Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02.08.2018
Ran by Snir (administrator) on SNIR-PC (09-08-2018 20:52:45)
Running from C:\Users\Snir\Downloads
Loaded Profiles: Snir (Available Profiles: Snir)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: עברית (ישראל)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(HP Inc.) C:\Program Files\HP\HP DeskJet 4670 series\Bin\ScanToPCActivationApp.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AutoIt Team) C:\Users\Snir\AZazfUzV90bLDL7j\POda.exe
(AutoIt Team) C:\Users\Snir\0jx2JCAW2rMXVnPr\QXNN.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(CyberLink) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegSvcs.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegSvcs.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18388928 2018-08-02] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-04-11] (Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [298296 2018-05-22] (Apple Inc.)
HKLM-x32\...\Run: [USB3MON] => "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-512801715-1823237362-1597079278-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3205920 2018-08-07] (Valve Corporation)
HKU\S-1-5-21-512801715-1823237362-1597079278-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-512801715-1823237362-1597079278-1000\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [3108480 2012-10-23] (DT Soft Ltd)
HKU\S-1-5-21-512801715-1823237362-1597079278-1000\...\Run: [HP DeskJet 4670 series (NET)] => C:\Program Files\HP\HP DeskJet 4670 series\Bin\ScanToPCActivationApp.exe [3770504 2017-04-06] (HP Inc.)
HKU\S-1-5-21-512801715-1823237362-1597079278-1000\...\MountPoints2: {253f32cb-1047-11e6-9997-806e6f6e6963} - D:\SETUP.EXE
HKU\S-1-5-21-512801715-1823237362-1597079278-1000\...\MountPoints2: {262c9090-1058-11e6-80ad-fcaa145298d2} - D:\setup.exe
HKU\S-1-5-21-512801715-1823237362-1597079278-1000\...\MountPoints2: {f3c119cf-1041-11e6-94f7-806e6f6e6963} - D:\Run.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE OC_GURU.lnk [2016-05-02]
ShortcutTarget: GIGABYTE OC_GURU.lnk -> C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe (GIGABYTE Technology Co.,Ltd.)
Startup: C:\Users\Snir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\iHYbYiJXFaNY.lnk [2017-01-07]
ShortcutTarget: iHYbYiJXFaNY.lnk -> C:\Users\Snir\AZazfUzV90bLDL7j\POda.exe (AutoIt Team)
Startup: C:\Users\Snir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\WaCiSORKWbCL.lnk [2016-10-14]
ShortcutTarget: WaCiSORKWbCL.lnk -> C:\Users\Snir\0jx2JCAW2rMXVnPr\QXNN.exe (AutoIt Team)
GroupPolicy: Restriction - Windows Defender <==== ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.117.235.235 62.219.186.7
Tcpip\..\Interfaces\{B7AD5209-D135-441B-921A-1C15047D4234}: [DhcpNameServer] 192.117.235.235 62.219.186.7
ManualProxies:
Internet Explorer:
==================
HKU\S-1-5-21-512801715-1823237362-1597079278-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://
www.msn.com/he-il/?ocid=iehp
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2015-05-20] (Internet Download Manager, Tonec Inc.)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-07-30] (Microsoft Corporation)
BHO: No Name -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> No File
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2018-07-30] (Microsoft Corporation)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2015-05-20] (Internet Download Manager, Tonec Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-04-29] (Microsoft Corporation)
BHO-x32: No Name -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> No File
