info.txt logfile of random's system information tool 1.10 2015-07-26 17:08:20
======MBR======
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
======Uninstall list======
3DMark-->"C:\ProgramData\Package Cache\{7330098c-3669-4f39-9e82-4221d489db39}\3dmark-setup.exe" /uninstall
3DMark-->MsiExec.exe /X{4EC1B8B7-E3B4-4A9F-8005-7AF92DA4DFCF}
Adobe AIR-->C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{34927EBC-98D4-4D53-98BE-510DF5999F50}
Adobe Community Help-->msiexec /qb /x {0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}
Adobe Community Help-->MsiExec.exe /I{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}
Adobe Flash Player 18 NPAPI-->MsiExec.exe /X{448D7DEC-36F1-4091-B419-C5487BDEB867}
Adobe Media Player-->msiexec /qb /x {DE3A9DC5-9A5D-6485-9662-347162C7E4CA}
Adobe Media Player-->MsiExec.exe /I{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}
Adobe Photoshop CS6-->C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDApp.exe --appletID="DWA_UI" --appletVersion="2.0" --mode="Uninstall" --mediaSignature="{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}"
Alternative Look for Yennefer-->"D:\GOG\The Witcher 3 Wild Hunt\unins004.exe"
Battlelog Web Plugins-->C:\Program Files (x86)\Battlelog Web Plugins\uninstall.exe
Beard and Hairstyle Set-->"D:\GOG\The Witcher 3 Wild Hunt\unins002.exe"
Bloody5-->"C:\ProgramData\Microsoft\Windows\Templates\Bloody5\Setup.exe" uninstall
Camtasia Studio 8-->MsiExec.exe /I{A0FC961E-DC6D-4144-9277-ECDBB99D0AB9}
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
CDBurnerXP-->"C:\Program Files (x86)\CDBurnerXP\unins000.exe"
Company of Heroes (New Steam Version)-->"D:\Steam\steam.exe" steam://uninstall/228200
Counter-Strike: Global Offensive-->"D:\Steam\steam.exe" steam://uninstall/730
DAEMON Tools Lite-->C:\Program Files (x86)\DAEMON Tools Lite\uninst.exe
DayZ-->"D:\Steam\steam.exe" steam://uninstall/221100
Driver San Francisco-->"D:\Program Files (x86)\Ubisoft\Uninstall\Uninstall.exe"
Dungeons of Dredmor-->"D:\Steam\steam.exe" steam://uninstall/98800
EA SPORTS™ FIFA 15-->"C:\Program Files (x86)\Common Files\EAInstaller\FIFA 15\Cleanup.exe" uninstall_game -autologging
Entity Framework Designer for Visual Studio 2012 - enu-->MsiExec.exe /X{32136776-FE3F-453D-80DA-CDD993BDB2A3}
Epic Games Launcher-->MsiExec.exe /X{CB510119-C58D-4443-BD87-59B2D951F019}
ESET Online Scanner v3-->C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineScannerUninstaller.exe
Euro Truck Simulator 2-->"D:\Steam\steam.exe" steam://uninstall/227300
Far Cry 4-->"D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe" uplay://uninstall/420
FastShare.cz verze 2.3.1-->"C:\Program Files (x86)\FastShare\unins000.exe"
FileZilla Client 3.10.1.1-->C:\Program Files (x86)\FileZilla FTP Client\uninstall.exe
Foxit Reader-->"C:\Program Files (x86)\Foxit Software\Foxit Reader\unins000.exe"
Fraps (remove only)-->"C:\Fraps\uninstall.exe"
Futuremark SystemInfo-->MsiExec.exe /X{03856D3F-DDDC-4C9A-9202-36529D21D94C}
GOG Galaxy-->"D:\Program Files (x86)\GalaxyClient\unins000.exe"
Google Chrome-->"C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.107\Installer\setup.exe" --uninstall --multi-install --chrome --system-level
Google Update Helper-->MsiExec.exe /I{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
Grand Theft Auto V-->"C:\Program Files (x86)\InstallShield Installation Information\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}\setup.exe" -runfromtemp -l0x0409 -removeonly
GTA San Andreas-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}\setup.exe" -l0x9 -removeonly
Heroes & Generals-->"D:\Steam\steam.exe" steam://uninstall/227940
Insurgency-->"D:\Steam\steam.exe" steam://uninstall/222880
Intel(R) Chipset Device Software-->MsiExec.exe /I{98841A35-1CBE-4EA3-BFF5-F3E3AD894666}
Intel(R) Management Engine Components-->"C:\ProgramData\Intel\Package Cache\{1CEAC85D-2590-4760-800F-8DE5E91F3700}\Setup.exe" -uninstall
Intel(R) Management Engine Components-->MsiExec.exe /I{0D01BDA8-C995-40AD-95F8-26B7EA4DCF9F}
Intel(R) Management Engine Components-->MsiExec.exe /I{98900FE1-9C17-4553-B0D1-132BF9126412}
Intel(R) ME UninstallLegacy-->MsiExec.exe /I{E8B134CC-098E-4623-BD85-0A432FE5DDFB}
Intel(R) Rapid Storage Technology-->"C:\ProgramData\Intel\Package Cache\{409CB30E-E457-4008-9B1A-ED1B9EA21140}\Setup.exe" -uninstall
Intel(R) Rapid Storage Technology-->MsiExec.exe /I{EAF826C0-245E-4D02-9D51-BA4C98717EAE}
Intel® Chipset Device Software-->"C:\ProgramData\Package Cache\{d370215a-d003-43ae-a3b6-1028af64d5a1}\SetupChipset.exe" /uninstall
Intel® Trusted Connect Service Client-->MsiExec.exe /I{3DE97849-544D-4D68-9255-11DF6F9F10D8}
Ionball 2 : Ionstorm-->"D:\Steam\steam.exe" steam://uninstall/287120
Java 8 Update 51-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83218051F0}
K-Lite Mega Codec Pack 10.7.5-->"C:\Program Files (x86)\K-Lite Codec Pack\unins000.exe"
LogMeIn Hamachi-->C:\Windows\SysWOW64\\msiexec.exe /i {B8E7EF80-9719-4EEB-944D-E68D1F3DFA7B} REMOVE=ALL
LogMeIn Hamachi-->MsiExec.exe /I{B8E7EF80-9719-4EEB-944D-E68D1F3DFA7B}
Malwarebytes Anti-Malware verze 2.1.8.1057-->"C:\Program Files (x86)\Malwarebytes Anti-Malware\unins000.exe"
METAL GEAR SOLID V: GROUND ZEROES-->"D:\Steam\steam.exe" steam://uninstall/311340
Microsoft .NET Framework 4 Multi-Targeting Pack-->MsiExec.exe /I{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}
Microsoft .NET Framework 4.5 Multi-Targeting Pack-->MsiExec.exe /X{5CBFF3F3-2D40-34EE-BCA5-A95BC19E400D}
Microsoft .NET Framework 4.5 SDK-->MsiExec.exe /X{1948E039-EC79-4591-951D-9867A8C14C90}
Microsoft Help Viewer 2.0-->msiexec.exe /X{FEB375AB-6EEC-3929-8FAF-188ED81DD8B5}
Microsoft Help Viewer 2.0-->MsiExec.exe /X{FEB375AB-6EEC-3929-8FAF-188ED81DD8B5}
Microsoft NuGet - Visual Studio Express 2012 for Windows Desktop-->MsiExec.exe /I{49402ED1-A795-4435-A745-1B781BE621A6}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2012 Command Line Utilities -->MsiExec.exe /I{9D573E71-1077-4C7E-B4DB-4E22A5D2B48B}
Microsoft SQL Server 2012 Data-Tier App Framework -->MsiExec.exe /I{36E619BC-A234-4EC3-849B-779A7C865A45}
Microsoft SQL Server 2012 Data-Tier App Framework -->MsiExec.exe /I{FBA6F90E-36EC-4FC9-9B25-3834E3BD46A8}
Microsoft SQL Server 2012 Express LocalDB -->MsiExec.exe /I{13D558FE-A863-402C-B115-160007277033}
Microsoft SQL Server 2012 Management Objects (x64)-->MsiExec.exe /I{FA0A244E-F3C2-4589-B42A-3D522DE79A42}
Microsoft SQL Server 2012 Management Objects -->MsiExec.exe /I{DA1C1761-5F4F-4332-AB9D-29EDF3F8EA0A}
Microsoft SQL Server 2012 Native Client -->MsiExec.exe /I{49D665A2-4C2A-476E-9AB8-FCC425F526FC}
Microsoft SQL Server 2012 Transact-SQL Compiler Service -->MsiExec.exe /I{BEB0F91E-F2EA-48A1-B938-7857ABF2A93D}
Microsoft SQL Server 2012 Transact-SQL ScriptDom -->MsiExec.exe /I{0E8670B8-3965-4930-ADA6-570348B67153}
Microsoft SQL Server 2012 T-SQL Language Service -->MsiExec.exe /I{6D6D43E5-218C-4B05-92D3-2240810F4760}
Microsoft SQL Server Compact 4.0 SP1 x64 ENU-->MsiExec.exe /X{78909610-D229-459C-A936-25D92283D3FD}
Microsoft SQL Server Data Tools - enu (11.1.20828.01)-->MsiExec.exe /X{4F2B8233-35EE-4197-8C3B-EACCBF712029}
Microsoft SQL Server Data Tools Build Utilities - enu (11.1.20828.01)-->MsiExec.exe /X{FAE0523E-08A4-4717-8E8E-6EC6F32CBE88}
Microsoft System CLR Types for SQL Server 2012 (x64)-->MsiExec.exe /I{F1949145-EB64-4DE7-9D81-E6D27937146C}
Microsoft System CLR Types for SQL Server 2012-->MsiExec.exe /I{E2082604-4BA5-44BB-BBFB-AF0F3CB8C6AB}
Microsoft Visual C++ 2005 Redistributable (x64)-->MsiExec.exe /X{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}
Microsoft Visual C++ 2005 Redistributable (x64)-->MsiExec.exe /X{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148-->MsiExec.exe /X{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219-->MsiExec.exe /X{1D8E6291-B0D5-35EC-8441-6616F567A0F7}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Microsoft Visual C++ 2012 32bit Compilers - ENU Resources-->MsiExec.exe /X{0F3C9093-6C13-484D-8385-93AA21BEC025}
Microsoft Visual C++ 2012 Core Libraries-->MsiExec.exe /X{B362A397-B38A-3A23-A190-611F9C7EB4F9}
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030-->"C:\ProgramData\Package Cache\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}\vcredist_x64.exe" /uninstall
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030-->"C:\ProgramData\Package Cache\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}\vcredist_x86.exe" /uninstall
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030-->MsiExec.exe /X{37B8F9C7-03FB-3253-8781-2517C99D7C00}
Microsoft Visual C++ 2012 x64 Debug Runtime - 11.0.50727-->MsiExec.exe /X{2B997E80-3BEC-3222-9114-98DBE1182B2E}
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030-->MsiExec.exe /X{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030-->MsiExec.exe /X{B175520C-86A2-35A7-8619-86DC379688B9}
Microsoft Visual C++ 2012 x86 Debug Runtime - 11.0.50727-->MsiExec.exe /X{1C163D33-33B3-33EB-A617-0D4D852BE8E1}
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030-->MsiExec.exe /X{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}
Microsoft Visual C++ 2012 x86-x64 Compilers-->MsiExec.exe /X{A1785BD4-3486-4E7E-8074-E3FC61B8F315}
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005-->"C:\ProgramData\Package Cache\{7f51bdb9-ee21-49ee-94d6-90afc321780e}\vcredist_x64.exe" /uninstall
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501-->"C:\ProgramData\Package Cache\{050d4fc8-5d48-4b8f-8972-47c82c46020f}\vcredist_x64.exe" /uninstall
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005-->"C:\ProgramData\Package Cache\{ce085a78-074e-4823-8dc1-8a721b94b76d}\vcredist_x86.exe" /uninstall
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501-->"C:\ProgramData\Package Cache\{f65db027-aff3-4070-886a-0d87064aabb1}\vcredist_x86.exe" /uninstall
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005-->MsiExec.exe /X{929FBD26-9020-399B-9A7A-751D61F0B942}
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005-->MsiExec.exe /X{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005-->MsiExec.exe /X{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005-->MsiExec.exe /X{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}
Microsoft Visual Studio 2012 Express Prerequisites x64 - ENU-->MsiExec.exe /I{30B7A7A6-D519-3332-BEB3-D105EFC7389A}
Microsoft Visual Studio 2012 Preparation-->MsiExec.exe /I{09412B73-6159-40D6-B0B9-C11B30A7531E}
Microsoft Visual Studio 2012 Shell (Minimum) Interop Assemblies-->MsiExec.exe /I{820C677A-41B2-48C3-8136-FEE35A052E73}
Microsoft Visual Studio 2012 Shell (Minimum) Resources-->MsiExec.exe /I{38FC6E9A-F719-431A-A83D-4C86D5FD6555}
