55 - 2017-06-03 12:14 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-06-14 14:55 - 2017-06-03 12:14 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-06-14 14:55 - 2017-06-03 12:14 - 00136024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2017-06-14 14:55 - 2017-06-03 12:14 - 00096608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-06-14 14:55 - 2017-06-03 12:14 - 00034648 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-06-14 14:55 - 2017-06-03 12:09 - 02213760 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-06-14 14:55 - 2017-06-03 12:08 - 07783256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-06-14 14:55 - 2017-06-03 12:01 - 02681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2017-06-14 14:55 - 2017-06-03 11:59 - 01181024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2017-06-14 14:55 - 2017-06-03 11:51 - 02187104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-06-14 14:55 - 2017-06-03 11:51 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-06-14 14:55 - 2017-06-03 11:49 - 00624048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-06-14 14:55 - 2017-06-03 11:48 - 00857952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2017-06-14 14:55 - 2017-06-03 11:48 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2017-06-14 14:55 - 2017-06-03 11:40 - 01566552 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-06-14 14:55 - 2017-06-03 11:40 - 00628552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-06-14 14:55 - 2017-06-03 11:22 - 07217152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-06-14 14:55 - 2017-06-03 11:18 - 22569984 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-06-14 14:55 - 2017-06-03 11:16 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2017-06-14 14:55 - 2017-06-03 11:14 - 00045056 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-06-14 14:55 - 2017-06-03 11:10 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll
2017-06-14 14:55 - 2017-06-03 11:09 - 00489472 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2017-06-14 14:55 - 2017-06-03 11:09 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcorehc.dll
2017-06-14 14:55 - 2017-06-03 11:09 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2017-06-14 14:55 - 2017-06-03 11:08 - 00691200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-06-14 14:55 - 2017-06-03 11:07 - 00456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2017-06-14 14:55 - 2017-06-03 11:07 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\HNetCfgClient.dll
2017-06-14 14:55 - 2017-06-03 11:06 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2017-06-14 14:55 - 2017-06-03 11:01 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2017-06-14 14:55 - 2017-06-03 11:00 - 23677440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-06-14 14:55 - 2017-06-03 10:56 - 13091840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-06-14 14:55 - 2017-06-03 10:54 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-06-14 14:55 - 2017-06-03 10:52 - 00975872 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2017-06-14 14:55 - 2017-06-03 10:52 - 00886784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2017-06-14 14:55 - 2017-06-03 10:51 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2017-06-14 14:55 - 2017-06-03 10:51 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2017-06-14 14:55 - 2017-06-03 10:49 - 02475520 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-06-14 14:55 - 2017-06-03 10:49 - 01845248 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-06-14 14:55 - 2017-06-03 10:49 - 00351744 _____ (Microsoft Corporation) C:\WINDOWS\system32\hnetcfg.dll
2017-06-14 14:55 - 2017-06-03 10:48 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-06-14 14:55 - 2017-06-03 10:48 - 01131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-06-14 14:55 - 2017-06-03 10:48 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-06-14 14:55 - 2017-06-03 08:08 - 00080078 _____ C:\WINDOWS\system32\normidna.nls
2017-06-14 14:55 - 2017-05-25 07:56 - 00038752 _____ (Microsoft Corporation) C:\WINDOWS\system32\OOBEUpdater.exe
2017-06-14 14:55 - 2017-03-04 08:16 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2017-06-14 14:54 - 2017-06-03 12:16 - 00279904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2017-06-14 14:54 - 2017-06-03 12:14 - 01214816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-06-14 14:54 - 2017-06-03 12:14 - 00544096 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-06-14 14:54 - 2017-06-03 12:14 - 00334176 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-06-14 14:54 - 2017-06-03 12:14 - 00233824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-06-14 14:54 - 2017-06-03 11:59 - 00764392 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-06-14 14:54 - 2017-06-03 11:54 - 00187232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2017-06-14 14:54 - 2017-06-03 11:50 - 00381792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-06-14 14:54 - 2017-06-03 11:48 - 01112416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2017-06-14 14:54 - 2017-06-03 11:48 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-06-14 14:54 - 2017-06-03 11:48 - 00989024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-06-14 14:54 - 2017-06-03 11:39 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-06-14 14:54 - 2017-06-03 11:15 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-06-14 14:54 - 2017-06-03 11:08 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-06-14 14:54 - 2017-06-03 10:58 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdProxy.dll
2017-06-13 21:53 - 2017-06-13 21:53 - 00552440 _____ C:\WINDOWS\system32\dgtrayicon.exe
2017-06-13 21:53 - 2017-06-13 21:53 - 00547320 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2017-06-13 21:53 - 2017-06-13 21:53 - 00531960 _____ C:\WINDOWS\system32\GameManager64.dll
2017-06-13 21:53 - 2017-06-13 21:53 - 00478712 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2017-06-13 21:53 - 2017-06-13 21:53 - 00279032 _____ C:\WINDOWS\system32\clinfo.exe
2017-06-13 21:53 - 2017-06-13 21:53 - 00276984 _____ C:\WINDOWS\system32\hsa-thunk64.dll
2017-06-13 21:53 - 2017-06-13 21:53 - 00242680 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll
2017-06-13 21:53 - 2017-06-13 21:53 - 00191992 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2017-06-13 21:53 - 2017-06-13 21:53 - 00170488 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2017-06-13 21:53 - 2017-06-13 21:53 - 00151544 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2017-06-13 21:53 - 2017-06-13 21:53 - 00135672 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2017-06-13 21:53 - 2017-06-13 21:53 - 00045560 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2017-06-13 21:53 - 2017-06-13 21:53 - 00043000 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 10322936 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdvlk64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 08480760 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdvlk32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 03471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2017-06-13 21:52 - 2017-06-13 21:52 - 03437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2017-06-13 21:52 - 2017-06-13 21:52 - 02536952 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 02199032 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 01041400 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00864760 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00798552 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2017-06-13 21:52 - 2017-06-13 21:52 - 00798552 _____ C:\WINDOWS\system32\atiapfxx.blb
2017-06-13 21:52 - 2017-06-13 21:52 - 00778232 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2017-06-13 21:52 - 2017-06-13 21:52 - 00696824 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00574440 _____ C:\WINDOWS\system32\amdmiracast.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00552440 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2017-06-13 21:52 - 2017-06-13 21:52 - 00515064 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00484344 _____ C:\WINDOWS\system32\atieah64.exe