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\IPS\IPSBHO.DLL => No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll [2018-07-24] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2018-07-30] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-07-24] (Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-07-30] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-07-30] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-07-30] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-07-30] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Snir\AppData\Roaming\Mozilla\Firefox\Profiles\yjqiyzk2.default-1475515318638 [2018-08-09]
FF Homepage: Mozilla\Firefox\Profiles\yjqiyzk2.default-1475515318638 -> hxxp://
www.ynet.co.il/home/0,7340,L-8,00.html
FF Extension: (MEGA) - C:\Users\Snir\AppData\Roaming\Mozilla\Firefox\Profiles\yjqiyzk2.default-1475515318638\Extensions\firefox@mega.co.nz.xpi [2018-08-09]
FF Extension: (Adblock Plus) - C:\Users\Snir\AppData\Roaming\Mozilla\Firefox\Profiles\yjqiyzk2.default-1475515318638\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-07-18]
FF HKU\S-1-5-21-512801715-1823237362-1597079278-1000\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Snir\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\Snir\AppData\Roaming\IDM\idmmzcc5 [2018-07-29] [Legacy] [not signed]
FF HKU\S-1-5-21-512801715-1823237362-1597079278-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Snir\AppData\Roaming\IDM\idmmzcc5
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_30_0_0_134.dll [2018-07-10] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_134.dll [2018-07-10] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-07-24] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-07-24] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-03-30] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-03-01] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-07-30] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-07-30] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-06-29] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Snir\AppData\Local\Google\Chrome\User Data\Default [2016-06-05]
CHR Extension: (Docs) - C:\Users\Snir\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-06-05]
CHR Extension: (כונן Google) - C:\Users\Snir\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-05]
CHR Extension: (YouTube) - C:\Users\Snir\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-05]
CHR Extension: (IDM Integration Module) - C:\Users\Snir\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2016-06-05]
CHR Extension: (Gmail) - C:\Users\Snir\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-05]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2015-05-20]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2015-05-20]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-04-27] (Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8851496 2018-07-22] (Microsoft Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-04-11] (Intel Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [346152 2018-08-02] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [398184 2012-12-14] (Malwarebytes Corporation) [File not signed]
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [682344 2012-12-14] (Malwarebytes Corporation) [File not signed]
R2 MSSQL$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe [372416 2015-04-20] (Microsoft Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-19] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-19] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2098528 2017-09-14] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2977640 2017-09-14] (Electronic Arts)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [614664 2014-10-20] (CyberLink)
S4 SQLAgent$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [613056 2015-04-20] (Microsoft Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 CLMirrorDriver; C:\Windows\System32\DRIVERS\CLMirrorDriver.sys [21264 2016-03-14] (CyberLink)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2016-05-02] (DT Soft Ltd)
S3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [14376 2014-08-28] ()