Microsoft Visual Studio 2012 Shell (Minimum)-->MsiExec.exe /I{800F484E-9D69-492D-B656-7BAA32586142}
Microsoft Visual Studio 2012 Tools for SQL Server Compact 4.0 SP1 ENU-->MsiExec.exe /I{E818AE7C-244B-4A50-9C86-C0E4A8B69159}
Microsoft Visual Studio Express 2012 for Windows Desktop - ENU-->"C:\ProgramData\Package Cache\{e0efdce9-a486-4676-8aa5-65bb08cbf34c}\wdexpress_full.exe" /uninstall
Microsoft Visual Studio Express 2012 for Windows Desktop - ENU-->MsiExec.exe /X{222C5507-AC43-388F-808E-2266EC57E043}
Microsoft Visual Studio Express 2012 for Windows Desktop-->MsiExec.exe /X{1BE2AFE6-209E-3862-AE45-DA9D3D21BD65}
Microsoft Visual Studio Team Foundation Server 2012 Object Model Language Pack - ENU-->MsiExec.exe /I{68A48EF1-DF03-394F-AF40-1E4FE42BB8DD}
Microsoft Visual Studio Team Foundation Server 2012 Object Model-->MsiExec.exe /I{6F07A6C2-9068-3673-A120-DC10012468C6}
Microsoft Visual Studio Team Foundation Server 2012 Team Explorer Language Pack - ENU-->MsiExec.exe /I{1B9BBB23-65CB-3AEE-BFC6-633E7CA299FD}
Microsoft Visual Studio Team Foundation Server 2012 Team Explorer-->MsiExec.exe /I{6DAB46E3-D017-3E2B-85D8-F57A230384C0}
Microsoft_VC80_ATL_x86_x64-->MsiExec.exe /I{925D058B-564A-443A-B4B2-7E90C6432E55}
Microsoft_VC80_CRT_x86_x64-->MsiExec.exe /I{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}
Microsoft_VC80_CRT_x86-->MsiExec.exe /I{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}
Microsoft_VC80_MFC_x86_x64-->MsiExec.exe /I{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}
Microsoft_VC80_MFC_x86-->MsiExec.exe /I{D1A19B02-817E-4296-A45B-07853FD74D57}
Microsoft_VC80_MFCLOC_x86_x64-->MsiExec.exe /I{1E9FC118-651D-4934-97BE-E53CAE5C7D45}
Microsoft_VC80_MFCLOC_x86-->MsiExec.exe /I{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}
Microsoft_VC90_ATL_x86_x64-->MsiExec.exe /I{8557397C-A42D-486F-97B3-A2CBC2372593}
Microsoft_VC90_ATL_x86-->MsiExec.exe /I{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}
Microsoft_VC90_CRT_x86_x64-->MsiExec.exe /I{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}
Microsoft_VC90_CRT_x86-->MsiExec.exe /I{08D2E121-7F6A-43EB-97FD-629B44903403}
Microsoft_VC90_MFC_x86_x64-->MsiExec.exe /I{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}
Microsoft_VC90_MFC_x86-->MsiExec.exe /I{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}
Mount & Blade: Warband-->"D:\Steam\steam.exe" steam://uninstall/48700
Mozilla Firefox 39.0 (x86 en-US)-->"C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe"
Mozilla Maintenance Service-->"C:\Program Files (x86)\Mozilla Maintenance Service\uninstall.exe"
MSI Afterburner 4.0.0-->"C:\Program Files (x86)\MSI Afterburner\uninstall.exe"
New Quest - Contract Missing Miners-->"D:\GOG\The Witcher 3 Wild Hunt\unins003.exe"
Notepad++-->C:\Program Files (x86)\Notepad++\uninstall.exe
NVIDIA GeForce Experience 2.4.5.57-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.GFExperience
NVIDIA Ovladač 3D Vision 353.30-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.3DVision
NVIDIA Ovladač HD audia 1.3.34.3-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage HDAudio.Driver
NVIDIA Ovladač řídící jednotky 3D Vision 352.65-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.NVIRUSB
NVIDIA Ovladače grafiky 353.30-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.Driver
NVIDIA Stereoscopic 3D Driver-->"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvStInst.exe" /uninstall /ask
NVIDIA Systémový software PhysX 9.15.0428-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.PhysX
NVIDIA Virtuální audio Miracast 353.30-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Miracast.VirtualAudio
Open Broadcaster Software-->C:\Program Files (x86)\OBS\uninstall.exe
Origin-->D:\Origin\OriginUninstall.exe
PDF Settings CS6-->MsiExec.exe /I{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}
Prerequisites for SSDT -->MsiExec.exe /I{9169C939-ED01-446A-BD0C-29873BAF4E48}
RivaTuner Statistics Server 6.2.0-->"C:\Program Files (x86)\RivaTuner Statistics Server\uninstall.exe"
Rocket League-->"D:\Steam\steam.exe" steam://uninstall/252950
Rockstar Games Social Club-->C:\Program Files\Rockstar Games\Social Club\uninstallRGSCRedistributable.exe
Rust-->"D:\Steam\steam.exe" steam://uninstall/252490
Skype™ 7.4-->MsiExec.exe /X{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
SopCast 3.9.6-->C:\Program Files (x86)\SopCast\uninst.exe
SpeedFan (remove only)-->"C:\Program Files (x86)\SpeedFan\uninstall.exe"
Steam-->D:\Steam\uninstall.exe
Team Fortress 2-->"D:\Steam\steam.exe" steam://uninstall/440
Temerian Armor Set-->"D:\GOG\The Witcher 3 Wild Hunt\unins001.exe"
The Witcher 3 - Wild Hunt-->"D:\GOG\The Witcher 3 Wild Hunt\unins000.exe"
TightVNC-->MsiExec.exe /I{D2372F87-7DA2-47F7-A102-AF2181B8EAA2}
Total War: SHOGUN 2-->"D:\Steam\steam.exe" steam://uninstall/34330
Unigine Valley Benchmark version 1.0-->"C:\Program Files (x86)\Unigine\Valley Benchmark 1.0\unins000.exe"
Update for (KB2504637)-->C:\Windows\SysWOW64\msiexec.exe /package {CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE} /uninstall {815F0BC1-7E54-300C-9ACA-C9460FDF6F78} /qb+ REBOOTPROMPT=""
Uplay-->D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uninstall.exe
VLC media player-->d:\Program Files (x86)\VideoLAN\VLC\uninstall.exe
Windows Software Development Kit DirectX x64 Remote-->MsiExec.exe /I{5FB4C443-6BD6-1514-2717-3827D65AE6FB}
Windows Software Development Kit DirectX x86 Remote-->MsiExec.exe /I{23176E97-26CB-C72A-19EB-BFB21AC1D15A}
Windows Software Development Kit for Windows Store Apps DirectX x64 Remote-->MsiExec.exe /I{27EF252D-800C-ED42-9904-459FE0046225}
Windows Software Development Kit for Windows Store Apps DirectX x86 Remote-->MsiExec.exe /I{42F61556-29ED-8122-F39E-6F04EA5FF279}
Windows Software Development Kit for Windows Store Apps-->MsiExec.exe /I{D11F66FF-82B3-DDB8-1146-525370552BE1}
Windows Software Development Kit-->MsiExec.exe /I{60D5EF2A-4E0C-2C30-38F6-59C26E134F4A}
WinRAR 5.20 (32-bit)-->C:\Program Files (x86)\WinRAR\uninstall.exe
======System event log======
Computer Name: WIN-AEFVGUJURU8
Event Code: 13
Message: Operační systém se vypíná v systémovém čase 2014-03-18T16:11:06.822346500Z.
Record Number: 5
Source Name: Microsoft-Windows-Kernel-General
Time Written: 20140318161106.822346-000
Event Type: Informace
User:
Computer Name: WIN-AEFVGUJURU8
Event Code: 109
Message: Správce napájení jádra inicioval přechod do režimu vypnutí.
Record Number: 4
Source Name: Microsoft-Windows-Kernel-Power
Time Written: 20140318161106.025453-000
Event Type: Informace
User:
Computer Name: WIN-AEFVGUJURU8
Event Code: 6005
Message: Služba Event Log byla spuštěna.
Record Number: 3
Source Name: EventLog
Time Written: 20141204110914.000000-000
Event Type: Informace
User:
Computer Name: WIN-AEFVGUJURU8
Event Code: 6009
Message: Microsoft (R) Windows (R) 6.03. 9600 Multiprocessor Free.
Record Number: 2
Source Name: EventLog
Time Written: 20141204110914.000000-000
Event Type: Informace
User:
Computer Name: WIN-AEFVGUJURU8
Event Code: 6011
Message: Název tohoto počítače v systémech DNS a NetBIOS byl změněn z WIN-AEFVGUJURU8 na WIN-M5LLDKTGJKK.
Record Number: 1
Source Name: EventLog
Time Written: 20141204110914.000000-000
Event Type: Informace
User:
=====Application event log=====
Computer Name: WIN-AEFVGUJURU8
Event Code: 102
Message: svchost (1392) Instance: Databázový stroj (6.03.9600.0000) spouští novou instanci (0).
Record Number: 5
Source Name: ESENT
Time Written: 20141204110922.000000-000
Event Type: Informace
User:
Computer Name: WIN-AEFVGUJURU8
Event Code: 5615
Message: Služba WMI (Windows Management Instrumentation) byla úspěšně spuštěna.
Record Number: 4
Source Name: Microsoft-Windows-WMI
Time Written: 20141204110914.393885-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: WIN-AEFVGUJURU8
Event Code: 9002
Message: Nepodařilo se spustit Správce oken plochy.
Record Number: 3
Source Name: Desktop Window Manager
Time Written: 20141204110914.000000-000
Event Type: Informace
User:
Computer Name: WIN-AEFVGUJURU8
Event Code: 1531
Message: Služba Profil uživatele byla úspěšně spuštěna.
Record Number: 2
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20141204110914.096986-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: WIN-AEFVGUJURU8
Event Code: 4625
Message: Subsystém EventSystem zabraňuje vytváření duplicitních záznamů v protokolu událostí po dobu 86400 sekund. Tuto dobu lze změnit pomocí hodnoty REG_DWORD s názvem SuppressDuplicateDuration v následujícím klíči registru: HKLM\Software\Microsoft\EventSystem\EventLog.
Record Number: 1
Source Name: Microsoft-Windows-EventSystem
Time Written: 20141204110914.000000-000
Event Type: Informace
User:
=====Security event log=====
Computer Name: WIN-AEFVGUJURU8
Event Code: 4672
Message: Novému přihlášení byla přiřazena zvláštní oprávnění.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E7
Oprávnění: SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 5
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20141204110909.003391-000
Event Type: Úspěšný audit
User:
Computer Name: WIN-AEFVGUJURU8
Event Code: 4624
Message: Účet byl úspěšně přihlášen.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: WIN-AEFVGUJURU8$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Typ přihlášení: 5
Úroveň zosobnění: Zosobnění
Nové přihlášení:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E7
GUID přihlášení: {00000000-0000-0000-0000-000000000000}
Informace o procesu:
ID procesu: 0x1d8
Název procesu: C:\Windows\System32\services.exe
Informace o síti:
Název pracovní stanice:
Adresa zdrojové sítě -
Zdrojový port: -
Podrobné informace o ověření:
Proces přihlášení: Advapi
Balíček ověření: Negotiate
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0
Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.
Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.
Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).
Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.
Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.
Pole úrovně zosobnění označuje rozsah, ve kterém může být proces v přihlašovací relaci zosobněn.
Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 4
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20141204110909.003391-000
Event Type: Úspěšný audit
User:
Computer Name: WIN-AEFVGUJURU8
Event Code: 4902
Message: Tabulka zásad auditu pro jednotlivé uživatele byla vytvořena.
Počet prvků: 0
ID zásady: 0x3E6C1
Record Number: 3
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20141204110908.930646-000
Event Type: Úspěšný audit
User:
Computer Name: WIN-AEFVGUJURU8
Event Code: 4624
Message: Účet byl úspěšně přihlášen.
