Dobrý deň, poprosil by som si kontrolu logu. Ďakujem
Logfile of random's system information tool 1.10 (written by random/random)
Run by Szabolcs Csákó at 2015-07-29 12:30:56
Microsoft Windows 8.1
System drive C: has 16 GB (14%) free of 114 GB
Total RAM: 8079 MB (76% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:31:00, on 29.7.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe
C:\Fraps\fraps.exe
C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
D:\Steam\steam.exe
D:\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
D:\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Szabolcs Csákó.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: ContentBlockerBrowserHelperObject - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
O2 - BHO: VirtualKeyboardBrowserHelperObject - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O2 - BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll
O4 - HKLM\..\Run: [ROCCAT Savu Gaming Mouse] "C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe" /Automation
O4 - HKCU\..\Run: [SandboxieControl] "C:\Program Files\Sandboxie\SbieCtrl.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Spotify] "C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - Global Startup: TP-LINK Wireless Configuration Utility.lnk = C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ie_banner_deny.htm
O9 - Extra button: Virtual Keyboard - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra button: URLs check - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted IP range: http://10.10.10.1
O15 - ESC Trusted IP range: http://10.10.10.1
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AppleChargerSrv - Unknown owner - C:\WINDOWS\system32\AppleChargerSrv.exe (file missing)
O23 - Service: Kaspersky Anti-Virus Service (AVP) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Google frissítés Szolgáltatás (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google frissítés Szolgáltatás (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: JumpStart Wi-Fi Protected Setup (jswpsapi) - Wireless - C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\WPS\jswpsapi.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Sandboxie Service (SbieSvc) - Sandboxie Holdings, LLC - C:\Program Files\Sandboxie\SbieSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files (x86)\Tunngle\TnglCtrl.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11195 bytes
======Listing Processes======
wininit.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\Sandboxie\SbieSvc.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe" -r
dashost.exe {cfb8ff3c-057f-4c74-95f1a1ccdc0cd133}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
C:\WINDOWS\SysWOW64\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
-hiberboot
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe" -hidden /prefetch:1
taskhostex.exe
C:\WINDOWS\Explorer.EXE
C:\Fraps\fraps.exe
ClassicStartMenu.exe -startup
igfxEM.exe
"C:\Fraps\fraps64.dat"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Sandboxie\SbieCtrl.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe" /Automation
"C:\WINDOWS\system32\GWX\GWX.exe"
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"D:\Steam\steam.exe" "steam://rungameid/730"
"D:\Steam\bin\steamwebhelper.exe" -cefhost -cachedir "C:\Users\Szabolcs\AppData\Local\Steam\htmlcache" -steampid 5488 -buildid 1437790054 -steamid "0" --disable-gpu-compositing --disable-gpu --process-per-tab --enable-system-flash --disable-spell-checking --disable-direct-write
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" 9ac24e03-b663-4c84-a27b-d13531f73b58
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe" -Embedding
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvtray.exe" -nvupdt
"C:\Program Files\Sandboxie\SbieSvc.exe" Sandboxie_GuiProxy_00000002,1380
"D:\Steam\bin\steamwebhelper.exe" --type=renderer --disable-gpu-compositing --enable-pinch --no-sandbox --disable-direct-write --enable-deferred-image-decoding --lang=en-US --lang=en-US --product-version="Valve Steam Client" --disable-spell-checking --enable-system-flash --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=3940 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --disable-gpu-compositing --channel="3940.4.1213504879\1657722282" /prefetch:673131151
"C:\WINDOWS\system32\wuauclt.exe" /RunHandlerComServer
"C:\WINDOWS\SoftwareDistribution\Download\dad15f60943c647c0a9b2ca2614f41c1\WindowsUpdateBox.exe" /ClassId cabe95ce-77ce-497c-82c9-079ab28c584b /Install /Update /ClientId 0f7569ff-f495-4f16-9217-51330d7f09f7
"C:\$Windows.~BT\Sources\SetupHost.Exe" /Install /Update /Quiet /ProcessId 7900 /InstallFile "C:\$Windows.~BT\Sources\Install.esd" /progressCLSID cabe95ce-77ce-497c-82c9-079ab28c584b "/ClientId" "0f7569ff-f495-4f16-9217-51330d7f09f7" /WUCachedFileName "10240.16384.150709-1700.th1_CLIENTCORE_RET_x64fre_cs-cz.esd" /SuccessId 938442b6-be56-4dcd-9bd5-2f921ae6ab41
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
wimserv.exe 7af279fe-90ee-41f9-a9c8-928675e9d061
"C:\Users\Szabolcs\Desktop\Anti-malware stuff\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\vdsldr.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k utcsvc
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Szabolcs\AppData\Roaming\Mozilla\Firefox\Profiles\ns2me0gx.default
prefs.js - "browser.startup.homepage" - "about:home"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20 803520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-02-15 800448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73455575-E40C-433C-9784-C78DC7761455}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-12-21 1535784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll [2014-02-15 550080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
URL Advisor Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll [2014-06-18 996544]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-02-15 655040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73455575-E40C-433C-9784-C78DC7761455}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-12-21 1265448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll [2014-02-15 455360]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
URL Advisor Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll [2014-06-18 798912]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2015-03-20 391784]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-02-26 13423688]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-01-31 36352]
"XboxStat"=C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2009-10-01 825184]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2015-07-24 1710568]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-07-24 2634896]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2014-04-20 161984]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SandboxieControl"=C:\Program Files\Sandboxie\SbieCtrl.exe [2015-06-23 787592]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-02-19 7416088]
"Spotify Web Helper"=C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2015-07-24 2017848]
"Spotify"=C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe [2015-07-24 7574584]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2015-02-27 5583120]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ROCCAT Savu Gaming Mouse"=C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe [2012-09-10 872048]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
TP-LINK Wireless Configuration Utility.lnk - C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~2\NVIDIA~1\3DVISI~1\NVSTIN~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=28
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-07-29 12:30:56 ----D---- C:\rsit
2015-07-28 09:22:39 ----A---- C:\WINDOWS\system32\appraiser.dll
2015-07-22 10:24:41 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2015-07-22 10:24:41 ----A---- C:\WINDOWS\system32\drivers\nvvad64v.sys
2015-07-21 10:46:23 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-07-21 10:46:23 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-07-21 10:46:22 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-07-21 10:46:22 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-07-20 16:49:58 ----D---- C:\Program Files (x86)\OpenAL
2015-07-20 16:49:58 ----A---- C:\WINDOWS\SYSWOW64\wrap_oal.dll
2015-07-20 16:49:58 ----A---- C:\WINDOWS\SYSWOW64\OpenAL32.dll
2015-07-20 16:49:58 ----A---- C:\WINDOWS\system32\wrap_oal.dll
2015-07-20 16:49:58 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2015-07-20 16:49:56 ----D---- C:\Program Files (x86)\Microsoft XNA
2015-07-15 12:01:21 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2015-07-15 12:01:21 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\wucltux.dll
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\wuapp.exe
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2015-07-15 12:01:20 ----A---- C:\WINDOWS\system32\wuwebv.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\system32\wups.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\system32\wudriver.dll
2015-07-15 12:01:19 ----A---- C:\WINDOWS\system32\wups2.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\msv1_0.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\certcli.dll
2015-07-15 11:59:29 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2015-07-15 11:59:11 ----A---- C:\WINDOWS\system32\win32k.sys
2015-07-15 11:58:33 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2015-07-15 11:58:33 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-07-15 11:58:33 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-07-15 11:58:14 ----A---- C:\WINDOWS\system32\profsvc.dll
2015-07-15 11:57:56 ----A---- C:\WINDOWS\SYSWOW64\msiexec.exe
2015-07-15 11:57:56 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2015-07-15 11:57:56 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-07-15 11:57:56 ----A---- C:\WINDOWS\system32\msiexec.exe
2015-07-15 11:57:56 ----A---- C:\WINDOWS\system32\msi.dll
2015-07-15 11:57:56 ----A---- C:\WINDOWS\system32\authui.dll
2015-07-15 11:57:37 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll
2015-07-15 11:57:37 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2015-07-15 11:57:19 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-07-15 11:57:19 ----A---- C:\WINDOWS\system32\shell32.dll
2015-07-15 11:57:19 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2015-07-15 11:57:18 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2015-07-15 11:55:58 ----A---- C:\WINDOWS\system32\drivers\usb8023.sys
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\invagent.dll
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\devinv.dll
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\aepdu.dll
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\aeinv.dll
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-07-15 11:54:56 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2015-07-15 11:54:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-15 11:54:56 ----A---- C:\WINDOWS\system32\WSShared.dll
2015-07-15 11:54:56 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-15 11:54:38 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-07-15 11:54:37 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-07-15 11:54:10 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-07-15 11:54:09 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-07-15 11:54:03 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-07-15 11:54:02 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-07-15 11:54:01 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-07-15 11:54:01 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-07-15 11:54:01 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-07-15 11:54:01 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-07-15 11:51:13 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-07-15 11:51:13 ----A---- C:\WINDOWS\system32\wininet.dll
2015-07-15 11:51:13 ----A---- C:\WINDOWS\system32\actxprxy.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\webcheck.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\msrating.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\mshtmled.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\jscript.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\inetcomm.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\ieui.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\iepeers.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\dxtrans.dll
2015-07-15 11:45:22 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-07-15 11:44:59 ----A---- C:\WINDOWS\system32\fhcpl.dll
2015-07-15 11:44:48 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2015-07-15 11:44:48 ----A---- C:\WINDOWS\system32\gdi32.dll
2015-07-15 11:44:29 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2015-07-15 11:44:29 ----A---- C:\WINDOWS\system32\ole32.dll
2015-07-15 11:44:27 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-07-15 11:44:27 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-07-15 11:43:54 ----A---- C:\WINDOWS\system32\apphelp.dll
2015-07-15 11:41:48 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-07-15 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2015-07-15 11:41:45 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2015-07-10 18:25:24 ----HD---- C:\$Windows.~BT
2015-07-01 09:30:11 ----D---- C:\ProgramData\McAfee
======List of files/folders modified in the last 1 month======
2015-07-29 12:31:00 ----D---- C:\Program Files\trend micro
2015-07-29 12:28:46 ----D---- C:\WINDOWS\system32\DriverStore
2015-07-29 12:28:46 ----D---- C:\WINDOWS\Inf
2015-07-29 12:27:56 ----D---- C:\WINDOWS\Temp
2015-07-29 12:07:53 ----D---- C:\WINDOWS\Prefetch
2015-07-29 12:07:43 ----DC---- C:\WINDOWS\Panther
2015-07-29 12:00:00 ----D---- C:\WINDOWS\system32\sru
2015-07-29 11:42:55 ----D---- C:\Users\Szabolcs\AppData\Roaming\ClassicShell
2015-07-29 11:33:03 ----D---- C:\Program Files\Recuva
2015-07-29 11:24:24 ----SHD---- C:\System Volume Information
2015-07-29 11:19:32 ----D---- C:\WINDOWS\system32\config
2015-07-29 11:16:11 ----D---- C:\ProgramData\NVIDIA Corporation
2015-07-29 11:16:06 ----RD---- C:\WINDOWS\System32
2015-07-29 11:16:06 ----D---- C:\WINDOWS\SysWOW64
2015-07-29 11:00:55 ----D---- C:\WINDOWS\WinSxS
2015-07-29 10:59:12 ----D---- C:\WINDOWS\Microsoft.NET
2015-07-29 10:21:30 ----SHD---- C:\WINDOWS\Installer