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [40448 2018-08-02] (Intel Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [24176 2012-12-14] (Malwarebytes Corporation) [File not signed]
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30656 2018-07-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [69544 2018-06-08] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [65792 2018-04-24] (NVIDIA Corporation)
S3 ptun0901; C:\Windows\System32\DRIVERS\ptun0901.sys [27136 2014-08-08] (The OpenVPN Project)
S4 RsFx0310; C:\Windows\System32\DRIVERS\RsFx0310.sys [249024 2015-04-20] (Microsoft Corporation)
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
S3 NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\SDSDefs\20160624.021\ENG64.SYS [X]
S3 NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\SDSDefs\20160624.021\EX64.SYS [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-08-09 10:42 - 2018-08-09 10:42 - 007395536 _____ (Malwarebytes) C:\Users\Snir\Downloads\AdwCleaner.exe
2018-08-09 09:43 - 2018-08-09 09:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2018-08-09 09:43 - 2018-08-09 09:43 - 000000000 ____D C:\Program Files\RogueKiller
2018-08-09 09:42 - 2018-08-09 09:43 - 036798240 _____ (Adlice Software ) C:\Users\Snir\Downloads\RogueKiller_setup_ref3.exe
2018-08-08 11:05 - 2018-08-08 11:08 - 000058171 _____ C:\Users\Snir\Downloads\Addition.txt
2018-08-08 11:04 - 2018-08-09 20:53 - 000020803 _____ C:\Users\Snir\Downloads\FRST.txt
2018-08-08 11:04 - 2018-08-08 11:04 - 000000000 ____D C:\Users\Snir\Downloads\FRST-OlderVersion
2018-08-08 11:03 - 2018-08-08 11:04 - 002412544 _____ (Farbar) C:\Users\Snir\Downloads\FRST64.exe
2018-08-04 10:04 - 2018-08-04 10:04 - 000007605 _____ C:\Users\Snir\AppData\Local\Resmon.ResmonCfg
2018-08-04 09:20 - 2018-08-04 09:21 - 000000000 ____D C:\AdwCleaner
2018-08-04 08:50 - 2018-08-09 20:52 - 000000000 ____D C:\FRST
2018-08-02 12:19 - 2018-08-02 12:19 - 686600807 _____ C:\Windows\MEMORY.DMP
2018-08-02 12:19 - 2018-08-02 12:19 - 000413120 _____ C:\Windows\Minidump\080218-44912-01.dmp
2018-08-02 12:16 - 2018-08-02 12:16 - 001061200 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2018-08-02 12:16 - 2018-08-02 12:16 - 000124240 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2018-08-02 12:14 - 2018-08-02 12:14 - 000692128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2018-08-02 12:10 - 2018-08-02 12:14 - 018642403 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2018-08-02 12:10 - 2018-08-02 12:10 - 000392832 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2018-08-02 12:10 - 2018-08-02 12:10 - 000343672 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2018-08-02 12:10 - 2018-08-02 12:10 - 000327240 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2018-08-02 12:10 - 2018-08-02 12:10 - 000327232 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2018-08-02 12:10 - 2018-08-02 12:10 - 000220352 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2018-08-02 12:10 - 2018-08-02 12:10 - 000192952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2018-08-02 12:10 - 2018-08-02 12:10 - 000116504 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2018-08-02 12:10 - 2018-08-02 12:10 - 000093872 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2018-08-02 12:09 - 2018-08-02 12:10 - 001353280 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2018-08-02 12:09 - 2018-08-02 12:09 - 003452120 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2018-08-02 12:09 - 2018-08-02 12:09 - 000218240 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2018-08-02 12:08 - 2018-08-02 12:09 - 000230664 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2018-08-02 12:08 - 2018-08-02 12:08 - 002930624 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2018-08-02 12:08 - 2018-08-02 12:08 - 000541080 