Předmět:
ID zabezpečení: S-1-0-0
Název účtu: -
Doména účtu: -
ID přihlášení: 0x0
Typ přihlášení: 0
Úroveň zosobnění: -
Nové přihlášení:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E7
GUID přihlášení: {00000000-0000-0000-0000-000000000000}
Informace o procesu:
ID procesu: 0x4
Název procesu:
Informace o síti:
Název pracovní stanice: -
Adresa zdrojové sítě -
Zdrojový port: -
Podrobné informace o ověření:
Proces přihlášení: -
Balíček ověření: -
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0
Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.
Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.
Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).
Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.
Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.
Pole úrovně zosobnění označuje rozsah, ve kterém může být proces v přihlašovací relaci zosobněn.
Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 2
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20141204110908.861637-000
Event Type: Úspěšný audit
User:
Computer Name: WIN-AEFVGUJURU8
Event Code: 4608
Message: Spouští se systém Windows.
Tato událost je zaznamenána při spuštění procesu LSASS.EXE a inicializaci kontrolního podsystému.
Record Number: 1
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20141204110908.861637-000
Event Type: Úspěšný audit
User:
======Environment variables======
"FP_NO_HOST_CHECK"=NO
"USERNAME"=SYSTEM
"Path"=C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Microsoft SQL Server\110\Tools\Binn\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Skype\Phone\
"ComSpec"=%SystemRoot%\system32\cmd.exe
"TMP"=%SystemRoot%\TEMP
"OS"=Windows_NT
"windir"=%SystemRoot%
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 60 Stepping 3, GenuineIntel
"PROCESSOR_REVISION"=3c03
"VS110COMNTOOLS"=C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\Tools\
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Kontrolu Logu prosím
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119677
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrolu Logu prosím
Zdravím!
Potřebuji vidět obsah souboru log.txt. Tohle je k ničemu.
Potřebuji vidět obsah souboru log.txt. Tohle je k ničemu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrolu Logu prosím
Pardon, já si to splet s tím info 
Logfile of random's system information tool 1.10 (written by random/random)
Run by User007 at 2015-07-26 17:08:06
Microsoft Windows 8.1
System drive C: has 58 GB (51%) free of 114 GB
Total RAM: 8120 MB (74% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:08:20, on 26. 7. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\SpeedFan\speedfan.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\trend micro\User007.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://terra.im/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://terra.im/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://terra.im/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark - C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
O23 - Service: GalaxyClientService - GOG.com - D:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - D:\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9123 bytes
======Listing Processes======
wininit.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-795f4216-0a3e-4874-8612-35636aa9f400 -SystemEventPortName:HostProcess-26727591-f620-40bd-b46d-58bfa978a2de -IoCancelEventPortName:HostProcess-aaacfa11-42b0-46a8-9de6-8249e31d3558 -NonStateChangingEventPortName:HostProcess-9a883c9f-6a73-4473-b238-f16a31c1887e -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:9619116c-20c0-4e3d-a0d3-566f32a3d303 -DeviceGroupId:WpdFsGroup
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-6e6ae890-a15e-4712-8adb-d9bccb45fab0 -SystemEventPortName:HostProcess-e9647f3e-5360-4d85-8be2-b593a992eed1 -IoCancelEventPortName:HostProcess-d5f29116-0c62-481b-9e0a-c0b0333c4887 -NonStateChangingEventPortName:HostProcess-f08fa9ae-df70-4879-9366-6336ef6419bc -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:1b4854c5-3bfd-4ae6-8f6b-cc6bfd663b46 -DeviceGroupId:WudfDefaultDevicePool
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\System32\WinLogon.exe -SpecialSession
-hiberboot
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe" /starttray
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
taskhostex.exe
"C:\Program Files\Core Temp\Core Temp.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" afcb58c9-8aef-49c4-9263-62f6dba2a7a3 1
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\SpeedFan\speedfan.exe"
dashost.exe {a480bbd9-efc3-4047-b0db373e16c2af52}
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
taskeng.exe {F410114C-1F67-489E-A5E3-7B2E09CE8B48}
"C:\Users\User007\Downloads\RSITx64.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe67_ Global\UsGthrCtrlFltPipeMssGthrPipe67 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 536 564 572 65536 568
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\User007\AppData\Roaming\Mozilla\Firefox\Profiles\h5lz5b1s.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "about:home"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.6.2]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=d:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=d:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@esn/npbattlelog,version=2.6.2]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll
C:\Users\User007\AppData\Roaming\Mozilla\Firefox\Profiles\h5lz5b1s.default\searchplugins\
defaultsearch.xml
zbocz.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-19 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-19 172640]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 3933496]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-05-28 36352]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-06-24 2754704]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-06-24 1571696]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"AdobeBridge"= []
"GalaxyClient"= []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2015-07-14 5579624]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-06-08 334896]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"VIDC.RTV1"=rtvcvfw64.dll
"VIDC.FICV"=ficvdec_x64.dll
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
"VIDC.FPS1"=frapsv64.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-07-26 17:08:06 ----D---- C:\rsit
2015-07-26 17:08:06 ----D---- C:\Program Files\trend micro
2015-07-25 12:43:57 ----D---- C:\Program Files (x86)\ESET
2015-07-23 15:56:27 ----A---- C:\Windows\system32\atmfd.dll
2015-07-23 15:56:24 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-07-23 15:56:23 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-07-23 15:56:23 ----A---- C:\Windows\system32\atmlib.dll
2015-07-18 08:04:45 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2015-07-17 18:01:59 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-07-17 18:01:59 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wucltux.dll
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wuaueng.dll
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wuauclt.exe
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wuapp.exe
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wuapi.dll
2015-07-17 18:01:59 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-07-17 18:01:58 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-07-17 18:01:58 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-07-17 18:01:58 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-07-17 18:01:58 ----A---- C:\Windows\system32\wuwebv.dll
2015-07-17 18:01:58 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2015-07-17 18:01:58 ----A---- C:\Windows\system32\wups.dll
2015-07-17 18:01:58 ----A---- C:\Windows\system32\wudriver.dll
2015-07-17 18:01:57 ----A---- C:\Windows\system32\wups2.dll
2015-07-17 18:00:40 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-07-17 18:00:40 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-07-17 18:00:40 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-07-17 18:00:40 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\win32k.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\WiFiDisplay.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\rpcrt4.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\msv1_0.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\lsasrv.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\kerberos.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\certcli.dll
2015-07-17 18:00:39 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-07-17 18:00:39 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-07-17 18:00:39 ----A---- C:\Windows\SYSWOW64\GeofenceMonitorService.dll
2015-07-17 18:00:39 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\werdiagcontroller.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\shell32.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\profsvc.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\msiexec.exe
2015-07-17 18:00:39 ----A---- C:\Windows\system32\msi.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\GeofenceMonitorService.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\authui.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\audiosrv.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\sermouse.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\mouhid.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\mouclass.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\kbdhid.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\kbdclass.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\i8042prt.sys
2015-07-17 18:00:38 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-07-17 18:00:38 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2015-07-17 18:00:38 ----A---- C:\Windows\system32\ExplorerFrame.dll
2015-07-17 18:00:38 ----A---- C:\Windows\system32\drivers\usb8023.sys
2015-07-17 18:00:31 ----A---- C:\Windows\system32\generaltel.dll
2015-07-17 18:00:31 ----A---- C:\Windows\system32\appraiser.dll
2015-07-17 18:00:31 ----A---- C:\Windows\system32\aeinv.dll
2015-07-17 18:00:30 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2015-07-17 18:00:30 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\WSShared.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\jscript9.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\invagent.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\devinv.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-07-17 18:00:30 ----A---- C:\Windows\system32\aepdu.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\acmigration.dll
2015-07-17 18:00:29 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-07-17 18:00:29 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-07-17 18:00:29 ----A---- C:\Windows\system32\mshtml.dll
2015-07-17 18:00:23 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-07-17 18:00:23 ----A---- C:\Windows\system32\ieframe.dll
2015-07-17 18:00:22 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-07-17 18:00:22 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-07-17 18:00:22 ----A---- C:\Windows\system32\urlmon.dll
2015-07-17 18:00:22 ----A---- C:\Windows\system32\iertutil.dll
2015-07-17 18:00:04 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-07-17 18:00:04 ----A---- C:\Windows\system32\wininet.dll
2015-07-17 18:00:04 ----A---- C:\Windows\system32\actxprxy.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\webcheck.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\vbscript.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\msrating.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\mshtmled.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\msfeeds.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\inetcomm.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\ieui.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\iepeers.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\ieapfltr.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\dxtrans.dll
2015-07-17 18:00:02 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-07-17 18:00:02 ----A---- C:\Windows\system32\jscript.dll
2015-07-17 17:59:47 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2015-07-17 17:59:37 ----A---- C:\Windows\system32\gdi32.dll
2015-07-17 17:59:35 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-07-17 17:59:08 ----A---- C:\Windows\system32\ole32.dll
2015-07-17 17:59:05 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-07-17 17:58:47 ----A---- C:\Windows\system32\fhcpl.dll
2015-07-17 17:58:46 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2015-07-17 17:58:46 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2015-07-17 17:58:39 ----A---- C:\Windows\system32\apphelp.dll
2015-07-17 17:58:36 ----A---- C:\Windows\system32\msftedit.dll
2015-07-17 17:58:35 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2015-07-14 11:44:38 ----AH---- C:\Windows\system32\drivers\Hamdrv.sys
2015-07-03 23:21:40 ----D---- C:\Users\User007\AppData\Roaming\Wargaming.net
2015-06-29 16:38:33 ----D---- C:\Spacekace
2015-06-27 19:26:13 ----D---- C:\ProgramData\LogMeIn
======List of files/folders modified in the last 1 month======
2015-07-26 17:08:06 ----RD---- C:\Program Files
2015-07-26 17:08:02 ----D---- C:\Windows\Prefetch
2015-07-26 16:00:00 ----D---- C:\Windows\system32\sru
2015-07-26 15:24:15 ----D---- C:\Users\User007\AppData\Roaming\FileZilla
2015-07-26 13:18:54 ----D---- C:\Windows\Temp
2015-07-26 13:14:53 ----D---- C:\Users\User007\AppData\Roaming\TS3Client
2015-07-26 09:50:47 ----D---- C:\Windows\Microsoft.NET
2015-07-26 09:50:39 ----D---- C:\Windows\debug
2015-07-26 09:40:25 ----D---- C:\Program Files (x86)\SpeedFan
2015-07-26 09:39:56 ----D---- C:\Windows\system32\Tasks
2015-07-26 01:30:32 ----D---- C:\Windows\SoftwareDistribution
2015-07-26 01:30:32 ----D---- C:\Windows
2015-07-26 01:29:57 ----D---- C:\Users\User007\AppData\Roaming\DAEMON Tools Lite
2015-07-26 01:29:52 ----D---- C:\Windows\Inf
2015-07-26 01:29:50 ----D---- C:\Windows\Logs
2015-07-26 00:42:19 ----RD---- C:\Windows\System32
2015-07-26 00:42:19 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-07-25 12:43:58 ----SD---- C:\Windows\Downloaded Program Files
2015-07-25 12:43:57 ----RD---- C:\Program Files (x86)
2015-07-25 09:46:52 ----D---- C:\Windows\system32\config
2015-07-25 09:42:49 ----SD---- C:\Windows\system32\GWX
2015-07-25 09:39:41 ----D---- C:\Windows\WinSxS
2015-07-25 09:39:40 ----D---- C:\ProgramData\NVIDIA
2015-07-24 23:02:50 ----D---- C:\Windows\SysWOW64
2015-07-24 19:16:58 ----SHD---- C:\Windows\Installer
2015-07-24 18:39:55 ----RSD---- C:\Windows\assembly