2017-06-13 21:52 - 2017-06-13 21:52 - 00467960 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00411640 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2017-06-13 21:52 - 2017-06-13 21:52 - 00360952 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00334840 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2017-06-13 21:52 - 2017-06-13 21:52 - 00245752 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00204280 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00196816 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00168440 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00165040 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00157336 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00149072 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00139712 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00134136 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00131912 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00131912 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00123384 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00121848 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00116704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00115704 _____ C:\WINDOWS\system32\atidxx64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00113144 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00112632 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00103152 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00103152 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00102392 _____ C:\WINDOWS\SysWOW64\atidxx32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00099832 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00092152 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmcl64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00075768 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmcl32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00069624 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00000144 _____ C:\WINDOWS\SysWOW64\amd-vulkan32.json
2017-06-13 21:52 - 2017-06-13 21:52 - 00000144 _____ C:\WINDOWS\system32\amd-vulkan64.json
2017-06-12 12:53 - 2017-06-12 12:53 - 00000000 ____D C:\Users\Nix0ne\AppData\Local\UnrealEngine
2017-06-12 12:53 - 2017-06-12 12:53 - 00000000 ____D C:\Users\Nix0ne\AppData\Local\TslGame
2017-06-11 21:30 - 2017-06-11 21:30 - 04121760 _____ (Husdawg, LLC) C:\Users\Nix0ne\Downloads\Detection.exe
2017-06-11 18:54 - 2017-06-11 18:55 - 1208768162 _____ C:\Users\Nix0ne\Downloads\Spojenci Allied (2016).mkv
2017-06-11 18:54 - 2017-06-11 18:54 - 00012115 _____ C:\Users\Nix0ne\Downloads\[SkT]Spojenci_-_Allied_(2016)(CZ)_=_CSFD_76%.torrent
2017-06-11 18:53 - 2017-06-11 18:53 - 00012598 _____ C:\Users\Nix0ne\Downloads\[CzT]Zuctovani_The_Accountant_2016_CZ_.torrent
2017-06-11 18:52 - 2017-06-11 18:52 - 00011562 _____ C:\Users\Nix0ne\Downloads\Zuctovani-(2016)(CZ).torrent
2017-06-11 16:49 - 2017-06-11 16:49 - 00016067 _____ C:\Users\Nix0ne\Downloads\[CzT]Polduv_svagr_Ride_Along_2_2016_CZ_.torrent
2017-06-11 16:17 - 2017-06-11 16:17 - 00043502 _____ C:\Users\Nix0ne\Downloads\[SkT]Zelezna-srdce-_-Fury-(2014)(CZ_EN)[720p]-=-CSFD-76%.torrent
2017-06-10 22:53 - 2017-06-10 22:53 - 00014386 _____ C:\Users\Nix0ne\Downloads\[SkT]Hacksaw_Ridge-_Zrozeni_hrdiny_-_Hacksaw_Ridge_(2016)(CZ)_=_CSFD_84%.torrent
2017-06-10 22:49 - 2017-06-10 22:49 - 00000000 ____D C:\Users\Nix0ne\AppData\Local\VS Revo Group
2017-06-10 22:49 - 2017-06-10 22:49 - 00000000 ____D C:\ProgramData\VS Revo Group
2017-06-10 22:49 - 2017-06-10 22:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2017-06-10 22:49 - 2017-06-10 22:49 - 00000000 ____D C:\Program Files\VS Revo Group
2017-06-10 22:49 - 2016-12-21 14:52 - 00040240 _____ (VS Revo Group) C:\WINDOWS\system32\Drivers\revoflt.sys
2017-06-10 22:48 - 2017-06-10 22:48 - 11534624 _____ (VS Revo Group ) C:\Users\Nix0ne\Downloads\RevoUninProSetup.exe
2017-06-10 22:45 - 2017-06-10 22:45 - 00000000 ____D C:\Users\Nix0ne\Documents\Freemake
2017-06-10 22:45 - 2017-06-10 22:45 - 00000000 ____D C:\Users\Nix0ne\AppData\Local\FreemakeVideoConverter
2017-06-10 22:15 - 2017-06-10 22:15 - 00000000 ____D C:\Users\Nix0ne\AppData\Local\Movavi
2017-06-10 22:15 - 2017-06-10 22:15 - 00000000 ____D C:\Users\Nix0ne\AppData\Local\converter
2017-06-10 22:15 - 2017-06-10 22:15 - 00000000 ____D C:\Users\Nix0ne\.fontconfig
2017-06-10 22:15 - 2017-06-10 22:15 - 00000000 ____D C:\ProgramData\Movavi
2017-06-10 22:14 - 2017-06-10 22:14 - 00005107 _____ C:\ProgramData\mudtcpaz.vzs
2017-06-10 22:14 - 2017-06-10 22:14 - 00000016 _____ C:\ProgramData\mntemp
2017-06-10 22:13 - 2017-06-10 22:13 - 42226392 _____ (Movavi) C:\Users\Nix0ne\Downloads\MovaviVideoConverterSetupO_1.exe
2017-06-10 21:24 - 2017-06-10 21:24 - 00000000 _____ C:\Users\Nix0ne\Downloads\nosTEAM.mp4
2017-06-10 21:00 - 2017-06-10 21:00 - 03166669 _____ (PolySoft Solutions ) C:\Users\Nix0ne\Downloads\FreeAVIToMP4Converter.exe
2017-06-10 21:00 - 2017-06-10 21:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free AVI to MP4 Converter
2017-06-10 21:00 - 2017-06-10 21:00 - 00000000 ____D C:\Program Files (x86)\Free AVI to MP4 Converter
2017-06-10 20:20 - 2017-06-10 20:20 - 09083617 _____ C:\Users\Nix0ne\Downloads\csgo.7z
2017-06-09 11:17 - 2017-06-10 16:23 - 00000000 ____D C:\Users\Nix0ne\AppData\Local\PAYDAY 2
2017-06-09 11:17 - 2017-06-09 11:17 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-06-09 11:17 - 2017-06-09 11:17 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2017-06-06 19:19 - 2017-06-06 19:19 - 00000000 ____D C:\Users\Nix0ne\AppData\Roaming\FACEIT
2017-06-05 21:55 - 2017-06-05 21:55 - 00000000 ____D C:\Users\Nix0ne\AppData\Local\FACEIT
2017-06-05 21:53 - 2017-06-19 22:04 - 07976416 _____ C:\WINDOWS\system32\Drivers\FACEIT.sys
2017-06-05 21:53 - 2017-06-18 22:37 - 00000000 ____D C:\Program Files\FACEIT Client
2017-06-05 21:53 - 2017-06-05 21:53 - 00000920 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FACEIT Client.lnk
2017-06-05 21:53 - 2017-06-05 21:53 - 00000908 _____ C:\Users\Public\Desktop\FACEIT Client.lnk
2017-06-05 21:52 - 2017-06-05 21:52 - 16693736 _____ (FACEIT LTD ) C:\Users\Nix0ne\Downloads\FACEITInstaller_64.exe
2017-06-05 21:43 - 2017-06-05 21:43 - 00001802 _____ C:\Users\Nix0ne\Desktop\Play DARK SOULS III.lnk
2017-06-05 19:55 - 2017-06-05 21:15 - 00000000 ____D C:\Users\Nix0ne\Downloads\DARK SOULS III PC full game repack ^^nosTEAM^^
2017-06-05 15:32 - 2017-06-05 15:32 - 00000000 ____D C:\Users\Nix0ne\Documents\My Games
2017-06-05 15:29 - 2017-06-05 15:29 - 00084433 _____ C:\Users\Nix0ne\Downloads\faktura-1117044427.pdf
2017-06-05 14:37 - 2017-06-15 12:38 - 00000060 _____ C:\ProgramData\SoftwareUpdateTemp.xml
2017-06-05 14:36 - 2017-06-05 14:36 - 41315000 _____ (AMD Inc.) C:\Users\Nix0ne\Downloads\radeon-crimson-relive-17.5.2-minimalsetup-170518_64bit.exe
2017-06-04 18:02 - 2017-06-04 18:02 - 02257745 _____ C:\Users\Nix0ne\Downloads\DreamScene Video Wallpaper 2.23 [vokeon].zip
2017-06-04 17:58 - 2017-06-04 17:58 - 00424812 _____ C:\Users\Nix0ne\Downloads\W7DSA.zip
2017-06-03 17:38 - 2017-06-03 17:38 - 00000000 ____D C:\Users\Nix0ne\AppData\LocalLow\Blacklight Interactive
2017-06-03 16:48 - 2017-06-25 08:53 - 00004716 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-06-03 16:47 - 2017-06-03 16:47 - 01202184 _____ (Adobe Systems Incorporated) C:\Users\Nix0ne\Downloads\flashplayer25pp_fa_install.exe
2017-05-31 23:00 - 2017-05-31 23:00 - 112069345 _____ C:\Users\Nix0ne\Documents\6k_Layer_Styles_Pack_-_Nelson_Designs.psd
2017-05-31 22:55 - 2017-05-31 22:55 - 184856344 _____ C:\Users\Nix0ne\Downloads\GFX PACK! -SaxArt5-.rar
2017-05-31 22:55 - 2017-05-31 22:55 - 00000000 ____D C:\Users\Nix0ne\AppData\LocalLow\Adobe
2017-05-31 22:55 - 2016-12-27 13:27 - 288661106 _____ C:\Users\Nix0ne\Documents\GFX PACK! -SaxArt5-.psd
2017-05-31 22:50 - 2017-05-31 22:50 - 00001085 _____ C:\Users\Nix0ne\Desktop\Adobe Photoshop CC 2014.lnk
2017-05-31 22:48 - 2017-05-31 22:48 - 00003638 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-7B41P97-Nix0ne
2017-05-31 22:48 - 2017-05-31 22:48 - 00001085 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2014.lnk
2017-05-31 22:48 - 2017-05-31 22:48 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2017-05-31 22:47 - 2017-05-31 22:47 - 00000000 ____D C:\Program Files\Adobe
2017-05-31 22:45 - 2017-05-31 22:48 - 00000000 ____D C:\Program Files\Common Files\Adobe
2017-05-31 22:45 - 2017-05-31 22:45 - 00001619 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
2017-05-31 22:43 - 2017-06-01 10:43 - 00000000 ____D C:\ProgramData\Adobe
2017-05-31 22:43 - 2017-05-31 22:43 - 00000000 ____D C:\Users\Nix0ne\AppData\Roaming\Macromedia
2017-05-31 22:42 - 2017-06-25 08:53 - 00000000 ____D C:\Users\Nix0ne\AppData\Local\Adobe
2017-05-31 22:18 - 2017-05-31 22:19 - 00000000 ____D C:\Users\Nix0ne\Downloads\Adobe Photoshop CC 2014 (64 bit) (Crack) [ChingLiu]
2017-05-31 22:18 - 2017-05-31 22:18 - 02240192 _____ (BitTorrent Inc.) C:\Users\Nix0ne\Downloads\uTorrent.exe
2017-05-31 22:10 - 2017-05-31 22:10 - 00515639 _____ C:\Users\Nix0ne\Downloads\steam.design.zip
2017-05-31 21:36 - 2017-05-31 21:36 - 00056223 _____ C:\Users\Nix0ne\Downloads\impacted.zip
2017-05-30 13:40 - 2017-05-30 13:40 - 05909797 _____ C:\Users\Nix0ne\Downloads\am_dust2014.bsp.bz2
2017-05-30 11:19 - 2017-06-01 18:38 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2017-05-30 11:19 - 2017-05-30 11:19 - 03086696 _____ C:\Users\Nix0ne\Downloads\instspeedfan452.exe
2017-05-30 11:19 - 2017-05-30 11:19 - 00000045 _____ C:\WINDOWS\SysWOW64\initdebug.nfo
2017-05-30 11:19 - 2017-05-30 11:19 - 00000000 ____D C:\Users\Nix0ne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-06-25 16:40 - 2017-05-15 18:41 - 02768072 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-06-25 16:40 - 2016-07-17 00:25 - 01116558 _____ C:\WINDOWS\system32\perfh005.dat
2017-06-25 16:40 - 2016-07-17 00:25 - 00290432 _____ C:\WINDOWS\system32\perfc005.dat