2015-07-29 10:21:29 ----SHD---- C:\Config.Msi
2015-07-29 10:19:00 ----D---- C:\Users\Szabolcs\AppData\Roaming\Spotify
2015-07-29 10:15:34 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-07-29 10:13:50 ----D---- C:\WINDOWS\system32\Tasks
2015-07-29 10:13:50 ----D---- C:\Fraps
2015-07-29 10:13:45 ----D---- C:\ProgramData\Kaspersky Lab
2015-07-28 23:24:14 ----D---- C:\ProgramData\NVIDIA
2015-07-28 23:22:56 ----D---- C:\Users\Szabolcs\AppData\Roaming\uTorrent
2015-07-28 12:16:47 ----HD---- C:\Program Files\WindowsApps
2015-07-28 12:16:45 ----D---- C:\WINDOWS\AppReadiness
2015-07-28 12:16:43 ----D---- C:\WINDOWS\Logs
2015-07-28 09:22:02 ----D---- C:\Windows
2015-07-28 09:22:01 ----D---- C:\WINDOWS\CbsTemp
2015-07-25 17:49:12 ----D---- C:\Users\Szabolcs\AppData\Roaming\vlc
2015-07-25 14:10:55 ----SD---- C:\WINDOWS\system32\GWX
2015-07-25 12:22:01 ----A---- C:\WINDOWS\Sandboxie.ini
2015-07-24 06:21:23 ----A---- C:\WINDOWS\SYSWOW64\nvspcap.dll
2015-07-24 06:21:23 ----A---- C:\WINDOWS\SYSWOW64\nvspbridge.dll
2015-07-24 06:21:14 ----A---- C:\WINDOWS\system32\nvspcap64.dll
2015-07-24 06:21:14 ----A---- C:\WINDOWS\system32\nvspbridge64.dll
2015-07-22 10:25:10 ----D---- C:\WINDOWS\system32\drivers
2015-07-21 11:44:44 ----D---- C:\WINDOWS\system32\MRT
2015-07-20 16:49:58 ----RSD---- C:\WINDOWS\assembly
2015-07-20 16:49:58 ----RD---- C:\Program Files (x86)
2015-07-20 16:49:19 ----D---- C:\ProgramData\Package Cache
2015-07-17 12:49:52 ----SD---- C:\WINDOWS\SYSWOW64\GWX
2015-07-16 11:36:04 ----D---- C:\WINDOWS\rescache
2015-07-16 11:03:14 ----D---- C:\WINDOWS\Tasks
2015-07-15 16:21:39 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-07-15 16:19:59 ----RD---- C:\WINDOWS\ToastData
2015-07-15 16:19:59 ----D---- C:\WINDOWS\WinStore
2015-07-15 16:19:59 ----D---- C:\WINDOWS\system32\sk-SK
2015-07-15 16:19:59 ----D---- C:\WINDOWS\system32\cs-CZ
2015-07-15 16:19:59 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-07-15 16:19:59 ----D---- C:\WINDOWS\apppatch
2015-07-15 16:19:59 ----D---- C:\Program Files\Internet Explorer
2015-07-15 16:19:59 ----D---- C:\Program Files (x86)\Internet Explorer
2015-07-15 12:27:05 ----SD---- C:\WINDOWS\system32\CompatTel
2015-07-15 12:27:05 ----D---- C:\WINDOWS\system32\wbem
2015-07-15 12:27:05 ----D---- C:\WINDOWS\system32\appraiser
2015-07-15 11:39:04 ----D---- C:\WINDOWS\system32\catroot2
2015-07-13 23:10:13 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-07-11 18:46:32 ----D---- C:\Program Files (x86)\Rockstar Games
2015-07-11 18:46:25 ----D---- C:\Program Files\Rockstar Games
2015-07-08 23:15:20 ----D---- C:\ProgramData\Origin
2015-07-03 08:43:04 ----A---- C:\WINDOWS\system32\MRT.exe
2015-07-03 06:28:26 ----A---- C:\WINDOWS\system32\nvaudcap64v.dll
2015-07-01 12:02:11 ----D---- C:\Program Files (x86)\Origin
2015-07-01 09:31:39 ----HD---- C:\ProgramData
2015-06-30 15:06:56 ----D---- C:\Users\Szabolcs\AppData\Roaming\Skype
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-01-31 652784]
R0 kl1;kl1; C:\WINDOWS\system32\DRIVERS\kl1.sys [2014-02-15 458336]
R1 AppleCharger;AppleCharger; C:\WINDOWS\system32\DRIVERS\AppleCharger.sys [2013-02-19 21584]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2014-06-18 625760]
R1 KLIM6;@oem20.inf,%KLIM6_Desc%;Kaspersky Anti-Virus NDIS 6 Filter; C:\WINDOWS\system32\DRIVERS\klim6.sys [2014-02-15 30304]
R1 klpd;klpd; C:\WINDOWS\system32\DRIVERS\klpd.sys [2013-04-12 15456]
R1 klwfp;klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [2014-06-18 65120]
R1 kneps;kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [2014-02-15 178272]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2014-02-24 314016]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2014-02-24 43680]
R3 athur;@oem14.inf,%ATHR.Service.DispName%;Qualcomm Atheros AR9271 Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\athuw8x.sys [2013-06-02 2919936]
R3 dtlitescsibus;@oem34.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-03-28 30352]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-03-20 4888368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-02-26 3333576]
R3 IntcDAud;@oem35.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-03-20 460048]
R3 iwdbus;@oem32.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-03-04 30512]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [2014-06-18 29280]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2014-02-15 29280]
R3 MEIx64;@oem26.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2013-03-12 64624]
R3 NVHDA;@oem44.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2015-05-13 195912]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-05-28 10995528]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-07-24 19600]
R3 nvvad_WaveExtensible;@oem77.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2015-07-03 47976]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 SbieDrv;SbieDrv; \??\C:\Program Files\Sandboxie\SbieDrv.sys [2015-06-23 190088]
R3 tap0901t;@oem41.inf,%DeviceDescription%;TAP-Win32 Adapter V9 (Tunngle); C:\WINDOWS\system32\DRIVERS\tap0901t.sys [2009-09-16 31232]
S0 klelam;klelam; C:\WINDOWS\system32\DRIVERS\klelam.sys [2014-02-15 29792]
S1 JSWPSLWF;JumpStart Wireless Filter Driver; C:\WINDOWS\system32\DRIVERS\jswpslwfx.sys [2011-12-26 26624]
S1 UsbCharger;UsbCharger; C:\WINDOWS\system32\DRIVERS\UsbCharger.sys [2013-05-06 21584]
S3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2014-12-13 45112]
S3 intaud_WaveExtensible;@oem28.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-03-04 42288]
S3 LGBusEnum;@oem39.inf,%LGBusEnum.SVCDESC%;Logitech GamePanel Virtual Bus Enumerator Driver; C:\WINDOWS\system32\drivers\LGBusEnum.sys [2009-11-24 22408]
S3 LGSHidFilt;@oem37.inf,%LGSHidFilt.SvcDesc%;Logitech Gaming KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LGSHidFilt.Sys [2013-05-30 64280]
S3 LGVirHid;@oem40.inf,%LGVirHid.SVCDESC%;Logitech Gamepanel Virtual HID Device Driver; C:\WINDOWS\system32\drivers\LGVirHid.sys [2009-11-24 16008]
S3 NVSWCFilter;@oem38.inf,%NVSWCFilter.SvcDesc%;NVIDIA SHIELD Wireless Controller Trackpad Service; C:\WINDOWS\System32\drivers\nvswcfilter.sys [2015-06-13 19616]
S3 OSFMount;OSFMount; \??\D:\csgo\Counter-Strike Global Offensive\image\x64\OSFMount.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AVP;Kaspersky Anti-Virus Service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [2014-02-15 214512]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-07-24 1155216]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-01-31 15344]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-03-20 344168]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 731648]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-03-12 169432]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-07-24 1871504]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2015-07-24 5544592]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-05-28 937288]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\syswow64\PnkBstrA.exe [2015-03-29 76888]
R2 SbieSvc;Sandboxie Service; C:\Program Files\Sandboxie\SbieSvc.exe [2015-06-23 175752]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-05-28 410768]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-02-27 1272592]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-07-24 838336]
S2 gupdate;Google frissítés Szolgáltatás (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-26 116648]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-03-12 366552]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 AppleChargerSrv;AppleChargerSrv; C:\WINDOWS\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-03-20 279144]
S3 gupdatem;Google frissítés Szolgáltatás (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-26 116648]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 820184]
S3 jswpsapi;JumpStart Wi-Fi Protected Setup; C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\WPS\jswpsapi.exe [2011-12-26 954368]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-07-15 148136]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-07-01 2004488]
S3 TunngleService;TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [2015-02-09 792016]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Kontrola RSIT logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119675
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola RSIT logu
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola RSIT logu
# AdwCleaner v4.208 - Log vytvorený 29/07/2015 at 20:34:22
# Aktualizované 09/07/2015 by Xplode
# Databáza : 2015-07-26.2 [Server]
# Operačný systém : Windows 8.1 (x64)
# Uživateľské meno : Szabolcs Csákó - SZABI
# Spustené z : C:\Users\Szabolcs\Desktop\Anti-malware stuff\adwcleaner_4.208.exe
# Nastavenia : Čistenie
***** [ Služby ] *****
***** [ Súbory / Priečinky ] *****
***** [ Naplánované úlohy ] *****
Úloha Zmazané : MdmUpdateTaskMachineCore
***** [ Zástupcovia ] *****
***** [ Registre ] *****
***** [ Webové prehliadače ] *****
-\\ Internet Explorer v11.0.9600.17840
-\\ Mozilla Firefox v39.0 (x86 sk)
-\\ Chromium v
-\\ Opera v0.0.0.0
*************************
AdwCleaner[R0].txt - [5649 bajtov] - [24/04/2015 17:10:13]
AdwCleaner[R1].txt - [5705 bajtov] - [24/04/2015 17:11:12]
AdwCleaner[R2].txt - [1013 bajtov] - [23/05/2015 12:58:59]
AdwCleaner[R3].txt - [1192 bajtov] - [24/05/2015 14:25:41]
AdwCleaner[R4].txt - [1234 bajtov] - [29/07/2015 20:33:55]
AdwCleaner[S0].txt - [5334 bajtov] - [24/04/2015 17:11:35]
AdwCleaner[S1].txt - [1254 bajtov] - [24/05/2015 14:26:22]
AdwCleaner[S2].txt - [1155 bajtov] - [29/07/2015 20:34:22]
########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1215 bajtov] ##########
# Aktualizované 09/07/2015 by Xplode
# Databáza : 2015-07-26.2 [Server]
# Operačný systém : Windows 8.1 (x64)
# Uživateľské meno : Szabolcs Csákó - SZABI
# Spustené z : C:\Users\Szabolcs\Desktop\Anti-malware stuff\adwcleaner_4.208.exe
# Nastavenia : Čistenie
***** [ Služby ] *****
***** [ Súbory / Priečinky ] *****
***** [ Naplánované úlohy ] *****
Úloha Zmazané : MdmUpdateTaskMachineCore
***** [ Zástupcovia ] *****
***** [ Registre ] *****
***** [ Webové prehliadače ] *****
-\\ Internet Explorer v11.0.9600.17840
-\\ Mozilla Firefox v39.0 (x86 sk)
-\\ Chromium v
-\\ Opera v0.0.0.0
*************************
AdwCleaner[R0].txt - [5649 bajtov] - [24/04/2015 17:10:13]
AdwCleaner[R1].txt - [5705 bajtov] - [24/04/2015 17:11:12]
AdwCleaner[R2].txt - [1013 bajtov] - [23/05/2015 12:58:59]
AdwCleaner[R3].txt - [1192 bajtov] - [24/05/2015 14:25:41]
AdwCleaner[R4].txt - [1234 bajtov] - [29/07/2015 20:33:55]
AdwCleaner[S0].txt - [5334 bajtov] - [24/04/2015 17:11:35]
AdwCleaner[S1].txt - [1254 bajtov] - [24/05/2015 14:26:22]
AdwCleaner[S2].txt - [1155 bajtov] - [29/07/2015 20:34:22]
########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1215 bajtov] ##########
-
Rudy
- Site Admin
- Příspěvky: 119675
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola RSIT logu
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola RSIT logu
Logfile of random's system information tool 1.10 (written by random/random)
Run by Szabolcs Csákó at 2015-07-29 22:04:34
Microsoft Windows 8.1
System drive C: has 16 GB (14%) free of 114 GB
Total RAM: 8079 MB (78% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:04:34, on 29.7.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe
C:\Fraps\fraps.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyCrashService.exe
C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe
C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\trend micro\Szabolcs Csákó.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: ContentBlockerBrowserHelperObject - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
O2 - BHO: VirtualKeyboardBrowserHelperObject - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O2 - BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll
O4 - HKLM\..\Run: [ROCCAT Savu Gaming Mouse] "C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe" /Automation
O4 - HKCU\..\Run: [SandboxieControl] "C:\Program Files\Sandboxie\SbieCtrl.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Spotify] "C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - Global Startup: TP-LINK Wireless Configuration Utility.lnk = C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ie_banner_deny.htm
O9 - Extra button: Virtual Keyboard - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra button: URLs check - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted IP range: http://10.10.10.1
O15 - ESC Trusted IP range: http://10.10.10.1
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AppleChargerSrv - Unknown owner - C:\WINDOWS\system32\AppleChargerSrv.exe (file missing)
O23 - Service: Kaspersky Anti-Virus Service (AVP) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Google frissítés Szolgáltatás (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google frissítés Szolgáltatás (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: JumpStart Wi-Fi Protected Setup (jswpsapi) - Wireless - C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\WPS\jswpsapi.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Sandboxie Service (SbieSvc) - Sandboxie Holdings, LLC - C:\Program Files\Sandboxie\SbieSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files (x86)\Tunngle\TnglCtrl.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11417 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\Sandboxie\SbieSvc.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe" -r
C:\WINDOWS\System32\svchost.exe -k utcsvc
dashost.exe {716f7e46-9dec-4787-bce466b14e57182c}
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
C:\WINDOWS\SysWOW64\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" 9ac24e03-b663-4c84-a27b-d13531f73b58
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe" -hidden /prefetch:1
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
C:\WINDOWS\Explorer.EXE
C:\Fraps\fraps.exe
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
taskhostex.exe
ClassicStartMenu.exe -startup
igfxEM.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Fraps\fraps64.dat"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Sandboxie\SbieCtrl.exe"
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe" -Embedding
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
"C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyCrashService.exe"