2015-07-24 18:39:49 ----SHD---- C:\System Volume Information
2015-07-24 12:49:38 ----HD---- C:\Program Files\WindowsApps
2015-07-24 12:49:38 ----D---- C:\Windows\AppReadiness
2015-07-24 09:55:14 ----D---- C:\Windows\CbsTemp
2015-07-19 22:51:12 ----D---- C:\ProgramData\Oracle
2015-07-19 22:51:10 ----D---- C:\Program Files (x86)\Java
2015-07-19 22:51:05 ----D---- C:\Program Files (x86)\Common Files
2015-07-19 22:50:57 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-07-19 19:39:01 ----D---- C:\Users\User007\AppData\Roaming\.minecraft
2015-07-19 00:14:00 ----RSD---- C:\Windows\Fonts
2015-07-18 15:43:49 ----D---- C:\Windows\rescache
2015-07-18 15:25:45 ----SD---- C:\Windows\SYSWOW64\GWX
2015-07-18 12:32:36 ----D---- C:\Windows\system32\catroot2
2015-07-18 10:18:40 ----D---- C:\Windows\system32\DriverStore
2015-07-18 08:04:47 ----D---- C:\Windows\system32\drivers
2015-07-18 01:04:44 ----D---- C:\Windows\WinStore
2015-07-18 01:04:44 ----D---- C:\Program Files\Internet Explorer
2015-07-18 01:04:44 ----D---- C:\Program Files (x86)\Internet Explorer
2015-07-18 01:04:43 ----D---- C:\Windows\system32\cs-CZ
2015-07-18 01:04:43 ----D---- C:\Windows\system32\CodeIntegrity
2015-07-18 01:04:43 ----D---- C:\Windows\apppatch
2015-07-18 01:04:42 ----RD---- C:\Windows\ToastData
2015-07-17 22:55:22 ----D---- C:\Windows\Tasks
2015-07-17 18:10:53 ----SD---- C:\Windows\system32\CompatTel
2015-07-17 18:10:53 ----D---- C:\Windows\system32\wbem
2015-07-17 18:10:53 ----D---- C:\Windows\system32\appraiser
2015-07-17 18:10:35 ----D---- C:\Windows\system32\MRT
2015-07-13 23:10:13 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-07-11 13:12:01 ----D---- C:\Program Files (x86)\Rockstar Games
2015-07-11 13:11:52 ----D---- C:\Program Files\Rockstar Games
2015-07-10 13:03:03 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-07-08 22:43:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-07-05 12:08:23 ----N---- C:\Windows\system32\MpSigStub.exe
2015-07-03 23:20:57 ----D---- C:\Users\User007\AppData\Roaming\OBS
2015-07-03 08:43:04 ----A---- C:\Windows\system32\MRT.exe
2015-06-29 22:22:53 ----D---- C:\ProgramData\Adobe
2015-06-29 13:51:35 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-06-27 19:26:13 ----HD---- C:\ProgramData
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2014-05-28 672104]
R0 Wof;Windows Overlay File System Filter Driver; C:\Windows\system32\drivers\Wof.sys [2014-03-13 157016]
R1 dtsoftbus01;@oem11.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\Windows\System32\drivers\dtsoftbus01.sys [2015-01-30 283064]
R2 speedfan;speedfan; \??\C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R3 ALSysIO;ALSysIO; \??\C:\Users\User007\AppData\Local\Temp\ALSysIO64.sys []
R3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\Windows\system32\DRIVERS\Hamdrv.sys [2015-07-14 45680]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-06-18 25816]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2015-07-26 113880]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-06-18 64216]
R3 MEIx64;@oem9.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-04-03 118272]
R3 NVHDA;@oem20.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2015-06-17 204648]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2015-06-17 11011216]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-06-24 19600]
R3 nvvad_WaveExtensible;@oem22.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2015-04-03 38032]
R3 NVVADARM;@oem27.inf,%NVVADARM.SvcDesc%;NVIDIA Miracast Audio; C:\Windows\system32\drivers\nvvadarm.sys [2015-06-17 39240]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 SensorsSimulatorDriver;@oem12.inf,%WudfSensorsSimulatorDriverDisplayName%;UMDF Reflector service for SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [2014-10-29 226304]
S3 cpuz138;cpuz138; \??\C:\Windows\TEMP\cpuz138\cpuz138_x64.sys []
S3 GPUZ;GPUZ; \??\C:\Windows\TEMP\GPUZ.sys []
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-10-29 38792]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-06-24 1152656]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2015-07-14 2540904]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-05-28 16232]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-04-03 154584]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2015-07-14 417552]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-04-03 398296]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-06-18 1871160]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-06-24 1868432]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2015-06-24 23007376]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-06-17 937616]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2015-02-03 76152]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-02-11 129624]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-06-17 410768]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-10 107848]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-17 268976]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2015-06-10 1141248]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 38792]
S3 EasyAntiCheat;EasyAntiCheat; C:\Windows\syswow64\EasyAntiCheat.exe [2015-06-09 233776]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [2014-11-25 614624]
S3 GalaxyClientService;GalaxyClientService; D:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [2015-05-29 1751096]
S3 GalaxyCommunication;GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [2015-06-20 6677048]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-10 107848]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-01-31 887232]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-07-08 148136]
S3 Origin Client Service;Origin Client Service; D:\Origin\OriginClientService.exe [2015-06-17 1997168]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-07-24 838336]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by User007 at 2015-07-26 17:08:06
Microsoft Windows 8.1
System drive C: has 58 GB (51%) free of 114 GB
Total RAM: 8120 MB (74% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:08:20, on 26. 7. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\SpeedFan\speedfan.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\trend micro\User007.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://terra.im/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://terra.im/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://terra.im/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark - C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
O23 - Service: GalaxyClientService - GOG.com - D:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - D:\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9123 bytes
======Listing Processes======
wininit.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-795f4216-0a3e-4874-8612-35636aa9f400 -SystemEventPortName:HostProcess-26727591-f620-40bd-b46d-58bfa978a2de -IoCancelEventPortName:HostProcess-aaacfa11-42b0-46a8-9de6-8249e31d3558 -NonStateChangingEventPortName:HostProcess-9a883c9f-6a73-4473-b238-f16a31c1887e -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:9619116c-20c0-4e3d-a0d3-566f32a3d303 -DeviceGroupId:WpdFsGroup
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-6e6ae890-a15e-4712-8adb-d9bccb45fab0 -SystemEventPortName:HostProcess-e9647f3e-5360-4d85-8be2-b593a992eed1 -IoCancelEventPortName:HostProcess-d5f29116-0c62-481b-9e0a-c0b0333c4887 -NonStateChangingEventPortName:HostProcess-f08fa9ae-df70-4879-9366-6336ef6419bc -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:1b4854c5-3bfd-4ae6-8f6b-cc6bfd663b46 -DeviceGroupId:WudfDefaultDevicePool
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\System32\WinLogon.exe -SpecialSession
-hiberboot
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe" /starttray
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
taskhostex.exe
"C:\Program Files\Core Temp\Core Temp.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" afcb58c9-8aef-49c4-9263-62f6dba2a7a3 1
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\SpeedFan\speedfan.exe"
dashost.exe {a480bbd9-efc3-4047-b0db373e16c2af52}
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
taskeng.exe {F410114C-1F67-489E-A5E3-7B2E09CE8B48}
"C:\Users\User007\Downloads\RSITx64.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe67_ Global\UsGthrCtrlFltPipeMssGthrPipe67 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 536 564 572 65536 568
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\User007\AppData\Roaming\Mozilla\Firefox\Profiles\h5lz5b1s.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "about:home"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.6.2]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=d:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=d:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@esn/npbattlelog,version=2.6.2]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll
C:\Users\User007\AppData\Roaming\Mozilla\Firefox\Profiles\h5lz5b1s.default\searchplugins\
defaultsearch.xml
zbocz.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-19 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-19 172640]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 3933496]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-05-28 36352]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-06-24 2754704]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-06-24 1571696]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"AdobeBridge"= []
"GalaxyClient"= []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2015-07-14 5579624]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-06-08 334896]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"VIDC.RTV1"=rtvcvfw64.dll
"VIDC.FICV"=ficvdec_x64.dll
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
"VIDC.FPS1"=frapsv64.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-07-26 17:08:06 ----D---- C:\rsit
2015-07-26 17:08:06 ----D---- C:\Program Files\trend micro
2015-07-25 12:43:57 ----D---- C:\Program Files (x86)\ESET
2015-07-23 15:56:27 ----A---- C:\Windows\system32\atmfd.dll
2015-07-23 15:56:24 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-07-23 15:56:23 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-07-23 15:56:23 ----A---- C:\Windows\system32\atmlib.dll
2015-07-18 08:04:45 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2015-07-17 18:01:59 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-07-17 18:01:59 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wucltux.dll
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wuaueng.dll
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wuauclt.exe
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wuapp.exe
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wuapi.dll
2015-07-17 18:01:59 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-07-17 18:01:58 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-07-17 18:01:58 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-07-17 18:01:58 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-07-17 18:01:58 ----A---- C:\Windows\system32\wuwebv.dll
2015-07-17 18:01:58 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2015-07-17 18:01:58 ----A---- C:\Windows\system32\wups.dll
2015-07-17 18:01:58 ----A---- C:\Windows\system32\wudriver.dll
2015-07-17 18:01:57 ----A---- C:\Windows\system32\wups2.dll
2015-07-17 18:00:40 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-07-17 18:00:40 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-07-17 18:00:40 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-07-17 18:00:40 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\win32k.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\WiFiDisplay.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\rpcrt4.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\msv1_0.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\lsasrv.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\kerberos.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\certcli.dll
2015-07-17 18:00:39 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-07-17 18:00:39 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-07-17 18:00:39 ----A---- C:\Windows\SYSWOW64\GeofenceMonitorService.dll
2015-07-17 18:00:39 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\werdiagcontroller.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\shell32.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\profsvc.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\msiexec.exe
2015-07-17 18:00:39 ----A---- C:\Windows\system32\msi.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\GeofenceMonitorService.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\authui.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\audiosrv.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\sermouse.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\mouhid.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\mouclass.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\kbdhid.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\kbdclass.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\i8042prt.sys
2015-07-17 18:00:38 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-07-17 18:00:38 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2015-07-17 18:00:38 ----A---- C:\Windows\system32\ExplorerFrame.dll
2015-07-17 18:00:38 ----A---- C:\Windows\system32\drivers\usb8023.sys
2015-07-17 18:00:31 ----A---- C:\Windows\system32\generaltel.dll
2015-07-17 18:00:31 ----A---- C:\Windows\system32\appraiser.dll
2015-07-17 18:00:31 ----A---- C:\Windows\system32\aeinv.dll
2015-07-17 18:00:30 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2015-07-17 18:00:30 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\WSShared.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\jscript9.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\invagent.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\devinv.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-07-17 18:00:30 ----A---- C:\Windows\system32\aepdu.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\acmigration.dll
2015-07-17 18:00:29 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-07-17 18:00:29 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-07-17 18:00:29 ----A---- C:\Windows\system32\mshtml.dll
2015-07-17 18:00:23 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-07-17 18:00:23 ----A---- C:\Windows\system32\ieframe.dll
2015-07-17 18:00:22 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-07-17 18:00:22 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-07-17 18:00:22 ----A---- C:\Windows\system32\urlmon.dll