2017-06-25 16:37 - 2017-05-15 18:41 - 00000000 ____D C:\Program Files (x86)\Steam
2017-06-25 16:34 - 2017-05-15 18:29 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-06-25 16:34 - 2017-05-15 18:28 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-06-25 13:58 - 2017-05-15 18:44 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin
2017-06-25 13:58 - 2016-07-16 08:04 - 00262144 _____ C:\WINDOWS\system32\config\BBI
2017-06-25 08:53 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-06-25 08:53 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-06-24 23:39 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-06-24 23:39 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-06-22 14:03 - 2017-05-15 20:42 - 00000000 ____D C:\Users\Nix0ne\AppData\Roaming\TS3Client
2017-06-22 14:03 - 2017-05-15 18:36 - 00000000 ____D C:\Users\Nix0ne
2017-06-22 13:20 - 2017-05-18 19:55 - 00000000 ____D C:\Users\Nix0ne\AppData\Local\Battle.net
2017-06-22 13:10 - 2017-05-18 19:54 - 00000000 ____D C:\Program Files (x86)\Blizzard App
2017-06-18 10:55 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-06-18 10:26 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2017-06-16 22:46 - 2017-05-16 10:02 - 00000000 ____D C:\Games
2017-06-16 13:47 - 2017-05-15 22:33 - 00000000 ____D C:\Users\Nix0ne\AppData\Roaming\uTorrent
2017-06-16 12:34 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache
2017-06-15 12:38 - 2017-05-15 18:44 - 00000000 ____D C:\AMD
2017-06-15 12:05 - 2017-05-15 18:41 - 00003958 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1494866509
2017-06-15 12:05 - 2017-05-15 18:41 - 00001078 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2017-06-15 12:05 - 2017-05-15 18:39 - 00000000 ____D C:\Program Files\Opera
2017-06-14 20:40 - 2017-05-15 18:36 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-06-14 20:39 - 2017-05-15 18:28 - 00194440 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-06-14 20:38 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-06-14 20:38 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-06-14 20:38 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-06-14 15:16 - 2017-05-15 19:47 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-06-14 15:15 - 2017-05-15 19:47 - 133627792 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-06-14 13:55 - 2017-05-18 19:56 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2017-06-13 21:53 - 2017-05-03 21:23 - 00925176 _____ (AMD) C:\WINDOWS\system32\coinst_17.10.dll
2017-06-13 21:53 - 2017-05-03 21:23 - 00029688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2017-06-13 21:53 - 2017-05-03 21:23 - 00029688 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2017-06-13 21:53 - 2017-03-15 22:34 - 00366072 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2017-06-13 21:52 - 2017-03-15 22:34 - 01517048 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2017-06-13 21:52 - 2017-03-15 22:34 - 01041400 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2017-06-11 21:09 - 2017-05-15 18:39 - 00000000 ___RD C:\Users\Nix0ne\OneDrive
2017-06-05 14:38 - 2017-05-15 19:00 - 00000000 ____D C:\ProgramData\Package Cache
2017-06-03 08:36 - 2016-07-16 13:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-06-03 08:36 - 2016-07-16 13:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-05-31 22:48 - 2017-05-15 18:36 - 00000000 ____D C:\Users\Nix0ne\AppData\Roaming\Adobe
2017-05-31 22:45 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-05-31 14:15 - 2017-05-15 19:53 - 00565416 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
==================== Files in the root of some directories =======
2017-05-25 15:30 - 2017-05-25 15:30 - 0000603 _____ () C:\Users\Nix0ne\AppData\Roaming\vibranceGUI.log
2017-06-25 17:44 - 2017-06-25 17:44 - 0029696 _____ () C:\Users\Nix0ne\AppData\Local\MSGBOX.EXE
2017-06-18 10:42 - 2017-06-18 10:42 - 0000000 _____ () C:\Users\Nix0ne\AppData\Local\{4E4610EA-662C-4C17-BECA-9B941F4EEA8E}
2017-06-10 22:14 - 2017-06-10 22:14 - 0000016 _____ () C:\ProgramData\mntemp
2017-06-10 22:14 - 2017-06-10 22:14 - 0005107 _____ () C:\ProgramData\mudtcpaz.vzs
2017-06-05 14:37 - 2017-06-15 12:38 - 0000060 _____ () C:\ProgramData\SoftwareUpdateTemp.xml
Some files in TEMP:
====================
2017-06-10 22:44 - 2017-06-10 22:45 - 32682216 _____ (Ellora Assets Corporation ) C:\Users\Nix0ne\AppData\Local\Temp\FreemakeVideoConverterFull.exe
2017-05-30 11:19 - 2017-06-01 18:38 - 0192512 _____ () C:\Users\Nix0ne\AppData\Local\Temp\sfamcc00001.dll
2015-02-10 19:56 - 2015-02-10 19:56 - 0105984 _____ () C:\Users\Nix0ne\AppData\Local\Temp\sfextra.dll
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-06-14 20:09
==================== End of FRST.txt ============================
Ran by Nix0ne (administrator) on DESKTOP-7B41P97 (25-06-2017 17:44:24)
Running from C:\Users\Nix0ne\Desktop
Loaded Profiles: Nix0ne (Available Profiles: defaultuser0 & Nix0ne)
Platform: Windows 10 Pro Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\Program Files\Gramblr\gramblr.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(juvlarN) C:\Users\Nix0ne\Desktop\vibranceGUI.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera_crashreporter.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.898\opera.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(forum.viry.cz) C:\Users\Nix0ne\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2017-04-28] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\Run: [AMDDVR] => "C:\Program Files\AMD\CNext\CNext\amddvr.exe"
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\Run: [vibranceGUI] => C:\Users\Nix0ne\Desktop\vibranceGUI.exe [795136 2017-05-02] (juvlarN)
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [5077792 2017-05-16] (Nota Inc.)
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\MountPoints2: {2775ed99-4ed7-11e7-b4e6-9c5c8e82137d} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\MountPoints2: {2775ee47-4ed7-11e7-b4e6-9c5c8e82137d} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\MountPoints2: {32921ceb-4d37-11e7-b4e3-9c5c8e82137d} - "D:\Lenovo_Suite.exe"
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\MountPoints2: {97a35488-4e7c-11e7-b4e4-9c5c8e82137d} - "E:\HiSuiteDownLoader.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2017-05-15]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{6d72c261-ead7-4d07-b290-5267d1c46aff}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
FireFox:
========
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-25] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-25] (Google Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems)
Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR NewTab: Default -> Active:"chrome-extension://jpfpebmajhhopeonhlcgidhclcccjcik/newtab.html"
CHR Profile: C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default [2017-06-25]
CHR Extension: (Prezentace Google) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-05-15]
CHR Extension: (Dokumenty Google) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-05-15]
CHR Extension: (Disk Google) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-05-15]
CHR Extension: (YouTube) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-15]
CHR Extension: (Ban Checker for Steam) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki [2017-05-15]
CHR Extension: (Tabulky Google) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-05-15]
CHR Extension: (Dokumenty Google offline) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-05-25]
CHR Extension: (AdBlock) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-06-21]
CHR Extension: (Speed Dial 2) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik [2017-06-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-05-15]
CHR Extension: (Enhanced Steam) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\okadibdjfemgnhjiembecghcbfknbfhg [2017-06-21]
CHR Extension: (Click&Clean App) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2017-06-04]
CHR Extension: (Gmail) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-05-15]
CHR Extension: (Chrome Media Router) - C:\Users\Nix0ne\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-15]
Opera:
=======
OPR Extension: (Steam Inventory Helper) - C:\Users\Nix0ne\AppData\Roaming\Opera Software\Opera Stable\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2017-06-25]
OPR Extension: (TastyPlug) - C:\Users\Nix0ne\AppData\Roaming\Opera Software\Opera Stable\Extensions\faccgibalfdoihmenknhpfhldkmgaang [2017-06-11]
OPR Extension: (Download Chrome Extension) - C:\Users\Nix0ne\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2017-06-05]
StartMenuInternet: (HKLM) OperaStable - C:\Program Files\Opera\Launcher.exe
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1522184 2017-06-12] ()
R2 gramblrclient; C:\Program Files\Gramblr\gramblr.exe [10466896 2017-05-08] () [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-09-15] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-04-28] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [49448 2016-08-18] (Advanced Micro Devices, Inc.)
R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0315159.inf_amd64_b01c1e8cccf04a67\atikmdag.sys [36571640 2017-06-13] (Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0315159.inf_amd64_b01c1e8cccf04a67\atikmpag.sys [529912 2017-06-13] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [110088 2017-04-26] (Advanced Micro Devices)
S3 cpuz140; C:\Users\Nix0ne\AppData\Local\Temp\cpuz140\cpuz140_x64.sys [43840 2017-06-19] (CPUID) <==== ATTENTION
R1 FACEIT; C:\WINDOWS\System32\Drivers\FACEIT.sys [7976416 2017-06-19] ()
R1 MpKsla3823fc3; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{782E1477-6D5D-4857-A81C-4799B2902277}\MpKsla3823fc3.sys [44928 2017-06-25] (Microsoft Corporation)
R1 MpKsle09e10e1; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2A10588E-6614-4D09-85E6-F8CC447E7F3F}\MpKsle09e10e1.sys [44928 2017-06-25] (Microsoft Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek )
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46440 2017-04-06] (SteelSeries ApS)
R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [45928 2017-03-29] (SteelSeries ApS)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-06-25 17:44 - 2017-06-25 17:44 - 00112640 _____ (forum.viry.cz) C:\Users\Nix0ne\Desktop\FRSTLauncher.exe
2017-06-25 17:44 - 2017-06-25 17:44 - 00029696 _____ C:\Users\Nix0ne\AppData\Local\MSGBOX.EXE
2017-06-25 17:44 - 2017-06-25 17:44 - 00015327 _____ C:\Users\Nix0ne\Desktop\LM.bat
2017-06-25 17:44 - 2017-06-25 17:44 - 00011548 _____ C:\Users\Nix0ne\Desktop\FRST.txt
2017-06-25 17:44 - 2017-06-25 17:44 - 00000000 ____D C:\FRST
2017-06-25 17:40 - 2017-06-25 17:40 - 02441216 _____ (Farbar) C:\Users\Nix0ne\Desktop\FRST64.exe
2017-06-25 13:56 - 2017-06-25 13:56 - 04110280 _____ C:\Users\Nix0ne\Desktop\adwcleaner_6.047.exe
2017-06-25 09:30 - 2017-06-25 09:30 - 01222144 _____ C:\Users\Nix0ne\Desktop\RSITx64.exe
2017-06-25 09:30 - 2017-06-25 09:30 - 00000000 ____D C:\rsit
2017-06-25 09:30 - 2017-06-25 09:30 - 00000000 ____D C:\Program Files\trend micro
2017-06-25 08:51 - 2017-06-25 08:51 - 01202184 _____ (Adobe Systems Incorporated) C:\Users\Nix0ne\Downloads\flashplayer26pp_fa_install.exe
2017-06-25 08:47 - 2017-06-25 08:47 - 01202184 _____ (Adobe Systems Incorporated) C:\Users\Nix0ne\Downloads\ra.exe
2017-06-22 13:42 - 2017-06-22 13:42 - 00000000 ____D C:\Users\Nix0ne\AppData\Roaming\11bitstudios
2017-06-21 12:18 - 2017-06-25 17:45 - 00000000 ____D C:\ProgramData\Gramblr
2017-06-21 12:18 - 2017-06-21 12:18 - 00001024 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gramblr.lnk
2017-06-21 12:18 - 2017-06-21 12:18 - 00000000 ____D C:\Program Files\Gramblr
2017-06-21 12:18 - 2017-05-08 13:05 - 10466896 _____ C:\Users\Nix0ne\Desktop\gramblr.exe
2017-06-21 12:17 - 2017-06-21 12:17 - 03622079 _____ C:\Users\Nix0ne\Downloads\gramblr2_win64.zip
2017-06-18 12:02 - 2017-06-18 12:07 - 00000000 ____D C:\WINDOWS\Microsoft Antimalware
2017-06-18 10:52 - 2017-06-18 10:52 - 64232976 _____ (Malwarebytes ) C:\Users\Nix0ne\Downloads\mb3-setup-consumer-3.1.2.1733-1.0.141-1.0.2092.exe
2017-06-18 10:51 - 2017-04-21 23:53 - 00029376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2017-06-18 10:51 - 2017-04-21 23:50 - 00030912 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2017-06-18 10:50 - 2017-04-21 23:53 - 00018600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll
2017-06-18 10:50 - 2017-04-21 23:50 - 00018592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll
2017-06-18 10:50 - 2017-04-11 20:27 - 00993632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2017-06-18 10:50 - 2017-04-11 20:27 - 00690008 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll
2017-06-18 10:50 - 2017-03-15 20:15 - 00987840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2017-06-18 10:50 - 2017-03-15 20:15 - 00485576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll
2017-06-18 10:44 - 2017-06-18 10:44 - 06919904 _____ (AVAST Software) C:\Users\Nix0ne\Downloads\avast_free_antivirus_setup_online.exe
2017-06-18 10:42 - 2017-06-18 10:42 - 00000000 _____ C:\Users\Nix0ne\AppData\Local\{4E4610EA-662C-4C17-BECA-9B941F4EEA8E}
2017-06-18 10:41 - 2017-06-25 09:24 - 00000000 ____D C:\WINDOWS\pss
2017-06-18 10:28 - 2017-06-18 10:28 - 01202184 _____ (Adobe Systems Incorporated) C:\Users\Nix0ne\Downloads\513B.tmp
2017-06-16 23:12 - 2017-06-25 13:58 - 00000000 ____D C:\AdwCleaner
2017-06-16 22:58 - 2017-06-16 22:58 - 00059435 _____ C:\Users\Nix0ne\Downloads\memtest86+-5.01.iso.zip
2017-06-16 22:48 - 2017-06-16 22:48 - 54854408 _____ (Electronic Arts) C:\Users\Nix0ne\Downloads\OriginThinSetup.exe
2017-06-16 22:47 - 2017-06-16 22:47 - 00000000 ____D C:\ProgramData\Origin
2017-06-16 22:46 - 2017-06-16 22:46 - 00001602 _____ C:\Users\Nix0ne\Desktop\Play FIFA 15.lnk
2017-06-16 21:54 - 2017-06-18 10:48 - 00000000 ____D C:\WINDOWS\Minidump
2017-06-16 21:54 - 2017-06-18 10:47 - 501476107 _____ C:\WINDOWS\MEMORY.DMP
2017-06-16 13:25 - 2015-02-01 20:32 - 00000000 ____D C:\Users\Nix0ne\Downloads\Pack TeamSpeak Icons
2017-06-16 13:24 - 2017-06-16 13:25 - 02934135 _____ C:\Users\Nix0ne\Downloads\Pack TeamSpeak Icons.rar
2017-06-16 13:06 - 2017-06-16 13:39 - 00000000 ____D C:\Users\Nix0ne\Downloads\FIFA 15 PC full game ^^nosTEAM^^
2017-06-16 12:54 - 2017-06-16 12:59 - 53586651 _____ C:\Users\Nix0ne\Downloads\F1FA-15.exe
2017-06-15 22:50 - 2017-06-15 22:50 - 112069345 _____ C:\Users\Nix0ne\Downloads\6k_Layer_Styles_Pack_-_Nelson_Designs.psd
2017-06-15 22:47 - 2017-06-15 22:47 - 00596219 _____ C:\Users\Nix0ne\Downloads\steam.design (1).zip
2017-06-15 22:39 - 2017-06-15 22:40 - 09606005 _____ C:\Users\Nix0ne\Downloads\Steam Artwork Design Cyber Girl.zip
2017-06-15 18:21 - 2017-06-15 18:21 - 00000000 ____D C:\Users\Nix0ne\AppData\Roaming\Gyazo
2017-06-15 18:20 - 2017-06-16 11:00 - 00000000 ____D C:\Program Files (x86)\Gyazo
2017-06-15 18:20 - 2017-06-15 18:20 - 00003548 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachineDaily
2017-06-15 18:20 - 2017-06-15 18:20 - 00003412 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachine
2017-06-15 18:20 - 2017-06-15 18:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo
2017-06-15 14:48 - 2017-06-15 14:48 - 00007152 _____ C:\Users\Nix0ne\Downloads\ts3-ikonky-16x16.rar
2017-06-15 12:49 - 2017-06-15 12:49 - 00003160 _____ C:\WINDOWS\System32\Tasks\StartCN
2017-06-15 12:49 - 2017-06-15 12:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Settings
2017-06-15 12:49 - 2017-06-15 12:49 - 00000000 ____D C:\Program Files (x86)\AMD
2017-06-15 12:47 - 2017-06-15 12:47 - 00000000 ____D C:\Users\Nix0ne\AppData\LocalLow\AMD
2017-06-15 12:38 - 2017-06-15 12:38 - 41315000 _____ (AMD Inc.) C:\Users\Nix0ne\Downloads\radeon-crimson-relive-17.6.2-minimalsetup-170613_64bit.exe
2017-06-14 20:38 - 2017-06-14 20:38 - 00000000 ___SD C:\WINDOWS\UpdateAssistantV2
2017-06-14 19:44 - 2017-06-14 19:44 - 00001419 _____ C:\Users\Nix0ne\Desktop\Steam No Browser.lnk
2017-06-14 15:03 - 2017-06-03 12:50 - 00315744 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-06-14 15:03 - 2017-06-03 12:50 - 00192856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2017-06-14 15:03 - 2017-06-03 12:11 - 01706488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-06-14 15:03 - 2017-06-03 12:06 - 02048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-06-14 15:03 - 2017-06-03 11:58 - 00340832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-06-14 15:03 - 2017-06-03 11:55 - 00780640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-06-14 15:03 - 2017-06-03 11:52 - 01021784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2017-06-14 15:03 - 2017-06-03 11:52 - 00607072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2017-06-14 15:03 - 2017-06-03 11:52 - 00111968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2017-06-14 15:03 - 2017-06-03 11:49 - 20967840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-06-14 15:03 - 2017-06-03 11:44 - 01412640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-06-14 15:03 - 2017-06-03 11:44 - 00545944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-06-14 15:03 - 2017-06-03 11:39 - 05686272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-06-14 15:03 - 2017-06-03 11:33 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-06-14 15:03 - 2017-06-03 11:32 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2017-06-14 15:03 - 2017-06-03 11:31 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2017-06-14 15:03 - 2017-06-03 11:31 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2017-06-14 15:03 - 2017-06-03 11:28 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2017-06-14 15:03 - 2017-06-03 11:28 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edputil.dll
2017-06-14 15:03 - 2017-06-03 11:26 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-06-14 15:03 - 2017-06-03 11:26 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBrokerUI.dll
2017-06-14 15:03 - 2017-06-03 11:23 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-06-14 15:03 - 2017-06-03 11:22 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2017-06-14 15:03 - 2017-06-03 11:22 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcorehc.dll
2017-06-14 15:03 - 2017-06-03 11:22 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tcpipcfg.dll
2017-06-14 15:03 - 2017-06-03 11:20 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-06-14 15:03 - 2017-06-03 11:19 - 01164288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2017-06-14 15:03 - 2017-06-03 11:16 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2017-06-14 15:03 - 2017-06-03 11:15 - 19414016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-06-14 15:03 - 2017-06-03 11:15 - 18364928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-06-14 15:03 - 2017-06-03 11:15 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-06-14 15:03 - 2017-06-03 11:12 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdProxy.dll
2017-06-14 15:03 - 2017-06-03 11:08 - 12187648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-06-14 15:03 - 2017-06-03 11:08 - 02643968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-06-14 15:03 - 2017-06-03 11:08 - 01221120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2017-06-14 15:03 - 2017-06-03 11:06 - 03664384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-06-14 15:03 - 2017-06-03 11:05 - 01883648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2017-06-14 15:03 - 2017-06-03 11:05 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hnetcfg.dll
2017-06-14 15:03 - 2017-06-03 11:04 - 06042624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-06-14 15:03 - 2017-06-03 11:04 - 02006528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2017-06-14 15:03 - 2017-06-03 11:04 - 00773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2017-06-14 15:03 - 2017-06-03 11:03 - 01988096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2017-06-14 15:03 - 2017-06-03 11:02 - 02997760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-06-14 15:03 - 2017-06-03 10:40 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-06-14 15:03 - 2017-03-04 08:22 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-06-14 15:03 - 2017-03-04 08:19 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2017-06-14 15:03 - 2017-03-04 08:16 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2017-06-14 15:03 - 2016-09-07 06:53 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2017-06-14 14:57 - 2017-06-03 11:14 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-06-14 14:57 - 2017-06-03 10:52 - 03403264 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-06-14 14:57 - 2017-06-03 10:50 - 02538496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-06-14 14:57 - 2017-06-03 10:49 - 00903680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-06-14 14:56 - 2017-06-03 12:11 - 00128864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2017-06-14 14:56 - 2017-06-03 11:59 - 00118112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-06-14 14:56 - 2017-06-03 11:53 - 00404824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-06-14 14:56 - 2017-06-03 11:50 - 00857440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-06-14 14:56 - 2017-06-03 11:49 - 00509280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-06-14 14:56 - 2017-06-03 11:45 - 22220864 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-06-14 14:56 - 2017-06-03 11:44 - 01600624 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-06-14 14:56 - 2017-06-03 11:39 - 02532192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-06-14 14:56 - 2017-06-03 11:16 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-06-14 14:56 - 2017-06-03 11:15 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-06-14 14:56 - 2017-06-03 11:14 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-06-14 14:56 - 2017-06-03 11:14 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2017-06-14 14:56 - 2017-06-03 11:11 - 00353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2017-06-14 14:56 - 2017-06-03 11:10 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-06-14 14:56 - 2017-06-03 11:10 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBrokerUI.dll
2017-06-14 14:56 - 2017-06-03 11:08 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-06-14 14:56 - 2017-06-03 11:07 - 00552960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-06-14 14:56 - 2017-06-03 11:03 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-06-14 14:56 - 2017-06-03 10:53 - 08125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-06-14 14:56 - 2017-06-03 10:52 - 02510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-06-14 14:56 - 2017-06-03 10:50 - 04744704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-06-14 14:56 - 2017-06-03 10:49 - 03615744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-06-14 14:56 - 2017-06-03 10:49 - 02691072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-06-14 14:56 - 2017-06-03 10:49 - 02318848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-06-14 14:56 - 2017-06-03 10:49 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-06-14 14:56 - 2017-06-03 10:48 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-06-14 14:56 - 2017-06-03 10:46 - 01121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-06-14 14:55 - 2017-06-03 12:14 - 01564512 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-06-14 14:55 - 2017-06-03 12:14 - 00629088 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-06-14 14:55 - 2017-06-03 12:14 - 00379232 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-06-14 14:55 - 2017-06-03 12:14 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-06-14 14:55 - 2017-06-03 12:14 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-06-14 14:55 - 2017-06-03 12:14 - 00136024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2017-06-14 14:55 - 2017-06-03 12:14 - 00096608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-06-14 14:55 - 2017-06-03 12:14 - 00034648 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-06-14 14:55 - 2017-06-03 12:09 - 02213760 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-06-14 14:55 - 2017-06-03 12:08 - 07783256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-06-14 14:55 - 2017-06-03 12:01 - 02681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2017-06-14 14:55 - 2017-06-03 11:59 - 01181024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2017-06-14 14:55 - 2017-06-03 11:51 - 02187104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-06-14 14:55 - 2017-06-03 11:51 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-06-14 14:55 - 2017-06-03 11:49 - 00624048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-06-14 14:55 - 2017-06-03 11:48 - 00857952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2017-06-14 14:55 - 2017-06-03 11:48 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2017-06-14 14:55 - 2017-06-03 11:40 - 01566552 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-06-14 14:55 - 2017-06-03 11:40 - 00628552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-06-14 14:55 - 2017-06-03 11:22 - 07217152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-06-14 14:55 - 2017-06-03 11:18 - 22569984 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-06-14 14:55 - 2017-06-03 11:16 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2017-06-14 14:55 - 2017-06-03 11:14 - 00045056 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-06-14 14:55 - 2017-06-03 11:10 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll
2017-06-14 14:55 - 2017-06-03 11:09 - 00489472 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2017-06-14 14:55 - 2017-06-03 11:09 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcorehc.dll
2017-06-14 14:55 - 2017-06-03 11:09 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2017-06-14 14:55 - 2017-06-03 11:08 - 00691200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-06-14 14:55 - 2017-06-03 11:07 - 00456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2017-06-14 14:55 - 2017-06-03 11:07 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\HNetCfgClient.dll
2017-06-14 14:55 - 2017-06-03 11:06 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2017-06-14 14:55 - 2017-06-03 11:01 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2017-06-14 14:55 - 2017-06-03 11:00 - 23677440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-06-14 14:55 - 2017-06-03 10:56 - 13091840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-06-14 14:55 - 2017-06-03 10:54 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-06-14 14:55 - 2017-06-03 10:52 - 00975872 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2017-06-14 14:55 - 2017-06-03 10:52 - 00886784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2017-06-14 14:55 - 2017-06-03 10:51 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2017-06-14 14:55 - 2017-06-03 10:51 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2017-06-14 14:55 - 2017-06-03 10:49 - 02475520 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-06-14 14:55 - 2017-06-03 10:49 - 01845248 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-06-14 14:55 - 2017-06-03 10:49 - 00351744 _____ (Microsoft Corporation) C:\WINDOWS\system32\hnetcfg.dll
2017-06-14 14:55 - 2017-06-03 10:48 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-06-14 14:55 - 2017-06-03 10:48 - 01131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-06-14 14:55 - 2017-06-03 10:48 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-06-14 14:55 - 2017-06-03 08:08 - 00080078 _____ C:\WINDOWS\system32\normidna.nls
2017-06-14 14:55 - 2017-05-25 07:56 - 00038752 _____ (Microsoft Corporation) C:\WINDOWS\system32\OOBEUpdater.exe
2017-06-14 14:55 - 2017-03-04 08:16 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2017-06-14 14:54 - 2017-06-03 12:16 - 00279904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2017-06-14 14:54 - 2017-06-03 12:14 - 01214816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-06-14 14:54 - 2017-06-03 12:14 - 00544096 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-06-14 14:54 - 2017-06-03 12:14 - 00334176 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-06-14 14:54 - 2017-06-03 12:14 - 00233824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-06-14 14:54 - 2017-06-03 11:59 - 00764392 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-06-14 14:54 - 2017-06-03 11:54 - 00187232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2017-06-14 14:54 - 2017-06-03 11:50 - 00381792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-06-14 14:54 - 2017-06-03 11:48 - 01112416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2017-06-14 14:54 - 2017-06-03 11:48 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-06-14 14:54 - 2017-06-03 11:48 - 00989024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-06-14 14:54 - 2017-06-03 11:39 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-06-14 14:54 - 2017-06-03 11:15 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-06-14 14:54 - 2017-06-03 11:08 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-06-14 14:54 - 2017-06-03 10:58 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdProxy.dll
2017-06-13 21:53 - 2017-06-13 21:53 - 00552440 _____ C:\WINDOWS\system32\dgtrayicon.exe
2017-06-13 21:53 - 2017-06-13 21:53 - 00547320 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2017-06-13 21:53 - 2017-06-13 21:53 - 00531960 _____ C:\WINDOWS\system32\GameManager64.dll
2017-06-13 21:53 - 2017-06-13 21:53 - 00478712 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2017-06-13 21:53 - 2017-06-13 21:53 - 00279032 _____ C:\WINDOWS\system32\clinfo.exe
2017-06-13 21:53 - 2017-06-13 21:53 - 00276984 _____ C:\WINDOWS\system32\hsa-thunk64.dll
2017-06-13 21:53 - 2017-06-13 21:53 - 00242680 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll
2017-06-13 21:53 - 2017-06-13 21:53 - 00191992 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2017-06-13 21:53 - 2017-06-13 21:53 - 00170488 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2017-06-13 21:53 - 2017-06-13 21:53 - 00151544 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2017-06-13 21:53 - 2017-06-13 21:53 - 00135672 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2017-06-13 21:53 - 2017-06-13 21:53 - 00045560 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2017-06-13 21:53 - 2017-06-13 21:53 - 00043000 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 10322936 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdvlk64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 08480760 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdvlk32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 03471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2017-06-13 21:52 - 2017-06-13 21:52 - 03437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2017-06-13 21:52 - 2017-06-13 21:52 - 02536952 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 02199032 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 01041400 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00864760 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00798552 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2017-06-13 21:52 - 2017-06-13 21:52 - 00798552 _____ C:\WINDOWS\system32\atiapfxx.blb
2017-06-13 21:52 - 2017-06-13 21:52 - 00778232 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2017-06-13 21:52 - 2017-06-13 21:52 - 00696824 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00574440 _____ C:\WINDOWS\system32\amdmiracast.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00552440 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2017-06-13 21:52 - 2017-06-13 21:52 - 00515064 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00484344 _____ C:\WINDOWS\system32\atieah64.exe
2017-06-13 21:52 - 2017-06-13 21:52 - 00467960 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00411640 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2017-06-13 21:52 - 2017-06-13 21:52 - 00360952 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00334840 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2017-06-13 21:52 - 2017-06-13 21:52 - 00245752 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00204280 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00196816 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00168440 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00165040 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00157336 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00149072 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00139712 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00134136 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00131912 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00131912 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00123384 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00121848 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00116704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00115704 _____ C:\WINDOWS\system32\atidxx64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00113144 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00112632 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00103152 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00103152 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00102392 _____ C:\WINDOWS\SysWOW64\atidxx32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00099832 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00092152 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmcl64.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00075768 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmcl32.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00069624 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll
2017-06-13 21:52 - 2017-06-13 21:52 - 00000144 _____ C:\WINDOWS\SysWOW64\amd-vulkan32.json
2017-06-13 21:52 - 2017-06-13 21:52 - 00000144 _____ C:\WINDOWS\system32\amd-vulkan64.json
2017-06-12 12:53 - 2017-06-12 12:53 - 00000000 ____D C:\Users\Nix0ne\AppData\Local\UnrealEngine
2017-06-12 12:53 - 2017-06-12 12:53 - 00000000 ____D C:\Users\Nix0ne\AppData\Local\TslGame
2017-06-11 21:30 - 2017-06-11 21:30 - 04121760 _____ (Husdawg, LLC) C:\Users\Nix0ne\Downloads\Detection.exe
2017-06-11 18:54 - 2017-06-11 18:55 - 1208768162 _____ C:\Users\Nix0ne\Downloads\Spojenci Allied (2016).mkv
2017-06-11 18:54 - 2017-06-11 18:54 - 00012115 _____ C:\Users\Nix0ne\Downloads\[SkT]Spojenci_-_Allied_(2016)(CZ)_=_CSFD_76%.torrent
2017-06-11 18:53 - 2017-06-11 18:53 - 00012598 _____ C:\Users\Nix0ne\Downloads\[CzT]Zuctovani_The_Accountant_2016_CZ_.torrent
2017-06-11 18:52 - 2017-06-11 18:52 - 00011562 _____ C:\Users\Nix0ne\Downloads\Zuctovani-(2016)(CZ).torrent
2017-06-11 16:49 - 2017-06-11 16:49 - 00016067 _____ C:\Users\Nix0ne\Downloads\[CzT]Polduv_svagr_Ride_Along_2_2016_CZ_.torrent
2017-06-11 16:17 - 2017-06-11 16:17 - 00043502 _____ C:\Users\Nix0ne\Downloads\[SkT]Zelezna-srdce-_-Fury-(2014)(CZ_EN)[720p]-=-CSFD-76%.torrent
2017-06-10 22:53 - 2017-06-10 22:53 - 00014386 _____ C:\Users\Nix0ne\Downloads\[SkT]Hacksaw_Ridge-_Zrozeni_hrdiny_-_Hacksaw_Ridge_(2016)(CZ)_=_CSFD_84%.torrent
2017-06-10 22:49 - 2017-06-10 22:49 - 00000000 ____D C:\Users\Nix0ne\AppData\Local\VS Revo Group
2017-06-10 22:49 - 2017-06-10 22:49 - 00000000 ____D C:\ProgramData\VS Revo Group
2017-06-10 22:49 - 2017-06-10 22:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2017-06-10 22:49 - 2017-06-10 22:49 - 00000000 ____D C:\Program Files\VS Revo Group
2017-06-10 22:49 - 2016-12-21 14:52 - 00040240 _____ (VS Revo Group) C:\WINDOWS\system32\Drivers\revoflt.sys
2017-06-10 22:48 - 2017-06-10 22:48 - 11534624 _____ (VS Revo Group ) C:\Users\Nix0ne\Downloads\RevoUninProSetup.exe
2017-06-10 22:45 - 2017-06-10 22:45 - 00000000 ____D C:\Users\Nix0ne\Documents\Freemake
2017-06-10 22:45 - 2017-06-10 22:45 - 00000000 ____D C:\Users\Nix0ne\AppData\Local\FreemakeVideoConverter
2017-06-10 22:15 - 2017-06-10 22:15 - 00000000 ____D C:\Users\Nix0ne\AppData\Local\Movavi
2017-06-10 22:15 - 2017-06-10 22:15 - 00000000 ____D C:\Users\Nix0ne\AppData\Local\converter
2017-06-10 22:15 - 2017-06-10 22:15 - 00000000 ____D C:\Users\Nix0ne\.fontconfig
2017-06-10 22:15 - 2017-06-10 22:15 - 00000000 ____D C:\ProgramData\Movavi
2017-06-10 22:14 - 2017-06-10 22:14 - 00005107 _____ C:\ProgramData\mudtcpaz.vzs
2017-06-10 22:14 - 2017-06-10 22:14 - 00000016 _____ C:\ProgramData\mntemp
2017-06-10 22:13 - 2017-06-10 22:13 - 42226392 _____ (Movavi) C:\Users\Nix0ne\Downloads\MovaviVideoConverterSetupO_1.exe
2017-06-10 21:24 - 2017-06-10 21:24 - 00000000 _____ C:\Users\Nix0ne\Downloads\nosTEAM.mp4
2017-06-10 21:00 - 2017-06-10 21:00 - 03166669 _____ (PolySoft Solutions ) C:\Users\Nix0ne\Downloads\FreeAVIToMP4Converter.exe
2017-06-10 21:00 - 2017-06-10 21:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free AVI to MP4 Converter
2017-06-10 21:00 - 2017-06-10 21:00 - 00000000 ____D C:\Program Files (x86)\Free AVI to MP4 Converter
2017-06-10 20:20 - 2017-06-10 20:20 - 09083617 _____ C:\Users\Nix0ne\Downloads\csgo.7z
2017-06-09 11:17 - 2017-06-10 16:23 - 00000000 ____D C:\Users\Nix0ne\AppData\Local\PAYDAY 2
2017-06-09 11:17 - 2017-06-09 11:17 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-06-09 11:17 - 2017-06-09 11:17 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2017-06-06 19:19 - 2017-06-06 19:19 - 00000000 ____D C:\Users\Nix0ne\AppData\Roaming\FACEIT
2017-06-05 21:55 - 2017-06-05 21:55 - 00000000 ____D C:\Users\Nix0ne\AppData\Local\FACEIT
2017-06-05 21:53 - 2017-06-19 22:04 - 07976416 _____ C:\WINDOWS\system32\Drivers\FACEIT.sys
2017-06-05 21:53 - 2017-06-18 22:37 - 00000000 ____D C:\Program Files\FACEIT Client
2017-06-05 21:53 - 2017-06-05 21:53 - 00000920 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FACEIT Client.lnk
2017-06-05 21:53 - 2017-06-05 21:53 - 00000908 _____ C:\Users\Public\Desktop\FACEIT Client.lnk
2017-06-05 21:52 - 2017-06-05 21:52 - 16693736 _____ (FACEIT LTD ) C:\Users\Nix0ne\Downloads\FACEITInstaller_64.exe
2017-06-05 21:43 - 2017-06-05 21:43 - 00001802 _____ C:\Users\Nix0ne\Desktop\Play DARK SOULS III.lnk
2017-06-05 19:55 - 2017-06-05 21:15 - 00000000 ____D C:\Users\Nix0ne\Downloads\DARK SOULS III PC full game repack ^^nosTEAM^^
2017-06-05 15:32 - 2017-06-05 15:32 - 00000000 ____D C:\Users\Nix0ne\Documents\My Games
2017-06-05 15:29 - 2017-06-05 15:29 - 00084433 _____ C:\Users\Nix0ne\Downloads\faktura-1117044427.pdf
2017-06-05 14:37 - 2017-06-15 12:38 - 00000060 _____ C:\ProgramData\SoftwareUpdateTemp.xml
2017-06-05 14:36 - 2017-06-05 14:36 - 41315000 _____ (AMD Inc.) C:\Users\Nix0ne\Downloads\radeon-crimson-relive-17.5.2-minimalsetup-170518_64bit.exe
2017-06-04 18:02 - 2017-06-04 18:02 - 02257745 _____ C:\Users\Nix0ne\Downloads\DreamScene Video Wallpaper 2.23 [vokeon].zip
2017-06-04 17:58 - 2017-06-04 17:58 - 00424812 _____ C:\Users\Nix0ne\Downloads\W7DSA.zip
2017-06-03 17:38 - 2017-06-03 17:38 - 00000000 ____D C:\Users\Nix0ne\AppData\LocalLow\Blacklight Interactive
2017-06-03 16:48 - 2017-06-25 08:53 - 00004716 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-06-03 16:47 - 2017-06-03 16:47 - 01202184 _____ (Adobe Systems Incorporated) C:\Users\Nix0ne\Downloads\flashplayer25pp_fa_install.exe
2017-05-31 23:00 - 2017-05-31 23:00 - 112069345 _____ C:\Users\Nix0ne\Documents\6k_Layer_Styles_Pack_-_Nelson_Designs.psd
2017-05-31 22:55 - 2017-05-31 22:55 - 184856344 _____ C:\Users\Nix0ne\Downloads\GFX PACK! -SaxArt5-.rar
2017-05-31 22:55 - 2017-05-31 22:55 - 00000000 ____D C:\Users\Nix0ne\AppData\LocalLow\Adobe
2017-05-31 22:55 - 2016-12-27 13:27 - 288661106 _____ C:\Users\Nix0ne\Documents\GFX PACK! -SaxArt5-.psd
2017-05-31 22:50 - 2017-05-31 22:50 - 00001085 _____ C:\Users\Nix0ne\Desktop\Adobe Photoshop CC 2014.lnk
2017-05-31 22:48 - 2017-05-31 22:48 - 00003638 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-7B41P97-Nix0ne
2017-05-31 22:48 - 2017-05-31 22:48 - 00001085 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2014.lnk
2017-05-31 22:48 - 2017-05-31 22:48 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2017-05-31 22:47 - 2017-05-31 22:47 - 00000000 ____D C:\Program Files\Adobe
2017-05-31 22:45 - 2017-05-31 22:48 - 00000000 ____D C:\Program Files\Common Files\Adobe
2017-05-31 22:45 - 2017-05-31 22:45 - 00001619 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
2017-05-31 22:43 - 2017-06-01 10:43 - 00000000 ____D C:\ProgramData\Adobe
2017-05-31 22:43 - 2017-05-31 22:43 - 00000000 ____D C:\Users\Nix0ne\AppData\Roaming\Macromedia
2017-05-31 22:42 - 2017-06-25 08:53 - 00000000 ____D C:\Users\Nix0ne\AppData\Local\Adobe
2017-05-31 22:18 - 2017-05-31 22:19 - 00000000 ____D C:\Users\Nix0ne\Downloads\Adobe Photoshop CC 2014 (64 bit) (Crack) [ChingLiu]
2017-05-31 22:18 - 2017-05-31 22:18 - 02240192 _____ (BitTorrent Inc.) C:\Users\Nix0ne\Downloads\uTorrent.exe
2017-05-31 22:10 - 2017-05-31 22:10 - 00515639 _____ C:\Users\Nix0ne\Downloads\steam.design.zip
2017-05-31 21:36 - 2017-05-31 21:36 - 00056223 _____ C:\Users\Nix0ne\Downloads\impacted.zip
2017-05-30 13:40 - 2017-05-30 13:40 - 05909797 _____ C:\Users\Nix0ne\Downloads\am_dust2014.bsp.bz2
2017-05-30 11:19 - 2017-06-01 18:38 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2017-05-30 11:19 - 2017-05-30 11:19 - 03086696 _____ C:\Users\Nix0ne\Downloads\instspeedfan452.exe
2017-05-30 11:19 - 2017-05-30 11:19 - 00000045 _____ C:\WINDOWS\SysWOW64\initdebug.nfo
2017-05-30 11:19 - 2017-05-30 11:19 - 00000000 ____D C:\Users\Nix0ne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-06-25 16:40 - 2017-05-15 18:41 - 02768072 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-06-25 16:40 - 2016-07-17 00:25 - 01116558 _____ C:\WINDOWS\system32\perfh005.dat
2017-06-25 16:40 - 2016-07-17 00:25 - 00290432 _____ C:\WINDOWS\system32\perfc005.dat
2017-06-25 16:37 - 2017-05-15 18:41 - 00000000 ____D C:\Program Files (x86)\Steam
2017-06-25 16:34 - 2017-05-15 18:29 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-06-25 16:34 - 2017-05-15 18:28 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-06-25 13:58 - 2017-05-15 18:44 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin
2017-06-25 13:58 - 2016-07-16 08:04 - 00262144 _____ C:\WINDOWS\system32\config\BBI
2017-06-25 08:53 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-06-25 08:53 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-06-24 23:39 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-06-24 23:39 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-06-22 14:03 - 2017-05-15 20:42 - 00000000 ____D C:\Users\Nix0ne\AppData\Roaming\TS3Client
2017-06-22 14:03 - 2017-05-15 18:36 - 00000000 ____D C:\Users\Nix0ne
2017-06-22 13:20 - 2017-05-18 19:55 - 00000000 ____D C:\Users\Nix0ne\AppData\Local\Battle.net
2017-06-22 13:10 - 2017-05-18 19:54 - 00000000 ____D C:\Program Files (x86)\Blizzard App
2017-06-18 10:55 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-06-18 10:26 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2017-06-16 22:46 - 2017-05-16 10:02 - 00000000 ____D C:\Games
2017-06-16 13:47 - 2017-05-15 22:33 - 00000000 ____D C:\Users\Nix0ne\AppData\Roaming\uTorrent
2017-06-16 12:34 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache
2017-06-15 12:38 - 2017-05-15 18:44 - 00000000 ____D C:\AMD
2017-06-15 12:05 - 2017-05-15 18:41 - 00003958 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1494866509
2017-06-15 12:05 - 2017-05-15 18:41 - 00001078 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2017-06-15 12:05 - 2017-05-15 18:39 - 00000000 ____D C:\Program Files\Opera
2017-06-14 20:40 - 2017-05-15 18:36 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-06-14 20:39 - 2017-05-15 18:28 - 00194440 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-06-14 20:38 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-06-14 20:38 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-06-14 20:38 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-06-14 15:16 - 2017-05-15 19:47 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-06-14 15:15 - 2017-05-15 19:47 - 133627792 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-06-14 13:55 - 2017-05-18 19:56 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2017-06-13 21:53 - 2017-05-03 21:23 - 00925176 _____ (AMD) C:\WINDOWS\system32\coinst_17.10.dll
2017-06-13 21:53 - 2017-05-03 21:23 - 00029688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2017-06-13 21:53 - 2017-05-03 21:23 - 00029688 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2017-06-13 21:53 - 2017-03-15 22:34 - 00366072 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2017-06-13 21:52 - 2017-03-15 22:34 - 01517048 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2017-06-13 21:52 - 2017-03-15 22:34 - 01041400 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2017-06-11 21:09 - 2017-05-15 18:39 - 00000000 ___RD C:\Users\Nix0ne\OneDrive
2017-06-05 14:38 - 2017-05-15 19:00 - 00000000 ____D C:\ProgramData\Package Cache
2017-06-03 08:36 - 2016-07-16 13:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-06-03 08:36 - 2016-07-16 13:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-05-31 22:48 - 2017-05-15 18:36 - 00000000 ____D C:\Users\Nix0ne\AppData\Roaming\Adobe
2017-05-31 22:45 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-05-31 14:15 - 2017-05-15 19:53 - 00565416 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
==================== Files in the root of some directories =======
2017-05-25 15:30 - 2017-05-25 15:30 - 0000603 _____ () C:\Users\Nix0ne\AppData\Roaming\vibranceGUI.log
2017-06-25 17:44 - 2017-06-25 17:44 - 0029696 _____ () C:\Users\Nix0ne\AppData\Local\MSGBOX.EXE
2017-06-18 10:42 - 2017-06-18 10:42 - 0000000 _____ () C:\Users\Nix0ne\AppData\Local\{4E4610EA-662C-4C17-BECA-9B941F4EEA8E}
2017-06-10 22:14 - 2017-06-10 22:14 - 0000016 _____ () C:\ProgramData\mntemp
2017-06-10 22:14 - 2017-06-10 22:14 - 0005107 _____ () C:\ProgramData\mudtcpaz.vzs
2017-06-05 14:37 - 2017-06-15 12:38 - 0000060 _____ () C:\ProgramData\SoftwareUpdateTemp.xml
Some files in TEMP:
====================
2017-06-10 22:44 - 2017-06-10 22:45 - 32682216 _____ (Ellora Assets Corporation ) C:\Users\Nix0ne\AppData\Local\Temp\FreemakeVideoConverterFull.exe
2017-05-30 11:19 - 2017-06-01 18:38 - 0192512 _____ () C:\Users\Nix0ne\AppData\Local\Temp\sfamcc00001.dll
2015-02-10 19:56 - 2015-02-10 19:56 - 0105984 _____ () C:\Users\Nix0ne\AppData\Local\Temp\sfextra.dll
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-06-14 20:09
==================== End of FRST.txt ============================
-
Rudy
- Site Admin
- Příspěvky: 119315
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Možné viry
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\MountPoints2: {2775ed99-4ed7-11e7-b4e6-9c5c8e82137d} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\MountPoints2: {2775ee47-4ed7-11e7-b4e6-9c5c8e82137d} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\MountPoints2: {32921ceb-4d37-11e7-b4e3-9c5c8e82137d} - "D:\Lenovo_Suite.exe"
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\MountPoints2: {97a35488-4e7c-11e7-b4e4-9c5c8e82137d} - "E:\HiSuiteDownLoader.exe"
C:\Users\Nix0ne\AppData\Local\Temp
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Možné viry
Fix result of Farbar Recovery Scan Tool (x64) Version: 25-06-2017
Ran by Nix0ne (25-06-2017 18:39:13) Run:1
Running from C:\Users\Nix0ne\Desktop
Loaded Profiles: Nix0ne (Available Profiles: defaultuser0 & Nix0ne)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\MountPoints2: {2775ed99-4ed7-11e7-b4e6-9c5c8e82137d} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\MountPoints2: {2775ee47-4ed7-11e7-b4e6-9c5c8e82137d} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\MountPoints2: {32921ceb-4d37-11e7-b4e3-9c5c8e82137d} - "D:\Lenovo_Suite.exe"
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\MountPoints2: {97a35488-4e7c-11e7-b4e4-9c5c8e82137d} - "E:\HiSuiteDownLoader.exe"
C:\Users\Nix0ne\AppData\Local\Temp
EmptyTemp:
End
*****************
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2775ed99-4ed7-11e7-b4e6-9c5c8e82137d} => key removed successfully
HKLM\Software\Classes\CLSID\{2775ed99-4ed7-11e7-b4e6-9c5c8e82137d} => key not found.
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2775ee47-4ed7-11e7-b4e6-9c5c8e82137d} => key removed successfully
HKLM\Software\Classes\CLSID\{2775ee47-4ed7-11e7-b4e6-9c5c8e82137d} => key not found.
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{32921ceb-4d37-11e7-b4e3-9c5c8e82137d} => key removed successfully
HKLM\Software\Classes\CLSID\{32921ceb-4d37-11e7-b4e3-9c5c8e82137d} => key not found.
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{97a35488-4e7c-11e7-b4e4-9c5c8e82137d} => key removed successfully
HKLM\Software\Classes\CLSID\{97a35488-4e7c-11e7-b4e4-9c5c8e82137d} => key not found.
"C:\Users\Nix0ne\AppData\Local\Temp" folder move:
Could not move "C:\Users\Nix0ne\AppData\Local\Temp" => Scheduled to move on reboot.
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 18854668 B
Java, Flash, Steam htmlcache => 142968762 B
Windows/system/drivers => 19645665 B
Edge => 947151 B
Chrome => 375138336 B
Firefox => 0 B
Opera => 368792795 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 6564 B
defaultuser0 => 128 B
Nix0ne => 721487708 B
RecycleBin => 0 B
EmptyTemp: => 1.5 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 25-06-2017 18:41:48)
C:\Users\Nix0ne\AppData\Local\Temp => moved successfully
==== End of Fixlog 18:41:49 ====
Ran by Nix0ne (25-06-2017 18:39:13) Run:1
Running from C:\Users\Nix0ne\Desktop
Loaded Profiles: Nix0ne (Available Profiles: defaultuser0 & Nix0ne)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\MountPoints2: {2775ed99-4ed7-11e7-b4e6-9c5c8e82137d} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\MountPoints2: {2775ee47-4ed7-11e7-b4e6-9c5c8e82137d} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\MountPoints2: {32921ceb-4d37-11e7-b4e3-9c5c8e82137d} - "D:\Lenovo_Suite.exe"
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\...\MountPoints2: {97a35488-4e7c-11e7-b4e4-9c5c8e82137d} - "E:\HiSuiteDownLoader.exe"
C:\Users\Nix0ne\AppData\Local\Temp
EmptyTemp:
End
*****************
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2775ed99-4ed7-11e7-b4e6-9c5c8e82137d} => key removed successfully
HKLM\Software\Classes\CLSID\{2775ed99-4ed7-11e7-b4e6-9c5c8e82137d} => key not found.
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2775ee47-4ed7-11e7-b4e6-9c5c8e82137d} => key removed successfully
HKLM\Software\Classes\CLSID\{2775ee47-4ed7-11e7-b4e6-9c5c8e82137d} => key not found.
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{32921ceb-4d37-11e7-b4e3-9c5c8e82137d} => key removed successfully
HKLM\Software\Classes\CLSID\{32921ceb-4d37-11e7-b4e3-9c5c8e82137d} => key not found.
HKU\S-1-5-21-3515568681-1908388921-2690519491-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{97a35488-4e7c-11e7-b4e4-9c5c8e82137d} => key removed successfully
HKLM\Software\Classes\CLSID\{97a35488-4e7c-11e7-b4e4-9c5c8e82137d} => key not found.
"C:\Users\Nix0ne\AppData\Local\Temp" folder move:
Could not move "C:\Users\Nix0ne\AppData\Local\Temp" => Scheduled to move on reboot.
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 18854668 B
Java, Flash, Steam htmlcache => 142968762 B
Windows/system/drivers => 19645665 B
Edge => 947151 B
Chrome => 375138336 B
Firefox => 0 B
Opera => 368792795 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 6564 B
defaultuser0 => 128 B
Nix0ne => 721487708 B
RecycleBin => 0 B
EmptyTemp: => 1.5 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 25-06-2017 18:41:48)
C:\Users\Nix0ne\AppData\Local\Temp => moved successfully
==== End of Fixlog 18:41:49 ====
-
Rudy
- Site Admin
- Příspěvky: 119315
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Možné viry
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Možné viry
S ramkama asi ne, ale to bude problém u HW, né s virama, děkuju.
-
Rudy
- Site Admin
- Příspěvky: 119315
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Možné viry
Ještě můžeme provést hloubkový sken. Spusťte MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Možné viry
To už jsem bohužel zkoušet taky :/ Nic to nenašlo.
-
Rudy
- Site Admin
- Příspěvky: 119315
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Možné viry
Tak může to dělat i regulérní aplikace. Co jste instaloval těsně před tím, než se problém projevil?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Možné viry
Asi 2 hry - PlayersUnknown's Battlegrounds a Fifa 15 ( Fifa odinstalována )
V Prohlížeči událostí jsem na den, kdy mi to +- přestalo fungovat správně našel toto - nemá to s tím něco společného?
https://gyazo.com/179b2db2796e47c894d13c0e39f4e8ab
V Prohlížeči událostí jsem na den, kdy mi to +- přestalo fungovat správně našel toto - nemá to s tím něco společného?
https://gyazo.com/179b2db2796e47c894d13c0e39f4e8ab
-
Rudy
- Site Admin
- Příspěvky: 119315
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Možné viry
Nemělo by. Zatížení paměti by mělo souviset s nějakou aplikací. Obvykle je to znát ve správci úloh (nadměrně "žere" systémové prostředky). Zkuste odinstalkovat na zkoušku, nebo udělejte obnovu systému k dat, kdy korketně fungoval.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Možné viry
Kouknul jsem se do sledování prostředků a viděl jsem tam, že je 4,1 GB zabráno hardwarem? https://gyazo.com/d383452f2c4598f9148f878343137a8a
Přispějete na provoz fóra?