"C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe" --type=gpu-process --channel="5244.0.2026411492\953457019" --no-sandbox --disable-d3d11 --enable-crash-reporter --lang=en-US --log-severity=disable --product-version=Spotify/1.0.10.107 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,18,40,48 --gpu-vendor-id=0x10de --gpu-device-id=0x1189 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.5306 --enable-crash-reporter --lang=en-US --log-severity=disable --product-version=Spotify/1.0.10.107 /prefetch:822062411
"C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe" --type=renderer --force-device-scale-factor=1 --no-sandbox --enable-deferred-image-decoding --lang=en-US --enable-crash-reporter --lang=en-US --log-severity=disable --product-version=Spotify/1.0.10.107 --disable-spell-checking --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=5244 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="5244.1.1899874516\943652480" /prefetch:673131151
"C:\WINDOWS\system32\GWX\GWX.exe"
"C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe" /Automation
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\WINDOWS\SysWOW64\PnkBstrB.exe
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup
"C:\Users\Szabolcs\Desktop\Anti-malware stuff\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Szabolcs\AppData\Roaming\Mozilla\Firefox\Profiles\ns2me0gx.default
prefs.js - "browser.startup.homepage" - "about:home"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20 803520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-02-15 800448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73455575-E40C-433C-9784-C78DC7761455}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-12-21 1535784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll [2014-02-15 550080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
URL Advisor Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll [2014-06-18 996544]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-02-15 655040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73455575-E40C-433C-9784-C78DC7761455}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-12-21 1265448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll [2014-02-15 455360]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
URL Advisor Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll [2014-06-18 798912]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2015-03-20 391784]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-02-26 13423688]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-01-31 36352]
"XboxStat"=C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2009-10-01 825184]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2015-07-24 1710568]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-07-24 2634896]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2014-04-20 161984]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SandboxieControl"=C:\Program Files\Sandboxie\SbieCtrl.exe [2015-06-23 787592]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-02-19 7416088]
"Spotify Web Helper"=C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2015-07-24 2017848]
"Spotify"=C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe [2015-07-24 7574584]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2015-02-27 5583120]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ROCCAT Savu Gaming Mouse"=C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe [2012-09-10 872048]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
TP-LINK Wireless Configuration Utility.lnk - C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~2\NVIDIA~1\3DVISI~1\NVSTIN~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=28
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-07-29 12:30:56 ----D---- C:\rsit
2015-07-28 09:22:39 ----A---- C:\WINDOWS\system32\appraiser.dll
2015-07-22 10:24:41 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2015-07-22 10:24:41 ----A---- C:\WINDOWS\system32\drivers\nvvad64v.sys
2015-07-21 10:46:23 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-07-21 10:46:23 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-07-21 10:46:22 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-07-21 10:46:22 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-07-20 16:49:58 ----D---- C:\Program Files (x86)\OpenAL
2015-07-20 16:49:58 ----A---- C:\WINDOWS\SYSWOW64\wrap_oal.dll
2015-07-20 16:49:58 ----A---- C:\WINDOWS\SYSWOW64\OpenAL32.dll
2015-07-20 16:49:58 ----A---- C:\WINDOWS\system32\wrap_oal.dll
2015-07-20 16:49:58 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2015-07-20 16:49:56 ----D---- C:\Program Files (x86)\Microsoft XNA
2015-07-15 12:01:21 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2015-07-15 12:01:21 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\wucltux.dll
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\wuapp.exe
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2015-07-15 12:01:20 ----A---- C:\WINDOWS\system32\wuwebv.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\system32\wups.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\system32\wudriver.dll
2015-07-15 12:01:19 ----A---- C:\WINDOWS\system32\wups2.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\msv1_0.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\certcli.dll
2015-07-15 11:59:29 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2015-07-15 11:59:11 ----A---- C:\WINDOWS\system32\win32k.sys
2015-07-15 11:58:33 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2015-07-15 11:58:33 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-07-15 11:58:33 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-07-15 11:58:14 ----A---- C:\WINDOWS\system32\profsvc.dll
2015-07-15 11:57:56 ----A---- C:\WINDOWS\SYSWOW64\msiexec.exe
2015-07-15 11:57:56 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2015-07-15 11:57:56 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-07-15 11:57:56 ----A---- C:\WINDOWS\system32\msiexec.exe
2015-07-15 11:57:56 ----A---- C:\WINDOWS\system32\msi.dll
2015-07-15 11:57:56 ----A---- C:\WINDOWS\system32\authui.dll
2015-07-15 11:57:37 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll
2015-07-15 11:57:37 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2015-07-15 11:57:19 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-07-15 11:57:19 ----A---- C:\WINDOWS\system32\shell32.dll
2015-07-15 11:57:19 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2015-07-15 11:57:18 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2015-07-15 11:55:58 ----A---- C:\WINDOWS\system32\drivers\usb8023.sys
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\invagent.dll
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\devinv.dll
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\aepdu.dll
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\aeinv.dll
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-07-15 11:54:56 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2015-07-15 11:54:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-15 11:54:56 ----A---- C:\WINDOWS\system32\WSShared.dll
2015-07-15 11:54:56 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-15 11:54:38 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-07-15 11:54:37 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-07-15 11:54:10 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-07-15 11:54:09 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-07-15 11:54:03 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-07-15 11:54:02 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-07-15 11:54:01 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-07-15 11:54:01 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-07-15 11:54:01 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-07-15 11:54:01 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-07-15 11:51:13 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-07-15 11:51:13 ----A---- C:\WINDOWS\system32\wininet.dll
2015-07-15 11:51:13 ----A---- C:\WINDOWS\system32\actxprxy.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\webcheck.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\msrating.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\mshtmled.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\jscript.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\inetcomm.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\ieui.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\iepeers.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\dxtrans.dll
2015-07-15 11:45:22 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-07-15 11:44:59 ----A---- C:\WINDOWS\system32\fhcpl.dll
2015-07-15 11:44:48 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2015-07-15 11:44:48 ----A---- C:\WINDOWS\system32\gdi32.dll
2015-07-15 11:44:29 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2015-07-15 11:44:29 ----A---- C:\WINDOWS\system32\ole32.dll
2015-07-15 11:44:27 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-07-15 11:44:27 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-07-15 11:43:54 ----A---- C:\WINDOWS\system32\apphelp.dll
2015-07-15 11:41:48 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-07-15 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2015-07-15 11:41:45 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2015-07-10 18:25:24 ----HD---- C:\$Windows.~BT
2015-07-01 09:30:11 ----D---- C:\ProgramData\McAfee
======List of files/folders modified in the last 1 month======
2015-07-29 22:04:34 ----D---- C:\WINDOWS\Temp
2015-07-29 22:04:34 ----D---- C:\Program Files\trend micro
2015-07-29 22:02:00 ----D---- C:\WINDOWS\system32\sru
2015-07-29 21:15:17 ----D---- C:\Users\Szabolcs\AppData\Roaming\Spotify
2015-07-29 20:45:27 ----D---- C:\Windows
2015-07-29 20:45:27 ----A---- C:\WINDOWS\Sandboxie.ini
2015-07-29 20:41:01 ----RD---- C:\WINDOWS\System32
2015-07-29 20:41:01 ----D---- C:\WINDOWS\Inf
2015-07-29 20:41:01 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-07-29 20:39:07 ----D---- C:\WINDOWS\Prefetch
2015-07-29 20:38:49 ----D---- C:\WINDOWS\SysWOW64
2015-07-29 20:38:47 ----A---- C:\WINDOWS\SYSWOW64\PnkBstrB.exe
2015-07-29 20:35:10 ----D---- C:\WINDOWS\system32\Tasks
2015-07-29 20:35:10 ----D---- C:\Fraps
2015-07-29 20:35:01 ----D---- C:\ProgramData\Kaspersky Lab
2015-07-29 20:34:56 ----SHD---- C:\System Volume Information
2015-07-29 20:34:56 ----D---- C:\ProgramData\NVIDIA
2015-07-29 20:34:23 ----D---- C:\AdwCleaner
2015-07-29 20:34:12 ----D---- C:\Users\Szabolcs\AppData\Roaming\uTorrent
2015-07-29 20:31:26 ----D---- C:\Users\Szabolcs\AppData\Roaming\vlc
2015-07-29 19:04:44 ----D---- C:\Users\Szabolcs\AppData\Roaming\ClassicShell
2015-07-29 12:30:59 ----DC---- C:\WINDOWS\Panther
2015-07-29 12:28:46 ----D---- C:\WINDOWS\system32\DriverStore
2015-07-29 11:33:03 ----D---- C:\Program Files\Recuva
2015-07-29 11:19:32 ----D---- C:\WINDOWS\system32\config
2015-07-29 11:16:11 ----D---- C:\ProgramData\NVIDIA Corporation
2015-07-29 11:00:55 ----D---- C:\WINDOWS\WinSxS
2015-07-29 10:59:12 ----D---- C:\WINDOWS\Microsoft.NET
2015-07-29 10:21:30 ----SHD---- C:\WINDOWS\Installer
2015-07-29 10:21:29 ----SHD---- C:\Config.Msi
2015-07-28 12:23:33 ----D---- C:\WINDOWS\CbsTemp
2015-07-28 12:16:47 ----HD---- C:\Program Files\WindowsApps
2015-07-28 12:16:47 ----D---- C:\WINDOWS\AppReadiness
2015-07-28 12:16:43 ----D---- C:\WINDOWS\Logs
2015-07-25 14:10:55 ----SD---- C:\WINDOWS\system32\GWX
2015-07-24 06:21:23 ----A---- C:\WINDOWS\SYSWOW64\nvspcap.dll
2015-07-24 06:21:23 ----A---- C:\WINDOWS\SYSWOW64\nvspbridge.dll
2015-07-24 06:21:14 ----A---- C:\WINDOWS\system32\nvspcap64.dll
2015-07-24 06:21:14 ----A---- C:\WINDOWS\system32\nvspbridge64.dll
2015-07-22 10:25:10 ----D---- C:\WINDOWS\system32\drivers
2015-07-21 11:44:44 ----D---- C:\WINDOWS\system32\MRT
2015-07-20 16:49:58 ----RSD---- C:\WINDOWS\assembly
2015-07-20 16:49:58 ----RD---- C:\Program Files (x86)
2015-07-20 16:49:19 ----D---- C:\ProgramData\Package Cache
2015-07-17 12:49:52 ----SD---- C:\WINDOWS\SYSWOW64\GWX
2015-07-16 11:36:04 ----D---- C:\WINDOWS\rescache
2015-07-16 11:03:14 ----D---- C:\WINDOWS\Tasks
2015-07-15 16:21:39 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-07-15 16:19:59 ----RD---- C:\WINDOWS\ToastData
2015-07-15 16:19:59 ----D---- C:\WINDOWS\WinStore
2015-07-15 16:19:59 ----D---- C:\WINDOWS\system32\sk-SK
2015-07-15 16:19:59 ----D---- C:\WINDOWS\system32\cs-CZ
2015-07-15 16:19:59 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-07-15 16:19:59 ----D---- C:\WINDOWS\apppatch
2015-07-15 16:19:59 ----D---- C:\Program Files\Internet Explorer
2015-07-15 16:19:59 ----D---- C:\Program Files (x86)\Internet Explorer
2015-07-15 12:27:05 ----SD---- C:\WINDOWS\system32\CompatTel
2015-07-15 12:27:05 ----D---- C:\WINDOWS\system32\wbem
2015-07-15 12:27:05 ----D---- C:\WINDOWS\system32\appraiser
2015-07-15 11:39:04 ----D---- C:\WINDOWS\system32\catroot2
2015-07-13 23:10:13 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-07-11 18:46:32 ----D---- C:\Program Files (x86)\Rockstar Games
2015-07-11 18:46:25 ----D---- C:\Program Files\Rockstar Games
2015-07-08 23:15:20 ----D---- C:\ProgramData\Origin
2015-07-03 08:43:04 ----A---- C:\WINDOWS\system32\MRT.exe
2015-07-03 06:28:26 ----A---- C:\WINDOWS\system32\nvaudcap64v.dll
2015-07-01 12:02:11 ----D---- C:\Program Files (x86)\Origin
2015-07-01 09:31:39 ----HD---- C:\ProgramData
2015-06-30 15:06:56 ----D---- C:\Users\Szabolcs\AppData\Roaming\Skype
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-01-31 652784]
R0 kl1;kl1; C:\WINDOWS\system32\DRIVERS\kl1.sys [2014-02-15 458336]
R1 AppleCharger;AppleCharger; C:\WINDOWS\system32\DRIVERS\AppleCharger.sys [2013-02-19 21584]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2014-06-18 625760]
R1 KLIM6;@oem20.inf,%KLIM6_Desc%;Kaspersky Anti-Virus NDIS 6 Filter; C:\WINDOWS\system32\DRIVERS\klim6.sys [2014-02-15 30304]
R1 klpd;klpd; C:\WINDOWS\system32\DRIVERS\klpd.sys [2013-04-12 15456]
R1 klwfp;klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [2014-06-18 65120]
R1 kneps;kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [2014-02-15 178272]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2014-02-24 314016]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2014-02-24 43680]
R3 athur;@oem14.inf,%ATHR.Service.DispName%;Qualcomm Atheros AR9271 Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\athuw8x.sys [2013-06-02 2919936]
R3 dtlitescsibus;@oem34.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-03-28 30352]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-03-20 4888368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-02-26 3333576]
R3 IntcDAud;@oem35.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-03-20 460048]
R3 iwdbus;@oem32.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-03-04 30512]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [2014-06-18 29280]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2014-02-15 29280]
R3 MEIx64;@oem26.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2013-03-12 64624]
R3 NVHDA;@oem44.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2015-05-13 195912]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-05-28 10995528]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-07-24 19600]
R3 nvvad_WaveExtensible;@oem77.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2015-07-03 47976]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 SbieDrv;SbieDrv; \??\C:\Program Files\Sandboxie\SbieDrv.sys [2015-06-23 190088]
R3 tap0901t;@oem41.inf,%DeviceDescription%;TAP-Win32 Adapter V9 (Tunngle); C:\WINDOWS\system32\DRIVERS\tap0901t.sys [2009-09-16 31232]
S0 klelam;klelam; C:\WINDOWS\system32\DRIVERS\klelam.sys [2014-02-15 29792]
S1 JSWPSLWF;JumpStart Wireless Filter Driver; C:\WINDOWS\system32\DRIVERS\jswpslwfx.sys [2011-12-26 26624]
S1 UsbCharger;UsbCharger; C:\WINDOWS\system32\DRIVERS\UsbCharger.sys [2013-05-06 21584]
S3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2014-12-13 45112]
S3 intaud_WaveExtensible;@oem28.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-03-04 42288]
S3 LGBusEnum;@oem39.inf,%LGBusEnum.SVCDESC%;Logitech GamePanel Virtual Bus Enumerator Driver; C:\WINDOWS\system32\drivers\LGBusEnum.sys [2009-11-24 22408]
S3 LGSHidFilt;@oem37.inf,%LGSHidFilt.SvcDesc%;Logitech Gaming KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LGSHidFilt.Sys [2013-05-30 64280]
S3 LGVirHid;@oem40.inf,%LGVirHid.SVCDESC%;Logitech Gamepanel Virtual HID Device Driver; C:\WINDOWS\system32\drivers\LGVirHid.sys [2009-11-24 16008]
S3 NVSWCFilter;@oem38.inf,%NVSWCFilter.SvcDesc%;NVIDIA SHIELD Wireless Controller Trackpad Service; C:\WINDOWS\System32\drivers\nvswcfilter.sys [2015-06-13 19616]
S3 OSFMount;OSFMount; \??\D:\csgo\Counter-Strike Global Offensive\image\x64\OSFMount.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AVP;Kaspersky Anti-Virus Service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [2014-02-15 214512]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-07-24 1155216]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-01-31 15344]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-03-20 344168]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 731648]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-03-12 169432]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-07-24 1871504]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2015-07-24 5544592]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-05-28 937288]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\syswow64\PnkBstrA.exe [2015-03-29 76888]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\syswow64\PnkBstrB.exe [2015-07-29 282696]
R2 SbieSvc;Sandboxie Service; C:\Program Files\Sandboxie\SbieSvc.exe [2015-06-23 175752]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-05-28 410768]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-02-27 1272592]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S2 gupdate;Google frissítés Szolgáltatás (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-26 116648]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-03-12 366552]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 AppleChargerSrv;AppleChargerSrv; C:\WINDOWS\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-03-20 279144]
S3 gupdatem;Google frissítés Szolgáltatás (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-26 116648]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 820184]
S3 jswpsapi;JumpStart Wi-Fi Protected Setup; C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\WPS\jswpsapi.exe [2011-12-26 954368]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-07-15 148136]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-07-01 2004488]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-07-24 838336]
S3 TunngleService;TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [2015-02-09 792016]
-----------------EOF-----------------
Run by Szabolcs Csákó at 2015-07-29 22:04:34
Microsoft Windows 8.1
System drive C: has 16 GB (14%) free of 114 GB
Total RAM: 8079 MB (78% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:04:34, on 29.7.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe
C:\Fraps\fraps.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyCrashService.exe
C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe
C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\trend micro\Szabolcs Csákó.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: ContentBlockerBrowserHelperObject - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
O2 - BHO: VirtualKeyboardBrowserHelperObject - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O2 - BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll
O4 - HKLM\..\Run: [ROCCAT Savu Gaming Mouse] "C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe" /Automation
O4 - HKCU\..\Run: [SandboxieControl] "C:\Program Files\Sandboxie\SbieCtrl.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Spotify] "C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - Global Startup: TP-LINK Wireless Configuration Utility.lnk = C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ie_banner_deny.htm
O9 - Extra button: Virtual Keyboard - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra button: URLs check - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted IP range: http://10.10.10.1
O15 - ESC Trusted IP range: http://10.10.10.1
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AppleChargerSrv - Unknown owner - C:\WINDOWS\system32\AppleChargerSrv.exe (file missing)
O23 - Service: Kaspersky Anti-Virus Service (AVP) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Google frissítés Szolgáltatás (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google frissítés Szolgáltatás (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: JumpStart Wi-Fi Protected Setup (jswpsapi) - Wireless - C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\WPS\jswpsapi.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Sandboxie Service (SbieSvc) - Sandboxie Holdings, LLC - C:\Program Files\Sandboxie\SbieSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files (x86)\Tunngle\TnglCtrl.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11417 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\Sandboxie\SbieSvc.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe" -r
C:\WINDOWS\System32\svchost.exe -k utcsvc
dashost.exe {716f7e46-9dec-4787-bce466b14e57182c}
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
C:\WINDOWS\SysWOW64\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" 9ac24e03-b663-4c84-a27b-d13531f73b58
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe" -hidden /prefetch:1
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
C:\WINDOWS\Explorer.EXE
C:\Fraps\fraps.exe
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
taskhostex.exe
ClassicStartMenu.exe -startup
igfxEM.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Fraps\fraps64.dat"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Sandboxie\SbieCtrl.exe"
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe" -Embedding
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
"C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyCrashService.exe"
"C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe" --type=gpu-process --channel="5244.0.2026411492\953457019" --no-sandbox --disable-d3d11 --enable-crash-reporter --lang=en-US --log-severity=disable --product-version=Spotify/1.0.10.107 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,18,40,48 --gpu-vendor-id=0x10de --gpu-device-id=0x1189 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.5306 --enable-crash-reporter --lang=en-US --log-severity=disable --product-version=Spotify/1.0.10.107 /prefetch:822062411
"C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe" --type=renderer --force-device-scale-factor=1 --no-sandbox --enable-deferred-image-decoding --lang=en-US --enable-crash-reporter --lang=en-US --log-severity=disable --product-version=Spotify/1.0.10.107 --disable-spell-checking --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=5244 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="5244.1.1899874516\943652480" /prefetch:673131151
"C:\WINDOWS\system32\GWX\GWX.exe"
"C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe" /Automation
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\WINDOWS\SysWOW64\PnkBstrB.exe
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup
"C:\Users\Szabolcs\Desktop\Anti-malware stuff\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Szabolcs\AppData\Roaming\Mozilla\Firefox\Profiles\ns2me0gx.default
prefs.js - "browser.startup.homepage" - "about:home"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20 803520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-02-15 800448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73455575-E40C-433C-9784-C78DC7761455}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-12-21 1535784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll [2014-02-15 550080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
URL Advisor Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll [2014-06-18 996544]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-02-15 655040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73455575-E40C-433C-9784-C78DC7761455}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-12-21 1265448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll [2014-02-15 455360]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
URL Advisor Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll [2014-06-18 798912]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2015-03-20 391784]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-02-26 13423688]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-01-31 36352]
"XboxStat"=C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2009-10-01 825184]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2015-07-24 1710568]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-07-24 2634896]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2014-04-20 161984]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SandboxieControl"=C:\Program Files\Sandboxie\SbieCtrl.exe [2015-06-23 787592]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-02-19 7416088]
"Spotify Web Helper"=C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2015-07-24 2017848]
"Spotify"=C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe [2015-07-24 7574584]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2015-02-27 5583120]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ROCCAT Savu Gaming Mouse"=C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe [2012-09-10 872048]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
TP-LINK Wireless Configuration Utility.lnk - C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~2\NVIDIA~1\3DVISI~1\NVSTIN~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=28
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-07-29 12:30:56 ----D---- C:\rsit
2015-07-28 09:22:39 ----A---- C:\WINDOWS\system32\appraiser.dll
2015-07-22 10:24:41 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2015-07-22 10:24:41 ----A---- C:\WINDOWS\system32\drivers\nvvad64v.sys
2015-07-21 10:46:23 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-07-21 10:46:23 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-07-21 10:46:22 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-07-21 10:46:22 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-07-20 16:49:58 ----D---- C:\Program Files (x86)\OpenAL
2015-07-20 16:49:58 ----A---- C:\WINDOWS\SYSWOW64\wrap_oal.dll
2015-07-20 16:49:58 ----A---- C:\WINDOWS\SYSWOW64\OpenAL32.dll
2015-07-20 16:49:58 ----A---- C:\WINDOWS\system32\wrap_oal.dll
2015-07-20 16:49:58 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2015-07-20 16:49:56 ----D---- C:\Program Files (x86)\Microsoft XNA
2015-07-15 12:01:21 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2015-07-15 12:01:21 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\wucltux.dll
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\wuapp.exe
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2015-07-15 12:01:20 ----A---- C:\WINDOWS\system32\wuwebv.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\system32\wups.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\system32\wudriver.dll
2015-07-15 12:01:19 ----A---- C:\WINDOWS\system32\wups2.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\msv1_0.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\certcli.dll
2015-07-15 11:59:29 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2015-07-15 11:59:11 ----A---- C:\WINDOWS\system32\win32k.sys
2015-07-15 11:58:33 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2015-07-15 11:58:33 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-07-15 11:58:33 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-07-15 11:58:14 ----A---- C:\WINDOWS\system32\profsvc.dll
2015-07-15 11:57:56 ----A---- C:\WINDOWS\SYSWOW64\msiexec.exe
2015-07-15 11:57:56 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2015-07-15 11:57:56 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-07-15 11:57:56 ----A---- C:\WINDOWS\system32\msiexec.exe
2015-07-15 11:57:56 ----A---- C:\WINDOWS\system32\msi.dll
2015-07-15 11:57:56 ----A---- C:\WINDOWS\system32\authui.dll
2015-07-15 11:57:37 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll
2015-07-15 11:57:37 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2015-07-15 11:57:19 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-07-15 11:57:19 ----A---- C:\WINDOWS\system32\shell32.dll
2015-07-15 11:57:19 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2015-07-15 11:57:18 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2015-07-15 11:55:58 ----A---- C:\WINDOWS\system32\drivers\usb8023.sys
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\invagent.dll
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\devinv.dll
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\aepdu.dll
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\aeinv.dll
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-07-15 11:54:56 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2015-07-15 11:54:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-15 11:54:56 ----A---- C:\WINDOWS\system32\WSShared.dll
2015-07-15 11:54:56 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-15 11:54:38 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-07-15 11:54:37 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-07-15 11:54:10 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-07-15 11:54:09 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-07-15 11:54:03 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-07-15 11:54:02 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-07-15 11:54:01 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-07-15 11:54:01 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-07-15 11:54:01 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-07-15 11:54:01 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-07-15 11:51:13 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-07-15 11:51:13 ----A---- C:\WINDOWS\system32\wininet.dll
2015-07-15 11:51:13 ----A---- C:\WINDOWS\system32\actxprxy.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\webcheck.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\msrating.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\mshtmled.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\jscript.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\inetcomm.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\ieui.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\iepeers.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\dxtrans.dll
2015-07-15 11:45:22 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-07-15 11:44:59 ----A---- C:\WINDOWS\system32\fhcpl.dll
2015-07-15 11:44:48 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2015-07-15 11:44:48 ----A---- C:\WINDOWS\system32\gdi32.dll
2015-07-15 11:44:29 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2015-07-15 11:44:29 ----A---- C:\WINDOWS\system32\ole32.dll
2015-07-15 11:44:27 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-07-15 11:44:27 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-07-15 11:43:54 ----A---- C:\WINDOWS\system32\apphelp.dll
2015-07-15 11:41:48 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-07-15 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2015-07-15 11:41:45 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2015-07-10 18:25:24 ----HD---- C:\$Windows.~BT
2015-07-01 09:30:11 ----D---- C:\ProgramData\McAfee
======List of files/folders modified in the last 1 month======
2015-07-29 22:04:34 ----D---- C:\WINDOWS\Temp
2015-07-29 22:04:34 ----D---- C:\Program Files\trend micro
2015-07-29 22:02:00 ----D---- C:\WINDOWS\system32\sru
2015-07-29 21:15:17 ----D---- C:\Users\Szabolcs\AppData\Roaming\Spotify
2015-07-29 20:45:27 ----D---- C:\Windows
2015-07-29 20:45:27 ----A---- C:\WINDOWS\Sandboxie.ini
2015-07-29 20:41:01 ----RD---- C:\WINDOWS\System32
2015-07-29 20:41:01 ----D---- C:\WINDOWS\Inf
2015-07-29 20:41:01 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-07-29 20:39:07 ----D---- C:\WINDOWS\Prefetch
2015-07-29 20:38:49 ----D---- C:\WINDOWS\SysWOW64
2015-07-29 20:38:47 ----A---- C:\WINDOWS\SYSWOW64\PnkBstrB.exe
2015-07-29 20:35:10 ----D---- C:\WINDOWS\system32\Tasks
2015-07-29 20:35:10 ----D---- C:\Fraps
2015-07-29 20:35:01 ----D---- C:\ProgramData\Kaspersky Lab
2015-07-29 20:34:56 ----SHD---- C:\System Volume Information
2015-07-29 20:34:56 ----D---- C:\ProgramData\NVIDIA
2015-07-29 20:34:23 ----D---- C:\AdwCleaner
2015-07-29 20:34:12 ----D---- C:\Users\Szabolcs\AppData\Roaming\uTorrent
2015-07-29 20:31:26 ----D---- C:\Users\Szabolcs\AppData\Roaming\vlc
2015-07-29 19:04:44 ----D---- C:\Users\Szabolcs\AppData\Roaming\ClassicShell
2015-07-29 12:30:59 ----DC---- C:\WINDOWS\Panther
2015-07-29 12:28:46 ----D---- C:\WINDOWS\system32\DriverStore
2015-07-29 11:33:03 ----D---- C:\Program Files\Recuva
2015-07-29 11:19:32 ----D---- C:\WINDOWS\system32\config
2015-07-29 11:16:11 ----D---- C:\ProgramData\NVIDIA Corporation
2015-07-29 11:00:55 ----D---- C:\WINDOWS\WinSxS
2015-07-29 10:59:12 ----D---- C:\WINDOWS\Microsoft.NET
2015-07-29 10:21:30 ----SHD---- C:\WINDOWS\Installer
2015-07-29 10:21:29 ----SHD---- C:\Config.Msi
2015-07-28 12:23:33 ----D---- C:\WINDOWS\CbsTemp
2015-07-28 12:16:47 ----HD---- C:\Program Files\WindowsApps
2015-07-28 12:16:47 ----D---- C:\WINDOWS\AppReadiness
2015-07-28 12:16:43 ----D---- C:\WINDOWS\Logs
2015-07-25 14:10:55 ----SD---- C:\WINDOWS\system32\GWX
2015-07-24 06:21:23 ----A---- C:\WINDOWS\SYSWOW64\nvspcap.dll
2015-07-24 06:21:23 ----A---- C:\WINDOWS\SYSWOW64\nvspbridge.dll
2015-07-24 06:21:14 ----A---- C:\WINDOWS\system32\nvspcap64.dll
2015-07-24 06:21:14 ----A---- C:\WINDOWS\system32\nvspbridge64.dll
2015-07-22 10:25:10 ----D---- C:\WINDOWS\system32\drivers
2015-07-21 11:44:44 ----D---- C:\WINDOWS\system32\MRT
2015-07-20 16:49:58 ----RSD---- C:\WINDOWS\assembly
2015-07-20 16:49:58 ----RD---- C:\Program Files (x86)
2015-07-20 16:49:19 ----D---- C:\ProgramData\Package Cache
2015-07-17 12:49:52 ----SD---- C:\WINDOWS\SYSWOW64\GWX
2015-07-16 11:36:04 ----D---- C:\WINDOWS\rescache
2015-07-16 11:03:14 ----D---- C:\WINDOWS\Tasks
2015-07-15 16:21:39 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-07-15 16:19:59 ----RD---- C:\WINDOWS\ToastData
2015-07-15 16:19:59 ----D---- C:\WINDOWS\WinStore
2015-07-15 16:19:59 ----D---- C:\WINDOWS\system32\sk-SK
2015-07-15 16:19:59 ----D---- C:\WINDOWS\system32\cs-CZ
2015-07-15 16:19:59 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-07-15 16:19:59 ----D---- C:\WINDOWS\apppatch
2015-07-15 16:19:59 ----D---- C:\Program Files\Internet Explorer
2015-07-15 16:19:59 ----D---- C:\Program Files (x86)\Internet Explorer
2015-07-15 12:27:05 ----SD---- C:\WINDOWS\system32\CompatTel
2015-07-15 12:27:05 ----D---- C:\WINDOWS\system32\wbem
2015-07-15 12:27:05 ----D---- C:\WINDOWS\system32\appraiser
2015-07-15 11:39:04 ----D---- C:\WINDOWS\system32\catroot2
2015-07-13 23:10:13 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-07-11 18:46:32 ----D---- C:\Program Files (x86)\Rockstar Games
2015-07-11 18:46:25 ----D---- C:\Program Files\Rockstar Games
2015-07-08 23:15:20 ----D---- C:\ProgramData\Origin
2015-07-03 08:43:04 ----A---- C:\WINDOWS\system32\MRT.exe
2015-07-03 06:28:26 ----A---- C:\WINDOWS\system32\nvaudcap64v.dll
2015-07-01 12:02:11 ----D---- C:\Program Files (x86)\Origin
2015-07-01 09:31:39 ----HD---- C:\ProgramData
2015-06-30 15:06:56 ----D---- C:\Users\Szabolcs\AppData\Roaming\Skype
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-01-31 652784]
R0 kl1;kl1; C:\WINDOWS\system32\DRIVERS\kl1.sys [2014-02-15 458336]
R1 AppleCharger;AppleCharger; C:\WINDOWS\system32\DRIVERS\AppleCharger.sys [2013-02-19 21584]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2014-06-18 625760]
R1 KLIM6;@oem20.inf,%KLIM6_Desc%;Kaspersky Anti-Virus NDIS 6 Filter; C:\WINDOWS\system32\DRIVERS\klim6.sys [2014-02-15 30304]
R1 klpd;klpd; C:\WINDOWS\system32\DRIVERS\klpd.sys [2013-04-12 15456]
R1 klwfp;klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [2014-06-18 65120]
R1 kneps;kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [2014-02-15 178272]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2014-02-24 314016]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2014-02-24 43680]
R3 athur;@oem14.inf,%ATHR.Service.DispName%;Qualcomm Atheros AR9271 Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\athuw8x.sys [2013-06-02 2919936]
R3 dtlitescsibus;@oem34.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-03-28 30352]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-03-20 4888368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-02-26 3333576]
R3 IntcDAud;@oem35.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-03-20 460048]
R3 iwdbus;@oem32.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-03-04 30512]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [2014-06-18 29280]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2014-02-15 29280]
R3 MEIx64;@oem26.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2013-03-12 64624]
R3 NVHDA;@oem44.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2015-05-13 195912]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-05-28 10995528]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-07-24 19600]
R3 nvvad_WaveExtensible;@oem77.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2015-07-03 47976]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 SbieDrv;SbieDrv; \??\C:\Program Files\Sandboxie\SbieDrv.sys [2015-06-23 190088]
R3 tap0901t;@oem41.inf,%DeviceDescription%;TAP-Win32 Adapter V9 (Tunngle); C:\WINDOWS\system32\DRIVERS\tap0901t.sys [2009-09-16 31232]
S0 klelam;klelam; C:\WINDOWS\system32\DRIVERS\klelam.sys [2014-02-15 29792]
S1 JSWPSLWF;JumpStart Wireless Filter Driver; C:\WINDOWS\system32\DRIVERS\jswpslwfx.sys [2011-12-26 26624]
S1 UsbCharger;UsbCharger; C:\WINDOWS\system32\DRIVERS\UsbCharger.sys [2013-05-06 21584]
S3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2014-12-13 45112]
S3 intaud_WaveExtensible;@oem28.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-03-04 42288]
S3 LGBusEnum;@oem39.inf,%LGBusEnum.SVCDESC%;Logitech GamePanel Virtual Bus Enumerator Driver; C:\WINDOWS\system32\drivers\LGBusEnum.sys [2009-11-24 22408]
S3 LGSHidFilt;@oem37.inf,%LGSHidFilt.SvcDesc%;Logitech Gaming KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LGSHidFilt.Sys [2013-05-30 64280]
S3 LGVirHid;@oem40.inf,%LGVirHid.SVCDESC%;Logitech Gamepanel Virtual HID Device Driver; C:\WINDOWS\system32\drivers\LGVirHid.sys [2009-11-24 16008]
S3 NVSWCFilter;@oem38.inf,%NVSWCFilter.SvcDesc%;NVIDIA SHIELD Wireless Controller Trackpad Service; C:\WINDOWS\System32\drivers\nvswcfilter.sys [2015-06-13 19616]
S3 OSFMount;OSFMount; \??\D:\csgo\Counter-Strike Global Offensive\image\x64\OSFMount.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AVP;Kaspersky Anti-Virus Service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [2014-02-15 214512]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-07-24 1155216]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-01-31 15344]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-03-20 344168]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 731648]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-03-12 169432]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-07-24 1871504]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2015-07-24 5544592]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-05-28 937288]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\syswow64\PnkBstrA.exe [2015-03-29 76888]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\syswow64\PnkBstrB.exe [2015-07-29 282696]
R2 SbieSvc;Sandboxie Service; C:\Program Files\Sandboxie\SbieSvc.exe [2015-06-23 175752]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-05-28 410768]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-02-27 1272592]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S2 gupdate;Google frissítés Szolgáltatás (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-26 116648]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-03-12 366552]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 AppleChargerSrv;AppleChargerSrv; C:\WINDOWS\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-03-20 279144]
S3 gupdatem;Google frissítés Szolgáltatás (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-26 116648]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 820184]
S3 jswpsapi;JumpStart Wi-Fi Protected Setup; C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\WPS\jswpsapi.exe [2011-12-26 954368]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-07-15 148136]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-07-01 2004488]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-07-24 838336]
S3 TunngleService;TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [2015-02-09 792016]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119675
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola RSIT logu
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:files
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]/64
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola RSIT logu
Logfile of random's system information tool 1.10 (written by random/random)
Run by Szabolcs Csákó at 2015-07-30 00:03:57
Microsoft Windows 8.1
System drive C: has 16 GB (14%) free of 114 GB
Total RAM: 8079 MB (80% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 0:03:59, on 30.7.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe
C:\Fraps\fraps.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Szabolcs\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyCrashService.exe
C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe
C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe
C:\Program Files\trend micro\Szabolcs Csákó.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: ContentBlockerBrowserHelperObject - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
O2 - BHO: VirtualKeyboardBrowserHelperObject - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O2 - BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll
O4 - HKLM\..\Run: [ROCCAT Savu Gaming Mouse] "C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe" /Automation
O4 - HKCU\..\Run: [SandboxieControl] "C:\Program Files\Sandboxie\SbieCtrl.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Spotify] "C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - Global Startup: TP-LINK Wireless Configuration Utility.lnk = C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ie_banner_deny.htm
O9 - Extra button: Virtual Keyboard - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra button: URLs check - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted IP range: http://10.10.10.1
O15 - ESC Trusted IP range: http://10.10.10.1
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AppleChargerSrv - Unknown owner - C:\WINDOWS\system32\AppleChargerSrv.exe (file missing)
O23 - Service: Kaspersky Anti-Virus Service (AVP) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Google frissítés Szolgáltatás (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google frissítés Szolgáltatás (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: JumpStart Wi-Fi Protected Setup (jswpsapi) - Wireless - C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\WPS\jswpsapi.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Sandboxie Service (SbieSvc) - Sandboxie Holdings, LLC - C:\Program Files\Sandboxie\SbieSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files (x86)\Tunngle\TnglCtrl.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11431 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\Sandboxie\SbieSvc.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe" -r
C:\WINDOWS\System32\svchost.exe -k utcsvc
dashost.exe {a714b971-888e-408d-b593317f82e74f55}
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
C:\WINDOWS\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\Skype\Updater\Updater.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" 9ac24e03-b663-4c84-a27b-d13531f73b58
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe" -hidden /prefetch:1
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
\??\C:\WINDOWS\system32\conhost.exe 0x4
taskeng.exe {46977A72-DD1E-4F51-B72B-E0D38D87BE9C}
C:\Fraps\fraps.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
taskhostex.exe
igfxEM.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
ClassicStartMenu.exe -startup
C:\Users\Szabolcs\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Fraps\fraps64.dat"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Sandboxie\SbieCtrl.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe" -Embedding
"C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyCrashService.exe"
"C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe" --type=gpu-process --channel="3900.0.900647559\125804532" --no-sandbox --disable-d3d11 --enable-crash-reporter --lang=en-US --log-severity=disable --product-version=Spotify/1.0.10.107 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,18,40,48 --gpu-vendor-id=0x10de --gpu-device-id=0x1189 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.5306 --enable-crash-reporter --lang=en-US --log-severity=disable --product-version=Spotify/1.0.10.107 /prefetch:822062411
"C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe" --type=renderer --force-device-scale-factor=1 --no-sandbox --enable-deferred-image-decoding --lang=en-US --enable-crash-reporter --lang=en-US --log-severity=disable --product-version=Spotify/1.0.10.107 --disable-spell-checking --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=3900 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="3900.1.47420198\656460378" /prefetch:673131151
"C:\WINDOWS\system32\GWX\GWX.exe"
"C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe" /Automation
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 572 576 584 65536 580
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Szabolcs\Desktop\Anti-malware stuff\RSITx64.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
=========Mozilla firefox=========
ProfilePath - C:\Users\Szabolcs\AppData\Roaming\Mozilla\Firefox\Profiles\ns2me0gx.default
prefs.js - "browser.startup.homepage" - "about:home"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20 803520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-02-15 800448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73455575-E40C-433C-9784-C78DC7761455}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-12-21 1535784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll [2014-02-15 550080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
URL Advisor Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll [2014-06-18 996544]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-02-15 655040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73455575-E40C-433C-9784-C78DC7761455}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-12-21 1265448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll [2014-02-15 455360]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
URL Advisor Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll [2014-06-18 798912]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2015-03-20 391784]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-02-26 13423688]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-01-31 36352]
"XboxStat"=C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2009-10-01 825184]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2015-07-24 1710568]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-07-24 2634896]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2014-04-20 161984]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SandboxieControl"=C:\Program Files\Sandboxie\SbieCtrl.exe [2015-06-23 787592]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-02-19 7416088]
"Spotify Web Helper"=C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2015-07-24 2017848]
"Spotify"=C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe [2015-07-24 7574584]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2015-02-27 5583120]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ROCCAT Savu Gaming Mouse"=C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe [2012-09-10 872048]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
TP-LINK Wireless Configuration Utility.lnk - C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~2\NVIDIA~1\3DVISI~1\NVSTIN~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=28
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-07-29 23:53:09 ----D---- C:\_OTM
2015-07-29 12:30:56 ----D---- C:\rsit
2015-07-28 09:22:39 ----A---- C:\WINDOWS\system32\appraiser.dll
2015-07-22 10:24:41 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2015-07-22 10:24:41 ----A---- C:\WINDOWS\system32\drivers\nvvad64v.sys
2015-07-21 10:46:23 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-07-21 10:46:23 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-07-21 10:46:22 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-07-21 10:46:22 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-07-20 16:49:58 ----D---- C:\Program Files (x86)\OpenAL
2015-07-20 16:49:58 ----A---- C:\WINDOWS\SYSWOW64\wrap_oal.dll
2015-07-20 16:49:58 ----A---- C:\WINDOWS\SYSWOW64\OpenAL32.dll
2015-07-20 16:49:58 ----A---- C:\WINDOWS\system32\wrap_oal.dll
2015-07-20 16:49:58 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2015-07-20 16:49:56 ----D---- C:\Program Files (x86)\Microsoft XNA
2015-07-15 12:01:21 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2015-07-15 12:01:21 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\wucltux.dll
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\wuapp.exe
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2015-07-15 12:01:20 ----A---- C:\WINDOWS\system32\wuwebv.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\system32\wups.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\system32\wudriver.dll
2015-07-15 12:01:19 ----A---- C:\WINDOWS\system32\wups2.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\msv1_0.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\certcli.dll
2015-07-15 11:59:29 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2015-07-15 11:59:11 ----A---- C:\WINDOWS\system32\win32k.sys
2015-07-15 11:58:33 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2015-07-15 11:58:33 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-07-15 11:58:33 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-07-15 11:58:14 ----A---- C:\WINDOWS\system32\profsvc.dll
2015-07-15 11:57:56 ----A---- C:\WINDOWS\SYSWOW64\msiexec.exe
2015-07-15 11:57:56 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2015-07-15 11:57:56 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-07-15 11:57:56 ----A---- C:\WINDOWS\system32\msiexec.exe
2015-07-15 11:57:56 ----A---- C:\WINDOWS\system32\msi.dll
2015-07-15 11:57:56 ----A---- C:\WINDOWS\system32\authui.dll
2015-07-15 11:57:37 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll
2015-07-15 11:57:37 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2015-07-15 11:57:19 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-07-15 11:57:19 ----A---- C:\WINDOWS\system32\shell32.dll
2015-07-15 11:57:19 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2015-07-15 11:57:18 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2015-07-15 11:55:58 ----A---- C:\WINDOWS\system32\drivers\usb8023.sys
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\invagent.dll
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\devinv.dll
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\aepdu.dll
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\aeinv.dll
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-07-15 11:54:56 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2015-07-15 11:54:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-15 11:54:56 ----A---- C:\WINDOWS\system32\WSShared.dll
2015-07-15 11:54:56 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-15 11:54:38 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-07-15 11:54:37 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-07-15 11:54:10 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-07-15 11:54:09 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-07-15 11:54:03 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-07-15 11:54:02 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-07-15 11:54:01 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-07-15 11:54:01 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-07-15 11:54:01 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-07-15 11:54:01 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-07-15 11:51:13 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-07-15 11:51:13 ----A---- C:\WINDOWS\system32\wininet.dll
2015-07-15 11:51:13 ----A---- C:\WINDOWS\system32\actxprxy.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\webcheck.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\msrating.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\mshtmled.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\jscript.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\inetcomm.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\ieui.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\iepeers.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\dxtrans.dll
2015-07-15 11:45:22 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-07-15 11:44:59 ----A---- C:\WINDOWS\system32\fhcpl.dll
2015-07-15 11:44:48 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2015-07-15 11:44:48 ----A---- C:\WINDOWS\system32\gdi32.dll
2015-07-15 11:44:29 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2015-07-15 11:44:29 ----A---- C:\WINDOWS\system32\ole32.dll
2015-07-15 11:44:27 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-07-15 11:44:27 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-07-15 11:43:54 ----A---- C:\WINDOWS\system32\apphelp.dll
2015-07-15 11:41:48 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-07-15 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2015-07-15 11:41:45 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2015-07-10 18:25:24 ----HD---- C:\$Windows.~BT
2015-07-01 09:30:11 ----D---- C:\ProgramData\McAfee
======List of files/folders modified in the last 1 month======
2015-07-30 00:03:58 ----D---- C:\Program Files\trend micro
2015-07-30 00:03:57 ----D---- C:\WINDOWS\Temp
2015-07-30 00:03:54 ----D---- C:\WINDOWS\Prefetch
2015-07-30 00:02:54 ----D---- C:\WINDOWS\system32\Tasks
2015-07-30 00:02:54 ----D---- C:\Fraps
2015-07-30 00:02:46 ----D---- C:\ProgramData\Kaspersky Lab
2015-07-30 00:02:15 ----SHD---- C:\System Volume Information
2015-07-30 00:02:14 ----D---- C:\ProgramData\NVIDIA
2015-07-30 00:00:00 ----D---- C:\WINDOWS\system32\sru
2015-07-29 23:58:03 ----D---- C:\WINDOWS\Microsoft.NET
2015-07-29 23:53:09 ----D---- C:\WINDOWS\Tasks
2015-07-29 23:51:01 ----D---- C:\Users\Szabolcs\AppData\Roaming\ClassicShell
2015-07-29 22:50:17 ----D---- C:\Users\Szabolcs\AppData\Roaming\Spotify
2015-07-29 22:05:55 ----D---- C:\WINDOWS\SysWOW64
2015-07-29 22:05:50 ----A---- C:\WINDOWS\SYSWOW64\PnkBstrB.exe
2015-07-29 20:45:27 ----D---- C:\Windows
2015-07-29 20:45:27 ----A---- C:\WINDOWS\Sandboxie.ini
2015-07-29 20:41:01 ----RD---- C:\WINDOWS\System32
2015-07-29 20:41:01 ----D---- C:\WINDOWS\Inf
2015-07-29 20:41:01 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-07-29 20:34:23 ----D---- C:\AdwCleaner
2015-07-29 20:34:12 ----D---- C:\Users\Szabolcs\AppData\Roaming\uTorrent
2015-07-29 20:31:26 ----D---- C:\Users\Szabolcs\AppData\Roaming\vlc
2015-07-29 12:30:59 ----DC---- C:\WINDOWS\Panther
2015-07-29 12:28:46 ----D---- C:\WINDOWS\system32\DriverStore
2015-07-29 11:33:03 ----D---- C:\Program Files\Recuva
2015-07-29 11:19:32 ----D---- C:\WINDOWS\system32\config
2015-07-29 11:16:11 ----D---- C:\ProgramData\NVIDIA Corporation
2015-07-29 11:00:55 ----D---- C:\WINDOWS\WinSxS
2015-07-29 10:21:30 ----SHD---- C:\WINDOWS\Installer
2015-07-29 10:21:29 ----SHD---- C:\Config.Msi
2015-07-28 12:23:33 ----D---- C:\WINDOWS\CbsTemp
2015-07-28 12:16:47 ----HD---- C:\Program Files\WindowsApps
2015-07-28 12:16:47 ----D---- C:\WINDOWS\AppReadiness
2015-07-28 12:16:43 ----D---- C:\WINDOWS\Logs
2015-07-25 14:10:55 ----SD---- C:\WINDOWS\system32\GWX
2015-07-24 06:21:23 ----A---- C:\WINDOWS\SYSWOW64\nvspcap.dll
2015-07-24 06:21:23 ----A---- C:\WINDOWS\SYSWOW64\nvspbridge.dll
2015-07-24 06:21:14 ----A---- C:\WINDOWS\system32\nvspcap64.dll
2015-07-24 06:21:14 ----A---- C:\WINDOWS\system32\nvspbridge64.dll
2015-07-22 10:25:10 ----D---- C:\WINDOWS\system32\drivers
2015-07-21 11:44:44 ----D---- C:\WINDOWS\system32\MRT
2015-07-20 16:49:58 ----RSD---- C:\WINDOWS\assembly
2015-07-20 16:49:58 ----RD---- C:\Program Files (x86)
2015-07-20 16:49:19 ----D---- C:\ProgramData\Package Cache
2015-07-17 12:49:52 ----SD---- C:\WINDOWS\SYSWOW64\GWX
2015-07-16 11:36:04 ----D---- C:\WINDOWS\rescache
2015-07-15 16:21:39 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-07-15 16:19:59 ----RD---- C:\WINDOWS\ToastData
2015-07-15 16:19:59 ----D---- C:\WINDOWS\WinStore
2015-07-15 16:19:59 ----D---- C:\WINDOWS\system32\sk-SK
2015-07-15 16:19:59 ----D---- C:\WINDOWS\system32\cs-CZ
2015-07-15 16:19:59 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-07-15 16:19:59 ----D---- C:\WINDOWS\apppatch
2015-07-15 16:19:59 ----D---- C:\Program Files\Internet Explorer
2015-07-15 16:19:59 ----D---- C:\Program Files (x86)\Internet Explorer
2015-07-15 12:27:05 ----SD---- C:\WINDOWS\system32\CompatTel
2015-07-15 12:27:05 ----D---- C:\WINDOWS\system32\wbem
2015-07-15 12:27:05 ----D---- C:\WINDOWS\system32\appraiser
2015-07-15 11:39:04 ----D---- C:\WINDOWS\system32\catroot2
2015-07-13 23:10:13 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-07-11 18:46:32 ----D---- C:\Program Files (x86)\Rockstar Games
2015-07-11 18:46:25 ----D---- C:\Program Files\Rockstar Games
2015-07-08 23:15:20 ----D---- C:\ProgramData\Origin
2015-07-03 08:43:04 ----A---- C:\WINDOWS\system32\MRT.exe
2015-07-03 06:28:26 ----A---- C:\WINDOWS\system32\nvaudcap64v.dll
2015-07-01 12:02:11 ----D---- C:\Program Files (x86)\Origin
2015-07-01 09:31:39 ----HD---- C:\ProgramData
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-01-31 652784]
R0 kl1;kl1; C:\WINDOWS\system32\DRIVERS\kl1.sys [2014-02-15 458336]
R1 AppleCharger;AppleCharger; C:\WINDOWS\system32\DRIVERS\AppleCharger.sys [2013-02-19 21584]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2014-06-18 625760]
R1 KLIM6;@oem20.inf,%KLIM6_Desc%;Kaspersky Anti-Virus NDIS 6 Filter; C:\WINDOWS\system32\DRIVERS\klim6.sys [2014-02-15 30304]
R1 klpd;klpd; C:\WINDOWS\system32\DRIVERS\klpd.sys [2013-04-12 15456]
R1 klwfp;klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [2014-06-18 65120]
R1 kneps;kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [2014-02-15 178272]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2014-02-24 314016]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2014-02-24 43680]
R3 athur;@oem14.inf,%ATHR.Service.DispName%;Qualcomm Atheros AR9271 Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\athuw8x.sys [2013-06-02 2919936]
R3 dtlitescsibus;@oem34.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-03-28 30352]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-03-20 4888368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-02-26 3333576]
R3 IntcDAud;@oem35.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-03-20 460048]
R3 iwdbus;@oem32.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-03-04 30512]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [2014-06-18 29280]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2014-02-15 29280]
R3 MEIx64;@oem26.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2013-03-12 64624]
R3 NVHDA;@oem44.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2015-05-13 195912]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-05-28 10995528]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-07-24 19600]
R3 nvvad_WaveExtensible;@oem77.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2015-07-03 47976]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 SbieDrv;SbieDrv; \??\C:\Program Files\Sandboxie\SbieDrv.sys [2015-06-23 190088]
R3 tap0901t;@oem41.inf,%DeviceDescription%;TAP-Win32 Adapter V9 (Tunngle); C:\WINDOWS\system32\DRIVERS\tap0901t.sys [2009-09-16 31232]
S0 klelam;klelam; C:\WINDOWS\system32\DRIVERS\klelam.sys [2014-02-15 29792]
S1 JSWPSLWF;JumpStart Wireless Filter Driver; C:\WINDOWS\system32\DRIVERS\jswpslwfx.sys [2011-12-26 26624]
S1 UsbCharger;UsbCharger; C:\WINDOWS\system32\DRIVERS\UsbCharger.sys [2013-05-06 21584]
S3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2014-12-13 45112]
S3 intaud_WaveExtensible;@oem28.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-03-04 42288]
S3 LGBusEnum;@oem39.inf,%LGBusEnum.SVCDESC%;Logitech GamePanel Virtual Bus Enumerator Driver; C:\WINDOWS\system32\drivers\LGBusEnum.sys [2009-11-24 22408]
S3 LGSHidFilt;@oem37.inf,%LGSHidFilt.SvcDesc%;Logitech Gaming KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LGSHidFilt.Sys [2013-05-30 64280]
S3 LGVirHid;@oem40.inf,%LGVirHid.SVCDESC%;Logitech Gamepanel Virtual HID Device Driver; C:\WINDOWS\system32\drivers\LGVirHid.sys [2009-11-24 16008]
S3 NVSWCFilter;@oem38.inf,%NVSWCFilter.SvcDesc%;NVIDIA SHIELD Wireless Controller Trackpad Service; C:\WINDOWS\System32\drivers\nvswcfilter.sys [2015-06-13 19616]
S3 OSFMount;OSFMount; \??\D:\csgo\Counter-Strike Global Offensive\image\x64\OSFMount.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AVP;Kaspersky Anti-Virus Service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [2014-02-15 214512]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-07-24 1155216]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-03-20 344168]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 731648]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-07-24 1871504]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2015-07-24 5544592]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-05-28 937288]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\syswow64\PnkBstrA.exe [2015-03-29 76888]
R2 SbieSvc;Sandboxie Service; C:\Program Files\Sandboxie\SbieSvc.exe [2015-06-23 175752]
R2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-05-28 410768]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-02-27 1272592]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S2 gupdate;Google frissítés Szolgáltatás (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-26 116648]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-01-31 15344]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-03-12 169432]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-03-12 366552]
S3 AppleChargerSrv;AppleChargerSrv; C:\WINDOWS\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-03-20 279144]
S3 gupdatem;Google frissítés Szolgáltatás (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-26 116648]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 820184]
S3 jswpsapi;JumpStart Wi-Fi Protected Setup; C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\WPS\jswpsapi.exe [2011-12-26 954368]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-07-15 148136]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-07-01 2004488]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-07-24 838336]
S3 TunngleService;TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [2015-02-09 792016]
-----------------EOF-----------------
Run by Szabolcs Csákó at 2015-07-30 00:03:57
Microsoft Windows 8.1
System drive C: has 16 GB (14%) free of 114 GB
Total RAM: 8079 MB (80% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 0:03:59, on 30.7.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe
C:\Fraps\fraps.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Szabolcs\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyCrashService.exe
C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe
C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe
C:\Program Files\trend micro\Szabolcs Csákó.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: ContentBlockerBrowserHelperObject - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
O2 - BHO: VirtualKeyboardBrowserHelperObject - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O2 - BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll
O4 - HKLM\..\Run: [ROCCAT Savu Gaming Mouse] "C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe" /Automation
O4 - HKCU\..\Run: [SandboxieControl] "C:\Program Files\Sandboxie\SbieCtrl.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Spotify] "C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - Global Startup: TP-LINK Wireless Configuration Utility.lnk = C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ie_banner_deny.htm
O9 - Extra button: Virtual Keyboard - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra button: URLs check - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted IP range: http://10.10.10.1
O15 - ESC Trusted IP range: http://10.10.10.1
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AppleChargerSrv - Unknown owner - C:\WINDOWS\system32\AppleChargerSrv.exe (file missing)
O23 - Service: Kaspersky Anti-Virus Service (AVP) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Google frissítés Szolgáltatás (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google frissítés Szolgáltatás (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: JumpStart Wi-Fi Protected Setup (jswpsapi) - Wireless - C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\WPS\jswpsapi.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Sandboxie Service (SbieSvc) - Sandboxie Holdings, LLC - C:\Program Files\Sandboxie\SbieSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files (x86)\Tunngle\TnglCtrl.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11431 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\Sandboxie\SbieSvc.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe" -r
C:\WINDOWS\System32\svchost.exe -k utcsvc
dashost.exe {a714b971-888e-408d-b593317f82e74f55}
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
C:\WINDOWS\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\Skype\Updater\Updater.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" 9ac24e03-b663-4c84-a27b-d13531f73b58
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe" -hidden /prefetch:1
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
\??\C:\WINDOWS\system32\conhost.exe 0x4
taskeng.exe {46977A72-DD1E-4F51-B72B-E0D38D87BE9C}
C:\Fraps\fraps.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
taskhostex.exe
igfxEM.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
ClassicStartMenu.exe -startup
C:\Users\Szabolcs\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Fraps\fraps64.dat"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Sandboxie\SbieCtrl.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe" -Embedding
"C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyCrashService.exe"
"C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe" --type=gpu-process --channel="3900.0.900647559\125804532" --no-sandbox --disable-d3d11 --enable-crash-reporter --lang=en-US --log-severity=disable --product-version=Spotify/1.0.10.107 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,18,40,48 --gpu-vendor-id=0x10de --gpu-device-id=0x1189 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.5306 --enable-crash-reporter --lang=en-US --log-severity=disable --product-version=Spotify/1.0.10.107 /prefetch:822062411
"C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe" --type=renderer --force-device-scale-factor=1 --no-sandbox --enable-deferred-image-decoding --lang=en-US --enable-crash-reporter --lang=en-US --log-severity=disable --product-version=Spotify/1.0.10.107 --disable-spell-checking --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=3900 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="3900.1.47420198\656460378" /prefetch:673131151
"C:\WINDOWS\system32\GWX\GWX.exe"
"C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe" /Automation
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 572 576 584 65536 580
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Szabolcs\Desktop\Anti-malware stuff\RSITx64.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
=========Mozilla firefox=========
ProfilePath - C:\Users\Szabolcs\AppData\Roaming\Mozilla\Firefox\Profiles\ns2me0gx.default
prefs.js - "browser.startup.homepage" - "about:home"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20 803520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-02-15 800448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73455575-E40C-433C-9784-C78DC7761455}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-12-21 1535784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll [2014-02-15 550080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
URL Advisor Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll [2014-06-18 996544]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-02-15 655040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73455575-E40C-433C-9784-C78DC7761455}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-12-21 1265448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll [2014-02-15 455360]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
URL Advisor Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll [2014-06-18 798912]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2015-03-20 391784]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-02-26 13423688]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-01-31 36352]
"XboxStat"=C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2009-10-01 825184]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2015-07-24 1710568]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-07-24 2634896]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2014-04-20 161984]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SandboxieControl"=C:\Program Files\Sandboxie\SbieCtrl.exe [2015-06-23 787592]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-02-19 7416088]
"Spotify Web Helper"=C:\Users\Szabolcs\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2015-07-24 2017848]
"Spotify"=C:\Users\Szabolcs\AppData\Roaming\Spotify\Spotify.exe [2015-07-24 7574584]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2015-02-27 5583120]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ROCCAT Savu Gaming Mouse"=C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe [2012-09-10 872048]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
TP-LINK Wireless Configuration Utility.lnk - C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~2\NVIDIA~1\3DVISI~1\NVSTIN~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=28
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-07-29 23:53:09 ----D---- C:\_OTM
2015-07-29 12:30:56 ----D---- C:\rsit
2015-07-28 09:22:39 ----A---- C:\WINDOWS\system32\appraiser.dll
2015-07-22 10:24:41 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2015-07-22 10:24:41 ----A---- C:\WINDOWS\system32\drivers\nvvad64v.sys
2015-07-21 10:46:23 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-07-21 10:46:23 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-07-21 10:46:22 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-07-21 10:46:22 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-07-20 16:49:58 ----D---- C:\Program Files (x86)\OpenAL
2015-07-20 16:49:58 ----A---- C:\WINDOWS\SYSWOW64\wrap_oal.dll
2015-07-20 16:49:58 ----A---- C:\WINDOWS\SYSWOW64\OpenAL32.dll
2015-07-20 16:49:58 ----A---- C:\WINDOWS\system32\wrap_oal.dll
2015-07-20 16:49:58 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2015-07-20 16:49:56 ----D---- C:\Program Files (x86)\Microsoft XNA
2015-07-15 12:01:21 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2015-07-15 12:01:21 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\wucltux.dll
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\wuapp.exe
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-07-15 12:01:21 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2015-07-15 12:01:20 ----A---- C:\WINDOWS\system32\wuwebv.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\system32\wups.dll
2015-07-15 12:01:20 ----A---- C:\WINDOWS\system32\wudriver.dll
2015-07-15 12:01:19 ----A---- C:\WINDOWS\system32\wups2.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\msv1_0.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2015-07-15 12:00:11 ----A---- C:\WINDOWS\system32\certcli.dll
2015-07-15 11:59:29 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2015-07-15 11:59:11 ----A---- C:\WINDOWS\system32\win32k.sys
2015-07-15 11:58:33 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2015-07-15 11:58:33 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-07-15 11:58:33 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-07-15 11:58:14 ----A---- C:\WINDOWS\system32\profsvc.dll
2015-07-15 11:57:56 ----A---- C:\WINDOWS\SYSWOW64\msiexec.exe
2015-07-15 11:57:56 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2015-07-15 11:57:56 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-07-15 11:57:56 ----A---- C:\WINDOWS\system32\msiexec.exe
2015-07-15 11:57:56 ----A---- C:\WINDOWS\system32\msi.dll
2015-07-15 11:57:56 ----A---- C:\WINDOWS\system32\authui.dll
2015-07-15 11:57:37 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll
2015-07-15 11:57:37 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2015-07-15 11:57:19 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-07-15 11:57:19 ----A---- C:\WINDOWS\system32\shell32.dll
2015-07-15 11:57:19 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2015-07-15 11:57:18 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2015-07-15 11:55:58 ----A---- C:\WINDOWS\system32\drivers\usb8023.sys
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\invagent.dll
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\devinv.dll
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\aepdu.dll
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\aeinv.dll
2015-07-15 11:55:21 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-07-15 11:54:56 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2015-07-15 11:54:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-15 11:54:56 ----A---- C:\WINDOWS\system32\WSShared.dll
2015-07-15 11:54:56 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-15 11:54:38 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-07-15 11:54:37 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-07-15 11:54:10 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-07-15 11:54:09 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-07-15 11:54:03 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-07-15 11:54:02 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-07-15 11:54:01 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-07-15 11:54:01 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-07-15 11:54:01 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-07-15 11:54:01 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-07-15 11:51:13 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-07-15 11:51:13 ----A---- C:\WINDOWS\system32\wininet.dll
2015-07-15 11:51:13 ----A---- C:\WINDOWS\system32\actxprxy.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\webcheck.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\msrating.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\mshtmled.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\jscript.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\inetcomm.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\ieui.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\iepeers.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2015-07-15 11:51:12 ----A---- C:\WINDOWS\system32\dxtrans.dll
2015-07-15 11:45:22 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-07-15 11:44:59 ----A---- C:\WINDOWS\system32\fhcpl.dll
2015-07-15 11:44:48 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2015-07-15 11:44:48 ----A---- C:\WINDOWS\system32\gdi32.dll
2015-07-15 11:44:29 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2015-07-15 11:44:29 ----A---- C:\WINDOWS\system32\ole32.dll
2015-07-15 11:44:27 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-07-15 11:44:27 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-07-15 11:43:54 ----A---- C:\WINDOWS\system32\apphelp.dll
2015-07-15 11:41:48 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-07-15 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2015-07-15 11:41:45 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2015-07-10 18:25:24 ----HD---- C:\$Windows.~BT
2015-07-01 09:30:11 ----D---- C:\ProgramData\McAfee
======List of files/folders modified in the last 1 month======
2015-07-30 00:03:58 ----D---- C:\Program Files\trend micro
2015-07-30 00:03:57 ----D---- C:\WINDOWS\Temp
2015-07-30 00:03:54 ----D---- C:\WINDOWS\Prefetch
2015-07-30 00:02:54 ----D---- C:\WINDOWS\system32\Tasks
2015-07-30 00:02:54 ----D---- C:\Fraps
2015-07-30 00:02:46 ----D---- C:\ProgramData\Kaspersky Lab
2015-07-30 00:02:15 ----SHD---- C:\System Volume Information
2015-07-30 00:02:14 ----D---- C:\ProgramData\NVIDIA
2015-07-30 00:00:00 ----D---- C:\WINDOWS\system32\sru
2015-07-29 23:58:03 ----D---- C:\WINDOWS\Microsoft.NET
2015-07-29 23:53:09 ----D---- C:\WINDOWS\Tasks
2015-07-29 23:51:01 ----D---- C:\Users\Szabolcs\AppData\Roaming\ClassicShell
2015-07-29 22:50:17 ----D---- C:\Users\Szabolcs\AppData\Roaming\Spotify
2015-07-29 22:05:55 ----D---- C:\WINDOWS\SysWOW64
2015-07-29 22:05:50 ----A---- C:\WINDOWS\SYSWOW64\PnkBstrB.exe
2015-07-29 20:45:27 ----D---- C:\Windows
2015-07-29 20:45:27 ----A---- C:\WINDOWS\Sandboxie.ini
2015-07-29 20:41:01 ----RD---- C:\WINDOWS\System32
2015-07-29 20:41:01 ----D---- C:\WINDOWS\Inf
2015-07-29 20:41:01 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-07-29 20:34:23 ----D---- C:\AdwCleaner
2015-07-29 20:34:12 ----D---- C:\Users\Szabolcs\AppData\Roaming\uTorrent
2015-07-29 20:31:26 ----D---- C:\Users\Szabolcs\AppData\Roaming\vlc
2015-07-29 12:30:59 ----DC---- C:\WINDOWS\Panther
2015-07-29 12:28:46 ----D---- C:\WINDOWS\system32\DriverStore
2015-07-29 11:33:03 ----D---- C:\Program Files\Recuva
2015-07-29 11:19:32 ----D---- C:\WINDOWS\system32\config
2015-07-29 11:16:11 ----D---- C:\ProgramData\NVIDIA Corporation
2015-07-29 11:00:55 ----D---- C:\WINDOWS\WinSxS
2015-07-29 10:21:30 ----SHD---- C:\WINDOWS\Installer
2015-07-29 10:21:29 ----SHD---- C:\Config.Msi
2015-07-28 12:23:33 ----D---- C:\WINDOWS\CbsTemp
2015-07-28 12:16:47 ----HD---- C:\Program Files\WindowsApps
2015-07-28 12:16:47 ----D---- C:\WINDOWS\AppReadiness
2015-07-28 12:16:43 ----D---- C:\WINDOWS\Logs
2015-07-25 14:10:55 ----SD---- C:\WINDOWS\system32\GWX
2015-07-24 06:21:23 ----A---- C:\WINDOWS\SYSWOW64\nvspcap.dll
2015-07-24 06:21:23 ----A---- C:\WINDOWS\SYSWOW64\nvspbridge.dll
2015-07-24 06:21:14 ----A---- C:\WINDOWS\system32\nvspcap64.dll
2015-07-24 06:21:14 ----A---- C:\WINDOWS\system32\nvspbridge64.dll
2015-07-22 10:25:10 ----D---- C:\WINDOWS\system32\drivers
2015-07-21 11:44:44 ----D---- C:\WINDOWS\system32\MRT
2015-07-20 16:49:58 ----RSD---- C:\WINDOWS\assembly
2015-07-20 16:49:58 ----RD---- C:\Program Files (x86)
2015-07-20 16:49:19 ----D---- C:\ProgramData\Package Cache
2015-07-17 12:49:52 ----SD---- C:\WINDOWS\SYSWOW64\GWX
2015-07-16 11:36:04 ----D---- C:\WINDOWS\rescache
2015-07-15 16:21:39 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-07-15 16:19:59 ----RD---- C:\WINDOWS\ToastData
2015-07-15 16:19:59 ----D---- C:\WINDOWS\WinStore
2015-07-15 16:19:59 ----D---- C:\WINDOWS\system32\sk-SK
2015-07-15 16:19:59 ----D---- C:\WINDOWS\system32\cs-CZ
2015-07-15 16:19:59 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-07-15 16:19:59 ----D---- C:\WINDOWS\apppatch
2015-07-15 16:19:59 ----D---- C:\Program Files\Internet Explorer
2015-07-15 16:19:59 ----D---- C:\Program Files (x86)\Internet Explorer
2015-07-15 12:27:05 ----SD---- C:\WINDOWS\system32\CompatTel
2015-07-15 12:27:05 ----D---- C:\WINDOWS\system32\wbem
2015-07-15 12:27:05 ----D---- C:\WINDOWS\system32\appraiser
2015-07-15 11:39:04 ----D---- C:\WINDOWS\system32\catroot2
2015-07-13 23:10:13 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-07-11 18:46:32 ----D---- C:\Program Files (x86)\Rockstar Games
2015-07-11 18:46:25 ----D---- C:\Program Files\Rockstar Games
2015-07-08 23:15:20 ----D---- C:\ProgramData\Origin
2015-07-03 08:43:04 ----A---- C:\WINDOWS\system32\MRT.exe
2015-07-03 06:28:26 ----A---- C:\WINDOWS\system32\nvaudcap64v.dll
2015-07-01 12:02:11 ----D---- C:\Program Files (x86)\Origin
2015-07-01 09:31:39 ----HD---- C:\ProgramData
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-01-31 652784]
R0 kl1;kl1; C:\WINDOWS\system32\DRIVERS\kl1.sys [2014-02-15 458336]
R1 AppleCharger;AppleCharger; C:\WINDOWS\system32\DRIVERS\AppleCharger.sys [2013-02-19 21584]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2014-06-18 625760]
R1 KLIM6;@oem20.inf,%KLIM6_Desc%;Kaspersky Anti-Virus NDIS 6 Filter; C:\WINDOWS\system32\DRIVERS\klim6.sys [2014-02-15 30304]
R1 klpd;klpd; C:\WINDOWS\system32\DRIVERS\klpd.sys [2013-04-12 15456]
R1 klwfp;klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [2014-06-18 65120]
R1 kneps;kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [2014-02-15 178272]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2014-02-24 314016]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2014-02-24 43680]
R3 athur;@oem14.inf,%ATHR.Service.DispName%;Qualcomm Atheros AR9271 Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\athuw8x.sys [2013-06-02 2919936]
R3 dtlitescsibus;@oem34.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-03-28 30352]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-03-20 4888368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-02-26 3333576]
R3 IntcDAud;@oem35.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-03-20 460048]
R3 iwdbus;@oem32.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-03-04 30512]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [2014-06-18 29280]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2014-02-15 29280]
R3 MEIx64;@oem26.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2013-03-12 64624]
R3 NVHDA;@oem44.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2015-05-13 195912]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-05-28 10995528]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-07-24 19600]
R3 nvvad_WaveExtensible;@oem77.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2015-07-03 47976]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 SbieDrv;SbieDrv; \??\C:\Program Files\Sandboxie\SbieDrv.sys [2015-06-23 190088]
R3 tap0901t;@oem41.inf,%DeviceDescription%;TAP-Win32 Adapter V9 (Tunngle); C:\WINDOWS\system32\DRIVERS\tap0901t.sys [2009-09-16 31232]
S0 klelam;klelam; C:\WINDOWS\system32\DRIVERS\klelam.sys [2014-02-15 29792]
S1 JSWPSLWF;JumpStart Wireless Filter Driver; C:\WINDOWS\system32\DRIVERS\jswpslwfx.sys [2011-12-26 26624]
S1 UsbCharger;UsbCharger; C:\WINDOWS\system32\DRIVERS\UsbCharger.sys [2013-05-06 21584]
S3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2014-12-13 45112]
S3 intaud_WaveExtensible;@oem28.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-03-04 42288]
S3 LGBusEnum;@oem39.inf,%LGBusEnum.SVCDESC%;Logitech GamePanel Virtual Bus Enumerator Driver; C:\WINDOWS\system32\drivers\LGBusEnum.sys [2009-11-24 22408]
S3 LGSHidFilt;@oem37.inf,%LGSHidFilt.SvcDesc%;Logitech Gaming KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LGSHidFilt.Sys [2013-05-30 64280]
S3 LGVirHid;@oem40.inf,%LGVirHid.SVCDESC%;Logitech Gamepanel Virtual HID Device Driver; C:\WINDOWS\system32\drivers\LGVirHid.sys [2009-11-24 16008]
S3 NVSWCFilter;@oem38.inf,%NVSWCFilter.SvcDesc%;NVIDIA SHIELD Wireless Controller Trackpad Service; C:\WINDOWS\System32\drivers\nvswcfilter.sys [2015-06-13 19616]
S3 OSFMount;OSFMount; \??\D:\csgo\Counter-Strike Global Offensive\image\x64\OSFMount.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AVP;Kaspersky Anti-Virus Service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [2014-02-15 214512]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-07-24 1155216]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-03-20 344168]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 731648]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-07-24 1871504]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2015-07-24 5544592]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-05-28 937288]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\syswow64\PnkBstrA.exe [2015-03-29 76888]
R2 SbieSvc;Sandboxie Service; C:\Program Files\Sandboxie\SbieSvc.exe [2015-06-23 175752]
R2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-05-28 410768]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-02-27 1272592]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S2 gupdate;Google frissítés Szolgáltatás (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-26 116648]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-01-31 15344]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-03-12 169432]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-03-12 366552]
S3 AppleChargerSrv;AppleChargerSrv; C:\WINDOWS\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-03-20 279144]
S3 gupdatem;Google frissítés Szolgáltatás (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-26 116648]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 820184]
S3 jswpsapi;JumpStart Wi-Fi Protected Setup; C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\WPS\jswpsapi.exe [2011-12-26 954368]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-07-15 148136]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-07-01 2004488]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-07-24 838336]
S3 TunngleService;TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [2015-02-09 792016]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119675
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola RSIT logu
Smazáno, log by již měl být OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?