2015-07-17 18:00:22 ----A---- C:\Windows\system32\iertutil.dll
2015-07-17 18:00:04 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-07-17 18:00:04 ----A---- C:\Windows\system32\wininet.dll
2015-07-17 18:00:04 ----A---- C:\Windows\system32\actxprxy.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\webcheck.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\vbscript.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\msrating.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\mshtmled.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\msfeeds.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\inetcomm.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\ieui.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\iepeers.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\ieapfltr.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\dxtrans.dll
2015-07-17 18:00:02 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-07-17 18:00:02 ----A---- C:\Windows\system32\jscript.dll
2015-07-17 17:59:47 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2015-07-17 17:59:37 ----A---- C:\Windows\system32\gdi32.dll
2015-07-17 17:59:35 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-07-17 17:59:08 ----A---- C:\Windows\system32\ole32.dll
2015-07-17 17:59:05 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-07-17 17:58:47 ----A---- C:\Windows\system32\fhcpl.dll
2015-07-17 17:58:46 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2015-07-17 17:58:46 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2015-07-17 17:58:39 ----A---- C:\Windows\system32\apphelp.dll
2015-07-17 17:58:36 ----A---- C:\Windows\system32\msftedit.dll
2015-07-17 17:58:35 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2015-07-14 11:44:38 ----AH---- C:\Windows\system32\drivers\Hamdrv.sys
2015-07-03 23:21:40 ----D---- C:\Users\User007\AppData\Roaming\Wargaming.net
2015-06-29 16:38:33 ----D---- C:\Spacekace
2015-06-27 19:26:13 ----D---- C:\ProgramData\LogMeIn
======List of files/folders modified in the last 1 month======
2015-07-26 17:08:06 ----RD---- C:\Program Files
2015-07-26 17:08:02 ----D---- C:\Windows\Prefetch
2015-07-26 16:00:00 ----D---- C:\Windows\system32\sru
2015-07-26 15:24:15 ----D---- C:\Users\User007\AppData\Roaming\FileZilla
2015-07-26 13:18:54 ----D---- C:\Windows\Temp
2015-07-26 13:14:53 ----D---- C:\Users\User007\AppData\Roaming\TS3Client
2015-07-26 09:50:47 ----D---- C:\Windows\Microsoft.NET
2015-07-26 09:50:39 ----D---- C:\Windows\debug
2015-07-26 09:40:25 ----D---- C:\Program Files (x86)\SpeedFan
2015-07-26 09:39:56 ----D---- C:\Windows\system32\Tasks
2015-07-26 01:30:32 ----D---- C:\Windows\SoftwareDistribution
2015-07-26 01:30:32 ----D---- C:\Windows
2015-07-26 01:29:57 ----D---- C:\Users\User007\AppData\Roaming\DAEMON Tools Lite
2015-07-26 01:29:52 ----D---- C:\Windows\Inf
2015-07-26 01:29:50 ----D---- C:\Windows\Logs
2015-07-26 00:42:19 ----RD---- C:\Windows\System32
2015-07-26 00:42:19 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-07-25 12:43:58 ----SD---- C:\Windows\Downloaded Program Files
2015-07-25 12:43:57 ----RD---- C:\Program Files (x86)
2015-07-25 09:46:52 ----D---- C:\Windows\system32\config
2015-07-25 09:42:49 ----SD---- C:\Windows\system32\GWX
2015-07-25 09:39:41 ----D---- C:\Windows\WinSxS
2015-07-25 09:39:40 ----D---- C:\ProgramData\NVIDIA
2015-07-24 23:02:50 ----D---- C:\Windows\SysWOW64
2015-07-24 19:16:58 ----SHD---- C:\Windows\Installer
2015-07-24 18:39:55 ----RSD---- C:\Windows\assembly
2015-07-24 18:39:49 ----SHD---- C:\System Volume Information
2015-07-24 12:49:38 ----HD---- C:\Program Files\WindowsApps
2015-07-24 12:49:38 ----D---- C:\Windows\AppReadiness
2015-07-24 09:55:14 ----D---- C:\Windows\CbsTemp
2015-07-19 22:51:12 ----D---- C:\ProgramData\Oracle
2015-07-19 22:51:10 ----D---- C:\Program Files (x86)\Java
2015-07-19 22:51:05 ----D---- C:\Program Files (x86)\Common Files
2015-07-19 22:50:57 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-07-19 19:39:01 ----D---- C:\Users\User007\AppData\Roaming\.minecraft
2015-07-19 00:14:00 ----RSD---- C:\Windows\Fonts
2015-07-18 15:43:49 ----D---- C:\Windows\rescache
2015-07-18 15:25:45 ----SD---- C:\Windows\SYSWOW64\GWX
2015-07-18 12:32:36 ----D---- C:\Windows\system32\catroot2
2015-07-18 10:18:40 ----D---- C:\Windows\system32\DriverStore
2015-07-18 08:04:47 ----D---- C:\Windows\system32\drivers
2015-07-18 01:04:44 ----D---- C:\Windows\WinStore
2015-07-18 01:04:44 ----D---- C:\Program Files\Internet Explorer
2015-07-18 01:04:44 ----D---- C:\Program Files (x86)\Internet Explorer
2015-07-18 01:04:43 ----D---- C:\Windows\system32\cs-CZ
2015-07-18 01:04:43 ----D---- C:\Windows\system32\CodeIntegrity
2015-07-18 01:04:43 ----D---- C:\Windows\apppatch
2015-07-18 01:04:42 ----RD---- C:\Windows\ToastData
2015-07-17 22:55:22 ----D---- C:\Windows\Tasks
2015-07-17 18:10:53 ----SD---- C:\Windows\system32\CompatTel
2015-07-17 18:10:53 ----D---- C:\Windows\system32\wbem
2015-07-17 18:10:53 ----D---- C:\Windows\system32\appraiser
2015-07-17 18:10:35 ----D---- C:\Windows\system32\MRT
2015-07-13 23:10:13 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-07-11 13:12:01 ----D---- C:\Program Files (x86)\Rockstar Games
2015-07-11 13:11:52 ----D---- C:\Program Files\Rockstar Games
2015-07-10 13:03:03 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-07-08 22:43:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-07-05 12:08:23 ----N---- C:\Windows\system32\MpSigStub.exe
2015-07-03 23:20:57 ----D---- C:\Users\User007\AppData\Roaming\OBS
2015-07-03 08:43:04 ----A---- C:\Windows\system32\MRT.exe
2015-06-29 22:22:53 ----D---- C:\ProgramData\Adobe
2015-06-29 13:51:35 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-06-27 19:26:13 ----HD---- C:\ProgramData
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2014-05-28 672104]
R0 Wof;Windows Overlay File System Filter Driver; C:\Windows\system32\drivers\Wof.sys [2014-03-13 157016]
R1 dtsoftbus01;@oem11.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\Windows\System32\drivers\dtsoftbus01.sys [2015-01-30 283064]
R2 speedfan;speedfan; \??\C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R3 ALSysIO;ALSysIO; \??\C:\Users\User007\AppData\Local\Temp\ALSysIO64.sys []
R3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\Windows\system32\DRIVERS\Hamdrv.sys [2015-07-14 45680]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-06-18 25816]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2015-07-26 113880]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-06-18 64216]
R3 MEIx64;@oem9.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-04-03 118272]
R3 NVHDA;@oem20.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2015-06-17 204648]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2015-06-17 11011216]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-06-24 19600]
R3 nvvad_WaveExtensible;@oem22.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2015-04-03 38032]
R3 NVVADARM;@oem27.inf,%NVVADARM.SvcDesc%;NVIDIA Miracast Audio; C:\Windows\system32\drivers\nvvadarm.sys [2015-06-17 39240]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 SensorsSimulatorDriver;@oem12.inf,%WudfSensorsSimulatorDriverDisplayName%;UMDF Reflector service for SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [2014-10-29 226304]
S3 cpuz138;cpuz138; \??\C:\Windows\TEMP\cpuz138\cpuz138_x64.sys []
S3 GPUZ;GPUZ; \??\C:\Windows\TEMP\GPUZ.sys []
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-10-29 38792]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-06-24 1152656]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2015-07-14 2540904]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-05-28 16232]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-04-03 154584]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2015-07-14 417552]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-04-03 398296]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-06-18 1871160]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-06-24 1868432]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2015-06-24 23007376]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-06-17 937616]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2015-02-03 76152]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-02-11 129624]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-06-17 410768]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-10 107848]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-17 268976]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2015-06-10 1141248]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 38792]
S3 EasyAntiCheat;EasyAntiCheat; C:\Windows\syswow64\EasyAntiCheat.exe [2015-06-09 233776]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [2014-11-25 614624]
S3 GalaxyClientService;GalaxyClientService; D:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [2015-05-29 1751096]
S3 GalaxyCommunication;GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [2015-06-20 6677048]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-10 107848]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-01-31 887232]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-07-08 148136]
S3 Origin Client Service;Origin Client Service; D:\Origin\OriginClientService.exe [2015-06-17 1997168]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-07-24 838336]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119677
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrolu Logu prosím
OK. Spusťte teď tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrolu Logu prosím
# AdwCleaner v4.208 - Log vytvořen 27/07/2015 v 11:54:53
# Aktualizováno 09/07/2015 by Xplode
# Databáze : 2015-07-26.2 [Server]
# Operační system : Windows 8.1 (x64)
# Uživatelské jméno : User007 - PC
# Spuštěno z : C:\Users\User007\Downloads\adwcleaner_4.208.exe
# Nastavení : Čištění
***** [ Služby ] *****
***** [ Soubory / Složky ] *****
Soubor Smazáno : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo.xml
***** [ Naplánované úlohy ] *****
***** [ Zástupci ] *****
***** [ Registry ] *****
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Steam App 228200
***** [ Prohlížeče ] *****
-\\ Internet Explorer v11.0.9600.17840
-\\ Mozilla Firefox v39.0 (x86 en-US)
-\\ Google Chrome v44.0.2403.107
*************************
AdwCleaner[R1].txt - [1329 bytů] - [08/05/2015 08:46:07]
AdwCleaner[R2].txt - [1387 bytů] - [08/05/2015 09:11:13]
AdwCleaner[R3].txt - [1134 bytů] - [27/07/2015 10:40:11]
AdwCleaner[R4].txt - [1192 bytů] - [27/07/2015 11:54:36]
AdwCleaner[S1].txt - [1442 bytů] - [08/05/2015 09:11:59]
AdwCleaner[S2].txt - [1116 bytů] - [27/07/2015 11:54:53]
########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1174 bytů] ##########
# Aktualizováno 09/07/2015 by Xplode
# Databáze : 2015-07-26.2 [Server]
# Operační system : Windows 8.1 (x64)
# Uživatelské jméno : User007 - PC
# Spuštěno z : C:\Users\User007\Downloads\adwcleaner_4.208.exe
# Nastavení : Čištění
***** [ Služby ] *****
***** [ Soubory / Složky ] *****
Soubor Smazáno : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo.xml
***** [ Naplánované úlohy ] *****
***** [ Zástupci ] *****
***** [ Registry ] *****
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Steam App 228200
***** [ Prohlížeče ] *****
-\\ Internet Explorer v11.0.9600.17840
-\\ Mozilla Firefox v39.0 (x86 en-US)
-\\ Google Chrome v44.0.2403.107
*************************
AdwCleaner[R1].txt - [1329 bytů] - [08/05/2015 08:46:07]
AdwCleaner[R2].txt - [1387 bytů] - [08/05/2015 09:11:13]
AdwCleaner[R3].txt - [1134 bytů] - [27/07/2015 10:40:11]
AdwCleaner[R4].txt - [1192 bytů] - [27/07/2015 11:54:36]
AdwCleaner[S1].txt - [1442 bytů] - [08/05/2015 09:11:59]
AdwCleaner[S2].txt - [1116 bytů] - [27/07/2015 11:54:53]
########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1174 bytů] ##########
-
Rudy
- Site Admin
- Příspěvky: 119677
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrolu Logu prosím
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrolu Logu prosím
Logfile of random's system information tool 1.10 (written by random/random)
Run by User007 at 2015-08-03 21:46:57
Microsoft Windows 8.1
System drive C: has 30 GB (26%) free of 114 GB
Total RAM: 8120 MB (56% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:47:00, on 3. 8. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\SpeedFan\speedfan.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
D:\Steam\Steam.exe
D:\Steam\bin\steamwebhelper.exe
D:\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_209.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_209.exe
C:\Program Files\trend micro\User007.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://terra.im/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://terra.im/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://terra.im/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark - C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
O23 - Service: GalaxyClientService - GOG.com - D:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - D:\Origin\OriginClientService.exe
O23 - Service: Overwolf Updater Windows SCM (OverwolfUpdater) - Overwolf LTD - C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9595 bytes
======Listing Processes======
wininit.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-0258393d-a023-43f3-ac15-a7031d1fdf45 -SystemEventPortName:HostProcess-9e5e6cb6-f6c3-4176-88d2-b8945c74159d -IoCancelEventPortName:HostProcess-2c0cad4c-cf30-4530-adca-d3d209c014ee -NonStateChangingEventPortName:HostProcess-6df07ca9-a6ec-48dc-9f6b-60d0824e216c -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:e088137f-c3c5-4a39-8cc5-6c8d7cac95dc -DeviceGroupId:WudfDefaultDevicePool
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-96bc915d-0ec5-4e04-9374-7b0370af71ff -SystemEventPortName:HostProcess-07d18062-314b-4ed8-98ad-b8ad3befac2a -IoCancelEventPortName:HostProcess-2e3a46ca-72dc-4f03-97ea-a6f756f6380e -NonStateChangingEventPortName:HostProcess-0ef37d44-a38b-4892-a39b-8e8db145a2a1 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:1d6b860a-3049-4d67-8db0-128d5df93ed2 -DeviceGroupId:WpdFsGroup
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\svchost.exe -k imgsvc
dashost.exe {6bf520e1-95f7-460d-81b316c5e7b0d7bd}
C:\Windows\System32\WinLogon.exe -SpecialSession
-hiberboot
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe" /starttray
C:\Windows\Explorer.EXE
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
taskhostex.exe
"C:\Program Files\Core Temp\Core Temp.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" afcb58c9-8aef-49c4-9263-62f6dba2a7a3
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\SpeedFan\speedfan.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"D:\Steam\Steam.exe"
"D:\Steam\bin\steamwebhelper.exe" -cefhost -cachedir "C:\Users\User007\AppData\Local\Steam\htmlcache" -steampid 6076 -buildid 1437790054 -steamid "0" --disable-gpu-compositing --disable-gpu --process-per-tab --enable-system-flash --disable-spell-checking --enable-direct-write
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"D:\Steam\bin\steamwebhelper.exe" --type=renderer --disable-gpu-compositing --enable-pinch --no-sandbox --enable-deferred-image-decoding --lang=en-US --lang=en-US --product-version="Valve Steam Client" --disable-spell-checking --enable-system-flash --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=3476 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --disable-gpu-compositing --channel="3476.0.1207662705\435038241" /prefetch:673131151
wimserv.exe 7d86d71f-078f-4012-83fa-6ee264cc04db
C:\Windows\System32\svchost.exe -k utcsvc
taskhost.exe
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel="7020.0.338293653\1120734838" "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 7020 "\\.\pipe\gecko-crash-server-pipe.7020" plugin
"C:\Windows\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_18_0_0_209.exe" --proxy-stub-channel=Flash5000.6EC5D9E8.19840 --host-broker-channel=Flash5000.6EC5D9E8.27484 --host-pid=5000 --host-npapi-version=28 --plugin-path="C:\Windows\SYSTEM32\Macromed\Flash\NPSWF32_18_0_0_209.dll"
"C:\Windows\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_18_0_0_209.exe" --channel=7160.0095F67C.1780130300 --proxy-stub-channel=Flash5000.6EC5D9E8.19840 --plugin-path="C:\Windows\SYSTEM32\Macromed\Flash\NPSWF32_18_0_0_209.dll" --host-npapi-version=28 --type=renderer
taskeng.exe {D741B713-FF52-4DDC-8914-D080F5A2DB98}
"C:\Users\User007\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\User007\AppData\Roaming\Mozilla\Firefox\Profiles\h5lz5b1s.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "about:home"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.6.2]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=d:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=d:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@esn/npbattlelog,version=2.6.2]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll
C:\Users\User007\AppData\Roaming\Mozilla\Firefox\Profiles\h5lz5b1s.default\searchplugins\
defaultsearch.xml
zbocz.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-19 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-19 172640]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 3933496]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-05-28 36352]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-07-24 2634896]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-07-24 1710568]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"AdobeBridge"= []
"GalaxyClient"= []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2015-07-14 5579624]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-06-08 334896]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"VIDC.RTV1"=rtvcvfw64.dll
"VIDC.FICV"=ficvdec_x64.dll
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
"VIDC.FPS1"=frapsv64.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-08-03 13:00:25 ----D---- C:\Program Files\Tracker Software
2015-07-30 17:04:14 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\nvumdshimx.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\nvopencl.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\nvoglv64.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\nvoglshim64.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\nvmcumd.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\nvinitx.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\NvIFR64.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\NvFBC64.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\nvdispgenco6435362.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2015-07-30 17:02:51 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-07-30 17:02:51 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-07-30 17:02:51 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-07-30 17:02:51 ----A---- C:\Windows\system32\nvdispco6435362.dll
2015-07-30 17:02:51 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-07-30 17:02:51 ----A---- C:\Windows\system32\nvcuvid.dll
2015-07-30 17:02:51 ----A---- C:\Windows\system32\nvcuda.dll
2015-07-30 17:02:51 ----A---- C:\Windows\system32\nvcompiler.dll
2015-07-30 17:02:51 ----A---- C:\Windows\system32\nvaudcaparm.dll
2015-07-30 17:02:51 ----A---- C:\Windows\system32\drivers\nvvadarm.sys
2015-07-29 16:06:51 ----D---- C:\Program Files (x86)\Overwolf
2015-07-29 16:06:50 ----D---- C:\ProgramData\Overwolf
2015-07-29 15:59:41 ----D---- C:\Windows\LastGood.Tmp
2015-07-29 15:59:35 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2015-07-29 15:59:35 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2015-07-28 17:40:26 ----D---- C:\Program Files (x86)\Microsoft XNA
2015-07-28 10:11:59 ----A---- C:\Windows\system32\appraiser.dll
2015-07-26 17:08:06 ----D---- C:\rsit
2015-07-26 17:08:06 ----D---- C:\Program Files\trend micro
2015-07-25 12:43:57 ----D---- C:\Program Files (x86)\ESET
2015-07-23 15:56:27 ----A---- C:\Windows\system32\atmfd.dll
2015-07-23 15:56:24 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-07-23 15:56:23 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-07-23 15:56:23 ----A---- C:\Windows\system32\atmlib.dll
2015-07-18 08:04:45 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2015-07-17 18:01:59 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-07-17 18:01:59 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wucltux.dll
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wuaueng.dll
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wuauclt.exe
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wuapp.exe
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wuapi.dll
2015-07-17 18:01:59 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-07-17 18:01:58 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-07-17 18:01:58 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-07-17 18:01:58 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-07-17 18:01:58 ----A---- C:\Windows\system32\wuwebv.dll
2015-07-17 18:01:58 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2015-07-17 18:01:58 ----A---- C:\Windows\system32\wups.dll
2015-07-17 18:01:58 ----A---- C:\Windows\system32\wudriver.dll
2015-07-17 18:01:57 ----A---- C:\Windows\system32\wups2.dll
2015-07-17 18:00:40 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-07-17 18:00:40 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-07-17 18:00:40 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-07-17 18:00:40 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\win32k.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\WiFiDisplay.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\rpcrt4.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\msv1_0.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\lsasrv.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\kerberos.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\certcli.dll
2015-07-17 18:00:39 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-07-17 18:00:39 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-07-17 18:00:39 ----A---- C:\Windows\SYSWOW64\GeofenceMonitorService.dll
2015-07-17 18:00:39 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\werdiagcontroller.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\shell32.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\profsvc.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\msiexec.exe
2015-07-17 18:00:39 ----A---- C:\Windows\system32\msi.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\GeofenceMonitorService.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\authui.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\audiosrv.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\sermouse.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\mouhid.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\mouclass.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\kbdhid.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\kbdclass.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\i8042prt.sys
2015-07-17 18:00:38 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-07-17 18:00:38 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2015-07-17 18:00:38 ----A---- C:\Windows\system32\ExplorerFrame.dll
2015-07-17 18:00:38 ----A---- C:\Windows\system32\drivers\usb8023.sys
2015-07-17 18:00:31 ----A---- C:\Windows\system32\generaltel.dll
2015-07-17 18:00:31 ----A---- C:\Windows\system32\aeinv.dll
2015-07-17 18:00:30 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2015-07-17 18:00:30 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\WSShared.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\jscript9.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\invagent.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\devinv.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-07-17 18:00:30 ----A---- C:\Windows\system32\aepdu.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\acmigration.dll
2015-07-17 18:00:29 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-07-17 18:00:29 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-07-17 18:00:29 ----A---- C:\Windows\system32\mshtml.dll
2015-07-17 18:00:23 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-07-17 18:00:23 ----A---- C:\Windows\system32\ieframe.dll
2015-07-17 18:00:22 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-07-17 18:00:22 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-07-17 18:00:22 ----A---- C:\Windows\system32\urlmon.dll
2015-07-17 18:00:22 ----A---- C:\Windows\system32\iertutil.dll
2015-07-17 18:00:04 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-07-17 18:00:04 ----A---- C:\Windows\system32\wininet.dll
2015-07-17 18:00:04 ----A---- C:\Windows\system32\actxprxy.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\webcheck.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\vbscript.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\msrating.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\mshtmled.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\msfeeds.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\inetcomm.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\ieui.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\iepeers.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\ieapfltr.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\dxtrans.dll
2015-07-17 18:00:02 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-07-17 18:00:02 ----A---- C:\Windows\system32\jscript.dll
2015-07-17 17:59:47 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2015-07-17 17:59:37 ----A---- C:\Windows\system32\gdi32.dll
2015-07-17 17:59:35 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-07-17 17:59:08 ----A---- C:\Windows\system32\ole32.dll
2015-07-17 17:59:05 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-07-17 17:58:47 ----A---- C:\Windows\system32\fhcpl.dll
2015-07-17 17:58:46 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2015-07-17 17:58:46 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2015-07-17 17:58:39 ----A---- C:\Windows\system32\apphelp.dll
2015-07-17 17:58:36 ----A---- C:\Windows\system32\msftedit.dll
2015-07-17 17:58:35 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2015-07-14 11:44:38 ----AH---- C:\Windows\system32\drivers\Hamdrv.sys
2015-07-10 18:25:24 ----HD---- C:\$Windows.~BT
======List of files/folders modified in the last 1 month======
2015-08-03 20:44:43 ----D---- C:\Windows\Temp
2015-08-03 20:40:02 ----D---- C:\Windows\Prefetch
2015-08-03 20:38:55 ----D---- C:\Windows\Microsoft.NET
2015-08-03 20:34:02 ----D---- C:\Users\User007\AppData\Roaming\TS3Client
2015-08-03 20:02:00 ----D---- C:\Windows\system32\sru
2015-08-03 18:01:30 ----D---- C:\Users\User007\AppData\Roaming\FileZilla
2015-08-03 14:47:50 ----SHD---- C:\Windows\Installer
2015-08-03 14:47:50 ----D---- C:\Windows
2015-08-03 14:47:32 ----RSD---- C:\Windows\assembly
2015-08-03 13:44:28 ----SHD---- C:\System Volume Information
2015-08-03 13:00:25 ----RD---- C:\Program Files
2015-08-03 11:13:42 ----D---- C:\Windows\Panther
2015-08-03 11:02:10 ----D---- C:\Windows\AppReadiness
2015-08-03 10:59:15 ----D---- C:\Windows\system32\config
2015-08-03 10:56:20 ----HD---- C:\Program Files\WindowsApps
2015-08-03 10:56:17 ----D---- C:\Windows\Logs
2015-08-03 10:48:33 ----D---- C:\Windows\system32\Tasks
2015-08-03 10:43:17 ----D---- C:\Program Files (x86)\SpeedFan
2015-07-31 15:01:55 ----D---- C:\Users\User007\AppData\Roaming\vlc
2015-07-31 12:12:55 ----D---- C:\Users\User007\AppData\Roaming\OBS
2015-07-30 17:11:38 ----RD---- C:\Windows\System32
2015-07-30 17:11:38 ----D---- C:\Windows\Inf
2015-07-30 17:11:38 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-07-30 17:05:33 ----D---- C:\ProgramData\NVIDIA
2015-07-30 17:05:29 ----D---- C:\Windows\SysWOW64
2015-07-30 17:04:32 ----D---- C:\ProgramData\NVIDIA Corporation
2015-07-30 17:04:12 ----D---- C:\Windows\system32\DriverStore
2015-07-30 17:03:51 ----D---- C:\Windows\system32\drivers
2015-07-29 16:06:51 ----RD---- C:\Program Files (x86)
2015-07-29 16:06:51 ----D---- C:\Program Files (x86)\Common Files
2015-07-29 16:06:50 ----HD---- C:\ProgramData
2015-07-29 11:25:31 ----D---- C:\Windows\WinSxS
2015-07-28 16:28:39 ----D---- C:\Program Files\OBS
2015-07-28 10:52:42 ----D---- C:\Program Files (x86)\OBS
2015-07-28 10:11:42 ----D---- C:\Windows\CbsTemp
2015-07-27 11:54:53 ----D---- C:\AdwCleaner
2015-07-26 09:50:39 ----D---- C:\Windows\debug
2015-07-26 01:30:32 ----D---- C:\Windows\SoftwareDistribution
2015-07-26 01:29:57 ----D---- C:\Users\User007\AppData\Roaming\DAEMON Tools Lite
2015-07-25 12:43:58 ----SD---- C:\Windows\Downloaded Program Files
2015-07-25 09:42:49 ----SD---- C:\Windows\system32\GWX
2015-07-24 06:21:23 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2015-07-24 06:21:23 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2015-07-24 06:21:14 ----A---- C:\Windows\system32\nvspcap64.dll
2015-07-24 06:21:14 ----A---- C:\Windows\system32\nvspbridge64.dll
2015-07-23 06:06:23 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2015-07-23 06:06:23 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2015-07-23 06:06:23 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2015-07-23 06:06:23 ----A---- C:\Windows\system32\OpenCL.dll
2015-07-23 06:06:23 ----A---- C:\Windows\system32\nvwgf2umx.dll
2015-07-23 06:06:23 ----A---- C:\Windows\system32\nvmcvadgenco64.dll
2015-07-23 06:06:23 ----A---- C:\Windows\system32\nvapi64.dll
2015-07-23 03:31:29 ----A---- C:\Windows\system32\nvvsvc.exe
2015-07-23 03:31:29 ----A---- C:\Windows\system32\nvsvcr.dll
2015-07-23 03:31:29 ----A---- C:\Windows\system32\nvshext.dll
2015-07-23 03:31:29 ----A---- C:\Windows\system32\nvmctray.dll
2015-07-23 03:31:28 ----A---- C:\Windows\system32\nvsvc64.dll
2015-07-23 03:31:28 ----A---- C:\Windows\system32\nvcpl.dll
2015-07-19 22:51:12 ----D---- C:\ProgramData\Oracle
2015-07-19 22:51:10 ----D---- C:\Program Files (x86)\Java
2015-07-19 22:50:57 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-07-19 19:39:01 ----D---- C:\Users\User007\AppData\Roaming\.minecraft
2015-07-19 00:14:00 ----RSD---- C:\Windows\Fonts
2015-07-18 15:43:49 ----D---- C:\Windows\rescache
2015-07-18 15:25:45 ----SD---- C:\Windows\SYSWOW64\GWX
2015-07-18 12:32:36 ----D---- C:\Windows\system32\catroot2
2015-07-18 01:04:44 ----D---- C:\Windows\WinStore
2015-07-18 01:04:44 ----D---- C:\Program Files\Internet Explorer
2015-07-18 01:04:44 ----D---- C:\Program Files (x86)\Internet Explorer
2015-07-18 01:04:43 ----D---- C:\Windows\system32\cs-CZ
2015-07-18 01:04:43 ----D---- C:\Windows\system32\CodeIntegrity
2015-07-18 01:04:43 ----D---- C:\Windows\apppatch
2015-07-18 01:04:42 ----RD---- C:\Windows\ToastData
2015-07-17 22:55:22 ----D---- C:\Windows\Tasks
2015-07-17 18:10:53 ----SD---- C:\Windows\system32\CompatTel
2015-07-17 18:10:53 ----D---- C:\Windows\system32\wbem
2015-07-17 18:10:53 ----D---- C:\Windows\system32\appraiser
2015-07-17 18:10:35 ----D---- C:\Windows\system32\MRT
2015-07-13 23:10:13 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-07-11 13:12:01 ----D---- C:\Program Files (x86)\Rockstar Games
2015-07-11 13:11:52 ----D---- C:\Program Files\Rockstar Games
2015-07-10 13:03:03 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-07-08 22:43:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-07-05 12:08:23 ----N---- C:\Windows\system32\MpSigStub.exe
2015-07-04 17:37:48 ----D---- C:\Users\User007\AppData\Roaming\Wargaming.net
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2014-05-28 672104]
R0 Wof;Windows Overlay File System Filter Driver; C:\Windows\system32\drivers\Wof.sys [2014-03-13 157016]
R1 dtsoftbus01;@oem11.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\Windows\System32\drivers\dtsoftbus01.sys [2015-01-30 283064]
R2 speedfan;speedfan; \??\C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R3 ALSysIO;ALSysIO; \??\C:\Users\User007\AppData\Local\Temp\ALSysIO64.sys []
R3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\Windows\system32\DRIVERS\Hamdrv.sys [2015-07-14 45680]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-06-18 25816]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2015-08-03 113880]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-06-18 64216]
R3 MEIx64;@oem9.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-04-03 118272]
R3 NVHDA;@oem20.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2015-06-17 204648]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2015-07-23 11055248]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-07-24 19600]
R3 nvvad_WaveExtensible;@oem29.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2015-07-03 47976]
R3 NVVADARM;@oem30.inf,%NVVADARM.SvcDesc%;NVIDIA Miracast Audio; C:\Windows\system32\drivers\nvvadarm.sys [2015-07-23 39056]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 SensorsSimulatorDriver;@oem12.inf,%WudfSensorsSimulatorDriverDisplayName%;UMDF Reflector service for SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [2014-10-29 226304]
S3 cpuz138;cpuz138; \??\C:\Windows\TEMP\cpuz138\cpuz138_x64.sys []
S3 GPUZ;GPUZ; \??\C:\Windows\TEMP\GPUZ.sys []
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-10-29 38792]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-07-24 1155216]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2015-07-14 2540904]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-05-28 16232]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-04-03 154584]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2015-07-14 417552]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-04-03 398296]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-06-18 1871160]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-07-24 1871504]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2015-07-24 5544592]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-07-23 937616]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2015-02-03 76152]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-02-11 129624]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-07-23 410952]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-07-24 838336]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-10 107848]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-17 268976]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2015-06-10 1141248]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 38792]
S3 EasyAntiCheat;EasyAntiCheat; C:\Windows\syswow64\EasyAntiCheat.exe [2015-06-09 233776]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [2014-11-25 614624]
S3 GalaxyClientService;GalaxyClientService; D:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [2015-05-29 1751096]
S3 GalaxyCommunication;GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [2015-06-20 6677048]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-10 107848]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-01-31 887232]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-07-08 148136]
S3 Origin Client Service;Origin Client Service; D:\Origin\OriginClientService.exe [2015-06-17 1997168]
S3 OverwolfUpdater;Overwolf Updater Windows SCM; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2015-07-19 1001200]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
-----------------EOF-----------------
Run by User007 at 2015-08-03 21:46:57
Microsoft Windows 8.1
System drive C: has 30 GB (26%) free of 114 GB
Total RAM: 8120 MB (56% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:47:00, on 3. 8. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\SpeedFan\speedfan.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
D:\Steam\Steam.exe
D:\Steam\bin\steamwebhelper.exe
D:\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_209.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_209.exe
C:\Program Files\trend micro\User007.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://terra.im/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://terra.im/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://terra.im/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark - C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
O23 - Service: GalaxyClientService - GOG.com - D:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - D:\Origin\OriginClientService.exe
O23 - Service: Overwolf Updater Windows SCM (OverwolfUpdater) - Overwolf LTD - C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9595 bytes
======Listing Processes======
wininit.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-0258393d-a023-43f3-ac15-a7031d1fdf45 -SystemEventPortName:HostProcess-9e5e6cb6-f6c3-4176-88d2-b8945c74159d -IoCancelEventPortName:HostProcess-2c0cad4c-cf30-4530-adca-d3d209c014ee -NonStateChangingEventPortName:HostProcess-6df07ca9-a6ec-48dc-9f6b-60d0824e216c -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:e088137f-c3c5-4a39-8cc5-6c8d7cac95dc -DeviceGroupId:WudfDefaultDevicePool
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-96bc915d-0ec5-4e04-9374-7b0370af71ff -SystemEventPortName:HostProcess-07d18062-314b-4ed8-98ad-b8ad3befac2a -IoCancelEventPortName:HostProcess-2e3a46ca-72dc-4f03-97ea-a6f756f6380e -NonStateChangingEventPortName:HostProcess-0ef37d44-a38b-4892-a39b-8e8db145a2a1 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:1d6b860a-3049-4d67-8db0-128d5df93ed2 -DeviceGroupId:WpdFsGroup
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\svchost.exe -k imgsvc
dashost.exe {6bf520e1-95f7-460d-81b316c5e7b0d7bd}
C:\Windows\System32\WinLogon.exe -SpecialSession
-hiberboot
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe" /starttray
C:\Windows\Explorer.EXE
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
taskhostex.exe
"C:\Program Files\Core Temp\Core Temp.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" afcb58c9-8aef-49c4-9263-62f6dba2a7a3
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\SpeedFan\speedfan.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"D:\Steam\Steam.exe"
"D:\Steam\bin\steamwebhelper.exe" -cefhost -cachedir "C:\Users\User007\AppData\Local\Steam\htmlcache" -steampid 6076 -buildid 1437790054 -steamid "0" --disable-gpu-compositing --disable-gpu --process-per-tab --enable-system-flash --disable-spell-checking --enable-direct-write
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"D:\Steam\bin\steamwebhelper.exe" --type=renderer --disable-gpu-compositing --enable-pinch --no-sandbox --enable-deferred-image-decoding --lang=en-US --lang=en-US --product-version="Valve Steam Client" --disable-spell-checking --enable-system-flash --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=3476 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --disable-gpu-compositing --channel="3476.0.1207662705\435038241" /prefetch:673131151
wimserv.exe 7d86d71f-078f-4012-83fa-6ee264cc04db
C:\Windows\System32\svchost.exe -k utcsvc
taskhost.exe
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel="7020.0.338293653\1120734838" "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 7020 "\\.\pipe\gecko-crash-server-pipe.7020" plugin
"C:\Windows\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_18_0_0_209.exe" --proxy-stub-channel=Flash5000.6EC5D9E8.19840 --host-broker-channel=Flash5000.6EC5D9E8.27484 --host-pid=5000 --host-npapi-version=28 --plugin-path="C:\Windows\SYSTEM32\Macromed\Flash\NPSWF32_18_0_0_209.dll"
"C:\Windows\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_18_0_0_209.exe" --channel=7160.0095F67C.1780130300 --proxy-stub-channel=Flash5000.6EC5D9E8.19840 --plugin-path="C:\Windows\SYSTEM32\Macromed\Flash\NPSWF32_18_0_0_209.dll" --host-npapi-version=28 --type=renderer
taskeng.exe {D741B713-FF52-4DDC-8914-D080F5A2DB98}
"C:\Users\User007\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\User007\AppData\Roaming\Mozilla\Firefox\Profiles\h5lz5b1s.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "about:home"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.6.2]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=d:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=d:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@esn/npbattlelog,version=2.6.2]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll
C:\Users\User007\AppData\Roaming\Mozilla\Firefox\Profiles\h5lz5b1s.default\searchplugins\
defaultsearch.xml
zbocz.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-19 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-19 172640]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 3933496]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-05-28 36352]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-07-24 2634896]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-07-24 1710568]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"AdobeBridge"= []
"GalaxyClient"= []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2015-07-14 5579624]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-06-08 334896]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"VIDC.RTV1"=rtvcvfw64.dll
"VIDC.FICV"=ficvdec_x64.dll
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
"VIDC.FPS1"=frapsv64.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-08-03 13:00:25 ----D---- C:\Program Files\Tracker Software
2015-07-30 17:04:14 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\nvumdshimx.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\nvopencl.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\nvoglv64.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\nvoglshim64.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\nvmcumd.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\nvinitx.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\NvIFR64.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\NvFBC64.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\nvdispgenco6435362.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2015-07-30 17:02:51 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-07-30 17:02:51 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-07-30 17:02:51 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-07-30 17:02:51 ----A---- C:\Windows\system32\nvdispco6435362.dll
2015-07-30 17:02:51 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-07-30 17:02:51 ----A---- C:\Windows\system32\nvcuvid.dll
2015-07-30 17:02:51 ----A---- C:\Windows\system32\nvcuda.dll
2015-07-30 17:02:51 ----A---- C:\Windows\system32\nvcompiler.dll
2015-07-30 17:02:51 ----A---- C:\Windows\system32\nvaudcaparm.dll
2015-07-30 17:02:51 ----A---- C:\Windows\system32\drivers\nvvadarm.sys
2015-07-29 16:06:51 ----D---- C:\Program Files (x86)\Overwolf
2015-07-29 16:06:50 ----D---- C:\ProgramData\Overwolf
2015-07-29 15:59:41 ----D---- C:\Windows\LastGood.Tmp
2015-07-29 15:59:35 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2015-07-29 15:59:35 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2015-07-28 17:40:26 ----D---- C:\Program Files (x86)\Microsoft XNA
2015-07-28 10:11:59 ----A---- C:\Windows\system32\appraiser.dll
2015-07-26 17:08:06 ----D---- C:\rsit
2015-07-26 17:08:06 ----D---- C:\Program Files\trend micro
2015-07-25 12:43:57 ----D---- C:\Program Files (x86)\ESET
2015-07-23 15:56:27 ----A---- C:\Windows\system32\atmfd.dll
2015-07-23 15:56:24 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-07-23 15:56:23 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-07-23 15:56:23 ----A---- C:\Windows\system32\atmlib.dll
2015-07-18 08:04:45 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2015-07-17 18:01:59 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-07-17 18:01:59 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wucltux.dll
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wuaueng.dll
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wuauclt.exe
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wuapp.exe
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wuapi.dll
2015-07-17 18:01:59 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-07-17 18:01:58 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-07-17 18:01:58 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-07-17 18:01:58 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-07-17 18:01:58 ----A---- C:\Windows\system32\wuwebv.dll
2015-07-17 18:01:58 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2015-07-17 18:01:58 ----A---- C:\Windows\system32\wups.dll
2015-07-17 18:01:58 ----A---- C:\Windows\system32\wudriver.dll
2015-07-17 18:01:57 ----A---- C:\Windows\system32\wups2.dll
2015-07-17 18:00:40 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-07-17 18:00:40 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-07-17 18:00:40 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-07-17 18:00:40 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\win32k.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\WiFiDisplay.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\rpcrt4.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\msv1_0.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\lsasrv.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\kerberos.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\certcli.dll
2015-07-17 18:00:39 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-07-17 18:00:39 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-07-17 18:00:39 ----A---- C:\Windows\SYSWOW64\GeofenceMonitorService.dll
2015-07-17 18:00:39 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\werdiagcontroller.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\shell32.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\profsvc.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\msiexec.exe
2015-07-17 18:00:39 ----A---- C:\Windows\system32\msi.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\GeofenceMonitorService.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\authui.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\audiosrv.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\sermouse.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\mouhid.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\mouclass.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\kbdhid.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\kbdclass.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\i8042prt.sys
2015-07-17 18:00:38 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-07-17 18:00:38 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2015-07-17 18:00:38 ----A---- C:\Windows\system32\ExplorerFrame.dll
2015-07-17 18:00:38 ----A---- C:\Windows\system32\drivers\usb8023.sys
2015-07-17 18:00:31 ----A---- C:\Windows\system32\generaltel.dll
2015-07-17 18:00:31 ----A---- C:\Windows\system32\aeinv.dll
2015-07-17 18:00:30 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2015-07-17 18:00:30 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\WSShared.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\jscript9.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\invagent.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\devinv.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-07-17 18:00:30 ----A---- C:\Windows\system32\aepdu.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\acmigration.dll
2015-07-17 18:00:29 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-07-17 18:00:29 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-07-17 18:00:29 ----A---- C:\Windows\system32\mshtml.dll
2015-07-17 18:00:23 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-07-17 18:00:23 ----A---- C:\Windows\system32\ieframe.dll
2015-07-17 18:00:22 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-07-17 18:00:22 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-07-17 18:00:22 ----A---- C:\Windows\system32\urlmon.dll
2015-07-17 18:00:22 ----A---- C:\Windows\system32\iertutil.dll
2015-07-17 18:00:04 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-07-17 18:00:04 ----A---- C:\Windows\system32\wininet.dll
2015-07-17 18:00:04 ----A---- C:\Windows\system32\actxprxy.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\webcheck.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\vbscript.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\msrating.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\mshtmled.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\msfeeds.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\inetcomm.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\ieui.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\iepeers.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\ieapfltr.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\dxtrans.dll
2015-07-17 18:00:02 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-07-17 18:00:02 ----A---- C:\Windows\system32\jscript.dll
2015-07-17 17:59:47 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2015-07-17 17:59:37 ----A---- C:\Windows\system32\gdi32.dll
2015-07-17 17:59:35 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-07-17 17:59:08 ----A---- C:\Windows\system32\ole32.dll
2015-07-17 17:59:05 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-07-17 17:58:47 ----A---- C:\Windows\system32\fhcpl.dll
2015-07-17 17:58:46 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2015-07-17 17:58:46 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2015-07-17 17:58:39 ----A---- C:\Windows\system32\apphelp.dll
2015-07-17 17:58:36 ----A---- C:\Windows\system32\msftedit.dll
2015-07-17 17:58:35 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2015-07-14 11:44:38 ----AH---- C:\Windows\system32\drivers\Hamdrv.sys
2015-07-10 18:25:24 ----HD---- C:\$Windows.~BT
======List of files/folders modified in the last 1 month======
2015-08-03 20:44:43 ----D---- C:\Windows\Temp
2015-08-03 20:40:02 ----D---- C:\Windows\Prefetch
2015-08-03 20:38:55 ----D---- C:\Windows\Microsoft.NET
2015-08-03 20:34:02 ----D---- C:\Users\User007\AppData\Roaming\TS3Client
2015-08-03 20:02:00 ----D---- C:\Windows\system32\sru
2015-08-03 18:01:30 ----D---- C:\Users\User007\AppData\Roaming\FileZilla
2015-08-03 14:47:50 ----SHD---- C:\Windows\Installer
2015-08-03 14:47:50 ----D---- C:\Windows
2015-08-03 14:47:32 ----RSD---- C:\Windows\assembly
2015-08-03 13:44:28 ----SHD---- C:\System Volume Information
2015-08-03 13:00:25 ----RD---- C:\Program Files
2015-08-03 11:13:42 ----D---- C:\Windows\Panther
2015-08-03 11:02:10 ----D---- C:\Windows\AppReadiness
2015-08-03 10:59:15 ----D---- C:\Windows\system32\config
2015-08-03 10:56:20 ----HD---- C:\Program Files\WindowsApps
2015-08-03 10:56:17 ----D---- C:\Windows\Logs
2015-08-03 10:48:33 ----D---- C:\Windows\system32\Tasks
2015-08-03 10:43:17 ----D---- C:\Program Files (x86)\SpeedFan
2015-07-31 15:01:55 ----D---- C:\Users\User007\AppData\Roaming\vlc
2015-07-31 12:12:55 ----D---- C:\Users\User007\AppData\Roaming\OBS
2015-07-30 17:11:38 ----RD---- C:\Windows\System32
2015-07-30 17:11:38 ----D---- C:\Windows\Inf
2015-07-30 17:11:38 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-07-30 17:05:33 ----D---- C:\ProgramData\NVIDIA
2015-07-30 17:05:29 ----D---- C:\Windows\SysWOW64
2015-07-30 17:04:32 ----D---- C:\ProgramData\NVIDIA Corporation
2015-07-30 17:04:12 ----D---- C:\Windows\system32\DriverStore
2015-07-30 17:03:51 ----D---- C:\Windows\system32\drivers
2015-07-29 16:06:51 ----RD---- C:\Program Files (x86)
2015-07-29 16:06:51 ----D---- C:\Program Files (x86)\Common Files
2015-07-29 16:06:50 ----HD---- C:\ProgramData
2015-07-29 11:25:31 ----D---- C:\Windows\WinSxS
2015-07-28 16:28:39 ----D---- C:\Program Files\OBS
2015-07-28 10:52:42 ----D---- C:\Program Files (x86)\OBS
2015-07-28 10:11:42 ----D---- C:\Windows\CbsTemp
2015-07-27 11:54:53 ----D---- C:\AdwCleaner
2015-07-26 09:50:39 ----D---- C:\Windows\debug
2015-07-26 01:30:32 ----D---- C:\Windows\SoftwareDistribution
2015-07-26 01:29:57 ----D---- C:\Users\User007\AppData\Roaming\DAEMON Tools Lite
2015-07-25 12:43:58 ----SD---- C:\Windows\Downloaded Program Files
2015-07-25 09:42:49 ----SD---- C:\Windows\system32\GWX
2015-07-24 06:21:23 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2015-07-24 06:21:23 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2015-07-24 06:21:14 ----A---- C:\Windows\system32\nvspcap64.dll
2015-07-24 06:21:14 ----A---- C:\Windows\system32\nvspbridge64.dll
2015-07-23 06:06:23 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2015-07-23 06:06:23 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2015-07-23 06:06:23 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2015-07-23 06:06:23 ----A---- C:\Windows\system32\OpenCL.dll
2015-07-23 06:06:23 ----A---- C:\Windows\system32\nvwgf2umx.dll
2015-07-23 06:06:23 ----A---- C:\Windows\system32\nvmcvadgenco64.dll
2015-07-23 06:06:23 ----A---- C:\Windows\system32\nvapi64.dll
2015-07-23 03:31:29 ----A---- C:\Windows\system32\nvvsvc.exe
2015-07-23 03:31:29 ----A---- C:\Windows\system32\nvsvcr.dll
2015-07-23 03:31:29 ----A---- C:\Windows\system32\nvshext.dll
2015-07-23 03:31:29 ----A---- C:\Windows\system32\nvmctray.dll
2015-07-23 03:31:28 ----A---- C:\Windows\system32\nvsvc64.dll
2015-07-23 03:31:28 ----A---- C:\Windows\system32\nvcpl.dll
2015-07-19 22:51:12 ----D---- C:\ProgramData\Oracle
2015-07-19 22:51:10 ----D---- C:\Program Files (x86)\Java
2015-07-19 22:50:57 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-07-19 19:39:01 ----D---- C:\Users\User007\AppData\Roaming\.minecraft
2015-07-19 00:14:00 ----RSD---- C:\Windows\Fonts
2015-07-18 15:43:49 ----D---- C:\Windows\rescache
2015-07-18 15:25:45 ----SD---- C:\Windows\SYSWOW64\GWX
2015-07-18 12:32:36 ----D---- C:\Windows\system32\catroot2
2015-07-18 01:04:44 ----D---- C:\Windows\WinStore
2015-07-18 01:04:44 ----D---- C:\Program Files\Internet Explorer
2015-07-18 01:04:44 ----D---- C:\Program Files (x86)\Internet Explorer
2015-07-18 01:04:43 ----D---- C:\Windows\system32\cs-CZ
2015-07-18 01:04:43 ----D---- C:\Windows\system32\CodeIntegrity
2015-07-18 01:04:43 ----D---- C:\Windows\apppatch
2015-07-18 01:04:42 ----RD---- C:\Windows\ToastData
2015-07-17 22:55:22 ----D---- C:\Windows\Tasks
2015-07-17 18:10:53 ----SD---- C:\Windows\system32\CompatTel
2015-07-17 18:10:53 ----D---- C:\Windows\system32\wbem
2015-07-17 18:10:53 ----D---- C:\Windows\system32\appraiser
2015-07-17 18:10:35 ----D---- C:\Windows\system32\MRT
2015-07-13 23:10:13 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-07-11 13:12:01 ----D---- C:\Program Files (x86)\Rockstar Games
2015-07-11 13:11:52 ----D---- C:\Program Files\Rockstar Games
2015-07-10 13:03:03 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-07-08 22:43:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-07-05 12:08:23 ----N---- C:\Windows\system32\MpSigStub.exe
2015-07-04 17:37:48 ----D---- C:\Users\User007\AppData\Roaming\Wargaming.net
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2014-05-28 672104]
R0 Wof;Windows Overlay File System Filter Driver; C:\Windows\system32\drivers\Wof.sys [2014-03-13 157016]
R1 dtsoftbus01;@oem11.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\Windows\System32\drivers\dtsoftbus01.sys [2015-01-30 283064]
R2 speedfan;speedfan; \??\C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R3 ALSysIO;ALSysIO; \??\C:\Users\User007\AppData\Local\Temp\ALSysIO64.sys []
R3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\Windows\system32\DRIVERS\Hamdrv.sys [2015-07-14 45680]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-06-18 25816]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2015-08-03 113880]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-06-18 64216]
R3 MEIx64;@oem9.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-04-03 118272]
R3 NVHDA;@oem20.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2015-06-17 204648]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2015-07-23 11055248]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-07-24 19600]
R3 nvvad_WaveExtensible;@oem29.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2015-07-03 47976]
R3 NVVADARM;@oem30.inf,%NVVADARM.SvcDesc%;NVIDIA Miracast Audio; C:\Windows\system32\drivers\nvvadarm.sys [2015-07-23 39056]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 SensorsSimulatorDriver;@oem12.inf,%WudfSensorsSimulatorDriverDisplayName%;UMDF Reflector service for SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [2014-10-29 226304]
S3 cpuz138;cpuz138; \??\C:\Windows\TEMP\cpuz138\cpuz138_x64.sys []
S3 GPUZ;GPUZ; \??\C:\Windows\TEMP\GPUZ.sys []
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-10-29 38792]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-07-24 1155216]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2015-07-14 2540904]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-05-28 16232]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-04-03 154584]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2015-07-14 417552]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-04-03 398296]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-06-18 1871160]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-07-24 1871504]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2015-07-24 5544592]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-07-23 937616]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2015-02-03 76152]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-02-11 129624]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-07-23 410952]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-07-24 838336]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-10 107848]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-17 268976]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2015-06-10 1141248]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 38792]
S3 EasyAntiCheat;EasyAntiCheat; C:\Windows\syswow64\EasyAntiCheat.exe [2015-06-09 233776]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [2014-11-25 614624]
S3 GalaxyClientService;GalaxyClientService; D:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [2015-05-29 1751096]
S3 GalaxyCommunication;GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [2015-06-20 6677048]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-10 107848]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-01-31 887232]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-07-08 148136]
S3 Origin Client Service;Origin Client Service; D:\Origin\OriginClientService.exe [2015-06-17 1997168]
S3 OverwolfUpdater;Overwolf Updater Windows SCM; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2015-07-19 1001200]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119677
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrolu Logu prosím
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:files
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Users\User007\AppData\Roaming\Mozilla\Firefox\Profiles\h5lz5b1s.default\searchplugins\defaultsearch.xml
:reg
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?