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2018-08-02 12:08 - 2018-08-02 12:08 - 000174928 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2018-08-02 12:08 - 2018-08-02 12:08 - 000023656 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2018-08-02 12:07 - 2018-08-02 12:08 - 003215184 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2018-08-02 12:06 - 2018-08-02 12:07 - 003691880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2018-08-02 12:01 - 2018-08-02 12:02 - 003677128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2018-08-02 11:59 - 2018-08-02 12:00 - 006293472 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2018-08-02 11:59 - 2018-08-02 11:59 - 000122280 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2018-08-02 11:57 - 2018-08-02 11:57 - 000480800 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2018-08-02 11:50 - 2018-08-02 11:50 - 000003472 ____N C:\bootsqm.dat
2018-08-02 11:38 - 2018-08-02 11:38 - 001730296 _____ (Microsoft Corporation) C:\Windows\system32\wdfcoinstaller01009.dll
2018-08-02 11:38 - 2018-08-02 11:38 - 000038480 _____ (Intel Corporation) C:\Windows\system32\Drivers\ICCWDT.sys
2018-08-02 11:38 - 2018-08-02 11:38 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ICCWDT_01009.Wdf
2018-08-02 11:09 - 2018-08-02 11:11 - 006725162 _____ C:\Windows\system32\igdclbif.bin
2018-08-02 11:07 - 2018-08-02 11:09 - 010863568 _____ (Intel Corporation) C:\Windows\SysWOW64\igdfcl32.dll
2018-08-02 11:06 - 2018-08-02 11:07 - 003339216 _____ (Intel Corporation) C:\Windows\SysWOW64\igdrcl32.dll
2018-08-02 11:06 - 2018-08-02 11:06 - 000384464 _____ (Intel Corporation) C:\Windows\SysWOW64\igdbcl32.dll
2018-08-02 11:06 - 2018-08-02 11:06 - 000313808 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2018-08-02 11:03 - 2018-08-02 11:06 - 015993808 _____ (Intel Corporation) C:\Windows\system32\igdfcl64.dll
2018-08-02 11:02 - 2018-08-02 11:03 - 003606480 _____ (Intel Corporation) C:\Windows\system32\igdrcl64.dll
2018-08-02 11:02 - 2018-08-02 11:02 - 001501984 _____ (Intel Corporation) C:\Windows\system32\igdmd64.dll
2018-08-02 11:02 - 2018-08-02 11:02 - 001154352 _____ (Intel Corporation) C:\Windows\SysWOW64\igdmd32.dll
2018-08-02 11:02 - 2018-08-02 11:02 - 000434128 _____ (Intel Corporation) C:\Windows\system32\igdbcl64.dll
2018-08-02 11:02 - 2018-08-02 11:02 - 000381904 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2018-08-02 11:02 - 2018-08-02 11:02 - 000095184 _____ (Khronos Group) C:\Windows\SysWOW64\Intel_OpenCL_ICD32.dll
2018-08-02 11:02 - 2018-08-02 11:02 - 000091088 _____ (Khronos Group) C:\Windows\system32\Intel_OpenCL_ICD64.dll
2018-08-02 11:00 - 2018-08-02 11:02 - 006257472 _____ (Intel Corporation) C:\Windows\system32\igdusc64.dll
2018-08-02 10:59 - 2018-08-02 11:00 - 004931712 _____ (Intel Corporation) C:\Windows\SysWOW64\igdusc32.dll
2018-08-02 10:59 - 2018-08-02 10:59 - 000182736 _____ (Intel Corporation) C:\Windows\system32\igdail64.dll
2018-08-02 10:59 - 2018-08-02 10:59 - 000163792 _____ (Intel Corporation) C:\Windows\SysWOW64\igdail32.dll
2018-08-02 10:54 - 2018-08-02 10:59 - 025148576 _____ (Intel Corporation) C:\Windows\system32\igdumdim64.dll
2018-08-02 10:49 - 2018-08-02 10:54 - 024344360 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdim32.dll
2018-08-02 10:46 - 2018-08-02 10:49 - 018046480 _____ C:\Windows\system32\igd11dxva64.dll
2018-08-02 10:46 - 2018-08-02 10:46 - 000294000 _____ (Intel Corporation) C:\Windows\system32\igd10idpp64.dll
2018-08-02 10:44 - 2018-08-02 10:46 - 009626864 _____ (Intel Corporation) C:\Windows\system32\igd10iumd64.dll
2018-08-02 10:40 - 2018-08-02 10:44 - 017566496 _____ C:\Windows\SysWOW64\igd11dxva32.dll
2018-08-02 10:40 - 2018-08-02 10:40 - 000273736 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10idpp32.dll
2018-08-02 10:38 - 2018-08-02 10:40 - 008819576 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10iumd32.dll
