VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosím o kontrolu logu

https://forum.viry.cz:443/viewtopic.php?t=149248

Stránka 1 z 1

Prosím o kontrolu logu

Napsal: 17 čer 2016 23:55
od _Daniel
Dobrý den, prosím o kontrolu logu. Mám problém se službou Skype. Najednou se mi z ničeho nic sám zapne (například dnes po cca pěti hodinách od zapnutí pc se sám zapl aniž bych měl zvolenou položku spuštění služby po startu windows). Přikládám RSIT log. Děkuji D.B.

Logfile of random's system information tool 1.10 (written by random/random)
Run by PC at 2016-06-18 00:49:23
Microsoft Windows 10 Home
System drive C: has 182 GB (80%) free of 228 GB
Total RAM: 16337 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 0:49:24, on 18.06.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0420)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe
C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIsvc32.exe
C:\Users\PC\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Genius\Manticore\MTHid.exe
C:\Program Files (x86)\NZXT\CAM\CAM_Client_V3.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\NZXT\CAM\FPS\CAMFPS.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files\trend micro\PC.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (file missing)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (file missing)
O4 - HKLM\..\Run: [CAM] C:\Program Files (x86)\NZXT\CAM\CAMLauncher.exe -autostart
O4 - HKLM\..\Run: [Manticore] C:\Program Files (x86)\Genius\Manticore\MThid.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\RunOnce: [20160527] "C:\Program Files\AVAST Software\Avast\aswRunDll.exe" "C:\Program Files\AVAST Software\Avast\1bdb0152-469e-42f9-aa66-11087cc158f3\c1c5e273-74ab-43fb-b7fa-d48f696dbc83.dll",_stage2@16
O4 - HKCU\..\Run: [OneDrive] "C:\Users\PC\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: GIGABYTE OC_GURU.lnk = C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe
O4 - Global Startup: Killer Network Manager.lnk = C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GalaxyClientService - GOG.com - D:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Google Software Updater (gusvc) - Unknown owner - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Security Assist - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O23 - Service: Intel(R) Security Assist Helper (isaHelperSvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Killer Service V2 - Rivet Networks - C:\Program Files\Killer Networking\Network Manager\KillerService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - D:\Program files (x86)\Origin\OriginClientService.exe
O23 - Service: Overwolf Updater Windows SCM (OverwolfUpdater) - Overwolf LTD - D:\Program files (x86)\Overwolf\OverwolfUpdater.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10942 bytes

======Listing Processes======







winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe"
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe -first
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Killer Networking\Network Manager\KillerService.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe"
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-e220b8f1-3061-4712-9821-78357e59d523 -SystemEventPortName:HostProcess-57bdcd7f-a938-4262-b549-7c6b3c9bb73d -IoCancelEventPortName:HostProcess-9e8b592f-a404-4f15-96ee-27163f0acdd6 -NonStateChangingEventPortName:HostProcess-806298ce-3e63-4656-a58c-dbbd91f53229 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:3f5f50b8-4d9c-41f4-88f9-07edfc487b57 -DeviceGroupId:WpdFsGroup
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\SmartTechnology\Software\ProfilerU.exe"
"C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe" /noUI
"C:\Program Files\Nahimic\NahimicMSI\UserInterface\.\NahimicMSIsvc32.exe" /start all
"C:\Program Files\SmartTechnology\Software\SaiMfd.exe"
"C:\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIsvc64.exe" /start all
"C:\Users\PC\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe" -minimize
"C:\Program Files (x86)\Genius\Manticore\MTHid.exe"
"C:\Program Files (x86)\NZXT\CAM\CAM_Client_V3.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"fontdrvhost.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\NZXT\CAM\FPS\CAMFPS.exe" -hide
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe -Embedding
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe -secured -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe"
C:\Windows\System32\DataExchangeHost.exe -Embedding
taskhostw.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
"C:\Program Files\WindowsApps\Microsoft.ZuneMusic_3.6.20961.0_x64__8wekyb3d8bbwe\Music.UI.exe" -ServerName:Microsoft.ZuneMusic.AppX48dcrcgzqqdshm3kf61t0cm5e9pyd6h6.mca
"C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.20961.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca

C:\WINDOWS\system32\msiexec.exe /V
C:\WINDOWS\System32\svchost.exe -k swprv
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe67_ Global\UsGthrCtrlFltPipeMssGthrPipe67 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 624 628 636 8192 632
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\PC\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-04-02 901600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-04-02 678656]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll []

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2015-07-30 8520448]
"NahimicMSIUILauncher"=C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe [2015-08-07 532448]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2016-05-02 2398776]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2016-05-02 1767944]
"ProfilerU"=C:\Program Files\SmartTechnology\Software\ProfilerU.exe [2015-10-01 454144]
"SaiMfd"=C:\Program Files\SmartTechnology\Software\SaiMfd.exe [2015-10-01 157696]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\PC\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-05-18 554184]
"GalaxyClient"= []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"CAM"=C:\Program Files (x86)\NZXT\CAM\CAMLauncher.exe [2016-02-04 45680]
"Manticore"=C:\Program Files (x86)\Genius\Manticore\MThid.exe [2014-01-23 292864]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-04-02 7139256]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\RunOnce]
"20160527"=C:\Program Files\AVAST Software\Avast\aswRunDll.exe [2016-04-02 785176]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
GIGABYTE OC_GURU.lnk - C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe
Killer Network Manager.lnk - C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=lvcod64.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo"=vfwwdm32.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux3"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux4"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-06-18 00:46:55 ----RD---- C:\Program Files (x86)\Skype
2016-06-14 20:12:39 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-06-14 20:12:39 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-06-14 20:12:39 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-06-14 20:12:39 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-06-14 20:12:39 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-06-14 20:12:39 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-06-14 20:12:38 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2016-06-14 20:12:38 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-06-14 20:12:38 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2016-06-14 20:12:38 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2016-06-14 20:12:38 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-06-14 20:12:38 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-06-14 20:12:38 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-06-14 20:12:37 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2016-06-14 20:12:37 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-06-14 20:12:37 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2016-06-14 20:12:37 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-06-14 20:12:37 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-06-14 20:12:37 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-06-14 20:12:36 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2016-06-14 20:12:36 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2016-06-14 20:12:36 ----A---- C:\WINDOWS\system32\mos.dll
2016-06-14 20:12:36 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-06-14 20:12:36 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-06-14 20:12:36 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-06-14 20:12:35 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-06-14 20:12:31 ----A---- C:\WINDOWS\system32\tdlrecover.exe
2016-06-14 20:12:31 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-06-14 20:12:31 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-06-14 20:12:31 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-06-14 20:12:31 ----A---- C:\WINDOWS\system32\moshost.dll
2016-06-14 20:12:31 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-06-14 20:12:31 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-06-14 20:12:31 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-06-14 20:12:30 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-06-14 20:12:30 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-06-14 20:12:30 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-06-14 20:12:29 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2016-06-14 20:12:29 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2016-06-14 20:12:29 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2016-06-14 20:12:29 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-06-14 20:12:29 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-06-14 20:12:29 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-06-14 20:12:28 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-06-14 20:12:28 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-06-14 20:12:27 ----A---- C:\WINDOWS\system32\twinui.dll
2016-06-14 20:12:27 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-06-14 20:12:26 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-06-14 20:12:25 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-06-14 20:12:24 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-06-14 20:12:24 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2016-06-14 20:12:23 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-06-14 20:12:23 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2016-06-14 20:12:23 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-06-14 20:12:23 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-06-14 20:12:22 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-06-14 20:12:22 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-06-14 20:12:21 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-06-14 20:12:21 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2016-06-14 20:12:21 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-06-14 20:12:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2016-06-14 20:12:20 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-06-14 20:12:20 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2016-06-14 20:12:20 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-06-14 20:12:20 ----A---- C:\WINDOWS\system32\gpsvc.dll
2016-06-14 20:12:19 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2016-06-14 20:12:19 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-06-14 20:12:19 ----A---- C:\WINDOWS\system32\ole32.dll
2016-06-14 20:12:19 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-06-14 20:12:19 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-06-14 20:12:18 ----A---- C:\WINDOWS\SYSWOW64\LocationFramework.dll
2016-06-14 20:12:18 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-06-14 20:12:18 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-06-14 20:12:18 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-06-14 20:12:18 ----A---- C:\WINDOWS\system32\drivers\dumpsdport.sys
2016-06-14 20:12:17 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2016-06-14 20:12:17 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2016-06-14 20:12:17 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-06-14 20:12:17 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-06-14 20:12:17 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2016-06-14 20:12:17 ----A---- C:\WINDOWS\system32\AppContracts.dll
2016-06-14 20:12:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-06-14 20:12:16 ----A---- C:\WINDOWS\SYSWOW64\tdlrecover.exe
2016-06-14 20:12:16 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-06-14 20:12:16 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-06-14 20:12:16 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-06-14 20:12:16 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2016-06-14 20:12:16 ----A---- C:\WINDOWS\system32\invagent.dll
2016-06-14 20:12:16 ----A---- C:\WINDOWS\system32\dxgi.dll
2016-06-14 20:12:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2016-06-14 20:12:15 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-06-14 20:12:15 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2016-06-14 20:12:15 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-06-14 20:12:15 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-06-14 20:12:15 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2016-06-14 20:12:15 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-06-14 20:12:14 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2016-06-14 20:12:14 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2016-06-14 20:12:14 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-06-14 20:12:14 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-06-14 20:12:14 ----A---- C:\WINDOWS\explorer.exe
2016-06-14 20:12:13 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2016-06-14 20:12:13 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2016-06-14 20:12:13 ----A---- C:\WINDOWS\system32\ws2_32.dll
2016-06-14 20:12:13 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-06-14 20:12:13 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2016-06-14 20:12:13 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2016-06-14 20:12:13 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2016-06-14 20:12:13 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-06-14 20:12:12 ----A---- C:\WINDOWS\SYSWOW64\ws2_32.dll
2016-06-14 20:12:12 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-06-14 20:12:12 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2016-06-14 20:12:12 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-06-14 20:12:12 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-06-14 20:12:12 ----A---- C:\WINDOWS\system32\usocore.dll
2016-06-14 20:12:12 ----A---- C:\WINDOWS\system32\SRH.dll
2016-06-14 20:12:12 ----A---- C:\WINDOWS\system32\setupapi.dll
2016-06-14 20:12:12 ----A---- C:\WINDOWS\system32\rastls.dll
2016-06-14 20:12:12 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2016-06-14 20:12:12 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-06-14 20:12:12 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2016-06-14 20:12:11 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2016-06-14 20:12:11 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2016-06-14 20:12:11 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-06-14 20:12:11 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2016-06-14 20:12:11 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2016-06-14 20:12:11 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-06-14 20:12:11 ----A---- C:\WINDOWS\system32\BrokerLib.dll
2016-06-14 20:12:11 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-06-14 20:12:10 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2016-06-14 20:12:10 ----A---- C:\WINDOWS\system32\shell32.dll
2016-06-14 20:12:10 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-06-14 20:12:10 ----A---- C:\WINDOWS\system32\omadmclient.exe
2016-06-14 20:12:10 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-06-14 20:12:10 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2016-06-14 20:12:10 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-06-14 20:12:09 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-06-14 20:12:09 ----A---- C:\WINDOWS\system32\vpnike.dll
2016-06-14 20:12:09 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2016-06-14 20:12:09 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-06-14 20:12:09 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2016-06-14 20:12:08 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-06-14 20:12:08 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2016-06-14 20:12:08 ----A---- C:\WINDOWS\SYSWOW64\mswsock.dll
2016-06-14 20:12:08 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2016-06-14 20:12:08 ----A---- C:\WINDOWS\system32\wininet.dll
2016-06-14 20:12:08 ----A---- C:\WINDOWS\system32\mswsock.dll
2016-06-14 20:12:08 ----A---- C:\WINDOWS\system32\hal.dll
2016-06-14 20:12:08 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-06-14 20:12:08 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-06-14 20:12:07 ----A---- C:\WINDOWS\system32\polstore.dll
2016-06-14 20:12:07 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2016-06-14 20:12:05 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2016-06-14 20:12:04 ----A---- C:\WINDOWS\SYSWOW64\VEEventDispatcher.dll
2016-06-14 20:12:04 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2016-06-14 20:12:04 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-06-14 20:12:04 ----A---- C:\WINDOWS\system32\IPSECSVC.DLL
2016-06-14 20:12:04 ----A---- C:\WINDOWS\system32\gpapi.dll
2016-06-14 20:12:04 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2016-06-14 20:12:03 ----A---- C:\WINDOWS\SYSWOW64\SyncController.dll
2016-06-14 20:12:03 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2016-06-14 20:12:03 ----A---- C:\WINDOWS\system32\SyncController.dll
2016-06-14 20:12:03 ----A---- C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2016-06-14 20:12:03 ----A---- C:\WINDOWS\system32\internetmail.dll
2016-06-14 20:12:03 ----A---- C:\WINDOWS\system32\GnssAdapter.dll
2016-06-14 20:12:03 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2016-06-14 20:12:03 ----A---- C:\WINDOWS\system32\cryptsvc.dll
2016-06-14 20:12:02 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2016-06-14 20:12:02 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2016-06-14 20:12:02 ----A---- C:\WINDOWS\SYSWOW64\polstore.dll
2016-06-14 20:12:02 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2016-06-14 20:12:02 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2016-06-14 20:12:02 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-06-14 20:12:02 ----A---- C:\WINDOWS\system32\NetworkUXBroker.exe
2016-06-14 20:12:02 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-06-14 20:12:02 ----A---- C:\WINDOWS\system32\drivers\ufx01000.sys
2016-06-14 20:12:02 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2016-06-14 20:12:02 ----A---- C:\WINDOWS\system32\devinv.dll
2016-06-14 20:12:02 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-06-14 20:12:01 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2016-06-14 20:12:01 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2016-06-14 20:12:01 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2016-06-14 20:12:01 ----A---- C:\WINDOWS\system32\ngcpopkeysrv.dll
2016-06-14 20:12:01 ----A---- C:\WINDOWS\system32\newdev.dll
2016-06-14 20:12:01 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2016-06-14 20:12:01 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2016-06-14 20:12:01 ----A---- C:\WINDOWS\system32\cdd.dll
2016-06-14 20:12:00 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-06-14 20:12:00 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-06-14 20:12:00 ----A---- C:\WINDOWS\system32\drivers\Ndu.sys
2016-06-14 20:12:00 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2016-06-14 20:12:00 ----A---- C:\WINDOWS\system32\dhcpcsvc6.dll
2016-06-14 20:11:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2016-06-14 20:11:59 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc6.dll
2016-06-14 20:11:59 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc.dll
2016-06-14 20:11:59 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2016-06-14 20:11:59 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-06-14 20:11:59 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-06-14 20:11:59 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-06-14 20:11:59 ----A---- C:\WINDOWS\system32\httpprxp.dll
2016-06-14 20:11:59 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2016-06-14 20:11:59 ----A---- C:\WINDOWS\system32\adhsvc.dll
2016-06-14 20:11:58 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2016-06-14 20:11:58 ----A---- C:\WINDOWS\SYSWOW64\FwRemoteSvr.dll
2016-06-14 20:11:58 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2016-06-14 20:11:58 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-06-14 20:11:58 ----A---- C:\WINDOWS\system32\httpprxm.dll
2016-06-14 20:11:58 ----A---- C:\WINDOWS\system32\FwRemoteSvr.dll
2016-06-14 20:11:58 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-06-14 20:11:58 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-06-14 20:11:57 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2016-06-14 20:11:57 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-06-14 20:11:57 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-06-14 20:11:57 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-06-14 20:11:57 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-06-10 19:15:26 ----D---- C:\Intel
2016-06-07 21:50:03 ----A---- C:\WINDOWS\SYSWOW64\nvStreaming.exe
2016-06-07 21:50:00 ----D---- C:\Program Files (x86)\VulkanRT
2016-06-07 21:50:00 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2016-06-07 21:50:00 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2016-06-07 21:50:00 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2016-06-07 21:50:00 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\SYSWOW64\nvumdshim.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\SYSWOW64\nvptxJitCompiler.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\SYSWOW64\nvoglshim32.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\SYSWOW64\nvinit.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\SYSWOW64\nvfatbinaryLoader.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\SYSWOW64\nvEncMFThevc.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\SYSWOW64\nvEncMFTH264.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\SYSWOW64\nvDecMFTMjpeg.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\system32\nvumdshimx.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\system32\nvopencl.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\system32\nvoglshim64.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\system32\nvmcumd.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\system32\nvinitx.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\system32\nvEncMFThevc.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\system32\nvEncMFTH264.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\system32\nvdispgenco6436839.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\system32\nvdispco6436839.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\system32\nvd3dumx.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2016-06-07 21:49:13 ----A---- C:\WINDOWS\system32\nvcuda.dll
2016-06-07 21:49:12 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2016-06-07 21:49:12 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2016-06-04 09:04:44 ----D---- C:\rsit
2016-06-04 09:04:44 ----D---- C:\Program Files\trend micro
2016-05-24 18:04:29 ----D---- C:\Program Files (x86)\Microsoft ASP.NET
2016-05-24 17:22:55 ----D---- C:\Program Files\Common Files\logishrd
2016-05-23 19:10:21 ----A---- C:\WINDOWS\system32\nvhdap64.dll
2016-05-23 19:10:21 ----A---- C:\WINDOWS\system32\nvhdagenco64.dll
2016-05-23 19:10:21 ----A---- C:\WINDOWS\system32\nvdispgenco6436822.dll
2016-05-23 19:10:21 ----A---- C:\WINDOWS\system32\nvdispco6436822.dll
2016-05-22 12:34:33 ----D---- C:\ProgramData\Movavi
2016-05-22 12:33:48 ----D---- C:\ProgramData\Movavi Video Converter 16
2016-05-22 12:14:29 ----D---- C:\WINDOWS\cs
2016-05-22 12:14:24 ----AD---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2016-05-22 12:14:19 ----D---- C:\WINDOWS\PCHEALTH
2016-05-22 12:14:17 ----AD---- C:\Program Files (x86)\Windows Live
2016-05-22 11:45:01 ----D---- C:\Users\PC\AppData\Roaming\BSplayer Pro
2016-05-22 11:45:01 ----D---- C:\Users\PC\AppData\Roaming\BSplayer

======List of files/folders modified in the last 1 month======

2016-06-18 00:47:23 ----D---- C:\Users\PC\AppData\Roaming\Skype
2016-06-18 00:46:57 ----SHD---- C:\WINDOWS\Installer
2016-06-18 00:46:57 ----D---- C:\WINDOWS\Temp
2016-06-18 00:46:55 ----RD---- C:\Program Files (x86)
2016-06-18 00:45:02 ----D---- C:\ProgramData\Skype
2016-06-18 00:45:02 ----D---- C:\Program Files (x86)\Common Files
2016-06-18 00:38:39 ----D---- C:\Users\PC\AppData\Roaming\OBS
2016-06-18 00:25:00 ----D---- C:\WINDOWS\system32\sru
2016-06-17 21:27:11 ----D---- C:\WINDOWS\system32\config
2016-06-17 21:09:27 ----D---- C:\WINDOWS\Prefetch
2016-06-17 19:35:40 ----RSD---- C:\WINDOWS\assembly
2016-06-17 19:22:10 ----D---- C:\Users\PC\AppData\Roaming\TS3Client
2016-06-17 19:21:17 ----D---- C:\WINDOWS\system32\DriverStore
2016-06-17 19:21:08 ----D---- C:\WINDOWS\WinSxS
2016-06-17 19:20:22 ----D---- C:\WINDOWS\system32\catroot2
2016-06-17 19:19:31 ----D---- C:\WINDOWS\SysWOW64
2016-06-17 19:19:31 ----D---- C:\WINDOWS\CbsTemp
2016-06-17 19:19:27 ----SHD---- C:\System Volume Information
2016-06-17 19:19:24 ----D---- C:\WINDOWS\Microsoft.NET
2016-06-17 17:18:23 ----D---- C:\WINDOWS\AppReadiness
2016-06-17 17:08:06 ----D---- C:\WINDOWS\system32\drivers
2016-06-17 16:22:22 ----D---- C:\WINDOWS\System32
2016-06-17 16:22:22 ----D---- C:\WINDOWS\INF
2016-06-17 16:22:22 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-17 16:22:21 ----HD---- C:\Program Files\WindowsApps
2016-06-17 16:16:59 ----D---- C:\ProgramData\NVIDIA
2016-06-16 21:45:06 ----SD---- C:\WINDOWS\system32\DiagSvcs
2016-06-16 21:45:06 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-06-16 21:45:06 ----D---- C:\WINDOWS\system32\wbem
2016-06-16 21:45:06 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-06-16 21:45:06 ----D---- C:\WINDOWS\system32\migration
2016-06-16 21:45:06 ----D---- C:\WINDOWS\system32\cs-CZ
2016-06-16 21:45:06 ----D---- C:\WINDOWS\bcastdvr
2016-06-16 21:45:06 ----D---- C:\WINDOWS\AppPatch
2016-06-16 21:45:06 ----D---- C:\Windows
2016-06-16 21:45:06 ----D---- C:\Program Files\Internet Explorer
2016-06-16 21:45:06 ----D---- C:\Program Files (x86)\Internet Explorer
2016-06-16 17:46:12 ----D---- C:\WINDOWS\system32\MRT
2016-06-16 17:44:45 ----A---- C:\WINDOWS\system32\MRT.exe
2016-06-14 20:33:01 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-06-12 21:36:22 ----D---- C:\ProgramData\Origin
2016-06-12 21:16:35 ----D---- C:\ProgramData\Electronic Arts
2016-06-10 21:22:02 ----HD---- C:\ProgramData
2016-06-07 21:50:21 ----D---- C:\ProgramData\NVIDIA Corporation
2016-06-04 09:04:44 ----RD---- C:\Program Files
2016-06-03 09:22:06 ----A---- C:\WINDOWS\SYSWOW64\nvwgf2um.dll
2016-06-03 09:22:06 ----A---- C:\WINDOWS\SYSWOW64\nvd3dum.dll
2016-06-03 09:22:06 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2016-06-03 09:22:06 ----A---- C:\WINDOWS\system32\nvwgf2umx.dll
2016-06-03 09:22:06 ----A---- C:\WINDOWS\system32\nvapi64.dll
2016-06-03 05:59:19 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2016-06-03 05:59:19 ----A---- C:\WINDOWS\system32\nvcpl.dll
2016-06-03 05:59:17 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2016-06-03 05:59:17 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2016-06-03 05:59:17 ----A---- C:\WINDOWS\system32\nvshext.dll
2016-06-03 05:59:17 ----A---- C:\WINDOWS\system32\nvmctray.dll
2016-06-03 05:59:17 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2016-06-03 05:59:17 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2016-05-31 15:52:02 ----D---- C:\Users\PC\AppData\Roaming\Adobe
2016-05-28 07:55:39 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2016-05-24 17:22:55 ----D---- C:\Program Files\Common Files
2016-05-22 12:14:19 ----D---- C:\Program Files\Common Files\microsoft shared
2016-05-22 12:13:48 ----SD---- C:\ProgramData\Microsoft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2016-04-02 74544]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2016-04-02 287016]
R0 ngvss;ngvss; C:\WINDOWS\system32\drivers\ngvss.sys [2016-04-02 154024]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2016-04-03 37144]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2016-04-02 103064]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2016-04-02 1070904]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2016-04-02 463744]
R1 BfLwf;@oem11.inf,%BfLwf_Desc%;KIller Bandwidth Control; C:\WINDOWS\system32\DRIVERS\bwcW10x64.sys [2015-07-07 114736]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-04-23 87552]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2016-04-02 37656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2016-04-02 107792]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2016-04-02 165344]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 asmthub3;@oem8.inf,%asmthub3_ServiceDescription%;ASMedia USB3 Hub Service; C:\WINDOWS\System32\drivers\asmthub3.sys [2015-06-05 149240]
R3 asmtxhci;@oem5.inf,%asmtxhci_ServiceDescription%;ASMEDIA XHCI Service; C:\WINDOWS\System32\drivers\asmtxhci.sys [2015-06-05 442104]
R3 cpuz138;cpuz138; \??\C:\Users\PC\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [2016-06-17 27320]
R3 GPCIDrv;GPCIDrv; \??\C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [2014-08-28 14376]
R3 iaLPSS2_GPIO2;@oem14.inf,%iaLPSS2_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2_GPIO2.sys [2015-06-16 84264]
R3 iaLPSS2_UART2;@oem12.inf,%iaLPSS2_UART2.SVCDESC%;Intel(R) Serial IO UART Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2_UART2.sys [2015-06-16 281896]
R3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-07-30 4577024]
R3 KillerEth;@oem9.inf,%RIVET.Service.DispName%;NDIS Miniport Driver for Killer e2400 PCI-E Ehternet Controller; C:\WINDOWS\System32\drivers\e24w10x64.sys [2015-04-27 124464]
R3 LVRS64;@oem34.inf,%lvrs.SrvDesc%;Logitech RightSound Filter Driver; C:\WINDOWS\system32\DRIVERS\lvrs64.sys [2012-10-26 351520]
R3 LVUVC64;@oem33.inf,%PID_082D_DD%(UVC);Logitech HD Pro Webcam C920(UVC); C:\WINDOWS\system32\DRIVERS\lvuvc64.sys [2012-10-26 4758176]
R3 MEIx64;@oem6.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2015-07-28 184608]
R3 NVHDA;@oem32.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2016-05-21 141256]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2016-06-04 13553096]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-05-02 28216]
R3 nvvad_WaveExtensible;@oem29.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2016-04-14 56384]
R3 SaiK0CCC;SaiK0CCC; C:\WINDOWS\system32\DRIVERS\SaiK0CCC.sys [2015-12-08 180896]
R3 SaiMini;SaiMini; C:\WINDOWS\System32\drivers\SaiMini.sys [2015-12-08 23968]
R3 SaiNtBus;SaiNtBus; C:\WINDOWS\system32\drivers\SaiBus.sys [2015-12-08 51488]
R3 SaiU0CCC;SaiU0CCC; C:\WINDOWS\System32\drivers\SaiU0CCC.sys [2015-12-08 46496]
R3 SIUSBXP;SIUSBXP; C:\WINDOWS\system32\drivers\SiUSBXp.sys [2015-11-10 19456]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-02-13 117248]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2016-04-23 63488]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-04-22 82128]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-04-02 237096]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2016-05-02 1165368]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2015-08-07 207648]
R2 Killer Service V2;Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [2015-07-07 413696]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2015-08-07 415520]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2016-05-02 1881144]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016-05-02 2522680]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2016-06-03 1352760]
R2 OneSyncSvc_61625;Hostitel synchronizace_61625; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe [2016-06-03 424384]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2016-04-02 5570120]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 Intel(R) Security Assist;Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [2015-05-19 335872]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 NvStreamNetworkSvc;NVIDIA Streamer Network Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [2016-05-02 3634232]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc []
S2 isaHelperSvc;Intel(R) Security Assist Helper; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [2015-05-19 7680]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3607e;Hostitel synchronizace_3607e; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_406dd;Hostitel synchronizace_406dd; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_412d5;Hostitel synchronizace_412d5; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_4764b;Hostitel synchronizace_4764b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_809b8f6;Hostitel synchronizace_809b8f6; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_c75ee33;Hostitel synchronizace_c75ee33; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_d537f1f;Hostitel synchronizace_d537f1f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-03-23 327808]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 GalaxyClientService;GalaxyClientService; D:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [2016-06-08 245312]
S3 GalaxyCommunication;GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [2016-06-08 6211648]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc []
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe []
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2015-05-22 881152]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_406dd;Služba zasílání zpráv_406dd; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_412d5;Služba zasílání zpráv_412d5; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_4764b;Služba zasílání zpráv_4764b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_61625;Služba zasílání zpráv_61625; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_809b8f6;Služba zasílání zpráv_809b8f6; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_c75ee33;Služba zasílání zpráv_c75ee33; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_d537f1f;Služba zasílání zpráv_d537f1f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Origin Client Service;Origin Client Service; D:\Program files (x86)\Origin\OriginClientService.exe [2016-06-12 2122248]
S3 OverwolfUpdater;Overwolf Updater Windows SCM; D:\Program files (x86)\Overwolf\OverwolfUpdater.exe [2016-05-29 1289968]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_406dd;Data kontaktů_406dd; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_412d5;Data kontaktů_412d5; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_4764b;Data kontaktů_4764b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_61625;Data kontaktů_61625; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_809b8f6;Data kontaktů_809b8f6; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_c75ee33;Data kontaktů_c75ee33; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_d537f1f;Data kontaktů_d537f1f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-06-15 1518672]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]

-----------------EOF-----------------

Re: Prosím o kontrolu logu

Napsal: 19 čer 2016 08:40
od Rudy
Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Re: Prosím o kontrolu logu

Napsal: 20 čer 2016 15:16
od _Daniel
# AdwCleaner v5.200 - Log vytvořen 20/06/2016 v 16:12:45
# Aktualizováno 14/06/2016 by ToolsLib
# Databáze : 2016-06-20.2 [Server]
# Operační system : Windows 10 Home (X64)
# Uživatelské jméno : PC - DESKTOP-LFV6924
# Spuštěno z : C:\Users\PC\Desktop\adwcleaner_5.200.exe
# Nastavení : Čištění
# Podpora : https://toolslib.net/forum

***** [ Služby ] *****


***** [ Složky ] *****

[-] Složka Smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Genius
[-] Složka Smazáno : C:\Program Files (x86)\Genius
[-] Složka Smazáno : C:\Users\PC\AppData\Local\Temp\VideoConverter

***** [ Soubory ] *****

[-] Soubor Smazáno : C:\Users\PC\AppData\Local\Temp\Utils.dll

***** [ DLLs ] *****


***** [ WMI ] *****


***** [ Zástupci ] *****


***** [ Naplánované úlohy ] *****


***** [ Registry ] *****

[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\protector_dll.Protector
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\protector_dll.Protector.1
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib.1
[-] Klíč Smazáno : HKCU\Software\Conduit
[-] Klíč Smazáno : HKLM\SOFTWARE\Conduit

***** [ Prohlížeče ] *****


*************************

:: "Tracing" klíče smazány
:: Nastavení Winsock vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [1410 bytů] - [20/06/2016 16:12:45]
C:\AdwCleaner\AdwCleaner[S1].txt - [1503 bytů] - [20/06/2016 16:12:03]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1556 bytů] ##########

Re: Prosím o kontrolu logu

Napsal: 20 čer 2016 16:44
od Rudy
Teď dejte log FRST: http://forum.viry.cz/viewtopic.php?f=30&t=133101 .

Re: Prosím o kontrolu logu

Napsal: 20 čer 2016 17:10
od _Daniel
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-06-2016 01
Ran by PC (administrator) on DESKTOP-LFV6924 (20-06-2016 18:04:20)
Running from C:\Users\PC\Desktop
Loaded Profiles: PC (Available Profiles: PC)
Platform: Windows 10 Home Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Rivet Networks) C:\Program Files\Killer Networking\Network Manager\KillerService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(GIGABYTE Technology Co.,Ltd.) C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Saitek) C:\Program Files\SmartTechnology\Software\ProfilerU.exe
() C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe
() C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSISvc32.exe
() C:\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSISvc64.exe
(Saitek) C:\Program Files\SmartTechnology\Software\SaiMfd.exe
(Rivet Networks) C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe
() C:\Program Files (x86)\NZXT\CAM\CAM_Client_V3.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
() C:\Program Files (x86)\NZXT\CAM\FPS\CAMFPS.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8520448 2015-07-30] (Realtek Semiconductor)
HKLM\...\Run: [NahimicMSIUILauncher] => C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe [532448 2015-08-07] ()
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-05-02] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [ProfilerU] => C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2015-10-01] (Saitek)
HKLM\...\Run: [SaiMfd] => C:\Program Files\SmartTechnology\Software\SaiMfd.exe [157696 2015-10-01] (Saitek)
HKLM-x32\...\Run: [CAM] => C:\Program Files (x86)\NZXT\CAM\CAMLauncher.exe [45680 2016-02-04] ()
HKLM-x32\...\Run: [Manticore] => C:\Program Files (x86)\Genius\Manticore\MThid.exe
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7139256 2016-04-02] (AVAST Software)
HKU\S-1-5-21-3141721857-2675143599-3284954913-1001\...\Run: [GalaxyClient] => [X]
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-04-02] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE OC_GURU.lnk [2016-04-01]
ShortcutTarget: GIGABYTE OC_GURU.lnk -> C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe (GIGABYTE Technology Co.,Ltd.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2016-04-01]
ShortcutTarget: Killer Network Manager.lnk -> C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe (Rivet Networks)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{a2adb080-295a-4b71-9ba7-e371b82621f4}: [DhcpNameServer] 213.46.172.37 213.46.172.36

Internet Explorer:
==================
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-04-02] (AVAST Software)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-06-18] (Google Inc.)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-04-02] (AVAST Software)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-06-18] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-06-18] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-06-18] (Google Inc.)

FireFox:
========
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-06-03] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-06-03] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-06-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-06-18] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-27] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-04-02]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-04-02]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF

Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Překladač Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2016-04-02]
CHR Extension: (Prezentace Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-04-02]
CHR Extension: (BetterTTV) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2016-06-04]
CHR Extension: (Dokumenty Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-04-02]
CHR Extension: (Disk Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-02]
CHR Extension: (YouTube) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-02]
CHR Extension: (Tabulky Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-04-02]
CHR Extension: (Dokumenty Google offline) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-02]
CHR Extension: (AdBlock) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-06-03]
CHR Extension: (Tiësto) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnmeobddjkkgkglnogihcaejaleikhdh [2016-04-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Gmail) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-02]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-04-02]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-04-02] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [5570120 2016-04-02] (Avast Software)
S3 GalaxyClientService; D:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [245312 2016-06-08] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6211648 2016-06-08] (GOG.com)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1165368 2016-05-02] (NVIDIA Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-08-07] (Intel Corporation)
R2 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [413696 2015-07-07] (Rivet Networks) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-05-02] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-05-02] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-05-02] (NVIDIA Corporation)
S3 Origin Client Service; D:\Program files (x86)\Origin\OriginClientService.exe [2122248 2016-06-12] (Electronic Arts)
S3 OverwolfUpdater; D:\Program files (x86)\Overwolf\OverwolfUpdater.exe [1289968 2016-05-29] (Overwolf LTD)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-04-02] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-04-03] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-04-02] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-04-02] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-04-02] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-04-02] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [463744 2016-04-02] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [165344 2016-04-02] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287016 2016-04-02] (AVAST Software)
R1 BfLwf; C:\Windows\system32\DRIVERS\bwcW10x64.sys [114736 2015-07-07] (Rivet Networks, LLC.)
R3 cpuz138; C:\Users\PC\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [27320 2016-06-20] (CPUID)
R3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [14376 2014-08-28] ()
R3 iaLPSS2_GPIO2; C:\Windows\System32\drivers\iaLPSS2_GPIO2.sys [84264 2015-06-16] (Intel Corporation)
R3 iaLPSS2_UART2; C:\Windows\System32\drivers\iaLPSS2_UART2.sys [281896 2015-06-16] (Intel Corporation)
R3 KillerEth; C:\Windows\System32\drivers\e24w10x64.sys [124464 2015-04-27] (Qualcomm Atheros, Inc.)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [184608 2015-07-28] (Intel Corporation)
R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [154024 2016-04-02] (AVAST Software)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-05-02] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R3 SaiK0CCC; C:\Windows\system32\DRIVERS\SaiK0CCC.sys [180896 2015-12-08] (Saitek)
R3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [23968 2015-12-08] (Saitek)
R3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [51488 2015-12-08] (Saitek)
R3 SaiU0CCC; C:\Windows\System32\drivers\SaiU0CCC.sys [46496 2015-12-08] (Saitek)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [310904 2016-04-02] (Avast Software)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
R3 WinRing0_1_2_0; C:\Program Files (x86)\NZXT\CAM\CAM_Client_V3.sys [14544 2016-06-20] (OpenLibSys.org)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [36808 2016-06-11] (Wellbia.com Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-06-20 18:04 - 2016-06-20 18:04 - 00016293 _____ C:\Users\PC\Desktop\FRST.txt
2016-06-20 18:04 - 2016-06-20 18:04 - 00000000 ____D C:\FRST
2016-06-20 18:01 - 2016-06-20 18:02 - 02387456 _____ (Farbar) C:\Users\PC\Desktop\FRST64.exe
2016-06-20 16:11 - 2016-06-20 16:12 - 00000000 ____D C:\AdwCleaner
2016-06-20 16:11 - 2016-06-20 16:11 - 03703360 _____ C:\Users\PC\Desktop\adwcleaner_5.200.exe
2016-06-18 22:52 - 2016-06-18 23:03 - 00000000 ____D C:\Program Files (x86)\Google
2016-06-18 00:48 - 2016-06-18 00:48 - 01222144 _____ C:\Users\PC\Desktop\RSITx64.exe
2016-06-18 00:46 - 2016-06-18 18:56 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-06-18 00:46 - 2016-06-18 00:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-06-17 21:28 - 2016-06-17 21:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher® 3 - Wild Hunt [GOG.com]
2016-06-14 20:12 - 2016-05-28 08:13 - 01401024 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-06-14 20:12 - 2016-05-28 08:13 - 01184960 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-06-14 20:12 - 2016-05-28 08:13 - 00514752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-06-14 20:12 - 2016-05-28 08:13 - 00290496 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-06-14 20:12 - 2016-05-28 08:13 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-06-14 20:12 - 2016-05-28 08:13 - 00046784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-06-14 20:12 - 2016-05-28 07:25 - 04268880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2016-06-14 20:12 - 2016-05-28 07:23 - 00388384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2016-06-14 20:12 - 2016-05-28 07:23 - 00312160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2016-06-14 20:12 - 2016-05-28 07:22 - 07474528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-06-14 20:12 - 2016-05-28 07:22 - 04387680 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2016-06-14 20:12 - 2016-05-28 07:22 - 00428896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-06-14 20:12 - 2016-05-28 07:22 - 00211296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-06-14 20:12 - 2016-05-28 07:22 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-06-14 20:12 - 2016-05-28 07:20 - 00430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-06-14 20:12 - 2016-05-28 07:18 - 00357216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2016-06-14 20:12 - 2016-05-28 07:16 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-06-14 20:12 - 2016-05-28 07:09 - 00501600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-06-14 20:12 - 2016-05-28 07:09 - 00170848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.exe
2016-06-14 20:12 - 2016-05-28 07:09 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-06-14 20:12 - 2016-05-28 07:08 - 00693600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-06-14 20:12 - 2016-05-28 07:08 - 00258912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufx01000.sys
2016-06-14 20:12 - 2016-05-28 07:08 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-06-14 20:12 - 2016-05-28 07:07 - 03675512 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-06-14 20:12 - 2016-05-28 07:07 - 02921880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-06-14 20:12 - 2016-05-28 07:07 - 01322248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-06-14 20:12 - 2016-05-28 07:07 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-06-14 20:12 - 2016-05-28 07:07 - 00808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-06-14 20:12 - 2016-05-28 07:07 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-06-14 20:12 - 2016-05-28 07:07 - 00331616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-06-14 20:12 - 2016-05-28 07:06 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-06-14 20:12 - 2016-05-28 07:06 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-06-14 20:12 - 2016-05-28 07:06 - 00730344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-06-14 20:12 - 2016-05-28 07:06 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-06-14 20:12 - 2016-05-28 07:06 - 00254656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-06-14 20:12 - 2016-05-28 07:05 - 04515264 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-06-14 20:12 - 2016-05-28 07:04 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-06-14 20:12 - 2016-05-28 07:04 - 00431296 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-06-14 20:12 - 2016-05-28 07:04 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-06-14 20:12 - 2016-05-28 07:04 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-06-14 20:12 - 2016-05-28 07:04 - 00111064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2016-06-14 20:12 - 2016-05-28 07:04 - 00097096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2016-06-14 20:12 - 2016-05-28 07:03 - 00131248 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2016-06-14 20:12 - 2016-05-28 06:58 - 01996640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-06-14 20:12 - 2016-05-28 06:58 - 00379232 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-06-14 20:12 - 2016-05-28 06:57 - 02548944 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-06-14 20:12 - 2016-05-28 06:57 - 02195632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-06-14 20:12 - 2016-05-28 06:57 - 01594416 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-06-14 20:12 - 2016-05-28 06:57 - 01372312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-06-14 20:12 - 2016-05-28 06:57 - 00649792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-06-14 20:12 - 2016-05-28 06:57 - 00636304 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-06-14 20:12 - 2016-05-28 06:57 - 00577376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-06-14 20:12 - 2016-05-28 06:57 - 00546456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-06-14 20:12 - 2016-05-28 06:57 - 00521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2016-06-14 20:12 - 2016-05-28 06:57 - 00316256 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-06-14 20:12 - 2016-05-28 06:35 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe
2016-06-14 20:12 - 2016-05-28 06:35 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-06-14 20:12 - 2016-05-28 06:35 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsdport.sys
2016-06-14 20:12 - 2016-05-28 06:31 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdlrecover.exe
2016-06-14 20:12 - 2016-05-28 06:31 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-06-14 20:12 - 2016-05-28 06:31 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-06-14 20:12 - 2016-05-28 06:29 - 22379008 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-06-14 20:12 - 2016-05-28 06:29 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-06-14 20:12 - 2016-05-28 06:28 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-06-14 20:12 - 2016-05-28 06:27 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-06-14 20:12 - 2016-05-28 06:27 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-06-14 20:12 - 2016-05-28 06:26 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2016-06-14 20:12 - 2016-05-28 06:26 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2016-06-14 20:12 - 2016-05-28 06:26 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-06-14 20:12 - 2016-05-28 06:26 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-06-14 20:12 - 2016-05-28 06:25 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-06-14 20:12 - 2016-05-28 06:24 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-06-14 20:12 - 2016-05-28 06:24 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Ndu.sys
2016-06-14 20:12 - 2016-05-28 06:24 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2016-06-14 20:12 - 2016-05-28 06:24 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-06-14 20:12 - 2016-05-28 06:24 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2016-06-14 20:12 - 2016-05-28 06:23 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-06-14 20:12 - 2016-05-28 06:22 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-06-14 20:12 - 2016-05-28 06:22 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2016-06-14 20:12 - 2016-05-28 06:22 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-06-14 20:12 - 2016-05-28 06:22 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2016-06-14 20:12 - 2016-05-28 06:22 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-06-14 20:12 - 2016-05-28 06:22 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll
2016-06-14 20:12 - 2016-05-28 06:22 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-06-14 20:12 - 2016-05-28 06:21 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-06-14 20:12 - 2016-05-28 06:21 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrokerLib.dll
2016-06-14 20:12 - 2016-05-28 06:21 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-06-14 20:12 - 2016-05-28 06:20 - 00641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-06-14 20:12 - 2016-05-28 06:20 - 00511488 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2016-06-14 20:12 - 2016-05-28 06:20 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\polstore.dll
2016-06-14 20:12 - 2016-05-28 06:20 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2016-06-14 20:12 - 2016-05-28 06:20 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GnssAdapter.dll
2016-06-14 20:12 - 2016-05-28 06:20 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2016-06-14 20:12 - 2016-05-28 06:19 - 24605696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-06-14 20:12 - 2016-05-28 06:19 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-06-14 20:12 - 2016-05-28 06:19 - 00355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2016-06-14 20:12 - 2016-05-28 06:18 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-06-14 20:12 - 2016-05-28 06:18 - 07977472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-06-14 20:12 - 2016-05-28 06:18 - 00610816 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2016-06-14 20:12 - 2016-05-28 06:18 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-06-14 20:12 - 2016-05-28 06:18 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-06-14 20:12 - 2016-05-28 06:18 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPSECSVC.DLL
2016-06-14 20:12 - 2016-05-28 06:18 - 00380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-06-14 20:12 - 2016-05-28 06:18 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-06-14 20:12 - 2016-05-28 06:17 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-06-14 20:12 - 2016-05-28 06:17 - 00963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-06-14 20:12 - 2016-05-28 06:17 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2016-06-14 20:12 - 2016-05-28 06:17 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2016-06-14 20:12 - 2016-05-28 06:17 - 00415232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-06-14 20:12 - 2016-05-28 06:17 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-06-14 20:12 - 2016-05-28 06:17 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2016-06-14 20:12 - 2016-05-28 06:16 - 19344384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-06-14 20:12 - 2016-05-28 06:16 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-06-14 20:12 - 2016-05-28 06:16 - 00684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2016-06-14 20:12 - 2016-05-28 06:16 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2016-06-14 20:12 - 2016-05-28 06:16 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-06-14 20:12 - 2016-05-28 06:16 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-06-14 20:12 - 2016-05-28 06:16 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\polstore.dll
2016-06-14 20:12 - 2016-05-28 06:16 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2016-06-14 20:12 - 2016-05-28 06:15 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-06-14 20:12 - 2016-05-28 06:15 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-06-14 20:12 - 2016-05-28 06:15 - 00794624 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-06-14 20:12 - 2016-05-28 06:15 - 00535040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2016-06-14 20:12 - 2016-05-28 06:15 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-06-14 20:12 - 2016-05-28 06:15 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-06-14 20:12 - 2016-05-28 06:14 - 18674176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-06-14 20:12 - 2016-05-28 06:14 - 01716736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-06-14 20:12 - 2016-05-28 06:14 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-06-14 20:12 - 2016-05-28 06:14 - 00965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-06-14 20:12 - 2016-05-28 06:14 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-06-14 20:12 - 2016-05-28 06:14 - 00606208 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-06-14 20:12 - 2016-05-28 06:14 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2016-06-14 20:12 - 2016-05-28 06:14 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-06-14 20:12 - 2016-05-28 06:13 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-06-14 20:12 - 2016-05-28 06:13 - 00990208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-06-14 20:12 - 2016-05-28 06:13 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-06-14 20:12 - 2016-05-28 06:13 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-06-14 20:12 - 2016-05-28 06:13 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-06-14 20:12 - 2016-05-28 06:13 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2016-06-14 20:12 - 2016-05-28 06:12 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-06-14 20:12 - 2016-05-28 06:12 - 00614400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-06-14 20:12 - 2016-05-28 06:12 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2016-06-14 20:12 - 2016-05-28 06:11 - 01445888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2016-06-14 20:12 - 2016-05-28 06:11 - 00890368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2016-06-14 20:12 - 2016-05-28 06:11 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-06-14 20:12 - 2016-05-28 06:11 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-06-14 20:12 - 2016-05-28 06:11 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-06-14 20:12 - 2016-05-28 06:11 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-06-14 20:12 - 2016-05-28 06:11 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-06-14 20:12 - 2016-05-28 06:09 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-06-14 20:12 - 2016-05-28 06:08 - 13385728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-06-14 20:12 - 2016-05-28 06:08 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-06-14 20:12 - 2016-05-28 06:06 - 12128256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-06-14 20:12 - 2016-05-28 06:06 - 07200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-06-14 20:12 - 2016-05-28 06:06 - 01339904 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2016-06-14 20:12 - 2016-05-28 06:05 - 03994624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-06-14 20:12 - 2016-05-28 06:05 - 03664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-06-14 20:12 - 2016-05-28 06:05 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-06-14 20:12 - 2016-05-28 06:05 - 01797120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-06-14 20:12 - 2016-05-28 06:04 - 06973952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-06-14 20:12 - 2016-05-28 06:04 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-06-14 20:12 - 2016-05-28 06:04 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2016-06-14 20:12 - 2016-05-28 06:03 - 05323776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-06-14 20:12 - 2016-05-28 06:03 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-06-14 20:12 - 2016-05-28 06:03 - 02609664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-06-14 20:12 - 2016-05-28 06:03 - 01185280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationFramework.dll
2016-06-14 20:12 - 2016-05-28 06:03 - 00693760 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2016-06-14 20:12 - 2016-05-28 06:03 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-06-14 20:12 - 2016-05-28 06:02 - 03590144 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-06-14 20:12 - 2016-05-28 06:02 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-06-14 20:12 - 2016-05-28 06:02 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2016-06-14 20:12 - 2016-05-28 06:02 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2016-06-14 20:12 - 2016-05-28 06:01 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-06-14 20:12 - 2016-05-28 06:01 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-06-14 20:12 - 2016-05-28 06:01 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-06-14 20:12 - 2016-05-28 06:01 - 00111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-06-14 20:12 - 2016-05-28 06:00 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-06-14 20:12 - 2016-05-28 06:00 - 03585536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-06-14 20:12 - 2016-05-28 06:00 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-06-14 20:12 - 2016-05-28 06:00 - 02230272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-06-14 20:12 - 2016-05-28 06:00 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-06-14 20:12 - 2016-05-28 06:00 - 01730560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-06-14 20:12 - 2016-05-28 06:00 - 01707520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2016-06-14 20:12 - 2016-05-28 06:00 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2016-06-14 20:12 - 2016-05-28 05:58 - 07832576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-06-14 20:12 - 2016-05-28 05:58 - 04896256 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-06-14 20:12 - 2016-05-28 05:58 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-06-14 20:12 - 2016-05-28 05:58 - 02066432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-06-14 20:12 - 2016-05-28 05:58 - 01996288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-06-14 20:12 - 2016-05-28 05:57 - 02281472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-06-14 20:12 - 2016-05-28 05:55 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-06-14 20:12 - 2016-05-28 05:53 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2016-06-14 20:11 - 2016-05-28 06:29 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2016-06-14 20:11 - 2016-05-28 06:29 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
2016-06-14 20:11 - 2016-05-28 06:28 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-06-14 20:11 - 2016-05-28 06:28 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\FwRemoteSvr.dll
2016-06-14 20:11 - 2016-05-28 06:26 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-06-14 20:11 - 2016-05-28 06:24 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-06-14 20:11 - 2016-05-28 06:24 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-06-14 20:11 - 2016-05-28 06:24 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FwRemoteSvr.dll
2016-06-14 20:11 - 2016-05-28 06:23 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2016-06-14 20:11 - 2016-05-28 06:22 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-06-14 20:11 - 2016-05-28 06:22 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-06-14 20:11 - 2016-05-28 06:21 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-06-14 20:11 - 2016-05-28 06:20 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2016-06-14 20:11 - 2016-05-28 06:19 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-06-14 20:11 - 2016-05-28 06:19 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-06-14 20:11 - 2016-05-28 06:19 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2016-06-14 20:11 - 2016-05-28 06:17 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-06-14 20:11 - 2016-05-28 06:15 - 00293888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2016-06-14 20:11 - 2016-05-28 06:14 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2016-06-14 20:11 - 2016-05-28 06:11 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2016-06-14 20:11 - 2016-05-28 06:00 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-06-14 20:11 - 2016-05-28 06:00 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2016-06-14 20:11 - 2016-05-28 05:59 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-06-12 21:14 - 2016-06-12 21:14 - 00000893 _____ C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Origin.lnk
2016-06-10 19:41 - 2016-06-10 19:29 - 207340008 _____ (Intel Corporation) C:\Users\PC\Desktop\win64_154022.4424.exe
2016-06-10 19:40 - 2016-06-10 19:40 - 208724959 _____ C:\Users\PC\Desktop\win64_154022.4424.zip
2016-06-10 19:15 - 2016-06-10 19:15 - 00000000 ____D C:\Intel
2016-06-08 16:36 - 2016-06-08 16:36 - 00000807 _____ C:\Users\PC\Desktop\mp3DirectCut.lnk
2016-06-07 21:50 - 2016-06-07 21:50 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-06-07 21:50 - 2016-06-03 05:28 - 00111552 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2016-06-07 21:50 - 2016-05-04 04:23 - 00129824 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2016-06-07 21:50 - 2016-05-04 04:22 - 00130848 _____ C:\WINDOWS\system32\vulkan-1.dll
2016-06-07 21:50 - 2016-05-04 04:22 - 00045344 _____ C:\WINDOWS\system32\vulkaninfo.exe
2016-06-07 21:50 - 2016-05-04 04:22 - 00040224 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2016-06-07 21:49 - 2016-06-03 09:22 - 39977920 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 35115968 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 31641656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 25404864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 21812056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 21355464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 18151128 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 17746664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 17432544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 10643240 _____ C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 08733792 _____ C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 02844608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 02470336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 01920960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436839.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 01571776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436839.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 00983488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 00910392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 00787384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 00786176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 00769984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 00707520 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 00669952 _____ C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 00632848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 00631288 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 00601752 _____ C:\WINDOWS\system32\nvmcumd.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 00565208 _____ C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 00549240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 00452616 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 00425016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 00385592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 00379808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 00379448 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 00348216 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 00316632 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 00177952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 00155768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 00153232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2016-06-07 21:49 - 2016-06-03 09:22 - 00131584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2016-06-04 09:04 - 2016-06-18 00:49 - 00000000 ____D C:\Program Files\trend micro
2016-06-04 09:04 - 2016-06-04 09:05 - 00000000 ____D C:\rsit
2016-06-04 05:38 - 2016-06-04 05:38 - 00003397 _____ C:\Users\PC\AppData\Local\recently-used.xbel
2016-05-31 15:52 - 2016-05-31 15:52 - 00000000 ____D C:\Users\PC\AppData\LocalLow\Adobe
2016-05-24 18:04 - 2016-05-24 18:04 - 00000000 ____D C:\Program Files (x86)\Microsoft ASP.NET
2016-05-24 17:22 - 2016-05-31 16:56 - 00000000 ____D C:\Program Files\Common Files\logishrd
2016-05-23 19:10 - 2016-05-21 23:09 - 01581624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco64.dll
2016-05-23 19:10 - 2016-05-21 23:09 - 00046024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2016-05-23 19:10 - 2016-05-20 10:03 - 01922496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436822.dll
2016-05-23 19:10 - 2016-05-20 10:03 - 01573432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436822.dll
2016-05-23 19:10 - 2016-05-20 10:03 - 00000594 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2016-05-23 19:10 - 2016-05-20 10:03 - 00000594 _____ C:\WINDOWS\system32\nv-vk64.json
2016-05-22 13:06 - 2016-05-22 13:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FLV to AVI
2016-05-22 12:35 - 2016-05-22 12:35 - 00000000 ____D C:\Users\PC\.fontconfig
2016-05-22 12:34 - 2016-05-22 12:34 - 00000000 ____D C:\Users\PC\AppData\Local\Movavi
2016-05-22 12:34 - 2016-05-22 12:34 - 00000000 ____D C:\Users\PC\AppData\Local\converter
2016-05-22 12:34 - 2016-05-22 12:34 - 00000000 ____D C:\ProgramData\Movavi
2016-05-22 12:33 - 2016-05-22 12:33 - 00000016 _____ C:\ProgramData\mntemp
2016-05-22 12:33 - 2016-05-22 12:33 - 00000000 ____D C:\ProgramData\Movavi Video Converter 16
2016-05-22 12:14 - 2016-06-04 23:06 - 00000000 ____D C:\Users\PC\AppData\Local\Windows Live
2016-05-22 12:14 - 2016-05-22 12:14 - 00001447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2016-05-22 12:14 - 2016-05-22 12:14 - 00001378 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2016-05-22 12:14 - 2016-05-22 12:14 - 00000000 ____D C:\WINDOWS\PCHEALTH
2016-05-22 12:14 - 2016-05-22 12:14 - 00000000 ____D C:\WINDOWS\cs
2016-05-22 12:14 - 2016-05-22 12:14 - 00000000 ____D C:\Program Files (x86)\Windows Live
2016-05-22 12:14 - 2016-05-22 12:14 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2016-05-22 11:45 - 2016-05-22 12:12 - 00000000 ____D C:\Users\PC\AppData\Roaming\BSplayer
2016-05-22 11:45 - 2016-05-22 11:45 - 00000000 ____D C:\Users\PC\AppData\Roaming\BSplayer Pro

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-06-20 18:02 - 2016-04-02 15:51 - 00000992 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-20 16:18 - 2016-04-01 17:54 - 01771468 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-20 16:18 - 2016-02-13 14:50 - 00750030 _____ C:\WINDOWS\system32\perfh005.dat
2016-06-20 16:18 - 2016-02-13 14:50 - 00150654 _____ C:\WINDOWS\system32\perfc005.dat
2016-06-20 16:18 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-06-20 16:13 - 2016-04-02 15:51 - 00000988 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-20 16:13 - 2016-04-01 13:07 - 00000000 ____D C:\ProgramData\NVIDIA
2016-06-20 16:13 - 2016-04-01 12:20 - 00003254 _____ C:\WINDOWS\System32\Tasks\CAM
2016-06-20 16:13 - 2016-02-13 15:09 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-06-20 16:13 - 2015-10-30 08:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-06-20 15:54 - 2016-04-02 15:36 - 00004206 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{41C0346B-C4FE-4291-AF62-1CAF5ACC9AA1}
2016-06-20 15:52 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-06-19 22:55 - 2016-04-03 09:29 - 00000000 ____D C:\Users\PC\AppData\Roaming\TS3Client
2016-06-19 13:56 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-06-19 13:44 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2016-06-19 11:49 - 2016-04-08 18:53 - 00000000 ____D C:\Users\PC\AppData\Roaming\OBS
2016-06-19 00:11 - 2016-04-02 18:33 - 00000000 ____D C:\Users\PC\AppData\Local\Battle.net
2016-06-18 22:57 - 2016-04-02 15:51 - 00004050 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-06-18 22:57 - 2016-04-02 15:51 - 00003818 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-06-18 19:06 - 2016-05-01 16:47 - 00000000 ____D C:\Users\PC\AppData\Roaming\Skype
2016-06-18 18:56 - 2016-05-01 16:47 - 00000000 ____D C:\ProgramData\Skype
2016-06-18 13:54 - 2016-04-01 13:08 - 00000000 ____D C:\Users\PC
2016-06-17 19:19 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-06-17 16:17 - 2016-02-13 15:12 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-06-17 16:16 - 2016-02-13 06:06 - 00265320 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-06-16 21:45 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-06-16 21:45 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-06-16 21:45 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-06-16 17:46 - 2016-04-01 12:29 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-06-16 17:44 - 2016-04-01 12:29 - 142482544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-06-15 16:38 - 2016-04-02 22:15 - 00004280 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-06-14 20:33 - 2015-10-30 09:26 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-06-14 20:33 - 2015-10-30 09:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-06-12 21:36 - 2016-04-10 14:21 - 00000000 ____D C:\ProgramData\Origin
2016-06-12 21:16 - 2016-04-10 14:21 - 00000000 ____D C:\ProgramData\Electronic Arts
2016-06-11 19:36 - 2016-04-02 22:19 - 00036808 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys
2016-06-11 19:33 - 2016-04-02 20:43 - 00000000 ____D C:\Users\PC\AppData\Local\BlackDesertOnline
2016-06-07 21:50 - 2016-04-01 13:07 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-06-07 21:50 - 2016-04-01 12:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-06-07 20:09 - 2016-04-02 16:21 - 00000000 ____D C:\Users\PC\AppData\Local\CrashDumps
2016-06-04 05:38 - 2016-04-03 18:24 - 00000000 ____D C:\Users\PC\AppData\Local\gtk-2.0
2016-06-04 05:38 - 2016-04-03 18:06 - 00000000 ____D C:\Users\PC\.gimp-2.8
2016-06-04 02:51 - 2016-04-01 12:13 - 13553096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2016-06-03 16:17 - 2016-04-01 12:32 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-06-03 09:22 - 2016-04-01 12:13 - 20375488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2016-06-03 09:22 - 2016-04-01 12:13 - 17729184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2016-06-03 09:22 - 2016-04-01 12:13 - 14462536 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2016-06-03 09:22 - 2016-04-01 12:13 - 03811256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2016-06-03 09:22 - 2016-04-01 12:13 - 03371624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2016-06-03 09:22 - 2016-04-01 12:13 - 00040084 _____ C:\WINDOWS\system32\nvinfo.pb
2016-06-03 05:59 - 2016-04-02 15:45 - 00534072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2016-06-03 05:59 - 2016-04-02 15:45 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2016-06-03 05:59 - 2016-04-01 13:07 - 06452948 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-06-03 05:59 - 2016-04-01 13:07 - 06364216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-06-03 05:59 - 2016-04-01 13:07 - 02455608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-06-03 05:59 - 2016-04-01 13:07 - 01762752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-06-03 05:59 - 2016-04-01 13:07 - 01352760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2016-06-03 05:59 - 2016-04-01 13:07 - 00392128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-06-03 05:59 - 2016-04-01 13:07 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-05-31 15:52 - 2016-04-01 17:50 - 00000000 ____D C:\Users\PC\AppData\Roaming\Adobe
2016-05-31 15:52 - 2016-04-01 12:32 - 00000000 ____D C:\Users\PC\AppData\Local\Adobe
2016-05-28 07:55 - 2016-02-13 15:11 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-05-22 12:14 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-05-21 23:09 - 2016-04-01 12:13 - 00141256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys

==================== Files in the root of some directories =======

2016-06-04 05:38 - 2016-06-04 05:38 - 0003397 _____ () C:\Users\PC\AppData\Local\recently-used.xbel
2016-04-01 13:07 - 2016-04-01 13:07 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-05-22 12:33 - 2016-05-22 12:33 - 0000016 _____ () C:\ProgramData\mntemp

Some files in TEMP:
====================
C:\Users\PC\AppData\Local\Temp\6699d3ee8dd9cf775caae782c8f44f03.dll
C:\Users\PC\AppData\Local\Temp\ea92f6f3384d440b9bd684d1954b9f28.dll
C:\Users\PC\AppData\Local\Temp\Gw2.exe
C:\Users\PC\AppData\Local\Temp\libeay32.dll
C:\Users\PC\AppData\Local\Temp\msvcr120.dll
C:\Users\PC\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\PC\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\PC\AppData\Local\Temp\nvStInst.exe
C:\Users\PC\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-06-12 19:20

==================== End of FRST.txt ============================

Re: Prosím o kontrolu logu

Napsal: 20 čer 2016 18:09
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start
HKU\S-1-5-21-3141721857-2675143599-3284954913-1001\...\Run: [GalaxyClient] => [X]
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-06-18] (Google Inc.)
C:\Program Files (x86)\Google\Google Toolbar
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-06-18] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-06-18] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-06-18] (Google Inc.)
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\ProgramData\DP45977C.lfl
C:\Users\PC\AppData\Local\Temp
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Prosím o kontrolu logu

Napsal: 20 čer 2016 18:26
od _Daniel
Fix result of Farbar Recovery Scan Tool (x64) Version: 19-06-2016 01
Ran by PC (2016-06-20 19:22:56) Run:1
Running from C:\Users\PC\Desktop
Loaded Profiles: PC (Available Profiles: PC)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKU\S-1-5-21-3141721857-2675143599-3284954913-1001\...\Run: [GalaxyClient] => [X]
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-06-18] (Google Inc.)
C:\Program Files (x86)\Google\Google Toolbar
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-06-18] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-06-18] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-06-18] (Google Inc.)
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\ProgramData\DP45977C.lfl
C:\Users\PC\AppData\Local\Temp
End
*****************

HKU\S-1-5-21-3141721857-2675143599-3284954913-1001\Software\Microsoft\Windows\CurrentVersion\Run\\GalaxyClient => value removed successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => key removed successfully
"HKCR\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => key removed successfully
C:\Program Files (x86)\Google\Google Toolbar => moved successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => key removed successfully
"HKCR\Wow6432Node\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value removed successfully
"HKCR\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => key removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value removed successfully
"HKCR\Wow6432Node\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => key removed successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully

"C:\Users\PC\AppData\Local\Temp" folder move:

Could not move "C:\Users\PC\AppData\Local\Temp" => Scheduled to move on reboot.


Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2016-06-20 19:23:54)

C:\Users\PC\AppData\Local\Temp => moved successfully

==== End of Fixlog 19:23:54 ====

Re: Prosím o kontrolu logu

Napsal: 20 čer 2016 19:07
od Rudy
Smazáno. Nastala nějaká změna?

Re: Prosím o kontrolu logu

Napsal: 20 čer 2016 21:04
od _Daniel
Ano, mockrát vám děkuji. Přeji hezký zbytek večera.

Re: Prosím o kontrolu logu

Napsal: 20 čer 2016 21:36
od Rudy
Totéž přeji i já vám a nemáte zač! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz