využití procesoru nad 90 procent, vir?
Napsal: 25 čer 2017 19:26
log z RSIT, prosím o kontrolu a radu. nevím co s tím. předem děkuji..
Logfile of random's system information tool 1.10 (written by random/random)
Run by b4zz1 at 2017-06-24 20:05:00
Microsoft Windows 8
System drive C: has 189 GB (79%) free of 238 GB
Total RAM: 8146 MB (78% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:06:26, on 24. 6. 2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16384)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files (x86)\EXPERTool\TBPanel.exe
C:\Users\b4zz1\AppData\Local\Programs\Opera\45.0.2552.892\opera.exe
C:\Users\b4zz1\AppData\Local\Programs\Opera\45.0.2552.892\opera_crashreporter.exe
C:\Users\b4zz1\AppData\Local\Programs\Opera\45.0.2552.892\opera.exe
C:\Users\b4zz1\AppData\Local\Programs\Opera\45.0.2552.892\opera.exe
C:\Users\b4zz1\AppData\Local\Programs\Opera\45.0.2552.892\opera.exe
C:\Users\b4zz1\AppData\Local\Programs\Opera\45.0.2552.892\opera.exe
C:\Users\b4zz1\AppData\Local\Programs\Opera\45.0.2552.892\opera.exe
C:\Users\b4zz1\AppData\Local\Programs\Opera\45.0.2552.892\opera.exe
C:\Users\b4zz1\AppData\Local\Temp\scoped_dir2832_15391\RSIT.exe
C:\Program Files (x86)\trend micro\b4zz1.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [uTorrent] "C:\Users\b4zz1\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [TBPanel] "C:\Program Files (x86)\EXPERTool\TBPanel.exe" /A
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 5901 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-08-30 766208]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"=C:\Users\b4zz1\AppData\Roaming\uTorrent\uTorrent.exe [2013-09-30 1980608]
"TBPanel"=C:\Program Files (x86)\EXPERTool\TBPanel.exe [2013-07-03 2160936]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2017-06-08 3042592]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2017-06-13 9803992]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"msacm.l3acm"=C:\Windows\SysWOW64\l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"vidc.cvid"=iccvid.dll
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-06-24 20:05:06 ----D---- C:\Program Files (x86)\trend micro
2017-06-24 20:05:00 ----D---- C:\rsit
2017-06-24 19:25:21 ----D---- C:\Users\b4zz1\AppData\Roaming\GRETECH
2017-06-24 19:25:08 ----A---- C:\Windows\iun6002.exe
2017-06-24 19:24:20 ----D---- C:\Program Files (x86)\GRETECH
2017-06-24 19:24:00 ----D---- C:\Program Files (x86)\Codec Pack - All In 1
2017-06-24 17:23:25 ----D---- C:\Windows\LastGood
2017-06-24 17:07:53 ----D---- C:\Windows\SysWOW64\sda
2017-06-24 17:07:53 ----D---- C:\Program Files (x86)\Genesys Logic
2017-06-24 17:01:41 ----A---- C:\Windows\SysWOW64\nvStreaming.exe
2017-06-24 17:01:39 ----A---- C:\Windows\SysWOW64\vulkaninfo.exe
2017-06-24 17:01:39 ----A---- C:\Windows\SysWOW64\vulkan-1.dll
2017-06-24 17:01:38 ----D---- C:\Program Files (x86)\VulkanRT
2017-06-24 17:01:18 ----A---- C:\Windows\SysWOW64\msvcr120_clr0400.dll
2017-06-24 17:00:46 ----A---- C:\Windows\SysWOW64\msvcp120_clr0400.dll
2017-06-24 17:00:45 ----A---- C:\Windows\SysWOW64\aspnet_counters.dll
2017-06-24 17:00:19 ----A---- C:\Windows\NvContainerRecovery.bat
2017-06-24 16:43:38 ----D---- C:\Program Files (x86)\Common Files\Steam
2017-06-24 16:43:37 ----D---- C:\Program Files (x86)\Steam
2017-06-24 16:31:37 ----D---- C:\Users\b4zz1\AppData\Roaming\ESET
2017-06-24 16:25:07 ----D---- C:\Program Files (x86)\AGEIA Technologies
2017-06-24 16:24:55 ----D---- C:\ProgramData\NVIDIA
2017-06-24 16:24:02 ----A---- C:\Windows\SysWOW64\OpenCL.dll
2017-06-24 16:23:49 ----D---- C:\ProgramData\NVIDIA Corporation
2017-06-24 16:23:37 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-06-24 16:22:16 ----A---- C:\Windows\SysWOW64\nvapi.dll
2017-06-24 16:14:24 ----A---- C:\Windows\SysWOW64\XAudio2_7.dll
2017-06-24 16:14:24 ----A---- C:\Windows\SysWOW64\XAPOFX1_5.dll
2017-06-24 16:14:23 ----A---- C:\Windows\SysWOW64\xactengine3_7.dll
2017-06-24 16:14:23 ----A---- C:\Windows\SysWOW64\d3dcsx_43.dll
2017-06-24 16:14:23 ----A---- C:\Windows\SysWOW64\D3DCompiler_43.dll
2017-06-24 16:14:22 ----A---- C:\Windows\SysWOW64\D3DX9_43.dll
2017-06-24 16:14:22 ----A---- C:\Windows\SysWOW64\d3dx11_43.dll
2017-06-24 16:14:22 ----A---- C:\Windows\SysWOW64\d3dx10_43.dll
2017-06-24 16:14:21 ----A---- C:\Windows\SysWOW64\XAudio2_6.dll
2017-06-24 16:14:21 ----A---- C:\Windows\SysWOW64\XAPOFX1_4.dll
2017-06-24 16:14:21 ----A---- C:\Windows\SysWOW64\xactengine3_6.dll
2017-06-24 16:14:20 ----A---- C:\Windows\SysWOW64\XAudio2_5.dll
2017-06-24 16:14:20 ----A---- C:\Windows\SysWOW64\xactengine3_5.dll
2017-06-24 16:14:20 ----A---- C:\Windows\SysWOW64\X3DAudio1_7.dll
2017-06-24 16:14:19 ----A---- C:\Windows\SysWOW64\D3DCompiler_42.dll
2017-06-24 16:14:18 ----A---- C:\Windows\SysWOW64\d3dx11_42.dll
2017-06-24 16:14:18 ----A---- C:\Windows\SysWOW64\d3dcsx_42.dll
2017-06-24 16:14:17 ----A---- C:\Windows\SysWOW64\D3DX9_42.dll
2017-06-24 16:14:17 ----A---- C:\Windows\SysWOW64\d3dx10_42.dll
2017-06-24 16:14:16 ----A---- C:\Windows\SysWOW64\D3DX9_41.dll
2017-06-24 16:14:16 ----A---- C:\Windows\SysWOW64\d3dx10_41.dll
2017-06-24 16:14:16 ----A---- C:\Windows\SysWOW64\D3DCompiler_41.dll
2017-06-24 16:14:15 ----A---- C:\Windows\SysWOW64\XAudio2_4.dll
2017-06-24 16:14:15 ----A---- C:\Windows\SysWOW64\XAPOFX1_3.dll
2017-06-24 16:14:14 ----A---- C:\Windows\SysWOW64\xactengine3_4.dll
2017-06-24 16:14:13 ----A---- C:\Windows\SysWOW64\X3DAudio1_6.dll
2017-06-24 16:14:12 ----A---- C:\Windows\SysWOW64\D3DX9_40.dll
2017-06-24 16:14:12 ----A---- C:\Windows\SysWOW64\d3dx10_40.dll
2017-06-24 16:14:12 ----A---- C:\Windows\SysWOW64\D3DCompiler_40.dll
2017-06-24 16:14:11 ----A---- C:\Windows\SysWOW64\XAudio2_3.dll
2017-06-24 16:14:11 ----A---- C:\Windows\SysWOW64\XAPOFX1_2.dll
2017-06-24 16:14:10 ----A---- C:\Windows\SysWOW64\XAudio2_2.dll
2017-06-24 16:14:10 ----A---- C:\Windows\SysWOW64\XAPOFX1_1.dll
2017-06-24 16:14:10 ----A---- C:\Windows\SysWOW64\xactengine3_3.dll
2017-06-24 16:14:10 ----A---- C:\Windows\SysWOW64\X3DAudio1_5.dll
2017-06-24 16:14:09 ----A---- C:\Windows\SysWOW64\xactengine3_2.dll
2017-06-24 16:14:09 ----A---- C:\Windows\SysWOW64\d3dx10_39.dll
2017-06-24 16:14:09 ----A---- C:\Windows\SysWOW64\D3DCompiler_39.dll
2017-06-24 16:14:08 ----A---- C:\Windows\SysWOW64\D3DX9_39.dll
2017-06-24 16:14:07 ----A---- C:\Windows\SysWOW64\XAudio2_1.dll
2017-06-24 16:14:07 ----A---- C:\Windows\SysWOW64\XAPOFX1_0.dll
2017-06-24 16:14:07 ----A---- C:\Windows\SysWOW64\xactengine3_1.dll
2017-06-24 16:14:07 ----A---- C:\Windows\SysWOW64\X3DAudio1_4.dll
2017-06-24 16:14:06 ----A---- C:\Windows\SysWOW64\d3dx10_38.dll
2017-06-24 16:14:06 ----A---- C:\Windows\SysWOW64\D3DCompiler_38.dll
2017-06-24 16:14:05 ----A---- C:\Windows\SysWOW64\XAudio2_0.dll
2017-06-24 16:14:05 ----A---- C:\Windows\SysWOW64\xactengine3_0.dll
2017-06-24 16:14:05 ----A---- C:\Windows\SysWOW64\D3DX9_38.dll
2017-06-24 16:14:04 ----A---- C:\Windows\SysWOW64\X3DAudio1_3.dll
2017-06-24 16:14:04 ----A---- C:\Windows\SysWOW64\d3dx10_37.dll
2017-06-24 16:14:04 ----A---- C:\Windows\SysWOW64\D3DCompiler_37.dll
2017-06-24 16:14:03 ----A---- C:\Windows\SysWOW64\xactengine2_10.dll
2017-06-24 16:14:03 ----A---- C:\Windows\SysWOW64\D3DX9_37.dll
2017-06-24 16:14:01 ----A---- C:\Windows\SysWOW64\d3dx9_36.dll
2017-06-24 16:14:01 ----A---- C:\Windows\SysWOW64\d3dx10_36.dll
2017-06-24 16:14:01 ----A---- C:\Windows\SysWOW64\D3DCompiler_36.dll
2017-06-24 16:14:00 ----A---- C:\Windows\SysWOW64\xactengine2_9.dll
2017-06-24 16:13:59 ----A---- C:\Windows\SysWOW64\d3dx10_35.dll
2017-06-24 16:13:59 ----A---- C:\Windows\SysWOW64\D3DCompiler_35.dll
2017-06-24 16:13:58 ----A---- C:\Windows\SysWOW64\xactengine2_8.dll
2017-06-24 16:13:58 ----A---- C:\Windows\SysWOW64\X3DAudio1_2.dll
2017-06-24 16:13:58 ----A---- C:\Windows\SysWOW64\d3dx9_35.dll
2017-06-24 16:13:58 ----A---- C:\Windows\SysWOW64\d3dx10_34.dll
2017-06-24 16:13:58 ----A---- C:\Windows\SysWOW64\D3DCompiler_34.dll
2017-06-24 16:13:57 ----A---- C:\Windows\SysWOW64\xinput1_3.dll
2017-06-24 16:13:57 ----A---- C:\Windows\SysWOW64\d3dx9_34.dll
2017-06-24 16:13:56 ----A---- C:\Windows\SysWOW64\xactengine2_7.dll
2017-06-24 16:13:56 ----A---- C:\Windows\SysWOW64\d3dx10_33.dll
2017-06-24 16:13:56 ----A---- C:\Windows\SysWOW64\D3DCompiler_33.dll
2017-06-24 16:13:55 ----A---- C:\Windows\SysWOW64\d3dx9_33.dll
2017-06-24 16:13:54 ----A---- C:\Windows\SysWOW64\xactengine2_6.dll
2017-06-24 16:13:54 ----A---- C:\Windows\SysWOW64\xactengine2_5.dll
2017-06-24 16:13:54 ----A---- C:\Windows\SysWOW64\d3dx10.dll
2017-06-24 16:13:53 ----A---- C:\Windows\SysWOW64\xactengine2_4.dll
2017-06-24 16:13:53 ----A---- C:\Windows\SysWOW64\x3daudio1_1.dll
2017-06-24 16:13:53 ----A---- C:\Windows\SysWOW64\d3dx9_32.dll
2017-06-24 16:13:52 ----A---- C:\Windows\SysWOW64\xinput1_2.dll
2017-06-24 16:13:52 ----A---- C:\Windows\SysWOW64\xactengine2_3.dll
2017-06-24 16:13:52 ----A---- C:\Windows\SysWOW64\d3dx9_31.dll
2017-06-24 16:13:51 ----A---- C:\Windows\SysWOW64\xinput1_1.dll
2017-06-24 16:13:51 ----A---- C:\Windows\SysWOW64\xactengine2_2.dll
2017-06-24 16:13:51 ----A---- C:\Windows\SysWOW64\xactengine2_1.dll
2017-06-24 16:13:50 ----A---- C:\Windows\SysWOW64\xactengine2_0.dll
2017-06-24 16:13:50 ----A---- C:\Windows\SysWOW64\x3daudio1_0.dll
2017-06-24 16:13:50 ----A---- C:\Windows\SysWOW64\d3dx9_30.dll
2017-06-24 16:13:49 ----A---- C:\Windows\SysWOW64\d3dx9_29.dll
2017-06-24 16:13:49 ----A---- C:\Windows\SysWOW64\d3dx9_28.dll
2017-06-24 16:13:48 ----A---- C:\Windows\SysWOW64\d3dx9_27.dll
2017-06-24 16:13:47 ----A---- C:\Windows\SysWOW64\d3dx9_26.dll
2017-06-24 16:13:47 ----A---- C:\Windows\SysWOW64\d3dx9_25.dll
2017-06-24 16:13:46 ----A---- C:\Windows\SysWOW64\d3dx9_24.dll
2017-06-24 16:13:07 ----D---- C:\Program Files (x86)\EXPERTool
2017-06-24 16:07:51 ----A---- C:\Windows\SysWOW64\wups.dll
2017-06-24 16:07:51 ----A---- C:\Windows\SysWOW64\wudriver.dll
2017-06-24 16:07:48 ----A---- C:\Windows\SysWOW64\wuapi.dll
2017-06-24 16:07:40 ----A---- C:\Windows\SysWOW64\wuwebv.dll
2017-06-24 16:07:40 ----A---- C:\Windows\SysWOW64\wuapp.exe
2017-06-24 16:00:10 ----HD---- C:\$Windows.~BT
2017-06-24 15:56:25 ----N---- C:\bootsqm.dat
2017-06-24 15:56:16 ----SHD---- C:\found.000
======List of files/folders modified in the last 1 month======
2017-06-24 20:05:06 ----RD---- C:\Program Files (x86)
2017-06-24 19:51:22 ----SHD---- C:\Windows\Installer
2017-06-24 19:49:40 ----D---- C:\Windows\Panther
2017-06-24 19:49:40 ----D---- C:\Windows\Logs
2017-06-24 19:49:40 ----D---- C:\Windows\Inf
2017-06-24 19:49:40 ----D---- C:\Windows\debug
2017-06-24 19:49:40 ----D---- C:\Windows
2017-06-24 19:49:39 ----D---- C:\Windows\Temp
2017-06-24 19:49:12 ----D---- C:\Windows\Prefetch
2017-06-24 19:47:21 ----RD---- C:\Program Files
2017-06-24 19:29:08 ----D---- C:\Users\b4zz1\AppData\Roaming\uTorrent
2017-06-24 19:25:18 ----D---- C:\Windows\SysWOW64
2017-06-24 19:15:07 ----D---- C:\Windows\CbsTemp
2017-06-24 18:12:16 ----D---- C:\Windows\Microsoft.NET
2017-06-24 18:01:19 ----D---- C:\Windows\System32
2017-06-24 17:57:45 ----D---- C:\Program Files (x86)\Common Files\Microsoft Shared
2017-06-24 17:25:19 ----D---- C:\Program Files (x86)\MSI
2017-06-24 17:25:18 ----D---- C:\MSI
2017-06-24 17:23:21 ----D---- C:\Windows\WinSxS
2017-06-24 17:21:42 ----D---- C:\Windows\SysWOW64\sk-SK
2017-06-24 17:21:42 ----D---- C:\Windows\SysWOW64\cs-CZ
2017-06-24 17:02:55 ----SD---- C:\ProgramData\Microsoft
2017-06-24 16:43:38 ----D---- C:\Program Files (x86)\Common Files
2017-06-24 16:25:21 ----RD---- C:\Users
2017-06-24 16:24:55 ----HD---- C:\ProgramData
2017-06-24 16:24:33 ----D---- C:\Windows\Help
2017-06-24 16:15:16 ----D---- C:\Windows\SoftwareDistribution
2017-06-24 16:07:31 ----SHD---- C:\System Volume Information
2017-06-01 16:51:02 ----A---- C:\Windows\SysWOW64\SRCOM.dll
2017-06-01 16:50:14 ----A---- C:\Windows\SysWOW64\SFCOM.dll
2017-06-01 16:50:02 ----A---- C:\Windows\SysWOW64\SEHDHF32.dll
2017-06-01 16:49:58 ----A---- C:\Windows\SysWOW64\SECOMN32.dll
2017-06-01 16:49:16 ----A---- C:\Windows\SysWOW64\RltkAPO.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\Windows\System32\drivers\amd_sata.sys []
R0 amd_xata;amd_xata; C:\Windows\System32\drivers\amd_xata.sys []
R0 edevmon;edevmon; C:\Windows\system32\DRIVERS\edevmon.sys []
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys []
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys []
R1 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys []
R2 AODDriver4.2;AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-11-20 57512]
R3 GeneStor;@oem15.inf,%GeneStor.SvcDesc%;Genesys Logic Storage Driver; C:\Windows\system32\DRIVERS\GeneStor.sys []
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys []
R3 NVHDA;@oem14.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys []
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys []
R3 RTL8168;@oem3.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys []
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys []
S3 MSI_MSIBIOS_010507;MSI_MSIBIOS_010507; \??\C:\Program Files (x86)\MSI\Live Update 5\msibios64_100507.sys []
S3 MSICDSetup;MSICDSetup; \??\I:\CDriver64.sys []
S3 NTIOLib_1_0_4;NTIOLib_1_0_4; \??\C:\Program Files (x86)\MSI\Live Update 5\NTIOLib_X64.sys []
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\I:\NTIOLib_X64.sys []
S3 WUDFWpdFs;WUDFWpdFs; C:\Windows\system32\DRIVERS\WUDFRd.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-08-30 344064]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2016-12-14 2836296]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-05-01 462968]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-07-10 1826592]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-06-08 1607968]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by b4zz1 at 2017-06-24 20:05:00
Microsoft Windows 8
System drive C: has 189 GB (79%) free of 238 GB
Total RAM: 8146 MB (78% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:06:26, on 24. 6. 2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16384)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files (x86)\EXPERTool\TBPanel.exe
C:\Users\b4zz1\AppData\Local\Programs\Opera\45.0.2552.892\opera.exe
C:\Users\b4zz1\AppData\Local\Programs\Opera\45.0.2552.892\opera_crashreporter.exe
C:\Users\b4zz1\AppData\Local\Programs\Opera\45.0.2552.892\opera.exe
C:\Users\b4zz1\AppData\Local\Programs\Opera\45.0.2552.892\opera.exe
C:\Users\b4zz1\AppData\Local\Programs\Opera\45.0.2552.892\opera.exe
C:\Users\b4zz1\AppData\Local\Programs\Opera\45.0.2552.892\opera.exe
C:\Users\b4zz1\AppData\Local\Programs\Opera\45.0.2552.892\opera.exe
C:\Users\b4zz1\AppData\Local\Programs\Opera\45.0.2552.892\opera.exe
C:\Users\b4zz1\AppData\Local\Temp\scoped_dir2832_15391\RSIT.exe
C:\Program Files (x86)\trend micro\b4zz1.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [uTorrent] "C:\Users\b4zz1\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [TBPanel] "C:\Program Files (x86)\EXPERTool\TBPanel.exe" /A
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 5901 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-08-30 766208]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"=C:\Users\b4zz1\AppData\Roaming\uTorrent\uTorrent.exe [2013-09-30 1980608]
"TBPanel"=C:\Program Files (x86)\EXPERTool\TBPanel.exe [2013-07-03 2160936]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2017-06-08 3042592]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2017-06-13 9803992]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"msacm.l3acm"=C:\Windows\SysWOW64\l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"vidc.cvid"=iccvid.dll
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-06-24 20:05:06 ----D---- C:\Program Files (x86)\trend micro
2017-06-24 20:05:00 ----D---- C:\rsit
2017-06-24 19:25:21 ----D---- C:\Users\b4zz1\AppData\Roaming\GRETECH
2017-06-24 19:25:08 ----A---- C:\Windows\iun6002.exe
2017-06-24 19:24:20 ----D---- C:\Program Files (x86)\GRETECH
2017-06-24 19:24:00 ----D---- C:\Program Files (x86)\Codec Pack - All In 1
2017-06-24 17:23:25 ----D---- C:\Windows\LastGood
2017-06-24 17:07:53 ----D---- C:\Windows\SysWOW64\sda
2017-06-24 17:07:53 ----D---- C:\Program Files (x86)\Genesys Logic
2017-06-24 17:01:41 ----A---- C:\Windows\SysWOW64\nvStreaming.exe
2017-06-24 17:01:39 ----A---- C:\Windows\SysWOW64\vulkaninfo.exe
2017-06-24 17:01:39 ----A---- C:\Windows\SysWOW64\vulkan-1.dll
2017-06-24 17:01:38 ----D---- C:\Program Files (x86)\VulkanRT
2017-06-24 17:01:18 ----A---- C:\Windows\SysWOW64\msvcr120_clr0400.dll
2017-06-24 17:00:46 ----A---- C:\Windows\SysWOW64\msvcp120_clr0400.dll
2017-06-24 17:00:45 ----A---- C:\Windows\SysWOW64\aspnet_counters.dll
2017-06-24 17:00:19 ----A---- C:\Windows\NvContainerRecovery.bat
2017-06-24 16:43:38 ----D---- C:\Program Files (x86)\Common Files\Steam
2017-06-24 16:43:37 ----D---- C:\Program Files (x86)\Steam
2017-06-24 16:31:37 ----D---- C:\Users\b4zz1\AppData\Roaming\ESET
2017-06-24 16:25:07 ----D---- C:\Program Files (x86)\AGEIA Technologies
2017-06-24 16:24:55 ----D---- C:\ProgramData\NVIDIA
2017-06-24 16:24:02 ----A---- C:\Windows\SysWOW64\OpenCL.dll
2017-06-24 16:23:49 ----D---- C:\ProgramData\NVIDIA Corporation
2017-06-24 16:23:37 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-06-24 16:22:16 ----A---- C:\Windows\SysWOW64\nvapi.dll
2017-06-24 16:14:24 ----A---- C:\Windows\SysWOW64\XAudio2_7.dll
2017-06-24 16:14:24 ----A---- C:\Windows\SysWOW64\XAPOFX1_5.dll
2017-06-24 16:14:23 ----A---- C:\Windows\SysWOW64\xactengine3_7.dll
2017-06-24 16:14:23 ----A---- C:\Windows\SysWOW64\d3dcsx_43.dll
2017-06-24 16:14:23 ----A---- C:\Windows\SysWOW64\D3DCompiler_43.dll
2017-06-24 16:14:22 ----A---- C:\Windows\SysWOW64\D3DX9_43.dll
2017-06-24 16:14:22 ----A---- C:\Windows\SysWOW64\d3dx11_43.dll
2017-06-24 16:14:22 ----A---- C:\Windows\SysWOW64\d3dx10_43.dll
2017-06-24 16:14:21 ----A---- C:\Windows\SysWOW64\XAudio2_6.dll
2017-06-24 16:14:21 ----A---- C:\Windows\SysWOW64\XAPOFX1_4.dll
2017-06-24 16:14:21 ----A---- C:\Windows\SysWOW64\xactengine3_6.dll
2017-06-24 16:14:20 ----A---- C:\Windows\SysWOW64\XAudio2_5.dll
2017-06-24 16:14:20 ----A---- C:\Windows\SysWOW64\xactengine3_5.dll
2017-06-24 16:14:20 ----A---- C:\Windows\SysWOW64\X3DAudio1_7.dll
2017-06-24 16:14:19 ----A---- C:\Windows\SysWOW64\D3DCompiler_42.dll
2017-06-24 16:14:18 ----A---- C:\Windows\SysWOW64\d3dx11_42.dll
2017-06-24 16:14:18 ----A---- C:\Windows\SysWOW64\d3dcsx_42.dll
2017-06-24 16:14:17 ----A---- C:\Windows\SysWOW64\D3DX9_42.dll
2017-06-24 16:14:17 ----A---- C:\Windows\SysWOW64\d3dx10_42.dll
2017-06-24 16:14:16 ----A---- C:\Windows\SysWOW64\D3DX9_41.dll
2017-06-24 16:14:16 ----A---- C:\Windows\SysWOW64\d3dx10_41.dll
2017-06-24 16:14:16 ----A---- C:\Windows\SysWOW64\D3DCompiler_41.dll
2017-06-24 16:14:15 ----A---- C:\Windows\SysWOW64\XAudio2_4.dll
2017-06-24 16:14:15 ----A---- C:\Windows\SysWOW64\XAPOFX1_3.dll
2017-06-24 16:14:14 ----A---- C:\Windows\SysWOW64\xactengine3_4.dll
2017-06-24 16:14:13 ----A---- C:\Windows\SysWOW64\X3DAudio1_6.dll
2017-06-24 16:14:12 ----A---- C:\Windows\SysWOW64\D3DX9_40.dll
2017-06-24 16:14:12 ----A---- C:\Windows\SysWOW64\d3dx10_40.dll
2017-06-24 16:14:12 ----A---- C:\Windows\SysWOW64\D3DCompiler_40.dll
2017-06-24 16:14:11 ----A---- C:\Windows\SysWOW64\XAudio2_3.dll
2017-06-24 16:14:11 ----A---- C:\Windows\SysWOW64\XAPOFX1_2.dll
2017-06-24 16:14:10 ----A---- C:\Windows\SysWOW64\XAudio2_2.dll
2017-06-24 16:14:10 ----A---- C:\Windows\SysWOW64\XAPOFX1_1.dll
2017-06-24 16:14:10 ----A---- C:\Windows\SysWOW64\xactengine3_3.dll
2017-06-24 16:14:10 ----A---- C:\Windows\SysWOW64\X3DAudio1_5.dll
2017-06-24 16:14:09 ----A---- C:\Windows\SysWOW64\xactengine3_2.dll
2017-06-24 16:14:09 ----A---- C:\Windows\SysWOW64\d3dx10_39.dll
2017-06-24 16:14:09 ----A---- C:\Windows\SysWOW64\D3DCompiler_39.dll
2017-06-24 16:14:08 ----A---- C:\Windows\SysWOW64\D3DX9_39.dll
2017-06-24 16:14:07 ----A---- C:\Windows\SysWOW64\XAudio2_1.dll
2017-06-24 16:14:07 ----A---- C:\Windows\SysWOW64\XAPOFX1_0.dll
2017-06-24 16:14:07 ----A---- C:\Windows\SysWOW64\xactengine3_1.dll
2017-06-24 16:14:07 ----A---- C:\Windows\SysWOW64\X3DAudio1_4.dll
2017-06-24 16:14:06 ----A---- C:\Windows\SysWOW64\d3dx10_38.dll
2017-06-24 16:14:06 ----A---- C:\Windows\SysWOW64\D3DCompiler_38.dll
2017-06-24 16:14:05 ----A---- C:\Windows\SysWOW64\XAudio2_0.dll
2017-06-24 16:14:05 ----A---- C:\Windows\SysWOW64\xactengine3_0.dll
2017-06-24 16:14:05 ----A---- C:\Windows\SysWOW64\D3DX9_38.dll
2017-06-24 16:14:04 ----A---- C:\Windows\SysWOW64\X3DAudio1_3.dll
2017-06-24 16:14:04 ----A---- C:\Windows\SysWOW64\d3dx10_37.dll
2017-06-24 16:14:04 ----A---- C:\Windows\SysWOW64\D3DCompiler_37.dll
2017-06-24 16:14:03 ----A---- C:\Windows\SysWOW64\xactengine2_10.dll
2017-06-24 16:14:03 ----A---- C:\Windows\SysWOW64\D3DX9_37.dll
2017-06-24 16:14:01 ----A---- C:\Windows\SysWOW64\d3dx9_36.dll
2017-06-24 16:14:01 ----A---- C:\Windows\SysWOW64\d3dx10_36.dll
2017-06-24 16:14:01 ----A---- C:\Windows\SysWOW64\D3DCompiler_36.dll
2017-06-24 16:14:00 ----A---- C:\Windows\SysWOW64\xactengine2_9.dll
2017-06-24 16:13:59 ----A---- C:\Windows\SysWOW64\d3dx10_35.dll
2017-06-24 16:13:59 ----A---- C:\Windows\SysWOW64\D3DCompiler_35.dll
2017-06-24 16:13:58 ----A---- C:\Windows\SysWOW64\xactengine2_8.dll
2017-06-24 16:13:58 ----A---- C:\Windows\SysWOW64\X3DAudio1_2.dll
2017-06-24 16:13:58 ----A---- C:\Windows\SysWOW64\d3dx9_35.dll
2017-06-24 16:13:58 ----A---- C:\Windows\SysWOW64\d3dx10_34.dll
2017-06-24 16:13:58 ----A---- C:\Windows\SysWOW64\D3DCompiler_34.dll
2017-06-24 16:13:57 ----A---- C:\Windows\SysWOW64\xinput1_3.dll
2017-06-24 16:13:57 ----A---- C:\Windows\SysWOW64\d3dx9_34.dll
2017-06-24 16:13:56 ----A---- C:\Windows\SysWOW64\xactengine2_7.dll
2017-06-24 16:13:56 ----A---- C:\Windows\SysWOW64\d3dx10_33.dll
2017-06-24 16:13:56 ----A---- C:\Windows\SysWOW64\D3DCompiler_33.dll
2017-06-24 16:13:55 ----A---- C:\Windows\SysWOW64\d3dx9_33.dll
2017-06-24 16:13:54 ----A---- C:\Windows\SysWOW64\xactengine2_6.dll
2017-06-24 16:13:54 ----A---- C:\Windows\SysWOW64\xactengine2_5.dll
2017-06-24 16:13:54 ----A---- C:\Windows\SysWOW64\d3dx10.dll
2017-06-24 16:13:53 ----A---- C:\Windows\SysWOW64\xactengine2_4.dll
2017-06-24 16:13:53 ----A---- C:\Windows\SysWOW64\x3daudio1_1.dll
2017-06-24 16:13:53 ----A---- C:\Windows\SysWOW64\d3dx9_32.dll
2017-06-24 16:13:52 ----A---- C:\Windows\SysWOW64\xinput1_2.dll
2017-06-24 16:13:52 ----A---- C:\Windows\SysWOW64\xactengine2_3.dll
2017-06-24 16:13:52 ----A---- C:\Windows\SysWOW64\d3dx9_31.dll
2017-06-24 16:13:51 ----A---- C:\Windows\SysWOW64\xinput1_1.dll
2017-06-24 16:13:51 ----A---- C:\Windows\SysWOW64\xactengine2_2.dll
2017-06-24 16:13:51 ----A---- C:\Windows\SysWOW64\xactengine2_1.dll
2017-06-24 16:13:50 ----A---- C:\Windows\SysWOW64\xactengine2_0.dll
2017-06-24 16:13:50 ----A---- C:\Windows\SysWOW64\x3daudio1_0.dll
2017-06-24 16:13:50 ----A---- C:\Windows\SysWOW64\d3dx9_30.dll
2017-06-24 16:13:49 ----A---- C:\Windows\SysWOW64\d3dx9_29.dll
2017-06-24 16:13:49 ----A---- C:\Windows\SysWOW64\d3dx9_28.dll
2017-06-24 16:13:48 ----A---- C:\Windows\SysWOW64\d3dx9_27.dll
2017-06-24 16:13:47 ----A---- C:\Windows\SysWOW64\d3dx9_26.dll
2017-06-24 16:13:47 ----A---- C:\Windows\SysWOW64\d3dx9_25.dll
2017-06-24 16:13:46 ----A---- C:\Windows\SysWOW64\d3dx9_24.dll
2017-06-24 16:13:07 ----D---- C:\Program Files (x86)\EXPERTool
2017-06-24 16:07:51 ----A---- C:\Windows\SysWOW64\wups.dll
2017-06-24 16:07:51 ----A---- C:\Windows\SysWOW64\wudriver.dll
2017-06-24 16:07:48 ----A---- C:\Windows\SysWOW64\wuapi.dll
2017-06-24 16:07:40 ----A---- C:\Windows\SysWOW64\wuwebv.dll
2017-06-24 16:07:40 ----A---- C:\Windows\SysWOW64\wuapp.exe
2017-06-24 16:00:10 ----HD---- C:\$Windows.~BT
2017-06-24 15:56:25 ----N---- C:\bootsqm.dat
2017-06-24 15:56:16 ----SHD---- C:\found.000
======List of files/folders modified in the last 1 month======
2017-06-24 20:05:06 ----RD---- C:\Program Files (x86)
2017-06-24 19:51:22 ----SHD---- C:\Windows\Installer
2017-06-24 19:49:40 ----D---- C:\Windows\Panther
2017-06-24 19:49:40 ----D---- C:\Windows\Logs
2017-06-24 19:49:40 ----D---- C:\Windows\Inf
2017-06-24 19:49:40 ----D---- C:\Windows\debug
2017-06-24 19:49:40 ----D---- C:\Windows
2017-06-24 19:49:39 ----D---- C:\Windows\Temp
2017-06-24 19:49:12 ----D---- C:\Windows\Prefetch
2017-06-24 19:47:21 ----RD---- C:\Program Files
2017-06-24 19:29:08 ----D---- C:\Users\b4zz1\AppData\Roaming\uTorrent
2017-06-24 19:25:18 ----D---- C:\Windows\SysWOW64
2017-06-24 19:15:07 ----D---- C:\Windows\CbsTemp
2017-06-24 18:12:16 ----D---- C:\Windows\Microsoft.NET
2017-06-24 18:01:19 ----D---- C:\Windows\System32
2017-06-24 17:57:45 ----D---- C:\Program Files (x86)\Common Files\Microsoft Shared
2017-06-24 17:25:19 ----D---- C:\Program Files (x86)\MSI
2017-06-24 17:25:18 ----D---- C:\MSI
2017-06-24 17:23:21 ----D---- C:\Windows\WinSxS
2017-06-24 17:21:42 ----D---- C:\Windows\SysWOW64\sk-SK
2017-06-24 17:21:42 ----D---- C:\Windows\SysWOW64\cs-CZ
2017-06-24 17:02:55 ----SD---- C:\ProgramData\Microsoft
2017-06-24 16:43:38 ----D---- C:\Program Files (x86)\Common Files
2017-06-24 16:25:21 ----RD---- C:\Users
2017-06-24 16:24:55 ----HD---- C:\ProgramData
2017-06-24 16:24:33 ----D---- C:\Windows\Help
2017-06-24 16:15:16 ----D---- C:\Windows\SoftwareDistribution
2017-06-24 16:07:31 ----SHD---- C:\System Volume Information
2017-06-01 16:51:02 ----A---- C:\Windows\SysWOW64\SRCOM.dll
2017-06-01 16:50:14 ----A---- C:\Windows\SysWOW64\SFCOM.dll
2017-06-01 16:50:02 ----A---- C:\Windows\SysWOW64\SEHDHF32.dll
2017-06-01 16:49:58 ----A---- C:\Windows\SysWOW64\SECOMN32.dll
2017-06-01 16:49:16 ----A---- C:\Windows\SysWOW64\RltkAPO.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\Windows\System32\drivers\amd_sata.sys []
R0 amd_xata;amd_xata; C:\Windows\System32\drivers\amd_xata.sys []
R0 edevmon;edevmon; C:\Windows\system32\DRIVERS\edevmon.sys []
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys []
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys []
R1 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys []
R2 AODDriver4.2;AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-11-20 57512]
R3 GeneStor;@oem15.inf,%GeneStor.SvcDesc%;Genesys Logic Storage Driver; C:\Windows\system32\DRIVERS\GeneStor.sys []
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys []
R3 NVHDA;@oem14.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys []
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys []
R3 RTL8168;@oem3.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys []
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys []
S3 MSI_MSIBIOS_010507;MSI_MSIBIOS_010507; \??\C:\Program Files (x86)\MSI\Live Update 5\msibios64_100507.sys []
S3 MSICDSetup;MSICDSetup; \??\I:\CDriver64.sys []
S3 NTIOLib_1_0_4;NTIOLib_1_0_4; \??\C:\Program Files (x86)\MSI\Live Update 5\NTIOLib_X64.sys []
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\I:\NTIOLib_X64.sys []
S3 WUDFWpdFs;WUDFWpdFs; C:\Windows\system32\DRIVERS\WUDFRd.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-08-30 344064]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2016-12-14 2836296]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-05-01 462968]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-07-10 1826592]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-06-08 1607968]
-----------------EOF-----------------