2018-08-02 10:33 - 2018-08-02 10:35 - 009548240 _____ (Intel Corporation) C:\Windows\system32\ig75icd64.dll
2018-08-02 10:31 - 2018-08-02 10:33 - 007523280 _____ (Intel Corporation) C:\Windows\SysWOW64\ig75icd32.dll
2018-08-02 10:31 - 2018-08-02 10:31 - 000641530 _____ C:\Windows\system32\FilmModeDetection.wmv
2018-08-02 10:31 - 2018-08-02 10:31 - 000403671 _____ C:\Windows\system32\ImageStabilization.wmv
2018-08-02 10:31 - 2018-08-02 10:31 - 000384040 _____ C:\Windows\system32\igfxTray.exe
2018-08-02 10:31 - 2018-08-02 10:31 - 000379856 _____ (Intel Corporation) C:\Windows\system32\igfxOSP.dll
2018-08-02 10:31 - 2018-08-02 10:31 - 000375173 _____ C:\Windows\system32\ColorImageEnhancement.wmv
2018-08-02 10:31 - 2018-08-02 10:31 - 000341032 _____ (Intel Corporation) C:\Windows\system32\DPTopologyApp.exe
2018-08-02 10:31 - 2018-08-02 10:31 - 000340520 _____ (Intel Corporation) C:\Windows\system32\DPTopologyAppv2_0.exe
2018-08-02 10:31 - 2018-08-02 10:31 - 000264656 _____ C:\Windows\system32\igfxCPL.cpl
2018-08-02 10:31 - 2018-08-02 10:31 - 000249896 _____ (Intel Corporation) C:\Windows\system32\igfxHK.exe
2018-08-02 10:31 - 2018-08-02 10:31 - 000228304 _____ (Intel Corporation) C:\Windows\system32\igfxDTCM.dll
2018-08-02 10:31 - 2018-08-02 10:31 - 000220200 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2018-08-02 10:31 - 2018-08-02 10:31 - 000045904 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2018-08-02 10:31 - 2018-08-02 10:31 - 000043984 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2018-08-02 10:31 - 2018-08-02 10:31 - 000000935 _____ C:\Windows\system32\DPTopologyApp.exe.config
2018-08-02 10:30 - 2018-08-02 10:30 - 001139664 _____ (Intel Corporation) C:\Windows\system32\GfxResources.dll
2018-08-02 10:30 - 2018-08-02 10:30 - 001041960 _____ (Intel Corporation) C:\Windows\system32\Gfxv4_0.exe
2018-08-02 10:30 - 2018-08-02 10:30 - 001038376 _____ (Intel Corporation) C:\Windows\system32\Gfxv2_0.exe
2018-08-02 10:30 - 2018-08-02 10:30 - 000617936 _____ (Intel Corporation) C:\Windows\system32\MetroIntelGenericUIFramework.dll
2018-08-02 10:30 - 2018-08-02 10:30 - 000450088 _____ (Intel Corporation) C:\Windows\system32\GfxUIEx.exe
2018-08-02 10:30 - 2018-08-02 10:30 - 000095184 _____ C:\Windows\system32\igfxCUIServicePS.dll
2018-08-02 10:30 - 2018-08-02 10:30 - 000018896 _____ ( ) C:\Windows\system32\igfxEMLibv2_0.dll
2018-08-02 10:30 - 2018-08-02 10:30 - 000018896 _____ ( ) C:\Windows\system32\igfxEMLib.dll
2018-08-02 10:30 - 2018-08-02 10:30 - 000013776 _____ ( ) C:\Windows\system32\igfxLHMLibv2_0.dll
2018-08-02 10:30 - 2018-08-02 10:30 - 000013776 _____ ( ) C:\Windows\system32\igfxLHMLib.dll
2018-08-02 10:30 - 2018-08-02 10:30 - 000000935 _____ C:\Windows\system32\Gfxv4_0.exe.config
2018-08-02 10:29 - 2018-08-02 10:29 - 001381328 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2018-08-02 10:29 - 2018-08-02 10:29 - 000197584 _____ C:\Windows\system32\igdde64.dll
2018-08-02 10:29 - 2018-08-02 10:29 - 000158160 _____ C:\Windows\SysWOW64\igdde32.dll
2018-08-02 10:29 - 2018-08-02 10:29 - 000082384 _____ ( ) C:\Windows\system32\igfxDHLibv2_0.dll
2018-08-02 10:29 - 2018-08-02 10:29 - 000069584 _____ ( ) C:\Windows\system32\igfxDHLib.dll
2018-08-02 10:29 - 2018-08-02 10:29 - 000019920 _____ ( ) C:\Windows\system32\igfxDILib.dll
2018-08-02 10:29 - 2018-08-02 10:29 - 000019408 _____ ( ) C:\Windows\system32\igfxDILibv2_0.dll
2018-08-02 10:28 - 2018-08-02 10:29 - 001074640 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2018-08-02 10:28 - 2018-08-02 10:28 - 001423472 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll
2018-08-02 10:28 - 2018-08-02 10:28 - 001420344 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll
2018-08-02 10:28 - 2018-08-02 10:28 - 000485928 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2018-08-02 10:28 - 2018-08-02 10:28 - 000226256 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v4889.dll
2018-08-02 10:28 - 2018-08-02 10:28 - 000219256 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll
2018-08-02 10:28 - 2018-08-02 10:28 - 000218064 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll
2018-08-02 10:28 - 2018-08-02 10:28 - 000185944 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll
2018-08-02 10:28 - 2018-08-02 10:28 - 000184784 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll
2018-08-02 10:28 - 2018-08-02 10:28 - 000158760 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2018-08-02 10:28 - 2018-08-02 10:28 - 000102864 _____ C:\Windows\system32\IccLibDll_x64.dll
2018-08-02 10:27 - 2018-08-02 10:28 - 000194832 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll
2018-08-02 10:27 - 2018-08-02 10:27 - 000231272 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll
2018-08-02 10:27 - 2018-08-02 10:27 - 000004052 _____ C:\Windows\system32\iglhxs64.vp
2018-08-02 10:26 - 2018-08-02 10:27 - 004935072 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2018-08-02 10:25 - 2018-08-02 10:25 - 001469952 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
2018-08-02 10:25 - 2018-08-02 10:25 - 000040448 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys
2018-08-02 10:19 - 2018-08-02 10:20 - 001924096 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\athurx.sys
2018-08-02 10:18 - 2018-07-30 19:50 - 000132488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2018-08-02 10:16 - 2018-08-02 11:51 - 000000404 _____ C:\Windows\Tasks\Driver Easy Scheduled Scan.job
2018-08-02 10:16 - 2018-08-02 10:16 - 000003806 _____ C:\Windows\System32\Tasks\Driver Easy Scheduled Scan
2018-08-02 10:16 - 2018-08-02 10:16 - 000000000 ____D C:\Users\Snir\AppData\Roaming\Easeware
2018-08-02 10:16 - 2018-08-02 10:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Easy
2018-08-02 10:16 - 2018-08-02 10:16 - 000000000 ____D C:\Program Files\Easeware
2018-08-02 10:15 - 2018-08-01 11:48 - 040093528 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2018-08-02 10:15 - 2018-08-01 11:47 - 040346816 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2018-08-02 10:15 - 2018-08-01 11:47 - 035250008 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2018-08-02 10:15 - 2018-08-01 11:47 - 032364408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2018-08-02 10:15 - 2018-08-01 11:47 - 031248608 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2018-08-02 10:15 - 2018-08-01 11:47 - 025964960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2018-08-02 10:15 - 2018-08-01 11:47 - 020352952 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2018-08-02 10:15 - 2018-08-01 11:47 - 019085184 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2018-08-02 10:15 - 2018-08-01 11:47 - 017754360 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2018-08-02 10:15 - 2018-08-01 11:47 - 017012184 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2018-08-02 10:15 - 2018-08-01 11:47 - 015694648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2018-08-02 10:15 - 2018-08-01 11:47 - 013728760 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2018-08-02 10:15 - 2018-08-01 11:47 - 011273816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2018-08-02 10:15 - 2018-08-01 11:47 - 003967960 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2018-08-02 10:15 - 2018-08-01 11:47 - 003505448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2018-08-02 10:15 - 2018-08-01 11:47 - 002002448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6439882.dll
2018-08-02 10:15 - 2018-08-01 11:47 - 001467920 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6439882.dll
2018-08-02 10:15 - 2018-08-01 11:47 - 001420480 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2018-08-02 10:15 - 2018-08-01 11:47 - 001218032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll