[ Príspevkov: 31 ] 1, 2
AutorSpráva
Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 18.11.09
Prihlásený: 29.11.16
Príspevky: 89
Témy: 17 | 17
Bydlisko: Ružomberok
NapísalOffline : 22.03.2013 23:07 | pomoc s http://adf.ly/Kwky2

Zdravim vas. Mam sakra problem. Po nacitani stranky vo firefoxe mozem v ramci nej kliknut este raz a potom mi nabehne tato stranka "adf.ly/Kwky2", kde sa zacne odpocitavanie v pravom hornom rohu a potom add skip. Neviem sa toho zbavit. Zacalo to robit dnes. V chrome mi to nerobi iba vo firefoxe. Posielam vypis z combofixu.

Spoiler: zobraziť
ComboFix 13-03-21.02 - nexter . 03. 2013 22:41:25.4.3 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1250.421.1051.18.3830.1930 [GMT 1:00]
Running from: c:\users\nexter\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\1359011042.bdinstall.bin
c:\programdata\1359011289.bdinstall.bin
.
.
((((((((((((((((((((((((( Files Created from 2013-02-22 to 2013-03-22 )))))))))))))))))))))))))))))))
.
.
2013-03-22 21:51 . 2013-03-22 21:51 -------- d-----w- c:\users\Public\AppData\Local\temp
2013-03-22 21:51 . 2013-03-22 21:51 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-03-22 20:35 . 2013-03-22 21:23 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2013-03-22 20:35 . 2013-03-22 20:40 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy
2013-03-22 16:19 . 2013-03-06 23:33 178624 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-03-22 16:19 . 2013-03-06 23:33 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-03-22 16:17 . 2013-03-22 17:58 -------- d-----w- c:\users\nexter\AppData\Roaming\QuickScan
2013-03-22 06:25 . 2013-03-15 06:28 9311288 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{69F65DE1-1BC6-4570-BDC7-4FC98BE40DA3}\mpengine.dll
2013-03-21 07:30 . 2013-03-21 07:30 -------- d-----w- c:\users\nexter\AppData\Roaming\FileOpen
2013-03-21 07:30 . 2013-03-21 07:30 -------- d-----w- c:\programdata\FileOpen
2013-03-20 12:42 . 2013-03-20 12:42 -------- d-----w- c:\program files (x86)\FileOpen
2013-03-20 12:42 . 2013-03-20 12:42 -------- d-----w- c:\program files\FileOpen
2013-03-18 07:32 . 2013-03-18 07:32 -------- d--h--w- c:\program files\Uninstall Information
2013-03-17 19:59 . 2013-03-17 19:59 -------- d-----w- C:\Komku
2013-03-15 14:32 . 2013-03-15 14:32 -------- d-----w- c:\program files (x86)\Common Files\Skype
2013-03-15 14:28 . 2013-02-12 04:12 19968 ----a-w- c:\windows\system32\drivers\usb8023x.sys
2013-03-15 14:28 . 2013-02-12 04:12 19968 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-03-02 19:06 . 2013-03-02 19:12 -------- d-----w- c:\programdata\Protexis
2013-03-02 17:21 . 2013-03-02 17:21 -------- d-----w- c:\program files (x86)\Microsoft SDKs
2013-03-02 17:20 . 2013-03-02 17:21 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 9.0
2013-03-02 17:18 . 2013-03-02 17:18 -------- d-----w- c:\program files (x86)\Common Files\Protexis
2013-03-02 17:18 . 2013-03-02 17:18 -------- d-----w- c:\programdata\Corel
2013-02-27 06:47 . 2013-01-04 06:11 2284544 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll
2013-02-27 06:47 . 2013-01-04 06:11 2776576 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2013-02-27 06:47 . 2013-01-13 19:53 187392 ----a-w- c:\windows\SysWow64\UIAnimation.dll
2013-02-27 06:47 . 2013-01-13 19:24 221184 ----a-w- c:\windows\system32\UIAnimation.dll
2013-02-27 06:47 . 2013-01-13 19:02 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2013-02-27 06:47 . 2013-01-13 18:32 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2013-02-24 16:31 . 2013-02-24 16:31 -------- d-----w- c:\programdata\Bitstream Font Navigator
2013-02-24 16:30 . 2013-03-02 19:06 -------- d-----w- c:\users\nexter\AppData\Roaming\Corel
2013-02-24 16:27 . 2013-02-24 16:27 -------- d-----w- c:\windows\Corel
2013-02-24 16:20 . 2013-03-02 17:11 -------- d-----w- c:\program files (x86)\Corel
2013-02-24 16:20 . 2013-02-24 16:20 -------- d-----w- c:\program files (x86)\Common Files\Corel
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-03-15 07:46 . 2011-04-26 06:45 72013344 ----a-w- c:\windows\system32\MRT.exe
2013-03-13 15:09 . 2012-05-01 11:12 693976 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-03-13 15:09 . 2011-08-23 05:57 73432 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-03-06 23:33 . 2012-03-27 11:29 70992 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-03-06 23:33 . 2011-04-22 10:13 377920 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-03-06 23:33 . 2011-04-22 10:13 68920 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-03-06 23:33 . 2011-04-22 10:13 1025808 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-03-06 23:33 . 2011-04-22 10:13 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-03-06 23:33 . 2011-04-22 10:13 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-03-06 23:32 . 2011-04-22 10:12 41664 ----a-w- c:\windows\avastSS.scr
2013-03-06 23:32 . 2011-04-22 10:13 287840 ----a-w- c:\windows\system32\aswBoot.exe
2013-02-12 05:45 . 2013-03-13 06:24 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-02-12 05:45 . 2013-03-13 06:24 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-02-12 05:45 . 2013-03-13 06:24 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-02-12 05:45 . 2013-03-13 06:24 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-02-12 04:48 . 2013-03-13 06:24 474112 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-02-12 04:48 . 2013-03-13 06:24 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-02-03 18:32 . 2011-10-21 06:42 54728 ----a-w- c:\windows\system32\drivers\Soluto.sys
2013-01-29 07:57 . 2013-01-29 07:58 515584 ----a-w- c:\windows\system32\drivers\stwrt64.sys
2013-01-29 07:57 . 2013-01-29 07:58 489472 ----a-w- c:\windows\sttray64.exe
2013-01-29 07:57 . 2013-01-29 07:58 1952256 ----a-w- c:\windows\system32\stlang64.dll
2013-01-29 07:57 . 2013-01-29 07:58 431616 ----a-w- c:\windows\system32\stcplx64.dll
2013-01-29 07:57 . 2013-01-29 07:58 1484288 ----a-w- c:\windows\system32\stapo64.dll
2013-01-29 07:57 . 2013-01-29 07:59 651264 ------w- c:\windows\system32\stapi64.dll
2013-01-29 07:57 . 2013-01-29 07:58 12861952 ----a-w- c:\windows\system32\idtcpl64.cpl
2013-01-29 07:57 . 2013-01-29 07:58 219648 ----a-w- c:\windows\system32\staco64.dll
2013-01-29 07:57 . 2013-01-29 07:58 442368 ----a-w- c:\windows\system32\AESTEC64.dll
2013-01-29 07:57 . 2013-01-29 07:58 68608 ----a-w- c:\windows\system32\AESTAR64.dll
2013-01-29 07:57 . 2013-01-29 07:58 162816 ----a-w- c:\windows\system32\AESTAC64.dll
2013-01-29 07:57 . 2013-01-29 07:58 90624 ----a-w- c:\windows\system32\AESTCo64.dll
2013-01-23 11:35 . 2013-01-23 11:35 388096 ----a-r- c:\users\nexter\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-01-17 00:28 . 2011-04-22 11:03 273840 ------w- c:\windows\system32\MpSigStub.exe
2013-01-11 10:39 . 2013-01-17 08:29 103936 ----a-w- c:\windows\system32\pdfcmon.dll
2013-01-05 05:53 . 2013-02-13 06:45 5553512 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-01-05 05:00 . 2013-02-13 06:45 3967848 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-01-05 05:00 . 2013-02-13 06:45 3913064 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-01-04 05:46 . 2013-02-13 06:45 215040 ----a-w- c:\windows\system32\winsrv.dll
2013-01-04 04:51 . 2013-02-13 06:45 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2013-01-04 04:43 . 2013-02-13 06:45 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-01-04 03:26 . 2013-02-13 06:45 3153408 ----a-w- c:\windows\system32\win32k.sys
2013-01-04 02:47 . 2013-02-13 06:45 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2013-01-04 02:47 . 2013-02-13 06:45 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2013-01-04 02:47 . 2013-02-13 06:44 2048 ----a-w- c:\windows\SysWow64\user.exe
2013-01-04 02:47 . 2013-02-13 06:45 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2013-01-03 06:00 . 2013-02-13 06:44 1913192 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-01-03 06:00 . 2013-02-13 06:44 288088 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" [2011-03-04 2736128]
"SpybotSD TeaTimer"="c:\program files (x86)\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"File Sanitizer"="c:\program files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe" [2010-01-19 11266048]
"estar"="c:\system.sav\Util\HideDOS.EXE" [2006-11-28 77824]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-03-06 4767304]
"IFXSPMGT"="c:\program files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe" [2010-02-24 1160480]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-07-04 641704]
"QLBController"="c:\program files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe" [2012-08-28 334240]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-12-29 1082656]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\progra~2\Google\GOOGLE~3\GoogleDesktopNetwork3.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ DPPassFilter scecli
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SolutoService]
@="Service"
.
R2 Autodesk Content Service;Autodesk Content Service;c:\program files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2012-02-09 18720]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 HWDeviceService64.exe;HWDeviceService64.exe;c:\programdata\DatacardService\HWDeviceService64.exe [2010-11-16 339456]
R2 lxecCATSCustConnectService;lxecCATSCustConnectService;c:\windows\system32\spool\DRIVERS\x64\3\\lxecserv.exe [2010-04-14 45736]
R2 Mobile Partner. RunOuc;Mobile Partner. OUC;c:\program files (x86)\Mobile Partner\UpdateDog\ouc.exe [2012-07-02 218624]
R2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe [2010-02-18 2045232]
R3 AESTAud;AE Audio Service;c:\windows\system32\drivers\AESTAu64.sys [2009-04-22 146048]
R3 aswVmm;aswVmm; [x]
R3 cpuz136;cpuz136;c:\windows\TEMP\cpuz136\cpuz136_x64.sys [x]
R3 DAMDrv;DAMDrv;c:\windows\system32\DRIVERS\DAMDrv64.sys [2009-10-21 40760]
R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys [2012-07-02 117248]
R3 ewusbmbb;HUAWEI USB-WWAN miniport;c:\windows\system32\DRIVERS\ewusbwwan.sys [2012-07-02 421376]
R3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2008-08-07 3276800]
R3 FLCDLOCK;HP ProtectTools Device Locking / Auditing;c:\windows\SysWOW64\flcdlock.exe [2009-12-07 362040]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2013-02-15 1432400]
R3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files (x86)\Google\Google Desktop Search\GoogleDesktop.exe [2012-10-24 30192]
R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [2009-11-01 33736]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [2010-06-25 36928]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
R3 RTCore64;RTCore64;c:\users\nexter\Desktop\rmclock_235_bin\RTCore64.sys [x]
R3 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-01-08 161536]
R3 SolutoRemoteService;Soluto Remote Service;c:\program files\Soluto\SolutoRemoteService.exe [2013-02-03 1239552]
R3 TeamViewer7;TeamViewer 7;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-01-19 3027840]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2011-04-23 1255736]
S0 aswRvrt;aswRvrt; [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2011-03-04 55856]
S0 SafeBoot;SafeBoot; [x]
S0 SbAlg;SbAlg; [x]
S0 SbFsLock;SbFsLock; [x]
S0 Soluto;Soluto;c:\windows\system32\DRIVERS\Soluto.sys [2013-02-03 54728]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2011-04-22 834544]
S1 aswKbd;aswKbd; [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 PersonalSecureDrive;PersonalSecureDrive;c:\windows\System32\drivers\psd.sys [2010-01-26 44576]
S1 RsvLock;RsvLock; [x]
S2 ac.sharedstore;ActivIdentity Shared Store Service;c:\program files\Common Files\ActivIdentity\ac.sharedstore.exe [2009-06-03 277032]
S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe [2013-01-29 89600]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-07-04 238080]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-07-04 361984]
S2 AODDriver4.1;AODDriver4.1;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-03-05 53888]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-03-06 80816]
S2 Fabs;FABS - Helping agent for MAGIX media database;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2009-08-27 1253376]
S2 FileOpenManagerService;FileOpen Manager Service;c:\program files\FileOpen\Services\FileOpenManagerService64.exe [2012-11-07 335288]
S2 HP Power Assistant Service;HP Power Assistant Service;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-09-12 142904]
S2 HP ProtectTools Service;HP ProtectTools Service;c:\program files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2010-03-17 36864]
S2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2011-06-21 85560]
S2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-04-05 103992]
S2 HPDayStarterService;HP DayStarter Service;c:\program files (x86)\Hewlett-Packard\HP QuickLook\HPDayStarterService.exe [2010-03-25 90112]
S2 HpFkCryptService;Drive Encryption Service;c:\program files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2010-02-02 281192]
S2 HPFSService;File Sanitizer for HP ProtectTools;c:\program files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2010-01-19 297984]
S2 hpHotkeyMonitor;HP Hotkey Monitor;c:\program files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2012-08-28 523680]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [2011-05-13 30520]
S2 lxec_device;lxec_device;c:\windows\system32\lxeccoms.exe [2010-04-14 1052328]
S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2012-03-23 87040]
S2 PdiService;Portrait Displays SDK Service;c:\program files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-03-16 113264]
S2 rimspci;rimspci;c:\windows\system32\DRIVERS\rimspe64.sys [2009-10-26 61952]
S2 risdpcie;risdpcie;c:\windows\system32\DRIVERS\risdpe64.sys [2009-10-28 79360]
S2 rixdpcie;rixdpcie;c:\windows\system32\DRIVERS\rixdpe64.sys [2009-12-11 55808]
S2 SolutoLauncherService;Soluto Launcher Service;c:\program files\Soluto\SolutoLauncherService.exe [2013-02-03 183264]
S2 SolutoService;Soluto PCGenome Core Service;c:\program files\Soluto\SolutoService.exe [2013-02-03 552928]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2010-01-07 35104]
S3 cpuz135;cpuz135;c:\windows\TEMP\cpuz135\cpuz135_x64.sys [x]
S3 DEBridge;DEBridge;c:\program files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe [2010-02-02 704512]
S3 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2012-08-10 197536]
S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys [2012-07-02 86016]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-12-14 24176]
S3 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-14 682344]
S3 rtsuvc;HP Webcam [2 MP Fixed];c:\windows\system32\DRIVERS\rtsuvc.sys [2010-01-30 05:46 89344]
S3 SBSDWSCService;SBSD Security Center Service;c:\program files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [2010-01-08 395776]
.
.
--- Other Services/Drivers In Memory ---
.
*Deregistered* - FileOpenWebPublisherScreenHookDriver
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2011-03-04 10:29 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-03-14 11:48 1629648 ----a-w- c:\program files (x86)\Google\Chrome\Application\25.0.1364.172\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2013-03-22 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-01 15:09]
.
2013-02-16 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-09-22 05:32]
.
2013-03-22 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-09-22 05:32]
.
2013-03-15 c:\windows\Tasks\HPCeeScheduleFornexter.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-01-05 10:53]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-03-06 23:32 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2012-12-17 18:50 755816 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2012-12-17 18:50 755816 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2012-12-17 18:50 755816 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2012-12-17 18:50 755816 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe" [2010-04-05 8192]
"acevents"="c:\program files\ActivIdentity\ActivClient\acevents.exe" [2009-06-03 196648]
"accrdsub"="c:\program files\ActivIdentity\ActivClient\accrdsub.exe" [2009-06-03 483880]
"CNAP2 Launcher"="c:\windows\system32\spool\DRIVERS\x64\3\CNAP2LAK.EXE" [2009-04-22 116128]
"lxecmon.exe"="c:\program files (x86)\Lexmark Pro800-Pro900 Series\lxecmon.exe" [2011-01-23 770728]
"EzPrint"="c:\program files (x86)\Lexmark Pro800-Pro900 Series\ezprint.exe" [2011-01-23 148280]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2011-07-07 2174760]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2013-01-29 489472]
"HPPowerAssistant"="c:\program files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe" [2011-09-12 14904]
"Autodesk Sync"="c:\program files\Autodesk\Autodesk Sync\AdSync.exe" [2012-02-05 415680]
"FileOpenBroker"="c:\program files\FileOpen\Services\FileOpenBroker64.exe" [2012-11-07 1092528]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
------- Supplementary Scan -------
.
uStart Page = about:blank
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SYSTEM32\blank.htm
IE: E&xportovať do programu Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Prevést cíl vazby do Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Prevést cíl vazby do existujícího PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Prevést do Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: Pridat do stávajícího PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Send image to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\progra~2\PCTRAN~1\webie.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\progra~2\PCTRAN~1\webie.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\progra~2\PCTRAN~1\webie.dll
Trusted Zone: //about.htm/
Trusted Zone: //Exclude.htm/
Trusted Zone: //FWEvent.htm/
Trusted Zone: //LanguageSelection.htm/
Trusted Zone: //Message.htm/
Trusted Zone: //MyAgttryCmd.htm/
Trusted Zone: //MyAgttryNag.htm/
Trusted Zone: //MyNotification.htm/
Trusted Zone: //NOCLessUpdate.htm/
Trusted Zone: //quarantine.htm/
Trusted Zone: //ScanNow.htm/
Trusted Zone: //strings.vbs/
Trusted Zone: //Template.htm/
Trusted Zone: //Update.htm/
Trusted Zone: //VirFound.htm/
Trusted Zone: mcafeeasap.com\betavscan
Trusted Zone: mcafeeasap.com\vs
Trusted Zone: mcafeeasap.com\www
TCP: DhcpNameServer = 10.1.13.100 192.168.1.1
TCP: Interfaces\{0D044146-0F77-45DA-9CD4-BD9CFA547FA9}: NameServer = 194.154.227.17 195.91.0.17
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
FF - ProfilePath - c:\users\nexter\AppData\Roaming\Mozilla\Firefox\Profiles\11kw2nld.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.sk/
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&o ... &gfns=1&q=
FF - ExtSQL: 2013-02-10 17:59; socialfixer@mattkruse.com" target="_blank" rel="nofollow" target="_blank" rel="nofollow; c:\users\nexter\AppData\Roaming\Mozilla\Firefox\Profiles\11kw2nld.default\extensions\socialfixer@mattkruse.com.xpi
FF - ExtSQL: 2013-03-22 18:56; {e001c731-5e37-4538-a5cb-8168736a2360}; c:\users\nexter\AppData\Roaming\Mozilla\Firefox\Profiles\11kw2nld.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}
.
- - - - ORPHANS REMOVED - - - -
.
Wow6432Node-HKCU-Run-pdiface - c:\program files\Bitdefender\60-Second Virus Scanner\pdiface.exe
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
HKLM-Run-AESTFltr - c:\windows\system32\AESTFltr.exe
.
.
.
Completion time: 2013-03-22 22:56:34
ComboFix-quarantined-files.txt 2013-03-22 21:56
.
Pre-Run: 105 589 559 296 bytes free
Post-Run: 105 352 257 536 bytes free
.
- - End Of File - - EE59393091CEB2C728AD790A1DFAEECE


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 09.05.11
Prihlásený: 14.09.16
Príspevky: 618
Témy: 2 | 2
NapísalOffline : 23.03.2013 12:59 | pomoc s http://adf.ly/Kwky2

Ahoj
Odinštaluj spybot
Stiahni si AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
ulož ho na plochu Spusť program stlač tlačidlo search
Po skene sa objaví log budeš ho mať na systémovom disku ako AdwCleaner[R?].txt cely obsah vlož sem

Keď nemáš combofix tak ho presuň na plochu
Spusť poznámkový blok
skopíruj script do poznámkového bloku

Kód:
Killall::
file::
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
c:\windows\Tasks\HPCeeScheduleFornexter.job
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\Adobe Flash Player Updater.job
c:\windows\TEMP\cpuz136\cpuz136_x64.sys
registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPWirelessAssistant"=-
"HPPowerAssistant"=-
"Autodesk Sync"=-
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpybotSD TeaTimer"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"File Sanitizer"=-
"IFXSPMGT"=-
"QLBController"=-

DDS::
Trusted Zone: //about.htm/
Trusted Zone: //Exclude.htm/
Trusted Zone: //FWEvent.htm/
Trusted Zone: //LanguageSelection.htm/
Trusted Zone: //Message.htm/
Trusted Zone: //MyAgttryCmd.htm/
Trusted Zone: //MyAgttryNag.htm/
Trusted Zone: //MyNotification.htm/
Trusted Zone: //NOCLessUpdate.htm/
Trusted Zone: //quarantine.htm/
Trusted Zone: //ScanNow.htm/
Trusted Zone: //strings.vbs/
Trusted Zone: //Template.htm/
Trusted Zone: //Update.htm/
Trusted Zone: //VirFound.htm/
Trusted Zone: mcafeeasap.com\betavscan
Trusted Zone: mcafeeasap.com\vs
Trusted Zone: mcafeeasap.com\www

firefox::
FF - ProfilePath - c:\users\nexter\AppData\Roaming\Mozilla\Firefox\Profiles\11kw2nld.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&o ... &gfns=1&q=
FF - ExtSQL: 2013-02-10 17:59; socialfixer@mattkruse.com" target="_blank" rel="nofollow; c:\users\nexter\AppData\Roaming\Mozilla\Firefox\Profiles\11kw2nld.default\extensions\socialfixer@mattkruse.com.xpi
FF - ExtSQL: 2013-03-22 18:56; {e001c731-5e37-4538-a5cb-8168736a2360}; c:\users\nexter\AppData\Roaming\Mozilla\Firefox\Profiles\11kw2nld.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}
driver::
cpuz136
SkypeUpdate

clearjavacache::
reboot::

Stiahni si RSIT z http://images.malwareremoval.com/random/RSIT.exe pre 64 bit verzie http://images.malwareremoval.com/random/RSITx64.exe spusť daj continue chvíľu počkaj dokým sa vygeneruje log keď ho vygeneruje nájdeš ho na C:\rsit\log.txt log vlož sem


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 18.11.09
Prihlásený: 29.11.16
Príspevky: 89
Témy: 17 | 17
Bydlisko: Ružomberok
Napísal autor témyOffline : 23.03.2013 14:55 | pomoc s http://adf.ly/Kwky2

# AdwCleaner v2.115 - Log vytvorený 23/03/2013 o 14:54:45
# Aktualizované 17/03/2013 Xplode
# Operaený systém : Windows 7 Professional Service Pack 1 (64 bits)
# Uživatel : nexter - SOHLER
# Spustený systém : Normálny
# Spustené z : C:\Users\nexter\Desktop\adwcleaner.exe
# Volba [Preh3ada?]


***** [Služby] *****


***** [Súbory / Adresáre] *****


***** [Registre] *****


***** [Internetové prehliadaee] *****

-\\ Internet Explorer v10.0.9200.16521

[OK] Registre sú eisté.

-\\ Mozilla Firefox v19.0.2 (sk)

Súbor : C:\Users\nexter\AppData\Roaming\Mozilla\Firefox\Profiles\11kw2nld.default\prefs.js

[OK] Súbor je eistý.

-\\ Google Chrome v25.0.1364.172

Súbor : C:\Users\nexter\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Súbor je eistý.

*************************

AdwCleaner[R5].txt - [832 octets] - [23/03/2013 14:54:45]

########## EOF - C:\AdwCleaner[R5].txt - [891 octets] ##########


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 18.11.09
Prihlásený: 29.11.16
Príspevky: 89
Témy: 17 | 17
Bydlisko: Ružomberok
Napísal autor témyOffline : 23.03.2013 15:01 | pomoc s http://adf.ly/Kwky2

Ten script co si poslal mam "pretiahnut" cez combofix?


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 18.11.09
Prihlásený: 29.11.16
Príspevky: 89
Témy: 17 | 17
Bydlisko: Ružomberok
Napísal autor témyOffline : 23.03.2013 15:02 | pomoc s http://adf.ly/Kwky2

Spoiler: zobraziť
Logfile of random's system information tool 1.09 (written by random/random)
Run by nexter at 2013-03-23 14:58:51
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 102 GB (22%) free of 459 GB
Total RAM: 3830 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:58:55, on 23. 3. 2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16521)
Boot mode: Normal

Running processes:
C:\Windows\System32\spool\drivers\x64\3\CNAP2LAK.EXE
C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\lxecmon.exe
C:\windows\system32\spool\DRIVERS\x64\3\CNAP2RPK.EXE
C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\ezprint.exe
C:\windows\system32\spool\DRIVERS\x64\3\CNABBSWK.EXE
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\PSDrt.exe
C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\nexter\Desktop\RSIT.exe
C:\Program Files (x86)\trend micro\nexter.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: HP ProtectTools Security Manager Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocník pri prihlasovaní v konte Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Lexmark - {D2C5E510-BE6D-42CC-9F61-E4F939078474} - C:\Program Files\Lexmark Printable Web\bho.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\PROGRA~2\PCTRAN~1\webie.dll
O3 - Toolbar: (no name) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - (no file)
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [estar] C:\System.Sav\Util\HideDOS.EXE C:\System.Sav\util\estartwk\twk764.bat
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [IFXSPMGT] "C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe" /NotifyLogon
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Prevést cíl vazby do Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Prevést cíl vazby do existujícího PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Prevést do Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Pridat do stávajícího PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: WebTran - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\PROGRA~2\PCTRAN~1\webie.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\PROGRA~2\PCTRAN~1\webie.dll
O9 - Extra 'Tools' menuitem: &Nastaviť prekladač - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\PROGRA~2\PCTRAN~1\webie.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\PROGRA~2\PCTRAN~1\webie.dll
O9 - Extra 'Tools' menuitem: Preložiť &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\PROGRA~2\PCTRAN~1\webie.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\PROGRA~2\PCTRAN~1\webie.dll
O9 - Extra 'Tools' menuitem: Preložiť &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\PROGRA~2\PCTRAN~1\webie.dll
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} (Java Plug-in 1.6.0_24) -
O17 - HKLM\System\CCS\Services\Tcpip\..\{0D044146-0F77-45DA-9CD4-BD9CFA547FA9}: NameServer = 194.154.227.17 195.91.0.17
O17 - HKLM\System\CS1\Services\Tcpip\..\{0D044146-0F77-45DA-9CD4-BD9CFA547FA9}: NameServer = 194.154.227.17 195.91.0.17
O17 - HKLM\System\CS2\Services\Tcpip\..\{0D044146-0F77-45DA-9CD4-BD9CFA547FA9}: NameServer = 194.154.227.17 195.91.0.17
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\PROGRA~2\Google\GOOGLE~3\GoogleDesktopNetwork3.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: ActivIdentity Shared Store Service (ac.sharedstore) - ActivIdentity - C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agr64svc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: DEBridge - McAfee, Inc. - c:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) - MAGIX AG - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Ltd - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files (x86)\Hewlett-Packard\HP QuickLook\HPDayStarterService.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - McAfee, Inc. - c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: HP Hotkey Monitor (hpHotkeyMonitor) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: HWDeviceService64.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService64.exe
O23 - Service: Security Platform Management Service (IFXSpMgtSrv) - Infineon Technologies AG - C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe
O23 - Service: Trusted Platform Core Service (IFXTCS) - Infineon Technologies AG - C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: lxecCATSCustConnectService - Lexmark International, Inc. - C:\windows\system32\spool\DRIVERS\x64\3\\lxecserv.exe
O23 - Service: lxec_device - - C:\windows\system32\lxeccoms.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mobile Partner. OUC (Mobile Partner. RunOuc) - Unknown owner - C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: Personal Secure Drive Service (PersonalSecureDriveService) - Infineon Technologies AG - C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: Soluto Launcher Service (SolutoLauncherService) - Soluto - C:\Program Files\Soluto\SolutoLauncherService.exe
O23 - Service: Soluto Remote Service (SolutoRemoteService) - Soluto - C:\Program Files\Soluto\SolutoRemoteService.exe
O23 - Service: Soluto PCGenome Core Service (SolutoService) - Soluto - C:\Program Files\Soluto\SolutoService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10129 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 19267 bytes

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
C:\windows\tasks\HPCeeScheduleFornexter.job
C:\windows\tasks\SUPERAntiSpyware Scheduled Task a4fe0e06-17e0-4b9d-a39d-87e17e2a17e9.job
C:\windows\tasks\SUPERAntiSpyware Scheduled Task c388c850-fec6-47d6-87ec-607c3d4deb39.job

=========Mozilla firefox=========

ProfilePath - C:\Users\nexter\AppData\Roaming\Mozilla\Firefox\Profiles\11kw2nld.default

prefs.js - "browser.startup.homepage" - "http://www.google.sk/"
prefs.js - "keyword.URL" - "http://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q="

"otis@digitalpersona.com"=c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt\
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.6.602.180 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_37]
"Description"=
"Path"=C:\windows\SysWOW64\npdeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

C:\Program Files (x86)\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}

C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
GoogleDesktopMozilla.dll
GoogleDesktopMozillaStub.js
GoogleDesktopMozillaStub.xpt
nsIQTScriptablePlugin.xpt

C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
npwachk.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
googledesktop.xml
slovnik-sk.xml
wikipedia-sk.xml
yahoo.xml
zoznam-sk.xml

C:\Users\nexter\AppData\Roaming\Mozilla\Firefox\Profiles\11kw2nld.default\extensions\
{e001c731-5e37-4538-a5cb-8168736a2360}

C:\Users\nexter\AppData\Roaming\Mozilla\Firefox\Profiles\11kw2nld.default\searchplugins\
badoo.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2010-01-19 117248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]
HP ProtectTools Security Manager Extension - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll [2010-04-02 1471752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2012-10-25 329712]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-03-07 1224568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pri prihlasovaní v konte Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-10-10 3834016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D2C5E510-BE6D-42CC-9F61-E4F939078474}]
Lexmark - C:\Program Files\Lexmark Printable Web\bho.dll [2008-05-22 180224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2012-10-25 59376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\PROGRA~2\PCTRAN~1\webie.dll [2004-05-13 319488]
{1017A80C-6F09-4548-A84D-EDD6AC9525F0}
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-03-07 1224568]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2010-01-19 11266048]
"estar"=C:\System.Sav\Util\HideDOS.EXE [2006-11-28 77824]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-03-07 4767304]
"IFXSPMGT"=C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [2010-02-24 1160480]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-07-04 641704]
"AMD AVT"=Cmd.exe /c start AMD Accelerated Video Transcoding device initialization /min C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe aml []
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2012-08-28 334240]
""= []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2011-03-04 2736128]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2012-11-01 5629312]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files (x86)\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~2\Google\GOOGLE~3\GoogleDesktopNetwork3.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SolutoService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SolutoService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
""=

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\SysWOW64\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.scr - open - C:\windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2013-03-23 14:58:51 ----D---- C:\rsit
2013-03-23 14:58:15 ----SD---- C:\ComboFix
2013-03-23 14:54:45 ----A---- C:\AdwCleaner[R5].txt
2013-03-23 13:08:24 ----D---- C:\Users\nexter\AppData\Roaming\SUPERAntiSpyware.com
2013-03-23 13:07:54 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2013-03-23 12:38:18 ----D---- C:\userscript
2013-03-23 11:32:41 ----A---- C:\TDSSKiller.2.8.16.0_23.03.2013_11.32.41_log.txt
2013-03-22 22:56:35 ----A---- C:\ComboFix.txt
2013-03-22 22:39:16 ----A---- C:\windows\zip.exe
2013-03-22 22:39:16 ----A---- C:\windows\SWSC.exe
2013-03-22 22:39:16 ----A---- C:\windows\SWREG.exe
2013-03-22 22:39:16 ----A---- C:\windows\sed.exe
2013-03-22 22:39:16 ----A---- C:\windows\PEV.exe
2013-03-22 22:39:16 ----A---- C:\windows\NIRCMD.exe
2013-03-22 22:39:16 ----A---- C:\windows\MBR.exe
2013-03-22 22:39:16 ----A---- C:\windows\grep.exe
2013-03-22 21:35:30 ----D---- C:\ProgramData\Spybot - Search & Destroy
2013-03-22 21:35:30 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy
2013-03-22 17:17:44 ----D---- C:\Users\nexter\AppData\Roaming\QuickScan
2013-03-21 08:30:06 ----D---- C:\Users\nexter\AppData\Roaming\FileOpen
2013-03-21 08:30:06 ----D---- C:\ProgramData\FileOpen
2013-03-17 20:59:39 ----D---- C:\Komku
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\wininet.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\wextract.exe
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\webcheck.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\vbscript.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\urlmon.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\url.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\SetIEInstalledDate.exe
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\RegisterIEPKEYs.exe
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\pngfilt.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\occache.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\msrating.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\msls31.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\mshtmlmedia.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\mshtmler.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\mshtmled.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\mshtml.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\mshta.exe
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\msfeedssync.exe
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\msfeedsbs.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\msfeeds.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\licmgr10.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\jsproxy.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\jscript9.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\jscript.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\inseng.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\imgutil.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\iexpress.exe
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\ieUnatt.exe
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\ieui.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\iesysprep.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\iesetup.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\iertutil.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\iernonce.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\iepeers.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\ieframe.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\iedkcs32.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\ieapfltr.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\ieapfltr.dat
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\IEAdvpack.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\icardie.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\elshyph.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\dxtrans.dll
2013-03-15 15:40:37 ----A---- C:\windows\SysWOW64\dxtmsft.dll
2013-03-15 15:32:33 ----D---- C:\Program Files (x86)\Common Files\Skype
2013-03-08 09:23:46 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-03-02 20:06:38 ----D---- C:\ProgramData\Protexis
2013-03-02 18:21:00 ----D---- C:\Program Files (x86)\Microsoft SDKs
2013-03-02 18:20:56 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 9.0
2013-03-02 18:18:34 ----D---- C:\Program Files (x86)\Common Files\Protexis
2013-03-02 18:18:33 ----D---- C:\ProgramData\Corel
2013-03-02 18:08:30 ----D---- C:\ProgramData\CorelDRAW Graphics Suite X5
2013-02-27 07:47:42 ----A---- C:\windows\SysWOW64\msmpeg2vdec.dll
2013-02-27 07:47:41 ----A---- C:\windows\SysWOW64\UIAnimation.dll
2013-02-27 07:47:19 ----A---- C:\windows\SysWOW64\WMPhoto.dll
2013-02-27 07:46:56 ----AH---- C:\windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-02-27 07:46:53 ----AH---- C:\windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-02-27 07:46:53 ----AH---- C:\windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-02-27 07:46:53 ----AH---- C:\windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-02-27 07:46:53 ----A---- C:\windows\SysWOW64\d3d10warp.dll
2013-02-27 07:46:53 ----A---- C:\windows\SysWOW64\d3d10_1.dll
2013-02-27 07:46:51 ----AH---- C:\windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-02-27 07:46:51 ----A---- C:\windows\SysWOW64\XpsGdiConverter.dll
2013-02-27 07:46:50 ----AH---- C:\windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-02-27 07:46:49 ----AH---- C:\windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-02-27 07:46:49 ----AH---- C:\windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-02-27 07:46:49 ----AH---- C:\windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-02-27 07:46:48 ----A---- C:\windows\SysWOW64\dxgi.dll
2013-02-27 07:46:47 ----A---- C:\windows\SysWOW64\d3d10level9.dll
2013-02-27 07:46:47 ----A---- C:\windows\SysWOW64\d3d10core.dll
2013-02-27 07:46:47 ----A---- C:\windows\SysWOW64\d3d10_1core.dll
2013-02-27 07:46:46 ----A---- C:\windows\SysWOW64\d3d11.dll
2013-02-27 07:46:45 ----A---- C:\windows\SysWOW64\XpsPrint.dll
2013-02-27 07:46:45 ----A---- C:\windows\SysWOW64\d3d10.dll
2013-02-27 07:46:43 ----A---- C:\windows\SysWOW64\DWrite.dll
2013-02-27 07:46:42 ----A---- C:\windows\SysWOW64\WindowsCodecsExt.dll
2013-02-27 07:46:40 ----A---- C:\windows\SysWOW64\WindowsCodecs.dll
2013-02-27 07:46:35 ----A---- C:\windows\SysWOW64\d2d1.dll
2013-02-24 17:31:31 ----D---- C:\ProgramData\Bitstream Font Navigator
2013-02-24 17:30:56 ----A---- C:\windows\capture.ini
2013-02-24 17:30:55 ----D---- C:\Users\nexter\AppData\Roaming\Corel
2013-02-24 17:27:20 ----D---- C:\windows\Corel
2013-02-24 17:20:37 ----D---- C:\Program Files (x86)\Corel
2013-02-24 17:20:37 ----D---- C:\Program Files (x86)\Common Files\Corel

======List of files/folders modified in the last 1 month======

2013-03-23 14:58:55 ----D---- C:\Program Files (x86)\Trend Micro
2013-03-23 14:58:54 ----D---- C:\windows\temp
2013-03-23 14:58:19 ----D---- C:\Qoobox
2013-03-23 14:27:20 ----D---- C:\ProgramData\HPQLOG
2013-03-23 14:24:27 ----D---- C:\Windows
2013-03-23 14:24:27 ----D---- C:\Program Files (x86)
2013-03-23 13:45:21 ----A---- C:\windows\wdict32.INI
2013-03-23 13:08:56 ----D---- C:\windows\Tasks
2013-03-23 13:08:23 ----D---- C:\ProgramData
2013-03-23 13:07:54 ----RD---- C:\Program Files
2013-03-23 11:35:55 ----D---- C:\TDSSKiller_Quarantine
2013-03-23 11:02:27 ----SHD---- C:\System Volume Information
2013-03-23 10:52:00 ----D---- C:\windows\Downloaded Program Files
2013-03-23 10:42:03 ----SHD---- C:\windows\Installer
2013-03-23 10:41:40 ----D---- C:\Config.Msi
2013-03-23 10:39:46 ----D---- C:\windows\inf
2013-03-23 10:39:24 ----D---- C:\Users\nexter\AppData\Roaming\Winamp
2013-03-23 10:39:24 ----D---- C:\Users\nexter\AppData\Roaming\DAEMON Tools Lite
2013-03-23 10:39:23 ----D---- C:\Users\nexter\AppData\Roaming\uTorrent
2013-03-23 10:39:03 ----D---- C:\windows\Panther
2013-03-23 10:39:03 ----D---- C:\windows\Logs
2013-03-23 10:39:03 ----D---- C:\windows\debug
2013-03-22 22:51:31 ----A---- C:\windows\system.ini
2013-03-22 22:46:13 ----D---- C:\windows\SysWOW64\drivers
2013-03-22 22:46:13 ----D---- C:\windows\SysWOW64
2013-03-22 22:46:13 ----D---- C:\windows\AppPatch
2013-03-22 22:46:11 ----D---- C:\Program Files (x86)\Common Files
2013-03-22 20:03:31 ----D---- C:\windows\Prefetch
2013-03-19 15:52:49 ----D---- C:\windows\rescache
2013-03-18 08:30:43 ----D---- C:\windows\winsxs
2013-03-17 22:14:30 ----D---- C:\windows\SysWOW64\sk-SK
2013-03-17 22:14:30 ----D---- C:\Program Files (x86)\Internet Explorer
2013-03-17 22:14:28 ----D---- C:\windows\SysWOW64\migration
2013-03-17 22:14:28 ----D---- C:\windows\SysWOW64\en-US
2013-03-17 22:14:26 ----D---- C:\windows\PolicyDefinitions
2013-03-17 22:14:25 ----D---- C:\windows\System32
2013-03-17 17:43:34 ----D---- C:\ProgramData\Lx_cats
2013-03-17 16:49:19 ----D---- C:\2_Work
2013-03-15 15:47:55 ----D---- C:\Users\nexter\AppData\Roaming\Skype
2013-03-15 15:32:43 ----D---- C:\ProgramData\Skype
2013-03-15 15:32:33 ----RD---- C:\Program Files (x86)\Skype
2013-03-15 09:27:05 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-03-15 08:46:17 ----D---- C:\ProgramData\Microsoft Help
2013-03-14 16:06:10 ----A---- C:\windows\wtran32.INI
2013-03-13 16:09:43 ----A---- C:\windows\SysWOW64\FlashPlayerApp.exe
2013-03-13 07:34:05 ----D---- C:\1_Home
2013-03-10 14:57:53 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-03-05 11:33:54 ----D---- C:\windows\Microsoft.NET
2013-03-02 21:22:34 ----RSD---- C:\windows\Fonts
2013-03-02 18:31:35 ----RSD---- C:\windows\assembly
2013-03-02 18:23:28 ----SD---- C:\Users\nexter\AppData\Roaming\Microsoft
2013-03-02 18:23:28 ----SD---- C:\ProgramData\Microsoft
2013-03-02 18:21:35 ----D---- C:\Program Files (x86)\Common Files\microsoft shared
2013-02-27 11:21:42 ----D---- C:\windows\SysWOW64\zh-TW
2013-02-27 11:21:42 ----D---- C:\windows\SysWOW64\zh-HK
2013-02-27 11:21:42 ----D---- C:\windows\SysWOW64\tr-TR
2013-02-27 11:21:42 ----D---- C:\windows\SysWOW64\sv-SE
2013-02-27 11:21:42 ----D---- C:\windows\SysWOW64\pt-PT
2013-02-27 11:21:42 ----D---- C:\windows\SysWOW64\pt-BR
2013-02-27 11:21:42 ----D---- C:\windows\SysWOW64\pl-PL
2013-02-27 11:21:42 ----D---- C:\windows\SysWOW64\nl-NL
2013-02-27 11:21:42 ----D---- C:\windows\SysWOW64\ko-KR
2013-02-27 11:21:42 ----D---- C:\windows\SysWOW64\it-IT
2013-02-27 11:21:42 ----D---- C:\windows\SysWOW64\hu-HU
2013-02-27 11:21:42 ----D---- C:\windows\SysWOW64\fr-FR
2013-02-27 11:21:42 ----D---- C:\windows\SysWOW64\fi-FI
2013-02-27 11:21:42 ----D---- C:\windows\SysWOW64\es-ES
2013-02-27 11:21:42 ----D---- C:\windows\SysWOW64\el-GR
2013-02-27 11:21:42 ----D---- C:\windows\SysWOW64\de-DE
2013-02-27 11:21:41 ----D---- C:\windows\SysWOW64\zh-CN
2013-02-27 11:21:41 ----D---- C:\windows\SysWOW64\ru-RU
2013-02-27 11:21:41 ----D---- C:\windows\SysWOW64\nb-NO
2013-02-27 11:21:41 ----D---- C:\windows\SysWOW64\ja-JP
2013-02-27 11:21:41 ----D---- C:\windows\SysWOW64\da-DK
2013-02-27 11:21:41 ----D---- C:\windows\SysWOW64\cs-CZ
2013-02-25 07:19:54 ----D---- C:\Program Files (x86)\Common Files\DESIGNER
2013-02-25 07:19:46 ----D---- C:\Program Files (x86)\Microsoft Office
2013-02-24 17:30:33 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-02-24 17:18:04 ----D---- C:\Program Files (x86)\Common Files\InstallShield

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;aswRvrt; C:\windows\SysWOW64\drivers\aswRvrt.sys []
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\windows\system32\DRIVERS\AtiPcie.sys []
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys []
R0 PxHlpa64;PxHlpa64; C:\windows\System32\Drivers\PxHlpa64.sys []
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys []
R0 SafeBoot;SafeBoot; C:\windows\SysWOW64\drivers\SafeBoot.sys [2010-02-02 110520]
R0 SbAlg;SbAlg; C:\windows\SysWOW64\drivers\SbAlg.sys [2010-02-02 51800]
R0 SbFsLock;SbFsLock; C:\windows\SysWOW64\drivers\SbFsLock.sys [2010-02-02 13256]
R0 Soluto;Soluto; C:\windows\system32\DRIVERS\Soluto.sys []
R0 sptd;sptd; C:\windows\System32\Drivers\sptd.sys []
R1 aswKbd;aswKbd; C:\windows\SysWOW64\drivers\aswKbd.sys []
R1 aswRdr;aswRdr; C:\windows\System32\Drivers\aswrdr2.sys []
R1 aswSnx;aswSnx; C:\windows\SysWOW64\drivers\aswSnx.sys []
R1 aswSP;aswSP; C:\windows\SysWOW64\drivers\aswSP.sys []
R1 aswTdi;avast! Network Shield Support; C:\windows\SysWOW64\drivers\aswTdi.sys []
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\windows\system32\drivers\csc.sys []
R1 PersonalSecureDrive;PersonalSecureDrive; C:\windows\System32\drivers\psd.sys []
R1 RsvLock;RsvLock; C:\windows\SysWOW64\drivers\RsvLock.sys [2010-02-02 40088]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 AODDriver4.1;AODDriver4.1; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-03-05 53888]
R2 aswFsBlk;aswFsBlk; C:\windows\SysWOW64\drivers\aswFsBlk.sys []
R2 aswMonFlt;aswMonFlt; \??\C:\windows\system32\drivers\aswMonFlt.sys []
R2 rimspci;rimspci; C:\windows\system32\DRIVERS\rimspe64.sys []
R2 risdpcie;risdpcie; C:\windows\system32\DRIVERS\risdpe64.sys []
R2 rixdpcie;rixdpcie; C:\windows\system32\DRIVERS\rixdpe64.sys []
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys []
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\agrsm64.sys []
R3 amdiox64;AMD IO Driver; C:\windows\system32\DRIVERS\amdiox64.sys []
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys []
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys []
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\windows\system32\drivers\AtiHdmi.sys []
R3 BCM43XX;Broadcom 802.11 - ovládač sieťového adaptéru; C:\windows\system32\DRIVERS\bcmwl664.sys []
R3 BthEnum;Bluetooth Request Block Driver; C:\windows\system32\drivers\BthEnum.sys []
R3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys []
R3 BTHUSB;Bluetooth Radio USB Driver; C:\windows\System32\Drivers\BTHUSB.sys []
R3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys []
R3 btwavdt;Bluetooth AVDT; C:\windows\system32\DRIVERS\btwavdt.sys []
R3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys []
R3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys []
R3 cpuz135;cpuz135; \??\C:\windows\TEMP\cpuz135\cpuz135_x64.sys []
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys []
R3 huawei_enumerator;huawei_enumerator; C:\windows\system32\DRIVERS\ew_jubusenum.sys []
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys []
R3 rtsuvc;HP Webcam [2 MP Fixed]; C:\windows\system32\DRIVERS\rtsuvc.sys []
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10329; C:\windows\system32\DRIVERS\stwrt64.sys []
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys []
R3 TPM;TPM; C:\windows\system32\drivers\tpm.sys []
S3 AESTAud;AE Audio Service; C:\windows\system32\drivers\AESTAu64.sys []
S3 aswVmm;aswVmm; C:\windows\SysWOW64\drivers\aswVmm.sys []
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\windows\system32\DRIVERS\bridge.sys []
S3 BTHPORT;Bluetooth Port Driver; C:\windows\System32\Drivers\BTHport.sys []
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 cpuz136;cpuz136; \??\C:\windows\TEMP\cpuz136\cpuz136_x64.sys []
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys []
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\windows\system32\DRIVERS\ew_hwusbdev.sys []
S3 ewusbmbb;HUAWEI USB-WWAN miniport; C:\windows\system32\DRIVERS\ewusbwwan.sys []
S3 grmnusb;grmnusb; C:\windows\system32\drivers\grmnusb.sys []
S3 HTCAND64;HTC Device Driver; C:\windows\System32\Drivers\ANDROIDUSB.sys []
S3 htcnprot;HTC NDIS Protocol Driver; C:\windows\system32\DRIVERS\htcnprot.sys []
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\windows\system32\DRIVERS\ewusbmdm.sys []
S3 MBAMProtector;MBAMProtector; \??\C:\windows\system32\drivers\mbam.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\windows\system32\drivers\ccdcmbx64.sys []
S3 nmwcdc;Nokia USB Communication Driver; C:\windows\system32\drivers\ccdcmbox64.sys []
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\windows\System32\drivers\rdpdr.sys []
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys []
S3 RTCore64;RTCore64; \??\C:\Users\nexter\Desktop\rmclock_235_bin\RTCore64.sys []
S3 s3cap;s3cap; C:\windows\system32\drivers\vms3cap.sys []
S3 sdbus;sdbus; C:\windows\system32\drivers\sdbus.sys []
S3 StarOpen;StarOpen; C:\windows\SysWOW64\drivers\StarOpen.sys [2009-11-12 7168]
S3 storvsc;storvsc; C:\windows\system32\drivers\storvsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys []
S3 upperdev;upperdev; C:\windows\system32\DRIVERS\usbser_lowerfltx64.sys []
S3 usbscan;USB Scanner Driver; C:\windows\system32\DRIVERS\usbscan.sys []
S3 usbser;USB Modem Driver; C:\windows\system32\drivers\usbser.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2012-07-11 140672]
R2 ac.sharedstore;ActivIdentity Shared Store Service; C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe [2009-06-04 277032]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-12-18 65192]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2013-01-29 89600]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agr64svc.exe [2010-01-21 16896]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe []
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-07-04 361984]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-03-07 45248]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-12-29 873248]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2010-03-31 462088]
R2 Fabs;FABS - Helping agent for MAGIX media database; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2009-08-27 1253376]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-09-12 142904]
R2 HP ProtectTools Service;HP ProtectTools Service; c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2010-03-17 36864]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2011-06-21 85560]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-04-05 103992]
R2 HPDayStarterService;HP DayStarter Service; c:\Program Files (x86)\Hewlett-Packard\HP QuickLook\HPDayStarterService.exe [2010-03-25 90112]
R2 HpFkCryptService;Drive Encryption Service; c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2010-02-02 281192]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2010-01-19 297984]
R2 hpHotkeyMonitor;HP Hotkey Monitor; C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2012-08-28 523680]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe []
R2 HWDeviceService64.exe;HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [2010-11-16 339456]
R2 IFXSpMgtSrv;Security Platform Management Service; C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [2010-02-24 1160480]
R2 IFXTCS;Trusted Platform Core Service; C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe [2010-02-24 992544]
R2 lxec_device;lxec_device; C:\windows\system32\lxeccoms.exe [2010-04-14 598696]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2012-03-23 87040]
R2 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-03-16 113264]
R2 PersonalSecureDriveService;Personal Secure Drive Service; C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe [2010-02-24 214304]
R2 PSI_SVC_2;Protexis Licensing V2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [2010-03-10 189728]
R2 SolutoLauncherService;Soluto Launcher Service; C:\Program Files\Soluto\SolutoLauncherService.exe [2013-02-03 183264]
R2 SolutoService;Soluto PCGenome Core Service; C:\Program Files\Soluto\SolutoService.exe [2013-02-03 552928]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10129; C:\Program Files\IDT\WDM\STacSV64.exe [2013-01-29 271360]
R3 DEBridge;DEBridge; c:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe [2010-02-02 704512]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-08-10 1001376]
S2 Autodesk Content Service;Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2012-02-09 18720]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 lxecCATSCustConnectService;lxecCATSCustConnectService; C:\windows\system32\spool\DRIVERS\x64\3\\lxecserv.exe [2010-04-14 45736]
S2 Mobile Partner. RunOuc;Mobile Partner. OUC; C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe [2012-07-02 218624]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-03-13 253656]
S3 AppMgmt;@appmgmts.dll,-3250; C:\windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2008-08-07 3276800]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2009-12-07 362040]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2013-02-15 1432400]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-06-19 651720]
S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335; C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe [2012-10-24 30192]
S3 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-09-22 136176]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-09-22 136176]
S3 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2012-08-10 197536]
S3 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2011-03-04 73728]
S3 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-14 682344]
S3 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-14 398184]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-03-08 115608]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-01-08 161536]
S3 SolutoRemoteService;Soluto Remote Service; C:\Program Files\Soluto\SolutoRemoteService.exe [2013-02-03 1239552]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\windows\System32\svchost.exe [2009-07-14 20992]
S3 TeamViewer7;TeamViewer 7; C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-01-19 3027840]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\windows\System32\svchost.exe [2009-07-14 20992]
S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\windows\System32\svchost.exe [2009-07-14 20992]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\windows\System32\svchost.exe [2009-07-14 20992]

-----------------EOF-----------------


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 09.05.11
Prihlásený: 14.09.16
Príspevky: 618
Témy: 2 | 2
NapísalOffline : 23.03.2013 15:54 | pomoc s http://adf.ly/Kwky2

nexter píše:
Ten script co si poslal mam "pretiahnut" cez combofix?


ano máš pretiahnuť cez combofix http://imageshack.us/photo/my-images/801/13587703.gif/

upni sem obsah C:\TDSSKiller.2.8.16.0_23.03.2013_11.32.41_log.txt


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 18.11.09
Prihlásený: 29.11.16
Príspevky: 89
Témy: 17 | 17
Bydlisko: Ružomberok
Napísal autor témyOffline : 23.03.2013 16:32 | pomoc s http://adf.ly/Kwky2

Spoiler: zobraziť
ComboFix 13-03-21.02 - nexter . 03. 2013 15:59:43.5.3 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1250.421.1051.18.3830.1436 [GMT 1:00]
Running from: c:\users\nexter\Desktop\ComboFix.exe
Command switches used :: c:\users\nexter\Desktop\CFScript.txt.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\Tasks\Adobe Flash Player Updater.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
"c:\windows\Tasks\HPCeeScheduleFornexter.job"
"c:\windows\TEMP\cpuz136\cpuz136_x64.sys"
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_CPUZ136
-------\Service_cpuz136
-------\Service_SkypeUpdate
.
.
((((((((((((((((((((((((( Files Created from 2013-02-23 to 2013-03-23 )))))))))))))))))))))))))))))))
.
.
2013-03-23 15:09 . 2013-03-23 15:09 -------- d-----w- c:\users\Public\AppData\Local\temp
2013-03-23 15:09 . 2013-03-23 15:09 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-03-23 13:58 . 2013-03-23 13:58 -------- d-----w- C:\rsit
2013-03-23 12:08 . 2013-03-23 12:08 -------- d-----w- c:\users\nexter\AppData\Roaming\SUPERAntiSpyware.com
2013-03-23 12:07 . 2013-03-23 12:08 -------- d-----w- c:\program files\SUPERAntiSpyware
2013-03-23 12:07 . 2013-03-23 12:07 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2013-03-23 11:38 . 2013-03-23 11:42 -------- d-----w- C:\userscript
2013-03-22 20:35 . 2013-03-23 13:21 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2013-03-22 20:35 . 2013-03-23 13:21 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy
2013-03-22 16:19 . 2013-03-06 23:33 178624 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-03-22 16:19 . 2013-03-06 23:33 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-03-22 16:17 . 2013-03-23 14:08 -------- d-----w- c:\users\nexter\AppData\Roaming\QuickScan
2013-03-22 06:25 . 2013-03-15 06:28 9311288 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{69F65DE1-1BC6-4570-BDC7-4FC98BE40DA3}\mpengine.dll
2013-03-21 07:30 . 2013-03-21 07:30 -------- d-----w- c:\users\nexter\AppData\Roaming\FileOpen
2013-03-21 07:30 . 2013-03-21 07:30 -------- d-----w- c:\programdata\FileOpen
2013-03-18 07:32 . 2013-03-18 07:32 -------- d--h--w- c:\program files\Uninstall Information
2013-03-17 19:59 . 2013-03-17 19:59 -------- d-----w- C:\Komku
2013-03-15 14:32 . 2013-03-15 14:32 -------- d-----w- c:\program files (x86)\Common Files\Skype
2013-03-15 14:28 . 2013-02-12 04:12 19968 ----a-w- c:\windows\system32\drivers\usb8023x.sys
2013-03-15 14:28 . 2013-02-12 04:12 19968 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-03-02 19:06 . 2013-03-02 19:12 -------- d-----w- c:\programdata\Protexis
2013-03-02 17:21 . 2013-03-02 17:21 -------- d-----w- c:\program files (x86)\Microsoft SDKs
2013-03-02 17:20 . 2013-03-02 17:21 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 9.0
2013-03-02 17:18 . 2013-03-02 17:18 -------- d-----w- c:\program files (x86)\Common Files\Protexis
2013-03-02 17:18 . 2013-03-02 17:18 -------- d-----w- c:\programdata\Corel
2013-02-27 06:47 . 2013-01-04 06:11 2284544 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll
2013-02-27 06:47 . 2013-01-04 06:11 2776576 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2013-02-27 06:47 . 2013-01-13 19:53 187392 ----a-w- c:\windows\SysWow64\UIAnimation.dll
2013-02-27 06:47 . 2013-01-13 19:24 221184 ----a-w- c:\windows\system32\UIAnimation.dll
2013-02-27 06:47 . 2013-01-13 19:02 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2013-02-27 06:47 . 2013-01-13 18:32 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2013-02-24 16:31 . 2013-02-24 16:31 -------- d-----w- c:\programdata\Bitstream Font Navigator
2013-02-24 16:30 . 2013-03-02 19:06 -------- d-----w- c:\users\nexter\AppData\Roaming\Corel
2013-02-24 16:27 . 2013-02-24 16:27 -------- d-----w- c:\windows\Corel
2013-02-24 16:20 . 2013-03-02 17:11 -------- d-----w- c:\program files (x86)\Corel
2013-02-24 16:20 . 2013-02-24 16:20 -------- d-----w- c:\program files (x86)\Common Files\Corel
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-03-15 07:46 . 2011-04-26 06:45 72013344 ----a-w- c:\windows\system32\MRT.exe
2013-03-13 15:09 . 2012-05-01 11:12 693976 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-03-13 15:09 . 2011-08-23 05:57 73432 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-03-06 23:33 . 2012-03-27 11:29 70992 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-03-06 23:33 . 2011-04-22 10:13 377920 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-03-06 23:33 . 2011-04-22 10:13 68920 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-03-06 23:33 . 2011-04-22 10:13 1025808 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-03-06 23:33 . 2011-04-22 10:13 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-03-06 23:33 . 2011-04-22 10:13 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-03-06 23:32 . 2011-04-22 10:12 41664 ----a-w- c:\windows\avastSS.scr
2013-03-06 23:32 . 2011-04-22 10:13 287840 ----a-w- c:\windows\system32\aswBoot.exe
2013-02-12 05:45 . 2013-03-13 06:24 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-02-12 05:45 . 2013-03-13 06:24 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-02-12 05:45 . 2013-03-13 06:24 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-02-12 05:45 . 2013-03-13 06:24 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-02-12 04:48 . 2013-03-13 06:24 474112 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-02-12 04:48 . 2013-03-13 06:24 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-02-03 18:32 . 2011-10-21 06:42 54728 ----a-w- c:\windows\system32\drivers\Soluto.sys
2013-01-29 07:57 . 2013-01-29 07:58 515584 ----a-w- c:\windows\system32\drivers\stwrt64.sys
2013-01-29 07:57 . 2013-01-29 07:58 489472 ----a-w- c:\windows\sttray64.exe
2013-01-29 07:57 . 2013-01-29 07:58 1952256 ----a-w- c:\windows\system32\stlang64.dll
2013-01-29 07:57 . 2013-01-29 07:58 431616 ----a-w- c:\windows\system32\stcplx64.dll
2013-01-29 07:57 . 2013-01-29 07:58 1484288 ----a-w- c:\windows\system32\stapo64.dll
2013-01-29 07:57 . 2013-01-29 07:59 651264 ------w- c:\windows\system32\stapi64.dll
2013-01-29 07:57 . 2013-01-29 07:58 12861952 ----a-w- c:\windows\system32\idtcpl64.cpl
2013-01-29 07:57 . 2013-01-29 07:58 219648 ----a-w- c:\windows\system32\staco64.dll
2013-01-29 07:57 . 2013-01-29 07:58 442368 ----a-w- c:\windows\system32\AESTEC64.dll
2013-01-29 07:57 . 2013-01-29 07:58 68608 ----a-w- c:\windows\system32\AESTAR64.dll
2013-01-29 07:57 . 2013-01-29 07:58 162816 ----a-w- c:\windows\system32\AESTAC64.dll
2013-01-29 07:57 . 2013-01-29 07:58 90624 ----a-w- c:\windows\system32\AESTCo64.dll
2013-01-23 11:35 . 2013-01-23 11:35 388096 ----a-r- c:\users\nexter\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-01-17 00:28 . 2011-04-22 11:03 273840 ------w- c:\windows\system32\MpSigStub.exe
2013-01-11 10:39 . 2013-01-17 08:29 103936 ----a-w- c:\windows\system32\pdfcmon.dll
2013-01-05 05:53 . 2013-02-13 06:45 5553512 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-01-05 05:00 . 2013-02-13 06:45 3967848 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-01-05 05:00 . 2013-02-13 06:45 3913064 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-01-04 05:46 . 2013-02-13 06:45 215040 ----a-w- c:\windows\system32\winsrv.dll
2013-01-04 04:51 . 2013-02-13 06:45 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2013-01-04 04:43 . 2013-02-13 06:45 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-01-04 03:26 . 2013-02-13 06:45 3153408 ----a-w- c:\windows\system32\win32k.sys
2013-01-04 02:47 . 2013-02-13 06:45 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2013-01-04 02:47 . 2013-02-13 06:45 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2013-01-04 02:47 . 2013-02-13 06:44 2048 ----a-w- c:\windows\SysWow64\user.exe
2013-01-04 02:47 . 2013-02-13 06:45 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2013-01-03 06:00 . 2013-02-13 06:44 1913192 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-01-03 06:00 . 2013-02-13 06:44 288088 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" [2011-03-04 2736128]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2012-11-01 5629312]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"estar"="c:\system.sav\Util\HideDOS.EXE" [2006-11-28 77824]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-03-06 4767304]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-07-04 641704]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-12-29 1082656]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\progra~2\Google\GOOGLE~3\GoogleDesktopNetwork3.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ DPPassFilter scecli
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SolutoService]
@="Service"
.
R2 Autodesk Content Service;Autodesk Content Service;c:\program files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2012-02-09 18720]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 HP Power Assistant Service;HP Power Assistant Service;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-09-12 142904]
R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2011-06-21 85560]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-04-05 103992]
R2 lxecCATSCustConnectService;lxecCATSCustConnectService;c:\windows\system32\spool\DRIVERS\x64\3\\lxecserv.exe [2010-04-14 45736]
R2 Mobile Partner. RunOuc;Mobile Partner. OUC;c:\program files (x86)\Mobile Partner\UpdateDog\ouc.exe [2012-07-02 218624]
R2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe [2010-02-18 2045232]
R3 AESTAud;AE Audio Service;c:\windows\system32\drivers\AESTAu64.sys [2009-04-22 146048]
R3 aswVmm;aswVmm; [x]
R3 cpuz135;cpuz135;c:\windows\TEMP\cpuz135\cpuz135_x64.sys [x]
R3 DAMDrv;DAMDrv;c:\windows\system32\DRIVERS\DAMDrv64.sys [2009-10-21 40760]
R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys [2012-07-02 117248]
R3 ewusbmbb;HUAWEI USB-WWAN miniport;c:\windows\system32\DRIVERS\ewusbwwan.sys [2012-07-02 421376]
R3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2008-08-07 3276800]
R3 FLCDLOCK;HP ProtectTools Device Locking / Auditing;c:\windows\SysWOW64\flcdlock.exe [2009-12-07 362040]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2013-02-15 1432400]
R3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files (x86)\Google\Google Desktop Search\GoogleDesktop.exe [2012-10-24 30192]
R3 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2012-08-10 197536]
R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [2009-11-01 33736]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [2010-06-25 36928]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-12-14 24176]
R3 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-14 682344]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
R3 RTCore64;RTCore64;c:\users\nexter\Desktop\rmclock_235_bin\RTCore64.sys [x]
R3 SolutoRemoteService;Soluto Remote Service;c:\program files\Soluto\SolutoRemoteService.exe [2013-02-03 1239552]
R3 TeamViewer7;TeamViewer 7;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-01-19 3027840]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2011-04-23 1255736]
S0 aswRvrt;aswRvrt; [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2011-03-04 55856]
S0 SafeBoot;SafeBoot; [x]
S0 SbAlg;SbAlg; [x]
S0 SbFsLock;SbFsLock; [x]
S0 Soluto;Soluto;c:\windows\system32\DRIVERS\Soluto.sys [2013-02-03 54728]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2011-04-22 834544]
S1 aswKbd;aswKbd; [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 PersonalSecureDrive;PersonalSecureDrive;c:\windows\System32\drivers\psd.sys [2010-01-26 44576]
S1 RsvLock;RsvLock; [x]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [2012-07-11 140672]
S2 ac.sharedstore;ActivIdentity Shared Store Service;c:\program files\Common Files\ActivIdentity\ac.sharedstore.exe [2009-06-03 277032]
S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe [2013-01-29 89600]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-07-04 238080]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-07-04 361984]
S2 AODDriver4.1;AODDriver4.1;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-03-05 53888]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-03-06 80816]
S2 Fabs;FABS - Helping agent for MAGIX media database;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2009-08-27 1253376]
S2 HP ProtectTools Service;HP ProtectTools Service;c:\program files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2010-03-17 36864]
S2 HPDayStarterService;HP DayStarter Service;c:\program files (x86)\Hewlett-Packard\HP QuickLook\HPDayStarterService.exe [2010-03-25 90112]
S2 HpFkCryptService;Drive Encryption Service;c:\program files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2010-02-02 281192]
S2 HPFSService;File Sanitizer for HP ProtectTools;c:\program files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2010-01-19 297984]
S2 hpHotkeyMonitor;HP Hotkey Monitor;c:\program files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2012-08-28 523680]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [2011-05-13 30520]
S2 HWDeviceService64.exe;HWDeviceService64.exe;c:\programdata\DatacardService\HWDeviceService64.exe [2010-11-16 339456]
S2 lxec_device;lxec_device;c:\windows\system32\lxeccoms.exe [2010-04-14 1052328]
S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2012-03-23 87040]
S2 PdiService;Portrait Displays SDK Service;c:\program files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-03-16 113264]
S2 rimspci;rimspci;c:\windows\system32\DRIVERS\rimspe64.sys [2009-10-26 61952]
S2 risdpcie;risdpcie;c:\windows\system32\DRIVERS\risdpe64.sys [2009-10-28 79360]
S2 rixdpcie;rixdpcie;c:\windows\system32\DRIVERS\rixdpe64.sys [2009-12-11 55808]
S2 SolutoLauncherService;Soluto Launcher Service;c:\program files\Soluto\SolutoLauncherService.exe [2013-02-03 183264]
S2 SolutoService;Soluto PCGenome Core Service;c:\program files\Soluto\SolutoService.exe [2013-02-03 552928]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2010-01-07 35104]
S3 DEBridge;DEBridge;c:\program files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe [2010-02-02 704512]
S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys [2012-07-02 86016]
S3 rtsuvc;HP Webcam [2 MP Fixed];c:\windows\system32\DRIVERS\rtsuvc.sys [2010-01-30 05:46 89344]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [2010-01-08 395776]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2011-03-04 10:29 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-03-14 11:48 1629648 ----a-w- c:\program files (x86)\Google\Chrome\Application\25.0.1364.172\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2013-03-23 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-01 15:09]
.
2013-02-16 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-09-22 05:32]
.
2013-03-23 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-09-22 05:32]
.
2013-03-15 c:\windows\Tasks\HPCeeScheduleFornexter.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-01-05 10:53]
.
2013-03-23 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task a4fe0e06-17e0-4b9d-a39d-87e17e2a17e9.job
- c:\program files\SUPERAntiSpyware\SASTask.exe [2011-05-04 17:52]
.
2013-03-23 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task c388c850-fec6-47d6-87ec-607c3d4deb39.job
- c:\program files\SUPERAntiSpyware\SASTask.exe [2011-05-04 17:52]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-03-06 23:32 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2012-12-17 18:50 755816 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2012-12-17 18:50 755816 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2012-12-17 18:50 755816 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2012-12-17 18:50 755816 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"acevents"="c:\program files\ActivIdentity\ActivClient\acevents.exe" [2009-06-03 196648]
"accrdsub"="c:\program files\ActivIdentity\ActivClient\accrdsub.exe" [2009-06-03 483880]
"CNAP2 Launcher"="c:\windows\system32\spool\DRIVERS\x64\3\CNAP2LAK.EXE" [2009-04-22 116128]
"lxecmon.exe"="c:\program files (x86)\Lexmark Pro800-Pro900 Series\lxecmon.exe" [2011-01-23 770728]
"EzPrint"="c:\program files (x86)\Lexmark Pro800-Pro900 Series\ezprint.exe" [2011-01-23 148280]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2011-07-07 2174760]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2013-01-29 489472]
"Soluto"="c:\program files\soluto\soluto.exe" [2013-02-03 1229280]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
------- Supplementary Scan -------
.
uStart Page = about:blank
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SYSTEM32\blank.htm
IE: E&xportovať do programu Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Prevést cíl vazby do Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Prevést cíl vazby do existujícího PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Prevést do Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: Pridat do stávajícího PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Send image to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\progra~2\PCTRAN~1\webie.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\progra~2\PCTRAN~1\webie.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\progra~2\PCTRAN~1\webie.dll
Trusted Zone: //about.htm/
Trusted Zone: //Exclude.htm/
Trusted Zone: //FWEvent.htm/
Trusted Zone: //LanguageSelection.htm/
Trusted Zone: //Message.htm/
Trusted Zone: //MyAgttryCmd.htm/
Trusted Zone: //MyAgttryNag.htm/
Trusted Zone: //MyNotification.htm/
Trusted Zone: //NOCLessUpdate.htm/
Trusted Zone: //quarantine.htm/
Trusted Zone: //ScanNow.htm/
Trusted Zone: //strings.vbs/
Trusted Zone: //Template.htm/
Trusted Zone: //Update.htm/
Trusted Zone: //VirFound.htm/
Trusted Zone: mcafeeasap.com\betavscan
Trusted Zone: mcafeeasap.com\vs
Trusted Zone: mcafeeasap.com\www
TCP: DhcpNameServer = 10.1.13.100 192.168.1.1
TCP: Interfaces\{0D044146-0F77-45DA-9CD4-BD9CFA547FA9}: NameServer = 194.154.227.17 195.91.0.17
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
FF - ProfilePath - c:\users\nexter\AppData\Roaming\Mozilla\Firefox\Profiles\11kw2nld.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.sk/
FF - prefs.js: network.proxy.type - 0
FF - ExtSQL: 2013-03-22 18:56; {e001c731-5e37-4538-a5cb-8168736a2360}; c:\users\nexter\AppData\Roaming\Mozilla\Firefox\Profiles\11kw2nld.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}
FF - ExtSQL: 2013-03-23 12:12; jid0-hyjN250ZzTOOX3evFwwAQBxE4ik@jetpack; c:\users\nexter\AppData\Roaming\Mozilla\Firefox\Profiles\11kw2nld.default\extensions\jid0-hyjN250ZzTOOX3evFwwAQBxE4ik@jetpack.xpi
FF - ExtSQL: 2013-03-23 12:40; {e4a8a97b-f2ed-450b-b12d-ee082ba24781}; c:\users\nexter\AppData\Roaming\Mozilla\Firefox\Profiles\11kw2nld.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
.
- - - - ORPHANS REMOVED - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
.
.
.
------------------------ Other Running Processes ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe
c:\program files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe
c:\programdata\Mobile Partner\OnlineUpdate\ouc.exe
c:\program files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe
c:\program files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
c:\program files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
c:\windows\system32\spool\DRIVERS\x64\3\CNAP2RPK.EXE
c:\windows\system32\spool\DRIVERS\x64\3\CNABBSWK.EXE
c:\program files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
c:\program files (x86)\Mozilla Firefox\firefox.exe
.
**************************************************************************
.
Completion time: 2013-03-23 16:31:55 - machine was rebooted
ComboFix-quarantined-files.txt 2013-03-23 15:31
ComboFix2.txt 2013-03-22 22:29
.
Pre-Run: 106 386 493 440 bytes free
Post-Run: 108 457 574 400 bytes free
.
- - End Of File - - 96D6503C1122C719B65C2BD69DCC9C26


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 18.11.09
Prihlásený: 29.11.16
Príspevky: 89
Témy: 17 | 17
Bydlisko: Ružomberok
Napísal autor témyOffline : 25.03.2013 8:29 | pomoc s http://adf.ly/Kwky2

Cakal som na odpoved ale asi som zabudol na toto...
1

Spoiler: zobraziť
11:32:41.0701 7412 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
11:32:42.0615 7412 ============================================================
11:32:42.0615 7412 Current date / time: 2013/03/23 11:32:42.0615
11:32:42.0615 7412 SystemInfo:
11:32:42.0615 7412
11:32:42.0615 7412 OS Version: 6.1.7601 ServicePack: 1.0
11:32:42.0615 7412 Product type: Workstation
11:32:42.0615 7412 ComputerName: SOHLER
11:32:42.0616 7412 UserName: nexter
11:32:42.0616 7412 Windows directory: C:\windows
11:32:42.0616 7412 System windows directory: C:\windows
11:32:42.0616 7412 Running under WOW64
11:32:42.0616 7412 Processor architecture: Intel x64
11:32:42.0616 7412 Number of processors: 3
11:32:42.0616 7412 Page size: 0x1000
11:32:42.0616 7412 Boot type: Normal boot
11:32:42.0616 7412 ============================================================
11:32:49.0470 7412 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:32:49.0569 7412 ============================================================
11:32:49.0570 7412 \Device\Harddisk0\DR0:
11:32:49.0612 7412 MBR partitions:
11:32:49.0612 7412 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x96000
11:32:49.0612 7412 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x96800, BlocksNum 0x380EF800
11:32:49.0612 7412 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x38186000, BlocksNum 0x1E00000
11:32:49.0612 7412 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x39F86000, BlocksNum 0x3FF800
11:32:49.0612 7412 ============================================================
11:32:49.0897 7412 C: <-> \Device\Harddisk0\DR0\Partition2
11:32:49.0966 7412 E: <-> \Device\Harddisk0\DR0\Partition4
11:32:50.0142 7412 ============================================================
11:32:50.0143 7412 Initialize success
11:32:50.0143 7412 ============================================================
11:33:05.0054 6764 ============================================================
11:33:05.0054 6764 Scan started
11:33:05.0054 6764 Mode: Manual;
11:33:05.0054 6764 ============================================================
11:33:06.0504 6764 ================ Scan system memory ========================
11:33:06.0504 6764 System memory - ok
11:33:06.0504 6764 ================ Scan services =============================
11:33:08.0396 6764 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
11:33:08.0419 6764 1394ohci - ok
11:33:08.0665 6764 [ 5E8EFEB338DEB1F485420B090FE6C85E ] ac.sharedstore C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe
11:33:08.0677 6764 ac.sharedstore - ok
11:33:08.0800 6764 [ 5C368F4B04ED2A923E6AFCA2D37BAFF5 ] Accelerometer C:\windows\system32\DRIVERS\Accelerometer.sys
11:33:08.0816 6764 Accelerometer - ok
11:33:08.0942 6764 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
11:33:08.0955 6764 ACPI - ok
11:33:09.0038 6764 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
11:33:09.0040 6764 AcpiPmi - ok
11:33:09.0868 6764 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:33:09.0954 6764 AdobeARMservice - ok
11:33:13.0266 6764 [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:33:13.0276 6764 AdobeFlashPlayerUpdateSvc - ok
11:33:13.0436 6764 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys
11:33:13.0454 6764 adp94xx - ok
11:33:13.0548 6764 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\DRIVERS\adpahci.sys
11:33:13.0574 6764 adpahci - ok
11:33:13.0622 6764 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys
11:33:13.0633 6764 adpu320 - ok
11:33:13.0675 6764 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
11:33:13.0712 6764 AeLookupSvc - ok
11:33:13.0867 6764 [ 2C4676E1B569BBE9D4D50A2B90F10064 ] AESTAud C:\windows\system32\drivers\AESTAu64.sys
11:33:13.0882 6764 AESTAud - ok
11:33:14.0023 6764 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
11:33:14.0041 6764 AESTFilters - ok
11:33:14.0207 6764 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
11:33:14.0305 6764 AFD - ok
11:33:14.0490 6764 [ B65F8DBA54F251906BBE8611B5A0E7AB ] AgereModemAudio C:\Program Files\LSI SoftModem\agr64svc.exe
11:33:14.0499 6764 AgereModemAudio - ok
11:33:14.0772 6764 [ A6AB6F0ACE87DA76B4C401813D18BE95 ] AgereSoftModem C:\windows\system32\DRIVERS\agrsm64.sys
11:33:14.0798 6764 AgereSoftModem - ok
11:33:14.0892 6764 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
11:33:14.0903 6764 agp440 - ok
11:33:15.0012 6764 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
11:33:15.0024 6764 ALG - ok
11:33:15.0060 6764 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
11:33:15.0073 6764 aliide - ok
11:33:15.0173 6764 [ E20DDDFBD0DBE7D8EAD4D7A51D654367 ] AMD External Events Utility C:\windows\system32\atiesrxx.exe
11:33:15.0183 6764 AMD External Events Utility - ok
11:33:15.0351 6764 AMD FUEL Service - ok
11:33:15.0420 6764 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
11:33:15.0435 6764 amdide - ok
11:33:15.0508 6764 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\windows\system32\DRIVERS\amdiox64.sys
11:33:15.0520 6764 amdiox64 - ok
11:33:15.0623 6764 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys
11:33:15.0680 6764 AmdK8 - ok
11:33:18.0199 6764 [ 4284FB1240537A33E6EC417EFD87D40F ] amdkmdag C:\windows\system32\DRIVERS\atikmdag.sys
11:33:18.0543 6764 amdkmdag - ok
11:33:18.0678 6764 [ 6C25C497E05EFD0CB6033A0444FC9B51 ] amdkmdap C:\windows\system32\DRIVERS\atikmpag.sys
11:33:18.0695 6764 amdkmdap - ok
11:33:18.0932 6764 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys
11:33:18.0962 6764 AmdPPM - ok
11:33:19.0209 6764 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
11:33:19.0223 6764 amdsata - ok
11:33:19.0397 6764 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys
11:33:19.0409 6764 amdsbs - ok
11:33:19.0449 6764 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
11:33:19.0462 6764 amdxata - ok
11:33:19.0521 6764 [ 5B25D1A753CC3A3EDB909BB759AC1098 ] AODDriver4.1 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
11:33:19.0535 6764 AODDriver4.1 - ok
11:33:19.0643 6764 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
11:33:19.0653 6764 AppID - ok
11:33:19.0685 6764 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
11:33:19.0699 6764 AppIDSvc - ok
11:33:19.0742 6764 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
11:33:19.0762 6764 Appinfo - ok
11:33:19.0854 6764 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\windows\System32\appmgmts.dll
11:33:19.0868 6764 AppMgmt - ok
11:33:19.0936 6764 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\DRIVERS\arc.sys
11:33:19.0948 6764 arc - ok
11:33:19.0997 6764 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\DRIVERS\arcsas.sys
11:33:20.0013 6764 arcsas - ok
11:33:20.0313 6764 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
11:33:20.0436 6764 aspnet_state - ok
11:33:20.0616 6764 [ B217378ED9A964E15346A67FEF609A17 ] aswFsBlk C:\windows\system32\drivers\aswFsBlk.sys
11:33:20.0624 6764 aswFsBlk - ok
11:33:20.0748 6764 [ C42D45089FD2EC63D13571362C258DC6 ] aswKbd C:\windows\system32\drivers\aswKbd.sys
11:33:20.0758 6764 aswKbd - ok
11:33:20.0866 6764 [ E92635BB235B03ED03B17CBB59F77FA4 ] aswMonFlt C:\windows\system32\drivers\aswMonFlt.sys
11:33:20.0881 6764 aswMonFlt - ok
11:33:20.0975 6764 [ 8F90459AFB7FD4557D935CE639EF6110 ] aswRdr C:\windows\System32\Drivers\aswrdr2.sys
11:33:20.0994 6764 aswRdr - ok
11:33:21.0145 6764 [ DE6759B8D8E62BF0FFF2B05F05AFCEE6 ] aswRvrt C:\windows\system32\drivers\aswRvrt.sys
11:33:21.0166 6764 aswRvrt - ok
11:33:21.0309 6764 [ AB8B4D3136D18A20777036E0F0CFC5E1 ] aswSnx C:\windows\system32\drivers\aswSnx.sys
11:33:21.0330 6764 aswSnx - ok
11:33:21.0449 6764 [ 97D4D725BD32C965119E6C8E252F8C64 ] aswSP C:\windows\system32\drivers\aswSP.sys
11:33:21.0465 6764 aswSP - ok
11:33:21.0511 6764 [ D62C10D1829C65115111C160EA956260 ] aswTdi C:\windows\system32\drivers\aswTdi.sys
11:33:21.0525 6764 aswTdi - ok
11:33:21.0690 6764 [ 7E44C2684A6CA779B9D07CB4BD3F649D ] aswVmm C:\windows\system32\drivers\aswVmm.sys
11:33:21.0707 6764 aswVmm - ok
11:33:21.0799 6764 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
11:33:21.0811 6764 AsyncMac - ok
11:33:21.0881 6764 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
11:33:21.0882 6764 atapi - ok
11:33:22.0028 6764 [ 7E2F5A758F63F80F8B03F889B4E6B19F ] AtiHdmiService C:\windows\system32\drivers\AtiHdmi.sys
11:33:22.0040 6764 AtiHdmiService - ok
11:33:22.0088 6764 [ C07A040D6B5A42DD41EE386CF90974C8 ] AtiPcie C:\windows\system32\DRIVERS\AtiPcie.sys
11:33:22.0107 6764 AtiPcie - ok
11:33:22.0606 6764 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
11:33:22.0639 6764 AudioEndpointBuilder - ok
11:33:22.0752 6764 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
11:33:22.0757 6764 AudioSrv - ok
11:33:23.0437 6764 [ 35A85429EC0A09EF4CF53F5BB1F5C2C5 ] Autodesk Content Service C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
11:33:23.0500 6764 Autodesk Content Service - ok
11:33:23.0606 6764 [ 41735B82DB57E4EBE9504EC400FD120E ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
11:33:23.0607 6764 avast! Antivirus - ok
11:33:23.0664 6764 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
11:33:23.0686 6764 AxInstSV - ok
11:33:23.0792 6764 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\DRIVERS\bxvbda.sys
11:33:23.0801 6764 b06bdrv - ok
11:33:23.0890 6764 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
11:33:23.0904 6764 b57nd60a - ok
11:33:24.0701 6764 [ 35756E37D5FDEE22FBF27090A14FE608 ] BCM43XX C:\windows\system32\DRIVERS\bcmwl664.sys
11:33:24.0903 6764 BCM43XX - ok
11:33:25.0059 6764 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
11:33:25.0097 6764 BDESVC - ok
11:33:25.0217 6764 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
11:33:25.0266 6764 Beep - ok
11:33:25.0718 6764 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
11:33:25.0758 6764 BFE - ok
11:33:26.0162 6764 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\system32\qmgr.dll
11:33:26.0259 6764 BITS - ok
11:33:26.0511 6764 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
11:33:26.0521 6764 blbdrive - ok
11:33:26.0786 6764 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
11:33:26.0999 6764 bowser - ok
11:33:27.0043 6764 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys
11:33:27.0070 6764 BrFiltLo - ok
11:33:27.0096 6764 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys
11:33:27.0133 6764 BrFiltUp - ok
11:33:27.0199 6764 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\windows\system32\DRIVERS\bridge.sys
11:33:27.0214 6764 BridgeMP - ok
11:33:27.0261 6764 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
11:33:27.0264 6764 Browser - ok
11:33:27.0320 6764 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
11:33:27.0330 6764 Brserid - ok
11:33:27.0355 6764 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
11:33:27.0366 6764 BrSerWdm - ok
11:33:27.0432 6764 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
11:33:27.0442 6764 BrUsbMdm - ok
11:33:27.0460 6764 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
11:33:27.0470 6764 BrUsbSer - ok
11:33:27.0706 6764 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
11:33:27.0756 6764 BthEnum - ok
11:33:27.0865 6764 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys
11:33:27.0867 6764 BTHMODEM - ok
11:33:27.0953 6764 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
11:33:27.0966 6764 BthPan - ok
11:33:28.0083 6764 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
11:33:28.0095 6764 BTHPORT - ok
11:33:28.0168 6764 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
11:33:28.0178 6764 bthserv - ok
11:33:28.0230 6764 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
11:33:28.0250 6764 BTHUSB - ok
11:33:28.0400 6764 [ AF838D8029AE7C27470862D63FA54D24 ] btwaudio C:\windows\system32\drivers\btwaudio.sys
11:33:28.0408 6764 btwaudio - ok
11:33:28.0452 6764 [ 5C849BD7C78791C5CEE9F4651D7FE38D ] btwavdt C:\windows\system32\DRIVERS\btwavdt.sys
11:33:28.0481 6764 btwavdt - ok
11:33:28.0827 6764 [ 10FFB5FA51D5713D872B41A59DFC2213 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
11:33:28.0846 6764 btwdins - ok
11:33:28.0898 6764 [ 6149301DC3F81D6F9667A3FBAC410975 ] btwl2cap C:\windows\system32\DRIVERS\btwl2cap.sys
11:33:28.0910 6764 btwl2cap - ok
11:33:28.0953 6764 [ 3E1991AFA851A36DC978B0A1B0535C8B ] btwrchid C:\windows\system32\DRIVERS\btwrchid.sys
11:33:28.0968 6764 btwrchid - ok
11:33:29.0065 6764 catchme - ok
11:33:29.0188 6764 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
11:33:29.0202 6764 cdfs - ok
11:33:29.0442 6764 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
11:33:29.0459 6764 cdrom - ok
11:33:29.0542 6764 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
11:33:29.0557 6764 CertPropSvc - ok
11:33:29.0629 6764 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\DRIVERS\circlass.sys
11:33:29.0643 6764 circlass - ok
11:33:29.0745 6764 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
11:33:29.0764 6764 CLFS - ok
11:33:29.0916 6764 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:33:29.0932 6764 clr_optimization_v2.0.50727_32 - ok
11:33:30.0000 6764 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:33:30.0030 6764 clr_optimization_v2.0.50727_64 - ok
11:33:30.0751 6764 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:33:30.0852 6764 clr_optimization_v4.0.30319_32 - ok
11:33:30.0881 6764 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:33:30.0919 6764 clr_optimization_v4.0.30319_64 - ok
11:33:30.0992 6764 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
11:33:30.0999 6764 CmBatt - ok
11:33:31.0056 6764 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
11:33:31.0075 6764 cmdide - ok
11:33:31.0178 6764 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\windows\system32\Drivers\cng.sys
11:33:31.0205 6764 CNG - ok
11:33:31.0245 6764 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
11:33:31.0261 6764 Compbatt - ok
11:33:31.0351 6764 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys
11:33:31.0364 6764 CompositeBus - ok
11:33:31.0395 6764 COMSysApp - ok
11:33:31.0556 6764 cpuz135 - ok
11:33:31.0723 6764 cpuz136 - ok
11:33:31.0808 6764 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys
11:33:31.0822 6764 crcdisk - ok
11:33:31.0930 6764 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\windows\system32\cryptsvc.dll
11:33:31.0942 6764 CryptSvc - ok
11:33:32.0013 6764 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\windows\system32\drivers\csc.sys
11:33:32.0024 6764 CSC - ok
11:33:32.0102 6764 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\windows\System32\cscsvc.dll
11:33:32.0120 6764 CscService - ok
11:33:32.0201 6764 [ A8BA4DA23AC20BDA23CA15234D42A3FA ] DAMDrv C:\windows\system32\DRIVERS\DAMDrv64.sys
11:33:32.0257 6764 DAMDrv - ok
11:33:32.0449 6764 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
11:33:32.0495 6764 DcomLaunch - ok
11:33:32.0688 6764 [ E6E9610D76418357A7EC725989687CB4 ] DEBridge c:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe
11:33:32.0712 6764 DEBridge - ok
11:33:32.0777 6764 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
11:33:32.0797 6764 defragsvc - ok
11:33:32.0875 6764 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
11:33:32.0893 6764 DfsC - ok
11:33:32.0986 6764 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
11:33:33.0004 6764 Dhcp - ok
11:33:33.0043 6764 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
11:33:33.0058 6764 discache - ok
11:33:33.0136 6764 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\DRIVERS\disk.sys
11:33:33.0154 6764 Disk - ok
11:33:33.0224 6764 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
11:33:33.0244 6764 Dnscache - ok
11:33:33.0376 6764 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
11:33:33.0386 6764 dot3svc - ok
11:33:33.0525 6764 [ 723E663FD14A7FBE4B1C8C8FDE1C406C ] DpHost c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
11:33:33.0697 6764 DpHost - ok
11:33:33.0843 6764 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
11:33:33.0917 6764 DPS - ok
11:33:34.0024 6764 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
11:33:34.0041 6764 drmkaud - ok
11:33:34.0295 6764 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
11:33:34.0359 6764 DXGKrnl - ok
11:33:34.0484 6764 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
11:33:34.0550 6764 EapHost - ok
11:33:34.0993 6764 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\DRIVERS\evbda.sys
11:33:35.0112 6764 ebdrv - ok
11:33:35.0220 6764 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
11:33:35.0285 6764 EFS - ok
11:33:35.0601 6764 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
11:33:35.0615 6764 ehRecvr - ok
11:33:35.0703 6764 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
11:33:35.0710 6764 ehSched - ok
11:33:35.0937 6764 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\DRIVERS\elxstor.sys
11:33:35.0975 6764 elxstor - ok
11:33:35.0991 6764 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
11:33:36.0018 6764 ErrDev - ok
11:33:36.0239 6764 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
11:33:36.0253 6764 EventSystem - ok
11:33:36.0559 6764 [ 334C907536E815E56CD13108A6D5FB9D ] ewusbmbb C:\windows\system32\DRIVERS\ewusbwwan.sys
11:33:36.0627 6764 ewusbmbb - ok
11:33:36.0785 6764 [ 86F7951BBCEE4A86E79A97306BD14318 ] ew_hwusbdev C:\windows\system32\DRIVERS\ew_hwusbdev.sys
11:33:36.0894 6764 ew_hwusbdev - ok
11:33:37.0005 6764 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
11:33:37.0065 6764 exfat - ok
11:33:37.0828 6764 Fabs - ok
11:33:37.0909 6764 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
11:33:38.0025 6764 fastfat - ok
11:33:38.0342 6764 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
11:33:38.0390 6764 Fax - ok
11:33:38.0516 6764 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\DRIVERS\fdc.sys
11:33:38.0598 6764 fdc - ok
11:33:38.0718 6764 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
11:33:38.0779 6764 fdPHost - ok
11:33:38.0841 6764 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
11:33:38.0872 6764 FDResPub - ok
11:33:39.0096 6764 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
11:33:39.0265 6764 FileInfo - ok
11:33:39.0307 6764 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
11:33:39.0482 6764 Filetrace - ok
11:33:40.0890 6764 [ FFF1130F7C9FA01D093A1EDFC5CCE8FC ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
11:33:41.0013 6764 FirebirdServerMAGIXInstance - ok
11:33:46.0141 6764 [ 614B050875190FFE7ABBAF0CBB4FBBBA ] FLCDLOCK c:\Windows\SysWOW64\flcdlock.exe
11:33:46.0160 6764 FLCDLOCK - ok
11:33:46.0425 6764 [ F76D04F7413B07DAA029F6520B64B4E8 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
11:33:46.0456 6764 FLEXnet Licensing Service - ok
11:33:47.0632 6764 [ 64AB6F28047744B9B19C97459C2AB31B ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
11:33:47.0722 6764 FLEXnet Licensing Service 64 - ok
11:33:47.0793 6764 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys
11:33:47.0839 6764 flpydisk - ok
11:33:48.0060 6764 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
11:33:48.0094 6764 FltMgr - ok
11:33:48.0489 6764 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\windows\system32\FntCache.dll
11:33:48.0555 6764 FontCache - ok
11:33:49.0239 6764 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:33:49.0266 6764 FontCache3.0.0.0 - ok
11:33:49.0429 6764 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
11:33:49.0455 6764 FsDepends - ok
11:33:49.0571 6764 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
11:33:49.0673 6764 Fs_Rec - ok
11:33:49.0893 6764 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
11:33:49.0989 6764 fvevol - ok
11:33:50.0101 6764 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys
11:33:50.0177 6764 gagp30kx - ok
11:33:51.0389 6764 [ 9F5F2F0FB0A7F5AA9F16B9A7B6DAD89F ] GoogleDesktopManager-051210-111108 C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe
11:33:51.0489 6764 GoogleDesktopManager-051210-111108 - ok
11:33:51.0929 6764 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
11:33:52.0023 6764 gpsvc - ok
11:33:52.0304 6764 [ B9893A68032A6D9ADDB5B98287C630F7 ] grmnusb C:\windows\system32\drivers\grmnusb.sys
11:33:52.0479 6764 grmnusb - ok
11:33:53.0132 6764 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:33:53.0163 6764 gupdate - ok
11:33:53.0334 6764 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:33:53.0335 6764 gupdatem - ok
11:33:53.0454 6764 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
11:33:53.0506 6764 hcw85cir - ok
11:33:53.0767 6764 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
11:33:53.0827 6764 HdAudAddService - ok


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 18.11.09
Prihlásený: 29.11.16
Príspevky: 89
Témy: 17 | 17
Bydlisko: Ružomberok
Napísal autor témyOffline : 25.03.2013 8:30 | pomoc s http://adf.ly/Kwky2

2

Spoiler: zobraziť
11:33:53.0985 6764 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\drivers\HDAudBus.sys
11:33:54.0027 6764 HDAudBus - ok
11:33:54.0122 6764 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys
11:33:54.0144 6764 HidBatt - ok
11:33:54.0341 6764 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\DRIVERS\hidbth.sys
11:33:54.0462 6764 HidBth - ok
11:33:54.0628 6764 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\DRIVERS\hidir.sys
11:33:54.0706 6764 HidIr - ok
11:33:54.0796 6764 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\System32\hidserv.dll
11:33:54.0817 6764 hidserv - ok
11:33:55.0052 6764 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
11:33:55.0104 6764 HidUsb - ok
11:33:55.0207 6764 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
11:33:55.0228 6764 hkmsvc - ok
11:33:55.0361 6764 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
11:33:55.0439 6764 HomeGroupListener - ok
11:33:55.0578 6764 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
11:33:55.0591 6764 HomeGroupProvider - ok
11:33:56.0222 6764 [ FCD7A3D515B7BA9276E7C82A45B4AB02 ] HP Power Assistant Service C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
11:33:56.0346 6764 HP Power Assistant Service - ok
11:33:56.0745 6764 [ 3891D3993065D392E0DE541BEA0A9EA5 ] HP ProtectTools Service c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
11:33:56.0759 6764 HP ProtectTools Service - ok
11:33:57.0022 6764 [ 170233B8D743EFE35F462A5D516B93E3 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
11:33:57.0135 6764 HP Support Assistant Service - ok
11:33:57.0504 6764 [ 58CC11D14D88EF70EF7ABBC75B5EEBD8 ] HP Wireless Assistant Service C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
11:33:57.0700 6764 HP Wireless Assistant Service - ok
11:33:57.0929 6764 [ 18B19A49A2B92C356D225012CE354E60 ] HPDayStarterService c:\Program Files (x86)\Hewlett-Packard\HP QuickLook\HPDayStarterService.exe
11:33:57.0941 6764 HPDayStarterService - ok
11:33:58.0149 6764 [ B7382BEC806B7B00FC84B3E2061FF48E ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
11:33:58.0186 6764 HPDrvMntSvc.exe - ok
11:33:58.0235 6764 [ 4E0BEC0F78096FFD6D3314B497FC49D3 ] hpdskflt C:\windows\system32\DRIVERS\hpdskflt.sys
11:33:58.0244 6764 hpdskflt - ok
11:33:58.0363 6764 [ 5AFB3F9B74553BD933555E1C800D2CE1 ] HpFkCryptService c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
11:33:58.0371 6764 HpFkCryptService - ok
11:33:58.0503 6764 [ 8205DA7B4191ACD96F76B81E42945754 ] HPFSService C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
11:33:58.0548 6764 HPFSService - ok
11:33:58.0890 6764 [ 41C63E8C13E13B5F0E20AE1AFBBB7E05 ] hpHotkeyMonitor C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
11:33:58.0912 6764 hpHotkeyMonitor - ok
11:33:59.0036 6764 [ B98EE5D4535A685634B90F7E04DE0DF7 ] HpqKbFiltr C:\windows\system32\DRIVERS\HpqKbFiltr.sys
11:33:59.0051 6764 HpqKbFiltr - ok
11:33:59.0710 6764 [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
11:33:59.0727 6764 hpqwmiex - ok
11:33:59.0835 6764 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
11:33:59.0849 6764 HpSAMD - ok
11:33:59.0926 6764 [ FC7C13B5A9E9BE23B7AE72BBC7FDB278 ] hpsrv C:\windows\system32\Hpservice.exe
11:33:59.0942 6764 hpsrv - ok
11:34:00.0019 6764 [ F47CEC45FB85791D4AB237563AD0FA8F ] HTCAND64 C:\windows\system32\Drivers\ANDROIDUSB.sys
11:34:00.0038 6764 HTCAND64 - ok
11:34:00.0157 6764 [ B8B1B284362E1D8135112573395D5DA5 ] htcnprot C:\windows\system32\DRIVERS\htcnprot.sys
11:34:00.0183 6764 htcnprot - ok
11:34:00.0441 6764 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
11:34:00.0457 6764 HTTP - ok
11:34:00.0570 6764 [ 1642C62F1FD5E1FF44608283994A7BB8 ] huawei_enumerator C:\windows\system32\DRIVERS\ew_jubusenum.sys
11:34:00.0618 6764 huawei_enumerator - ok
11:34:01.0206 6764 [ 04D1DE1E8ACE40CA396502C90524E945 ] hwdatacard C:\windows\system32\DRIVERS\ewusbmdm.sys
11:34:01.0300 6764 hwdatacard - ok
11:34:01.0432 6764 HWDeviceService64.exe - ok
11:34:01.0464 6764 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
11:34:01.0502 6764 hwpolicy - ok
11:34:01.0613 6764 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\drivers\i8042prt.sys
11:34:01.0620 6764 i8042prt - ok
11:34:01.0774 6764 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
11:34:01.0820 6764 iaStorV - ok
11:34:02.0004 6764 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:34:02.0048 6764 idsvc - ok
11:34:02.0643 6764 [ F52DEF944A2B149AF079D094BAAB22E1 ] IFXSpMgtSrv C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe
11:34:02.0759 6764 IFXSpMgtSrv - ok
11:34:03.0041 6764 [ 32D2F6C67511C90A3FE2C31DE887A767 ] IFXTCS C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe
11:34:03.0106 6764 IFXTCS - ok
11:34:03.0214 6764 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\DRIVERS\iirsp.sys
11:34:03.0227 6764 iirsp - ok
11:34:03.0338 6764 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
11:34:03.0357 6764 IKEEXT - ok
11:34:03.0395 6764 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
11:34:03.0413 6764 intelide - ok
11:34:03.0449 6764 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
11:34:03.0461 6764 intelppm - ok
11:34:03.0544 6764 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
11:34:03.0563 6764 IPBusEnum - ok
11:34:03.0626 6764 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
11:34:03.0637 6764 IpFilterDriver - ok
11:34:03.0725 6764 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
11:34:03.0739 6764 iphlpsvc - ok
11:34:03.0774 6764 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
11:34:03.0794 6764 IPMIDRV - ok
11:34:03.0849 6764 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
11:34:03.0862 6764 IPNAT - ok
11:34:03.0916 6764 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
11:34:03.0932 6764 IRENUM - ok
11:34:03.0955 6764 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
11:34:03.0967 6764 isapnp - ok
11:34:04.0039 6764 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
11:34:04.0099 6764 iScsiPrt - ok
11:34:04.0196 6764 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\drivers\kbdclass.sys
11:34:04.0209 6764 kbdclass - ok
11:34:04.0316 6764 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
11:34:04.0363 6764 kbdhid - ok
11:34:04.0432 6764 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
11:34:04.0434 6764 KeyIso - ok
11:34:04.0467 6764 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
11:34:04.0499 6764 KSecDD - ok
11:34:04.0535 6764 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
11:34:04.0545 6764 KSecPkg - ok
11:34:04.0628 6764 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
11:34:04.0658 6764 ksthunk - ok
11:34:04.0727 6764 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
11:34:04.0757 6764 KtmRm - ok
11:34:04.0852 6764 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\System32\srvsvc.dll
11:34:04.0863 6764 LanmanServer - ok
11:34:04.0909 6764 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
11:34:04.0924 6764 LanmanWorkstation - ok
11:34:05.0057 6764 [ C34411A244029F1C08687F7C752C4563 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
11:34:05.0059 6764 LightScribeService - ok
11:34:05.0121 6764 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
11:34:05.0137 6764 lltdio - ok
11:34:05.0202 6764 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
11:34:05.0214 6764 lltdsvc - ok
11:34:05.0246 6764 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
11:34:05.0259 6764 lmhosts - ok
11:34:05.0321 6764 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys
11:34:05.0334 6764 LSI_FC - ok
11:34:05.0384 6764 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys
11:34:05.0395 6764 LSI_SAS - ok
11:34:05.0493 6764 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys
11:34:05.0546 6764 LSI_SAS2 - ok
11:34:05.0669 6764 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys
11:34:05.0698 6764 LSI_SCSI - ok
11:34:05.0783 6764 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
11:34:05.0813 6764 luafv - ok
11:34:06.0404 6764 [ 1F02B554DDC4086D786537A3BF6488F1 ] lxecCATSCustConnectService C:\windows\system32\spool\DRIVERS\x64\3\\lxecserv.exe
11:34:06.0413 6764 lxecCATSCustConnectService - ok
11:34:06.0551 6764 lxec_device - ok
11:34:06.0773 6764 [ 92EB844D90615CB266F84C3202B8786E ] MBAMProtector C:\windows\system32\drivers\mbam.sys
11:34:06.0800 6764 MBAMProtector - ok
11:34:06.0930 6764 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
11:34:06.0941 6764 MBAMScheduler - ok
11:34:07.0063 6764 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
11:34:07.0080 6764 MBAMService - ok
11:34:07.0147 6764 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
11:34:07.0166 6764 Mcx2Svc - ok
11:34:07.0262 6764 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\DRIVERS\megasas.sys
11:34:07.0334 6764 megasas - ok
11:34:07.0450 6764 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys
11:34:07.0457 6764 MegaSR - ok
11:34:07.0663 6764 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
11:34:07.0681 6764 Microsoft Office Groove Audit Service - ok
11:34:07.0761 6764 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
11:34:07.0777 6764 MMCSS - ok
11:34:07.0935 6764 [ 38106C7BD34EAE89D2769AC0BA2E846B ] Mobile Partner. RunOuc C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe
11:34:07.0953 6764 Mobile Partner. RunOuc - ok
11:34:07.0978 6764 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
11:34:07.0996 6764 Modem - ok
11:34:08.0048 6764 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
11:34:08.0065 6764 monitor - ok
11:34:08.0112 6764 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
11:34:08.0125 6764 mouclass - ok
11:34:08.0188 6764 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
11:34:08.0202 6764 mouhid - ok
11:34:08.0242 6764 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
11:34:08.0251 6764 mountmgr - ok
11:34:08.0344 6764 [ 8A7C8F4C713E70D73946833D76B77035 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
11:34:08.0356 6764 MozillaMaintenance - ok
11:34:08.0416 6764 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
11:34:08.0424 6764 mpio - ok
11:34:08.0462 6764 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
11:34:08.0499 6764 mpsdrv - ok
11:34:08.0804 6764 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
11:34:08.0918 6764 MpsSvc - ok
11:34:09.0153 6764 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
11:34:09.0248 6764 MRxDAV - ok
11:34:09.0298 6764 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
11:34:09.0317 6764 mrxsmb - ok
11:34:09.0410 6764 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
11:34:09.0566 6764 mrxsmb10 - ok
11:34:09.0714 6764 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
11:34:09.0728 6764 mrxsmb20 - ok
11:34:09.0758 6764 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
11:34:09.0768 6764 msahci - ok
11:34:09.0925 6764 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
11:34:09.0945 6764 msdsm - ok
11:34:09.0971 6764 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
11:34:09.0986 6764 MSDTC - ok
11:34:10.0025 6764 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
11:34:10.0034 6764 Msfs - ok
11:34:10.0061 6764 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
11:34:10.0077 6764 mshidkmdf - ok
11:34:10.0104 6764 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
11:34:10.0114 6764 msisadrv - ok
11:34:10.0201 6764 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
11:34:10.0301 6764 MSiSCSI - ok
11:34:10.0306 6764 msiserver - ok
11:34:10.0379 6764 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
11:34:10.0398 6764 MSKSSRV - ok
11:34:10.0456 6764 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
11:34:10.0495 6764 MSPCLOCK - ok
11:34:10.0523 6764 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
11:34:10.0534 6764 MSPQM - ok
11:34:10.0596 6764 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
11:34:10.0614 6764 MsRPC - ok
11:34:10.0652 6764 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\drivers\mssmbios.sys
11:34:10.0665 6764 mssmbios - ok
11:34:10.0720 6764 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
11:34:10.0733 6764 MSTEE - ok
11:34:10.0756 6764 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys
11:34:10.0767 6764 MTConfig - ok
11:34:10.0806 6764 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
11:34:10.0813 6764 Mup - ok
11:34:10.0918 6764 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
11:34:10.0933 6764 napagent - ok
11:34:11.0018 6764 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
11:34:11.0030 6764 NativeWifiP - ok
11:34:11.0131 6764 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
11:34:11.0147 6764 NDIS - ok
11:34:11.0200 6764 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
11:34:11.0215 6764 NdisCap - ok
11:34:11.0277 6764 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
11:34:11.0287 6764 NdisTapi - ok
11:34:11.0513 6764 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
11:34:11.0586 6764 Ndisuio - ok
11:34:11.0642 6764 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
11:34:11.0661 6764 NdisWan - ok
11:34:11.0714 6764 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
11:34:11.0730 6764 NDProxy - ok
11:34:11.0790 6764 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
11:34:11.0805 6764 NetBIOS - ok
11:34:11.0847 6764 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
11:34:11.0863 6764 NetBT - ok
11:34:11.0883 6764 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
11:34:11.0886 6764 Netlogon - ok
11:34:11.0981 6764 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
11:34:11.0995 6764 Netman - ok
11:34:12.0244 6764 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:34:12.0254 6764 NetMsmqActivator - ok
11:34:12.0369 6764 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:34:12.0371 6764 NetPipeActivator - ok
11:34:12.0487 6764 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
11:34:12.0508 6764 netprofm - ok
11:34:12.0534 6764 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:34:12.0536 6764 NetTcpActivator - ok
11:34:12.0541 6764 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:34:12.0543 6764 NetTcpPortSharing - ok
11:34:12.0616 6764 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys
11:34:12.0627 6764 nfrd960 - ok
11:34:12.0695 6764 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\windows\System32\nlasvc.dll
11:34:12.0723 6764 NlaSvc - ok
11:34:12.0853 6764 [ 907B5E1E4A592E5EDC5E4CCBDE4863C2 ] nmwcd C:\windows\system32\drivers\ccdcmbx64.sys
11:34:12.0868 6764 nmwcd - ok
11:34:12.0932 6764 [ 41C1AC1F3613435EB32D67BCB80A5FA5 ] nmwcdc C:\windows\system32\drivers\ccdcmbox64.sys
11:34:12.0946 6764 nmwcdc - ok
11:34:12.0988 6764 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
11:34:13.0006 6764 Npfs - ok
11:34:13.0039 6764 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
11:34:13.0057 6764 nsi - ok
11:34:13.0084 6764 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
11:34:13.0100 6764 nsiproxy - ok
11:34:13.0378 6764 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
11:34:13.0499 6764 Ntfs - ok
11:34:13.0672 6764 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
11:34:13.0719 6764 Null - ok
11:34:13.0814 6764 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
11:34:13.0865 6764 nvraid - ok
11:34:13.0892 6764 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
11:34:13.0907 6764 nvstor - ok
11:34:13.0947 6764 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
11:34:13.0962 6764 nv_agp - ok
11:34:14.0102 6764 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:34:14.0119 6764 odserv - ok
11:34:14.0148 6764 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
11:34:14.0167 6764 ohci1394 - ok
11:34:14.0282 6764 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:34:14.0298 6764 ose - ok
11:34:14.0386 6764 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
11:34:14.0411 6764 p2pimsvc - ok
11:34:14.0477 6764 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
11:34:14.0498 6764 p2psvc - ok
11:34:14.0558 6764 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\DRIVERS\parport.sys
11:34:14.0576 6764 Parport - ok
11:34:14.0613 6764 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
11:34:14.0627 6764 partmgr - ok
11:34:14.0788 6764 [ AFADA8B97BE3C9398DC6C770409C3544 ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
11:34:14.0795 6764 PassThru Service - ok
11:34:14.0857 6764 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
11:34:14.0871 6764 PcaSvc - ok
11:34:14.0919 6764 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
11:34:14.0922 6764 pci - ok
11:34:14.0948 6764 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
11:34:14.0958 6764 pciide - ok
11:34:15.0010 6764 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\DRIVERS\pcmcia.sys
11:34:15.0022 6764 pcmcia - ok
11:34:15.0057 6764 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
11:34:15.0073 6764 pcw - ok
11:34:15.0259 6764 [ 4A8CC4D25525F456069887D5E8C53225 ] PdiService C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
11:34:15.0275 6764 PdiService - ok
11:34:15.0467 6764 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
11:34:15.0484 6764 PEAUTH - ok
11:34:15.0685 6764 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\windows\system32\peerdistsvc.dll
11:34:15.0737 6764 PeerDistSvc - ok
11:34:16.0056 6764 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
11:34:16.0136 6764 PerfHost - ok
11:34:16.0218 6764 [ F20612DF7E12DE3A087D0F44CC545FB1 ] PersonalSecureDrive C:\windows\System32\drivers\psd.sys
11:34:16.0235 6764 PersonalSecureDrive - ok
11:34:16.0290 6764 [ ED3FD75339C3B6FEC93EAE2513E0A46E ] PersonalSecureDriveService C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe
11:34:16.0293 6764 PersonalSecureDriveService - ok
11:34:16.0351 6764 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
11:34:16.0373 6764 pla - ok
11:34:16.0481 6764 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
11:34:16.0574 6764 PlugPlay - ok
11:34:16.0609 6764 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
11:34:16.0653 6764 PNRPAutoReg - ok
11:34:16.0694 6764 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
11:34:16.0699 6764 PNRPsvc - ok
11:34:16.0742 6764 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
11:34:16.0758 6764 PolicyAgent - ok
11:34:16.0801 6764 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
11:34:16.0816 6764 Power - ok
11:34:16.0848 6764 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
11:34:16.0865 6764 PptpMiniport - ok
11:34:16.0906 6764 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\DRIVERS\processr.sys
11:34:16.0908 6764 Processor - ok
11:34:16.0946 6764 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
11:34:16.0977 6764 ProfSvc - ok
11:34:17.0008 6764 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
11:34:17.0011 6764 ProtectedStorage - ok
11:34:17.0071 6764 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
11:34:17.0092 6764 Psched - ok
11:34:17.0298 6764 [ 543A4EF0923BF70D126625B034EF25AF ] PSI_SVC_2 c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
11:34:17.0306 6764 PSI_SVC_2 - ok
11:34:17.0418 6764 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\windows\system32\Drivers\PxHlpa64.sys
11:34:17.0477 6764 PxHlpa64 - ok
11:34:17.0882 6764 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\DRIVERS\ql2300.sys
11:34:17.0957 6764 ql2300 - ok
11:34:17.0994 6764 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\DRIVERS\ql40xx.sys
11:34:18.0040 6764 ql40xx - ok
11:34:18.0148 6764 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
11:34:18.0165 6764 QWAVE - ok
11:34:18.0189 6764 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
11:34:18.0278 6764 QWAVEdrv - ok
11:34:18.0336 6764 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
11:34:18.0378 6764 RasAcd - ok
11:34:18.0450 6764 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
11:34:18.0451 6764 RasAgileVpn - ok
11:34:18.0486 6764 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
11:34:18.0497 6764 RasAuto - ok
11:34:18.0570 6764 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
11:34:18.0584 6764 Rasl2tp - ok
11:34:18.0624 6764 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
11:34:18.0636 6764 RasMan - ok
11:34:18.0690 6764 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
11:34:18.0701 6764 RasPppoe - ok
11:34:18.0866 6764 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
11:34:18.0875 6764 RasSstp - ok
11:34:18.0938 6764 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
11:34:18.0983 6764 rdbss - ok
11:34:19.0072 6764 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\DRIVERS\rdpbus.sys
11:34:19.0080 6764 rdpbus - ok
11:34:19.0146 6764 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
11:34:19.0165 6764 RDPCDD - ok
11:34:19.0217 6764 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\windows\system32\drivers\rdpdr.sys
11:34:19.0230 6764 RDPDR - ok
11:34:19.0238 6764 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
11:34:19.0248 6764 RDPENCDD - ok
11:34:19.0271 6764 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
11:34:19.0284 6764 RDPREFMP - ok
11:34:19.0388 6764 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
11:34:19.0405 6764 RdpVideoMiniport - ok
11:34:19.0499 6764 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
11:34:19.0518 6764 RDPWD - ok
11:34:19.0677 6764 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
11:34:19.0740 6764 rdyboost - ok
11:34:19.0804 6764 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
11:34:19.0871 6764 RemoteAccess - ok
11:34:19.0912 6764 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
11:34:19.0922 6764 RemoteRegistry - ok
11:34:20.0012 6764 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
11:34:20.0031 6764 RFCOMM - ok
11:34:20.0118 6764 [ 3DCA561AAF776AA2E356FB5B142AA5F8 ] rimspci C:\windows\system32\DRIVERS\rimspe64.sys
11:34:20.0173 6764 rimspci - ok
11:34:20.0281 6764 [ C4581F04AA130892555B821F1FBAA151 ] risdpcie C:\windows\system32\DRIVERS\risdpe64.sys
11:34:20.0292 6764 risdpcie - ok
11:34:20.0379 6764 [ A4579105A3C5B6290701EAD0C153E07A ] rixdpcie C:\windows\system32\DRIVERS\rixdpe64.sys
11:34:20.0471 6764 rixdpcie - ok
11:34:20.0572 6764 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
11:34:20.0617 6764 RpcEptMapper - ok
11:34:20.0687 6764 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
11:34:20.0735 6764 RpcLocator - ok
11:34:20.0904 6764 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
11:34:20.0911 6764 RpcSs - ok
11:34:21.0034 6764 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
11:34:21.0068 6764 rspndr - ok
11:34:21.0158 6764 [ 26E0D15FB1835F7ED638F157CCD2E04D ] RsvLock C:\windows\system32\drivers\RsvLock.sys
11:34:21.0347 6764 RsvLock - ok
11:34:21.0830 6764 RTCore64 - ok
11:34:21.0904 6764 [ 39A1CF40AA29A16FE176B825195A3E0B ] rtsuvc C:\windows\system32\DRIVERS\rtsuvc.sys
11:34:21.0935 6764 rtsuvc - ok
11:34:21.0973 6764 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\windows\system32\drivers\vms3cap.sys
11:34:22.0003 6764 s3cap - ok
11:34:22.0078 6764 [ 6EF8E5E3A079C97C70915CF740E89977 ] SafeBoot C:\windows\system32\drivers\SafeBoot.sys
11:34:22.0079 6764 Suspicious file (NoAccess): C:\windows\system32\drivers\SafeBoot.sys. md5: 6EF8E5E3A079C97C70915CF740E89977
11:34:22.0079 6764 SafeBoot ( LockedFile.Multi.Generic ) - warning
11:34:22.0079 6764 SafeBoot - detected LockedFile.Multi.Generic (1)
11:34:22.0109 6764 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
11:34:22.0112 6764 SamSs - ok
11:34:22.0144 6764 [ FD8714A36C4646DE22DDC7E36F6D09EF ] SbAlg C:\windows\system32\drivers\SbAlg.sys
11:34:22.0164 6764 SbAlg - ok
11:34:22.0196 6764 [ 43027F1996F3AC6BD54B8A871996B7B3 ] SbFsLock C:\windows\system32\drivers\SbFsLock.sys
11:34:22.0213 6764 SbFsLock - ok
11:34:22.0248 6764 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
11:34:22.0263 6764 sbp2port - ok
11:34:22.0532 6764 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
11:34:22.0565 6764 SBSDWSCService - ok
11:34:22.0647 6764 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
11:34:22.0663 6764 SCardSvr - ok
11:34:22.0695 6764 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
11:34:22.0711 6764 scfilter - ok
11:34:22.0958 6764 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
11:34:23.0015 6764 Schedule - ok
11:34:23.0048 6764 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
11:34:23.0050 6764 SCPolicySvc - ok
11:34:23.0111 6764 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\windows\system32\drivers\sdbus.sys
11:34:23.0127 6764 sdbus - ok
11:34:23.0181 6764 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
11:34:23.0190 6764 SDRSVC - ok
11:34:23.0225 6764 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
11:34:23.0238 6764 secdrv - ok
11:34:23.0263 6764 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
11:34:23.0278 6764 seclogon - ok
11:34:23.0321 6764 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\system32\sens.dll
11:34:23.0338 6764 SENS - ok
11:34:23.0446 6764 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
11:34:23.0459 6764 SensrSvc - ok
11:34:23.0490 6764 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\DRIVERS\serenum.sys
11:34:23.0504 6764 Serenum - ok
11:34:23.0525 6764 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\DRIVERS\serial.sys
11:34:23.0543 6764 Serial - ok
11:34:23.0579 6764 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\DRIVERS\sermouse.sys
11:34:23.0589 6764 sermouse - ok
11:34:23.0629 6764 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
11:34:23.0650 6764 SessionEnv - ok
11:34:23.0669 6764 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
11:34:23.0685 6764 sffdisk - ok
11:34:23.0712 6764 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
11:34:23.0722 6764 sffp_mmc - ok
11:34:23.0752 6764 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
11:34:23.0761 6764 sffp_sd - ok
11:34:23.0790 6764 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\DRIVERS\sfloppy.sys
11:34:23.0798 6764 sfloppy - ok
11:34:23.0924 6764 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
11:34:23.0937 6764 SharedAccess - ok
11:34:23.0994 6764 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
11:34:24.0015 6764 ShellHWDetection - ok
11:34:24.0067 6764 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\DRIVERS\SiSRaid2.sys
11:34:24.0091 6764 SiSRaid2 - ok
11:34:24.0121 6764 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\DRIVERS\sisraid4.sys
11:34:24.0171 6764 SiSRaid4 - ok
11:34:24.0375 6764 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
11:34:24.0430 6764 SkypeUpdate - ok
11:34:24.0510 6764 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
11:34:24.0526 6764 Smb - ok
11:34:24.0582 6764 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
11:34:24.0597 6764 SNMPTRAP - ok
11:34:24.0745 6764 [ F9369327409492097B0BB7CE86BD29DE ] Soluto C:\windows\system32\DRIVERS\Soluto.sys
11:34:24.0761 6764 Soluto - ok
11:34:24.0914 6764 [ ACF7389DA65760FED2B224C51EDC3A2B ] SolutoLauncherService C:\Program Files\Soluto\SolutoLauncherService.exe
11:34:24.0932 6764 SolutoLauncherService - ok
11:34:25.0179 6764 [ BCA25A87AD78FEDAC5C5ABD92DB3BECD ] SolutoRemoteService C:\Program Files\Soluto\SolutoRemoteService.exe
11:34:25.0201 6764 SolutoRemoteService - ok
11:34:25.0355 6764 [ F6D4A0E0C37B0ED1361D23FF672E8BF7 ] SolutoService C:\Program Files\Soluto\SolutoService.exe
11:34:25.0369 6764 SolutoService - ok
11:34:25.0423 6764 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
11:34:25.0440 6764 spldr - ok
11:34:25.0630 6764 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
11:34:25.0688 6764 Spooler - ok
11:34:26.0049 6764 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
11:34:26.0094 6764 sppsvc - ok
11:34:26.0129 6764 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
11:34:26.0143 6764 sppuinotify - ok
11:34:26.0396 6764 [ 602884696850C86434530790B110E8EB ] sptd C:\windows\system32\Drivers\sptd.sys
11:34:26.0397 6764 Suspicious file (NoAccess): C:\windows\system32\Drivers\sptd.sys. md5: 602884696850C86434530790B110E8EB
11:34:26.0399 6764 sptd ( LockedFile.Multi.Generic ) - warning
11:34:26.0399 6764 sptd - detected LockedFile.Multi.Generic (1)
11:34:26.0610 6764 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
11:34:26.0643 6764 srv - ok
11:34:26.0773 6764 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
11:34:26.0787 6764 srv2 - ok
11:34:26.0812 6764 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
11:34:26.0825 6764 srvnet - ok
11:34:26.0923 6764 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
11:34:26.0939 6764 SSDPSRV - ok
11:34:26.0963 6764 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
11:34:26.0981 6764 SstpSvc - ok
11:34:27.0169 6764 [ F8807AAF697E1D20C9D7716A4941E574 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
11:34:27.0217 6764 STacSV - ok
11:34:27.0419 6764 [ E57B778208C783D8DEBAB320C16A1B82 ] StarOpen C:\windows\system32\drivers\StarOpen.sys
11:34:27.0438 6764 StarOpen - ok
11:34:27.0477 6764 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\DRIVERS\stexstor.sys
11:34:27.0490 6764 stexstor - ok
11:34:27.0615 6764 [ 96DF19A03D37F8568141612D31F0D035 ] STHDA C:\windows\system32\DRIVERS\stwrt64.sys
11:34:27.0633 6764 STHDA - ok
11:34:27.0722 6764 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
11:34:27.0741 6764 stisvc - ok
11:34:27.0775 6764 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\windows\system32\drivers\vmstorfl.sys
11:34:27.0791 6764 storflt - ok
11:34:27.0833 6764 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\windows\system32\storsvc.dll
11:34:27.0839 6764 StorSvc - ok
11:34:27.0896 6764 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\windows\system32\drivers\storvsc.sys
11:34:27.0909 6764 storvsc - ok
11:34:27.0940 6764 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\drivers\swenum.sys
11:34:27.0948 6764 swenum - ok
11:34:28.0059 6764 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
11:34:28.0078 6764 swprv - ok
11:34:28.0274 6764 [ D268D2A0DB2A2BBE963E688D0B039267 ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
11:34:28.0306 6764 SynTP - ok


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 18.11.09
Prihlásený: 29.11.16
Príspevky: 89
Témy: 17 | 17
Bydlisko: Ružomberok
Napísal autor témyOffline : 25.03.2013 8:31 | pomoc s http://adf.ly/Kwky2

3

Spoiler: zobraziť
11:34:28.0682 6764 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
11:34:28.0764 6764 SysMain - ok
11:34:28.0889 6764 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
11:34:28.0901 6764 TabletInputService - ok
11:34:29.0008 6764 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
11:34:29.0019 6764 TapiSrv - ok
11:34:29.0078 6764 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
11:34:29.0092 6764 TBS - ok
11:34:29.0600 6764 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\windows\system32\drivers\tcpip.sys
11:34:29.0699 6764 Tcpip - ok
11:34:29.0914 6764 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
11:34:29.0926 6764 TCPIP6 - ok
11:34:29.0963 6764 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
11:34:29.0970 6764 tcpipreg - ok
11:34:30.0003 6764 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
11:34:30.0020 6764 TDPIPE - ok
11:34:30.0057 6764 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
11:34:30.0073 6764 TDTCP - ok
11:34:30.0132 6764 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
11:34:30.0187 6764 tdx - ok
11:34:30.0703 6764 [ 3E85BDD019E3DB66D9471DAD7FD6A887 ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
11:34:30.0739 6764 TeamViewer7 - ok
11:34:30.0768 6764 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\drivers\termdd.sys
11:34:30.0784 6764 TermDD - ok
11:34:30.0884 6764 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
11:34:30.0902 6764 TermService - ok
11:34:30.0965 6764 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
11:34:31.0003 6764 Themes - ok
11:34:31.0064 6764 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
11:34:31.0080 6764 THREADORDER - ok
11:34:31.0137 6764 [ DBCC20C02E8A3E43B03C304A4E40A84F ] TPM C:\windows\system32\drivers\tpm.sys
11:34:31.0145 6764 TPM - ok
11:34:31.0230 6764 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
11:34:31.0250 6764 TrkWks - ok
11:34:31.0347 6764 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
11:34:31.0365 6764 TrustedInstaller - ok
11:34:31.0407 6764 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
11:34:31.0421 6764 tssecsrv - ok
11:34:31.0510 6764 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
11:34:31.0601 6764 TsUsbFlt - ok
11:34:31.0691 6764 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
11:34:31.0702 6764 tunnel - ok
11:34:31.0803 6764 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\DRIVERS\uagp35.sys
11:34:31.0879 6764 uagp35 - ok
11:34:31.0980 6764 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
11:34:32.0063 6764 udfs - ok
11:34:32.0231 6764 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
11:34:32.0253 6764 UI0Detect - ok
11:34:32.0280 6764 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
11:34:32.0301 6764 uliagpkx - ok
11:34:32.0382 6764 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
11:34:32.0396 6764 umbus - ok
11:34:32.0458 6764 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\DRIVERS\umpass.sys
11:34:32.0545 6764 UmPass - ok
11:34:32.0638 6764 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\windows\System32\umrdp.dll
11:34:32.0696 6764 UmRdpService - ok
11:34:32.0780 6764 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
11:34:32.0797 6764 upnphost - ok
11:34:32.0919 6764 [ 4E93C8496359E97830C75AC36393654D ] upperdev C:\windows\system32\DRIVERS\usbser_lowerfltx64.sys
11:34:32.0954 6764 upperdev - ok
11:34:33.0022 6764 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
11:34:33.0039 6764 usbccgp - ok
11:34:33.0115 6764 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
11:34:33.0389 6764 usbcir - ok
11:34:33.0497 6764 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\DRIVERS\usbehci.sys
11:34:33.0544 6764 usbehci - ok
11:34:33.0670 6764 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
11:34:33.0688 6764 usbhub - ok
11:34:33.0732 6764 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\DRIVERS\usbohci.sys
11:34:33.0745 6764 usbohci - ok
11:34:33.0785 6764 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
11:34:33.0804 6764 usbprint - ok
11:34:33.0854 6764 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\windows\system32\DRIVERS\usbscan.sys
11:34:33.0868 6764 usbscan - ok
11:34:33.0973 6764 [ 4ACEE387FA8FD39F83564FCD2FC234F2 ] usbser C:\windows\system32\drivers\usbser.sys
11:34:33.0993 6764 usbser - ok
11:34:34.0014 6764 [ 8844CB19A37B65E27049D4A7786726A9 ] UsbserFilt C:\windows\system32\DRIVERS\usbser_lowerfltjx64.sys
11:34:34.0032 6764 UsbserFilt - ok
11:34:34.0062 6764 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
11:34:34.0077 6764 USBSTOR - ok
11:34:34.0101 6764 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\windows\system32\DRIVERS\usbuhci.sys
11:34:34.0113 6764 usbuhci - ok
11:34:34.0190 6764 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\System32\Drivers\usbvideo.sys
11:34:34.0206 6764 usbvideo - ok
11:34:34.0302 6764 [ 7B28E2FBE75115660FAB31079C0A9F29 ] usb_rndisx C:\windows\system32\drivers\usb8023x.sys
11:34:34.0324 6764 usb_rndisx - ok
11:34:34.0365 6764 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
11:34:34.0377 6764 UxSms - ok
11:34:34.0402 6764 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
11:34:34.0405 6764 VaultSvc - ok
11:34:34.0912 6764 [ BBE2B5036D2FF45458C747FB2513591D ] vcsFPService C:\windows\system32\vcsFPService.exe
11:34:34.0980 6764 vcsFPService - ok
11:34:35.0018 6764 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
11:34:35.0037 6764 vdrvroot - ok
11:34:35.0142 6764 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
11:34:35.0159 6764 vds - ok
11:34:35.0192 6764 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
11:34:35.0201 6764 vga - ok
11:34:35.0236 6764 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
11:34:35.0251 6764 VgaSave - ok
11:34:35.0310 6764 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
11:34:35.0326 6764 vhdmp - ok
11:34:35.0356 6764 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
11:34:35.0368 6764 viaide - ok
11:34:35.0412 6764 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\windows\system32\drivers\vmbus.sys
11:34:35.0422 6764 vmbus - ok
11:34:35.0452 6764 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\windows\system32\drivers\VMBusHID.sys
11:34:35.0470 6764 VMBusHID - ok
11:34:35.0493 6764 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
11:34:35.0514 6764 volmgr - ok
11:34:35.0580 6764 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
11:34:35.0606 6764 volmgrx - ok
11:34:35.0662 6764 [ DF8126BD41180351A093A3AD2FC8903B ] volsnap C:\windows\system32\drivers\volsnap.sys
11:34:35.0676 6764 volsnap - ok
11:34:35.0755 6764 [ B4A73CA4EF9A02B9738CEA9AD5FE5917 ] vpcbus C:\windows\system32\DRIVERS\vpchbus.sys
11:34:35.0774 6764 vpcbus - ok
11:34:35.0869 6764 [ E675FB2B48C54F09895482E2253B289C ] vpcnfltr C:\windows\system32\DRIVERS\vpcnfltr.sys
11:34:35.0885 6764 vpcnfltr - ok
11:34:35.0939 6764 [ 5FB42082B0D19A0268705F1DD343DF20 ] vpcusb C:\windows\system32\DRIVERS\vpcusb.sys
11:34:35.0959 6764 vpcusb - ok
11:34:36.0083 6764 [ 207B6539799CC1C112661A9B620DD233 ] vpcvmm C:\windows\system32\drivers\vpcvmm.sys
11:34:36.0103 6764 vpcvmm - ok
11:34:36.0296 6764 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\DRIVERS\vsmraid.sys
11:34:36.0352 6764 vsmraid - ok
11:34:36.0706 6764 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
11:34:36.0728 6764 VSS - ok
11:34:36.0755 6764 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
11:34:36.0776 6764 vwifibus - ok
11:34:36.0823 6764 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
11:34:36.0842 6764 vwififlt - ok
11:34:36.0935 6764 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
11:34:36.0947 6764 vwifimp - ok
11:34:37.0006 6764 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
11:34:37.0024 6764 W32Time - ok
11:34:37.0049 6764 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\DRIVERS\wacompen.sys
11:34:37.0063 6764 WacomPen - ok
11:34:37.0157 6764 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
11:34:37.0169 6764 WANARP - ok
11:34:37.0204 6764 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
11:34:37.0205 6764 Wanarpv6 - ok
11:34:37.0602 6764 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
11:34:37.0649 6764 WatAdminSvc - ok
11:34:37.0890 6764 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
11:34:37.0914 6764 wbengine - ok
11:34:37.0955 6764 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
11:34:37.0961 6764 WbioSrvc - ok
11:34:37.0988 6764 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
11:34:37.0996 6764 wcncsvc - ok
11:34:38.0012 6764 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
11:34:38.0031 6764 WcsPlugInService - ok
11:34:38.0070 6764 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\DRIVERS\wd.sys
11:34:38.0084 6764 Wd - ok
11:34:38.0122 6764 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
11:34:38.0138 6764 Wdf01000 - ok
11:34:38.0153 6764 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
11:34:38.0163 6764 WdiServiceHost - ok
11:34:38.0167 6764 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
11:34:38.0172 6764 WdiSystemHost - ok
11:34:38.0237 6764 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
11:34:38.0251 6764 WebClient - ok
11:34:38.0316 6764 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
11:34:38.0330 6764 Wecsvc - ok
11:34:38.0363 6764 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
11:34:38.0373 6764 wercplsupport - ok
11:34:38.0406 6764 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
11:34:38.0412 6764 WerSvc - ok
11:34:38.0470 6764 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
11:34:38.0485 6764 WfpLwf - ok
11:34:38.0550 6764 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
11:34:38.0560 6764 WIMMount - ok
11:34:38.0606 6764 WinDefend - ok
11:34:38.0677 6764 WinHttpAutoProxySvc - ok
11:34:38.0844 6764 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
11:34:38.0865 6764 Winmgmt - ok
11:34:39.0041 6764 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
11:34:39.0072 6764 WinRM - ok
11:34:39.0220 6764 [ FE88B288356E7B47B74B13372ADD906D ] WinUSB C:\windows\system32\DRIVERS\WinUSB.sys
11:34:39.0231 6764 WinUSB - ok
11:34:39.0453 6764 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
11:34:39.0473 6764 Wlansvc - ok
11:34:39.0976 6764 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:34:40.0003 6764 wlidsvc - ok
11:34:40.0076 6764 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys
11:34:40.0137 6764 WmiAcpi - ok
11:34:40.0248 6764 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
11:34:40.0263 6764 wmiApSrv - ok
11:34:40.0321 6764 WMPNetworkSvc - ok
11:34:40.0441 6764 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
11:34:40.0582 6764 WPCSvc - ok
11:34:40.0743 6764 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
11:34:40.0788 6764 WPDBusEnum - ok
11:34:40.0874 6764 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
11:34:40.0981 6764 ws2ifsl - ok
11:34:41.0044 6764 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\system32\wscsvc.dll
11:34:41.0060 6764 wscsvc - ok
11:34:41.0064 6764 WSearch - ok
11:34:41.0688 6764 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
11:34:41.0764 6764 wuauserv - ok
11:34:41.0819 6764 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\windows\system32\drivers\WudfPf.sys
11:34:41.0836 6764 WudfPf - ok
11:34:41.0896 6764 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
11:34:41.0909 6764 WUDFRd - ok
11:34:41.0937 6764 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\windows\System32\WUDFSvc.dll
11:34:41.0951 6764 wudfsvc - ok
11:34:42.0030 6764 [ CE8CF9DE9CBFDAA318BD04D8BE3FCADA ] WwanSvc C:\windows\System32\wwansvc.dll
11:34:42.0044 6764 WwanSvc - ok
11:34:42.0182 6764 [ E8EAE03EB934BD26F021B882B9F29771 ] yukonw7 C:\windows\system32\DRIVERS\yk62x64.sys
11:34:42.0251 6764 yukonw7 - ok
11:34:42.0370 6764 ================ Scan global ===============================
11:34:42.0418 6764 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
11:34:42.0543 6764 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
11:34:42.0626 6764 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
11:34:42.0703 6764 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
11:34:42.0826 6764 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
11:34:42.0838 6764 [Global] - ok
11:34:42.0838 6764 ================ Scan MBR ==================================
11:34:42.0857 6764 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:34:45.0763 6764 \Device\Harddisk0\DR0 - ok
11:34:45.0764 6764 ================ Scan VBR ==================================
11:34:45.0790 6764 [ 062152209E131DB456A38A01694E526C ] \Device\Harddisk0\DR0\Partition1
11:34:45.0805 6764 \Device\Harddisk0\DR0\Partition1 - ok
11:34:45.0827 6764 [ E31530BAE1D1CA5D99C14B53E71DD046 ] \Device\Harddisk0\DR0\Partition2
11:34:45.0873 6764 \Device\Harddisk0\DR0\Partition2 - ok
11:34:45.0901 6764 [ 1402705A255D6BCCB5628D6F3725CC17 ] \Device\Harddisk0\DR0\Partition3
11:34:45.0924 6764 \Device\Harddisk0\DR0\Partition3 - ok
11:34:45.0961 6764 [ A10A625C79E5BD56F9E1C71127E20B2E ] \Device\Harddisk0\DR0\Partition4
11:34:45.0987 6764 \Device\Harddisk0\DR0\Partition4 - ok
11:34:45.0987 6764 ============================================================
11:34:45.0988 6764 Scan finished
11:34:45.0988 6764 ============================================================
11:34:46.0000 5260 Detected object count: 2
11:34:46.0000 5260 Actual detected object count: 2
11:35:55.0709 5260 C:\windows\system32\drivers\SafeBoot.sys - copied to quarantine
11:35:56.0275 5260 SafeBoot ( LockedFile.Multi.Generic ) - User select action: Quarantine
11:35:56.0469 5260 C:\windows\system32\Drivers\sptd.sys - copied to quarantine
11:35:57.0223 5260 sptd ( LockedFile.Multi.Generic ) - User select action: Quarantine
11:36:00.0681 3412 ============================================================
11:36:00.0681 3412 Scan started
11:36:00.0681 3412 Mode: Manual;
11:36:00.0681 3412 ============================================================
11:36:01.0964 3412 ================ Scan system memory ========================
11:36:01.0964 3412 System memory - ok
11:36:01.0965 3412 ================ Scan services =============================
11:36:03.0024 3412 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
11:36:03.0026 3412 1394ohci - ok
11:36:03.0156 3412 [ 5E8EFEB338DEB1F485420B090FE6C85E ] ac.sharedstore C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe
11:36:03.0158 3412 ac.sharedstore - ok
11:36:03.0210 3412 [ 5C368F4B04ED2A923E6AFCA2D37BAFF5 ] Accelerometer C:\windows\system32\DRIVERS\Accelerometer.sys
11:36:03.0211 3412 Accelerometer - ok
11:36:03.0258 3412 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
11:36:03.0261 3412 ACPI - ok
11:36:03.0282 3412 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
11:36:03.0283 3412 AcpiPmi - ok
11:36:03.0711 3412 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:36:03.0712 3412 AdobeARMservice - ok
11:36:04.0335 3412 [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:36:04.0337 3412 AdobeFlashPlayerUpdateSvc - ok
11:36:04.0454 3412 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys
11:36:04.0459 3412 adp94xx - ok
11:36:04.0575 3412 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\DRIVERS\adpahci.sys
11:36:04.0578 3412 adpahci - ok
11:36:04.0632 3412 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys
11:36:04.0634 3412 adpu320 - ok
11:36:04.0694 3412 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
11:36:04.0695 3412 AeLookupSvc - ok
11:36:04.0853 3412 [ 2C4676E1B569BBE9D4D50A2B90F10064 ] AESTAud C:\windows\system32\drivers\AESTAu64.sys
11:36:04.0855 3412 AESTAud - ok
11:36:05.0067 3412 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
11:36:05.0068 3412 AESTFilters - ok
11:36:05.0169 3412 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
11:36:05.0173 3412 AFD - ok
11:36:05.0250 3412 [ B65F8DBA54F251906BBE8611B5A0E7AB ] AgereModemAudio C:\Program Files\LSI SoftModem\agr64svc.exe
11:36:05.0251 3412 AgereModemAudio - ok
11:36:05.0496 3412 [ A6AB6F0ACE87DA76B4C401813D18BE95 ] AgereSoftModem C:\windows\system32\DRIVERS\agrsm64.sys
11:36:05.0504 3412 AgereSoftModem - ok
11:36:05.0544 3412 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
11:36:05.0545 3412 agp440 - ok
11:36:05.0581 3412 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
11:36:05.0582 3412 ALG - ok
11:36:05.0612 3412 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
11:36:05.0612 3412 aliide - ok
11:36:05.0673 3412 [ E20DDDFBD0DBE7D8EAD4D7A51D654367 ] AMD External Events Utility C:\windows\system32\atiesrxx.exe
11:36:05.0675 3412 AMD External Events Utility - ok
11:36:05.0720 3412 AMD FUEL Service - ok
11:36:05.0731 3412 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
11:36:05.0732 3412 amdide - ok
11:36:05.0768 3412 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\windows\system32\DRIVERS\amdiox64.sys
11:36:05.0769 3412 amdiox64 - ok
11:36:05.0842 3412 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys
11:36:05.0843 3412 AmdK8 - ok
11:36:07.0392 3412 [ 4284FB1240537A33E6EC417EFD87D40F ] amdkmdag C:\windows\system32\DRIVERS\atikmdag.sys
11:36:07.0464 3412 amdkmdag - ok
11:36:07.0555 3412 [ 6C25C497E05EFD0CB6033A0444FC9B51 ] amdkmdap C:\windows\system32\DRIVERS\atikmpag.sys
11:36:07.0558 3412 amdkmdap - ok
11:36:07.0584 3412 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys
11:36:07.0585 3412 AmdPPM - ok
11:36:07.0643 3412 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
11:36:07.0645 3412 amdsata - ok
11:36:07.0713 3412 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys
11:36:07.0715 3412 amdsbs - ok
11:36:07.0741 3412 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
11:36:07.0742 3412 amdxata - ok
11:36:07.0780 3412 [ 5B25D1A753CC3A3EDB909BB759AC1098 ] AODDriver4.1 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
11:36:07.0781 3412 AODDriver4.1 - ok
11:36:07.0827 3412 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
11:36:07.0828 3412 AppID - ok
11:36:07.0861 3412 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
11:36:07.0862 3412 AppIDSvc - ok
11:36:07.0926 3412 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
11:36:07.0927 3412 Appinfo - ok
11:36:07.0973 3412 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\windows\System32\appmgmts.dll
11:36:07.0975 3412 AppMgmt - ok
11:36:08.0020 3412 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\DRIVERS\arc.sys
11:36:08.0021 3412 arc - ok
11:36:08.0039 3412 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\DRIVERS\arcsas.sys
11:36:08.0041 3412 arcsas - ok
11:36:08.0489 3412 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
11:36:08.0489 3412 aspnet_state - ok
11:36:08.0559 3412 [ B217378ED9A964E15346A67FEF609A17 ] aswFsBlk C:\windows\system32\drivers\aswFsBlk.sys
11:36:08.0560 3412 aswFsBlk - ok
11:36:08.0599 3412 [ C42D45089FD2EC63D13571362C258DC6 ] aswKbd C:\windows\system32\drivers\aswKbd.sys
11:36:08.0600 3412 aswKbd - ok
11:36:08.0650 3412 [ E92635BB235B03ED03B17CBB59F77FA4 ] aswMonFlt C:\windows\system32\drivers\aswMonFlt.sys
11:36:08.0651 3412 aswMonFlt - ok
11:36:08.0709 3412 [ 8F90459AFB7FD4557D935CE639EF6110 ] aswRdr C:\windows\System32\Drivers\aswrdr2.sys
11:36:08.0710 3412 aswRdr - ok
11:36:08.0762 3412 [ DE6759B8D8E62BF0FFF2B05F05AFCEE6 ] aswRvrt C:\windows\system32\drivers\aswRvrt.sys
11:36:08.0763 3412 aswRvrt - ok
11:36:08.0885 3412 [ AB8B4D3136D18A20777036E0F0CFC5E1 ] aswSnx C:\windows\system32\drivers\aswSnx.sys
11:36:08.0892 3412 aswSnx - ok
11:36:09.0000 3412 [ 97D4D725BD32C965119E6C8E252F8C64 ] aswSP C:\windows\system32\drivers\aswSP.sys
11:36:09.0003 3412 aswSP - ok
11:36:09.0037 3412 [ D62C10D1829C65115111C160EA956260 ] aswTdi C:\windows\system32\drivers\aswTdi.sys
11:36:09.0038 3412 aswTdi - ok
11:36:09.0092 3412 [ 7E44C2684A6CA779B9D07CB4BD3F649D ] aswVmm C:\windows\system32\drivers\aswVmm.sys
11:36:09.0094 3412 aswVmm - ok
11:36:09.0116 3412 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
11:36:09.0117 3412 AsyncMac - ok
11:36:09.0190 3412 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
11:36:09.0191 3412 atapi - ok
11:36:09.0245 3412 [ 7E2F5A758F63F80F8B03F889B4E6B19F ] AtiHdmiService C:\windows\system32\drivers\AtiHdmi.sys
11:36:09.0247 3412 AtiHdmiService - ok
11:36:09.0273 3412 [ C07A040D6B5A42DD41EE386CF90974C8 ] AtiPcie C:\windows\system32\DRIVERS\AtiPcie.sys
11:36:09.0273 3412 AtiPcie - ok
11:36:09.0406 3412 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
11:36:09.0411 3412 AudioEndpointBuilder - ok
11:36:09.0546 3412 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
11:36:09.0551 3412 AudioSrv - ok
11:36:09.0904 3412 [ 35A85429EC0A09EF4CF53F5BB1F5C2C5 ] Autodesk Content Service C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
11:36:09.0906 3412 Autodesk Content Service - ok
11:36:10.0032 3412 [ 41735B82DB57E4EBE9504EC400FD120E ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
11:36:10.0032 3412 avast! Antivirus - ok
11:36:10.0074 3412 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
11:36:10.0075 3412 AxInstSV - ok
11:36:10.0145 3412 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\DRIVERS\bxvbda.sys
11:36:10.0148 3412 b06bdrv - ok
11:36:10.0211 3412 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
11:36:10.0213 3412 b57nd60a - ok
11:36:10.0618 3412 [ 35756E37D5FDEE22FBF27090A14FE608 ] BCM43XX C:\windows\system32\DRIVERS\bcmwl664.sys
11:36:10.0637 3412 BCM43XX - ok
11:36:10.0668 3412 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
11:36:10.0670 3412 BDESVC - ok
11:36:10.0701 3412 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
11:36:10.0702 3412 Beep - ok
11:36:10.0831 3412 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
11:36:10.0836 3412 BFE - ok
11:36:10.0945 3412 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\system32\qmgr.dll
11:36:10.0954 3412 BITS - ok
11:36:11.0070 3412 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
11:36:11.0071 3412 blbdrive - ok
11:36:11.0129 3412 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
11:36:11.0130 3412 bowser - ok
11:36:11.0177 3412 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys
11:36:11.0177 3412 BrFiltLo - ok
11:36:11.0189 3412 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys
11:36:11.0189 3412 BrFiltUp - ok
11:36:11.0250 3412 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\windows\system32\DRIVERS\bridge.sys
11:36:11.0251 3412 BridgeMP - ok
11:36:11.0312 3412 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
11:36:11.0314 3412 Browser - ok
11:36:11.0393 3412 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
11:36:11.0395 3412 Brserid - ok
11:36:11.0431 3412 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
11:36:11.0432 3412 BrSerWdm - ok
11:36:11.0483 3412 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
11:36:11.0483 3412 BrUsbMdm - ok
11:36:11.0569 3412 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
11:36:11.0569 3412 BrUsbSer - ok
11:36:11.0690 3412 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
11:36:11.0691 3412 BthEnum - ok
11:36:11.0749 3412 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys
11:36:11.0750 3412 BTHMODEM - ok
11:36:11.0853 3412 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
11:36:11.0855 3412 BthPan - ok
11:36:12.0072 3412 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
11:36:12.0076 3412 BTHPORT - ok
11:36:12.0127 3412 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
11:36:12.0128 3412 bthserv - ok
11:36:12.0173 3412 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
11:36:12.0174 3412 BTHUSB - ok
11:36:12.0242 3412 [ AF838D8029AE7C27470862D63FA54D24 ] btwaudio C:\windows\system32\drivers\btwaudio.sys
11:36:12.0243 3412 btwaudio - ok
11:36:12.0282 3412 [ 5C849BD7C78791C5CEE9F4651D7FE38D ] btwavdt C:\windows\system32\DRIVERS\btwavdt.sys
11:36:12.0284 3412 btwavdt - ok
11:36:12.0867 3412 [ 10FFB5FA51D5713D872B41A59DFC2213 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
11:36:12.0873 3412 btwdins - ok
11:36:12.0949 3412 [ 6149301DC3F81D6F9667A3FBAC410975 ] btwl2cap C:\windows\system32\DRIVERS\btwl2cap.sys
11:36:12.0949 3412 btwl2cap - ok
11:36:13.0004 3412 [ 3E1991AFA851A36DC978B0A1B0535C8B ] btwrchid C:\windows\system32\DRIVERS\btwrchid.sys
11:36:13.0004 3412 btwrchid - ok
11:36:13.0024 3412 catchme - ok
11:36:13.0063 3412 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
11:36:13.0065 3412 cdfs - ok
11:36:13.0157 3412 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
11:36:13.0159 3412 cdrom - ok
11:36:13.0210 3412 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
11:36:13.0220 3412 CertPropSvc - ok
11:36:13.0255 3412 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\DRIVERS\circlass.sys
11:36:13.0255 3412 circlass - ok
11:36:13.0312 3412 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
11:36:13.0316 3412 CLFS - ok
11:36:13.0491 3412 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:36:13.0493 3412 clr_optimization_v2.0.50727_32 - ok
11:36:13.0600 3412 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:36:13.0602 3412 clr_optimization_v2.0.50727_64 - ok
11:36:13.0760 3412 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:36:13.0761 3412 clr_optimization_v4.0.30319_32 - ok
11:36:13.0803 3412 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:36:13.0805 3412 clr_optimization_v4.0.30319_64 - ok
11:36:13.0843 3412 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
11:36:13.0844 3412 CmBatt - ok
11:36:13.0891 3412 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
11:36:13.0891 3412 cmdide - ok
11:36:13.0938 3412 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\windows\system32\Drivers\cng.sys
11:36:13.0942 3412 CNG - ok
11:36:13.0963 3412 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
11:36:13.0964 3412 Compbatt - ok
11:36:14.0011 3412 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys
11:36:14.0011 3412 CompositeBus - ok
11:36:14.0016 3412 COMSysApp - ok
11:36:14.0152 3412 cpuz135 - ok
11:36:14.0155 3412 cpuz136 - ok
11:36:14.0184 3412 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys
11:36:14.0185 3412 crcdisk - ok
11:36:14.0344 3412 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\windows\system32\cryptsvc.dll
11:36:14.0347 3412 CryptSvc - ok
11:36:14.0573 3412 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\windows\system32\drivers\csc.sys
11:36:14.0577 3412 CSC - ok
11:36:14.0894 3412 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\windows\System32\cscsvc.dll
11:36:14.0899 3412 CscService - ok
11:36:15.0127 3412 [ A8BA4DA23AC20BDA23CA15234D42A3FA ] DAMDrv C:\windows\system32\DRIVERS\DAMDrv64.sys
11:36:15.0128 3412 DAMDrv - ok
11:36:15.0284 3412 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
11:36:15.0291 3412 DcomLaunch - ok
11:36:15.0690 3412 [ E6E9610D76418357A7EC725989687CB4 ] DEBridge c:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe
11:36:15.0695 3412 DEBridge - ok
11:36:15.0872 3412 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
11:36:15.0921 3412 defragsvc - ok
11:36:16.0102 3412 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
11:36:16.0222 3412 DfsC - ok
11:36:16.0429 3412 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
11:36:16.0551 3412 Dhcp - ok
11:36:16.0586 3412 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
11:36:16.0587 3412 discache - ok
11:36:16.0605 3412 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\DRIVERS\disk.sys
11:36:16.0618 3412 Disk - ok
11:36:16.0703 3412 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
11:36:16.0707 3412 Dnscache - ok
11:36:16.0786 3412 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
11:36:16.0798 3412 dot3svc - ok
11:36:16.0981 3412 [ 723E663FD14A7FBE4B1C8C8FDE1C406C ] DpHost c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
11:36:16.0985 3412 DpHost - ok
11:36:17.0032 3412 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
11:36:17.0047 3412 DPS - ok
11:36:17.0092 3412 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
11:36:17.0108 3412 drmkaud - ok
11:36:17.0303 3412 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
11:36:17.0316 3412 DXGKrnl - ok
11:36:17.0352 3412 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
11:36:17.0361 3412 EapHost - ok
11:36:17.0965 3412 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\DRIVERS\evbda.sys
11:36:17.0986 3412 ebdrv - ok
11:36:18.0038 3412 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
11:36:18.0041 3412 EFS - ok
11:36:18.0161 3412 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
11:36:18.0165 3412 ehRecvr - ok
11:36:18.0196 3412 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
11:36:18.0197 3412 ehSched - ok
11:36:18.0282 3412 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\DRIVERS\elxstor.sys
11:36:18.0286 3412 elxstor - ok
11:36:18.0309 3412 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
11:36:18.0323 3412 ErrDev - ok
11:36:18.0402 3412 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
11:36:18.0406 3412 EventSystem - ok
11:36:18.0483 3412 [ 334C907536E815E56CD13108A6D5FB9D ] ewusbmbb C:\windows\system32\DRIVERS\ewusbwwan.sys
11:36:18.0487 3412 ewusbmbb - ok
11:36:18.0552 3412 [ 86F7951BBCEE4A86E79A97306BD14318 ] ew_hwusbdev C:\windows\system32\DRIVERS\ew_hwusbdev.sys
11:36:18.0553 3412 ew_hwusbdev - ok
11:36:18.0602 3412 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
11:36:18.0622 3412 exfat - ok
11:36:18.0728 3412 Fabs - ok
11:36:18.0760 3412 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
11:36:18.0773 3412 fastfat - ok
11:36:18.0902 3412 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
11:36:18.0908 3412 Fax - ok
11:36:19.0041 3412 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\DRIVERS\fdc.sys
11:36:19.0042 3412 fdc - ok
11:36:19.0110 3412 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
11:36:19.0158 3412 fdPHost - ok
11:36:19.0183 3412 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
11:36:19.0225 3412 FDResPub - ok
11:36:19.0255 3412 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
11:36:19.0277 3412 FileInfo - ok
11:36:19.0307 3412 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
11:36:19.0325 3412 Filetrace - ok
11:36:19.0791 3412 [ FFF1130F7C9FA01D093A1EDFC5CCE8FC ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
11:36:19.0813 3412 FirebirdServerMAGIXInstance - ok
11:36:20.0387 3412 [ 614B050875190FFE7ABBAF0CBB4FBBBA ] FLCDLOCK c:\Windows\SysWOW64\flcdlock.exe
11:36:20.0403 3412 FLCDLOCK - ok
11:36:20.0534 3412 [ F76D04F7413B07DAA029F6520B64B4E8 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
11:36:20.0551 3412 FLEXnet Licensing Service - ok
11:36:20.0918 3412 [ 64AB6F28047744B9B19C97459C2AB31B ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
11:36:20.0939 3412 FLEXnet Licensing Service 64 - ok
11:36:21.0001 3412 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys
11:36:21.0002 3412 flpydisk - ok
11:36:21.0060 3412 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
11:36:21.0076 3412 FltMgr - ok
11:36:21.0221 3412 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\windows\system32\FntCache.dll
11:36:21.0239 3412 FontCache - ok
11:36:21.0347 3412 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:36:21.0348 3412 FontCache3.0.0.0 - ok
11:36:21.0380 3412 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
11:36:21.0381 3412 FsDepends - ok
11:36:21.0421 3412 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
11:36:21.0438 3412 Fs_Rec - ok
11:36:21.0526 3412 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
11:36:21.0528 3412 fvevol - ok
11:36:21.0559 3412 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys
11:36:21.0560 3412 gagp30kx - ok
11:36:21.0764 3412 [ 9F5F2F0FB0A7F5AA9F16B9A7B6DAD89F ] GoogleDesktopManager-051210-111108 C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe
11:36:21.0765 3412 GoogleDesktopManager-051210-111108 - ok
11:36:21.0970 3412 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
11:36:22.0024 3412 gpsvc - ok
11:36:22.0271 3412 [ B9893A68032A6D9ADDB5B98287C630F7 ] grmnusb C:\windows\system32\drivers\grmnusb.sys
11:36:22.0272 3412 grmnusb - ok
11:36:22.0511 3412 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:36:22.0553 3412 gupdate - ok
11:36:22.0568 3412 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:36:22.0570 3412 gupdatem - ok
11:36:22.0604 3412 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
11:36:22.0605 3412 hcw85cir - ok
11:36:22.0650 3412 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
11:36:22.0672 3412 HdAudAddService - ok
11:36:22.0709 3412 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\drivers\HDAudBus.sys
11:36:22.0722 3412 HDAudBus - ok
11:36:22.0746 3412 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys
11:36:22.0747 3412 HidBatt - ok
11:36:22.0757 3412 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\DRIVERS\hidbth.sys
11:36:22.0758 3412 HidBth - ok


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 18.11.09
Prihlásený: 29.11.16
Príspevky: 89
Témy: 17 | 17
Bydlisko: Ružomberok
Napísal autor témyOffline : 25.03.2013 8:32 | pomoc s http://adf.ly/Kwky2

4

Spoiler: zobraziť
11:36:22.0785 3412 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\DRIVERS\hidir.sys
11:36:22.0786 3412 HidIr - ok
11:36:22.0820 3412 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\System32\hidserv.dll
11:36:22.0833 3412 hidserv - ok
11:36:22.0859 3412 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
11:36:22.0881 3412 HidUsb - ok
11:36:22.0931 3412 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
11:36:22.0946 3412 hkmsvc - ok
11:36:23.0035 3412 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
11:36:23.0049 3412 HomeGroupListener - ok
11:36:23.0113 3412 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
11:36:23.0151 3412 HomeGroupProvider - ok
11:36:23.0443 3412 [ FCD7A3D515B7BA9276E7C82A45B4AB02 ] HP Power Assistant Service C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
11:36:23.0467 3412 HP Power Assistant Service - ok
11:36:24.0044 3412 [ 3891D3993065D392E0DE541BEA0A9EA5 ] HP ProtectTools Service c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
11:36:24.0047 3412 HP ProtectTools Service - ok
11:36:24.0180 3412 [ 170233B8D743EFE35F462A5D516B93E3 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
11:36:24.0213 3412 HP Support Assistant Service - ok
11:36:24.0444 3412 [ 58CC11D14D88EF70EF7ABBC75B5EEBD8 ] HP Wireless Assistant Service C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
11:36:24.0459 3412 HP Wireless Assistant Service - ok
11:36:24.0553 3412 [ 18B19A49A2B92C356D225012CE354E60 ] HPDayStarterService c:\Program Files (x86)\Hewlett-Packard\HP QuickLook\HPDayStarterService.exe
11:36:24.0554 3412 HPDayStarterService - ok
11:36:24.0623 3412 [ B7382BEC806B7B00FC84B3E2061FF48E ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
11:36:24.0625 3412 HPDrvMntSvc.exe - ok
11:36:24.0692 3412 [ 4E0BEC0F78096FFD6D3314B497FC49D3 ] hpdskflt C:\windows\system32\DRIVERS\hpdskflt.sys
11:36:24.0693 3412 hpdskflt - ok
11:36:24.0773 3412 [ 5AFB3F9B74553BD933555E1C800D2CE1 ] HpFkCryptService c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
11:36:24.0775 3412 HpFkCryptService - ok
11:36:24.0946 3412 [ 8205DA7B4191ACD96F76B81E42945754 ] HPFSService C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
11:36:24.0948 3412 HPFSService - ok
11:36:25.0138 3412 [ 41C63E8C13E13B5F0E20AE1AFBBB7E05 ] hpHotkeyMonitor C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
11:36:25.0142 3412 hpHotkeyMonitor - ok
11:36:25.0194 3412 [ B98EE5D4535A685634B90F7E04DE0DF7 ] HpqKbFiltr C:\windows\system32\DRIVERS\HpqKbFiltr.sys
11:36:25.0195 3412 HpqKbFiltr - ok
11:36:25.0333 3412 [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
11:36:25.0340 3412 hpqwmiex - ok
11:36:25.0417 3412 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
11:36:25.0418 3412 HpSAMD - ok
11:36:25.0450 3412 [ FC7C13B5A9E9BE23B7AE72BBC7FDB278 ] hpsrv C:\windows\system32\Hpservice.exe
11:36:25.0452 3412 hpsrv - ok
11:36:25.0526 3412 [ F47CEC45FB85791D4AB237563AD0FA8F ] HTCAND64 C:\windows\system32\Drivers\ANDROIDUSB.sys
11:36:25.0527 3412 HTCAND64 - ok
11:36:25.0572 3412 [ B8B1B284362E1D8135112573395D5DA5 ] htcnprot C:\windows\system32\DRIVERS\htcnprot.sys
11:36:25.0573 3412 htcnprot - ok
11:36:25.0828 3412 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
11:36:25.0834 3412 HTTP - ok
11:36:25.0910 3412 [ 1642C62F1FD5E1FF44608283994A7BB8 ] huawei_enumerator C:\windows\system32\DRIVERS\ew_jubusenum.sys
11:36:25.0912 3412 huawei_enumerator - ok
11:36:25.0951 3412 [ 04D1DE1E8ACE40CA396502C90524E945 ] hwdatacard C:\windows\system32\DRIVERS\ewusbmdm.sys
11:36:25.0953 3412 hwdatacard - ok
11:36:26.0056 3412 HWDeviceService64.exe - ok
11:36:26.0087 3412 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
11:36:26.0088 3412 hwpolicy - ok
11:36:26.0128 3412 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\drivers\i8042prt.sys
11:36:26.0141 3412 i8042prt - ok
11:36:26.0223 3412 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
11:36:26.0226 3412 iaStorV - ok
11:36:26.0342 3412 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:36:26.0348 3412 idsvc - ok
11:36:26.0828 3412 [ F52DEF944A2B149AF079D094BAAB22E1 ] IFXSpMgtSrv C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe
11:36:26.0836 3412 IFXSpMgtSrv - ok
11:36:27.0416 3412 [ 32D2F6C67511C90A3FE2C31DE887A767 ] IFXTCS C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe
11:36:27.0423 3412 IFXTCS - ok
11:36:27.0596 3412 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\DRIVERS\iirsp.sys
11:36:27.0597 3412 iirsp - ok
11:36:27.0862 3412 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
11:36:27.0875 3412 IKEEXT - ok
11:36:27.0944 3412 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
11:36:27.0945 3412 intelide - ok
11:36:27.0998 3412 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
11:36:27.0999 3412 intelppm - ok
11:36:28.0035 3412 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
11:36:28.0047 3412 IPBusEnum - ok
11:36:28.0125 3412 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
11:36:28.0139 3412 IpFilterDriver - ok
11:36:28.0298 3412 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
11:36:28.0304 3412 iphlpsvc - ok
11:36:28.0331 3412 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
11:36:28.0332 3412 IPMIDRV - ok
11:36:28.0373 3412 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
11:36:28.0374 3412 IPNAT - ok
11:36:28.0431 3412 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
11:36:28.0442 3412 IRENUM - ok
11:36:28.0528 3412 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
11:36:28.0546 3412 isapnp - ok
11:36:28.0597 3412 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
11:36:28.0766 3412 iScsiPrt - ok
11:36:28.0828 3412 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\drivers\kbdclass.sys
11:36:28.0829 3412 kbdclass - ok
11:36:28.0898 3412 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
11:36:28.0951 3412 kbdhid - ok
11:36:29.0006 3412 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
11:36:29.0008 3412 KeyIso - ok
11:36:29.0049 3412 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
11:36:29.0050 3412 KSecDD - ok
11:36:29.0100 3412 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
11:36:29.0117 3412 KSecPkg - ok
11:36:29.0176 3412 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
11:36:29.0188 3412 ksthunk - ok
11:36:29.0268 3412 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
11:36:29.0273 3412 KtmRm - ok
11:36:29.0342 3412 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\System32\srvsvc.dll
11:36:29.0356 3412 LanmanServer - ok
11:36:29.0399 3412 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
11:36:29.0417 3412 LanmanWorkstation - ok
11:36:29.0497 3412 [ C34411A244029F1C08687F7C752C4563 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
11:36:29.0498 3412 LightScribeService - ok
11:36:29.0528 3412 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
11:36:29.0542 3412 lltdio - ok
11:36:29.0595 3412 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
11:36:29.0600 3412 lltdsvc - ok
11:36:29.0620 3412 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
11:36:29.0638 3412 lmhosts - ok
11:36:29.0686 3412 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys
11:36:29.0688 3412 LSI_FC - ok
11:36:29.0708 3412 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys
11:36:29.0709 3412 LSI_SAS - ok
11:36:29.0733 3412 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys
11:36:29.0734 3412 LSI_SAS2 - ok
11:36:29.0751 3412 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys
11:36:29.0752 3412 LSI_SCSI - ok
11:36:29.0781 3412 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
11:36:29.0797 3412 luafv - ok
11:36:29.0927 3412 [ 1F02B554DDC4086D786537A3BF6488F1 ] lxecCATSCustConnectService C:\windows\system32\spool\DRIVERS\x64\3\\lxecserv.exe
11:36:29.0930 3412 lxecCATSCustConnectService - ok
11:36:29.0934 3412 lxec_device - ok
11:36:29.0964 3412 [ 92EB844D90615CB266F84C3202B8786E ] MBAMProtector C:\windows\system32\drivers\mbam.sys
11:36:29.0965 3412 MBAMProtector - ok
11:36:30.0079 3412 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
11:36:30.0082 3412 MBAMScheduler - ok
11:36:30.0168 3412 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
11:36:30.0173 3412 MBAMService - ok
11:36:30.0220 3412 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
11:36:30.0234 3412 Mcx2Svc - ok
11:36:30.0260 3412 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\DRIVERS\megasas.sys
11:36:30.0261 3412 megasas - ok
11:36:30.0340 3412 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys
11:36:30.0342 3412 MegaSR - ok
11:36:30.0536 3412 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
11:36:30.0551 3412 Microsoft Office Groove Audit Service - ok
11:36:30.0610 3412 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
11:36:30.0685 3412 MMCSS - ok
11:36:30.0911 3412 [ 38106C7BD34EAE89D2769AC0BA2E846B ] Mobile Partner. RunOuc C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe
11:36:30.0912 3412 Mobile Partner. RunOuc - ok
11:36:30.0935 3412 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
11:36:30.0954 3412 Modem - ok
11:36:31.0021 3412 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
11:36:31.0022 3412 monitor - ok
11:36:31.0053 3412 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
11:36:31.0069 3412 mouclass - ok
11:36:31.0104 3412 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
11:36:31.0115 3412 mouhid - ok
11:36:31.0149 3412 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
11:36:31.0150 3412 mountmgr - ok
11:36:31.0259 3412 [ 8A7C8F4C713E70D73946833D76B77035 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
11:36:31.0261 3412 MozillaMaintenance - ok
11:36:31.0328 3412 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
11:36:31.0344 3412 mpio - ok
11:36:31.0369 3412 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
11:36:31.0384 3412 mpsdrv - ok
11:36:31.0528 3412 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
11:36:31.0542 3412 MpsSvc - ok
11:36:31.0605 3412 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
11:36:31.0624 3412 MRxDAV - ok
11:36:31.0681 3412 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
11:36:31.0692 3412 mrxsmb - ok
11:36:31.0797 3412 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
11:36:31.0813 3412 mrxsmb10 - ok
11:36:31.0846 3412 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
11:36:31.0859 3412 mrxsmb20 - ok
11:36:31.0933 3412 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
11:36:31.0934 3412 msahci - ok
11:36:32.0018 3412 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
11:36:32.0069 3412 msdsm - ok
11:36:32.0106 3412 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
11:36:32.0153 3412 MSDTC - ok
11:36:32.0200 3412 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
11:36:32.0220 3412 Msfs - ok
11:36:32.0253 3412 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
11:36:32.0267 3412 mshidkmdf - ok
11:36:32.0296 3412 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
11:36:32.0314 3412 msisadrv - ok
11:36:32.0366 3412 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
11:36:32.0369 3412 MSiSCSI - ok
11:36:32.0374 3412 msiserver - ok
11:36:32.0404 3412 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
11:36:32.0419 3412 MSKSSRV - ok
11:36:32.0447 3412 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
11:36:32.0460 3412 MSPCLOCK - ok
11:36:32.0489 3412 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
11:36:32.0507 3412 MSPQM - ok
11:36:32.0615 3412 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
11:36:32.0679 3412 MsRPC - ok
11:36:32.0751 3412 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\drivers\mssmbios.sys
11:36:32.0752 3412 mssmbios - ok
11:36:32.0811 3412 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
11:36:32.0862 3412 MSTEE - ok
11:36:32.0939 3412 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys
11:36:32.0940 3412 MTConfig - ok
11:36:33.0022 3412 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
11:36:33.0031 3412 Mup - ok
11:36:33.0164 3412 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
11:36:33.0179 3412 napagent - ok
11:36:33.0222 3412 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
11:36:33.0240 3412 NativeWifiP - ok
11:36:33.0379 3412 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
11:36:33.0386 3412 NDIS - ok
11:36:33.0408 3412 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
11:36:33.0420 3412 NdisCap - ok
11:36:33.0493 3412 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
11:36:33.0507 3412 NdisTapi - ok
11:36:33.0545 3412 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
11:36:33.0557 3412 Ndisuio - ok
11:36:33.0715 3412 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
11:36:33.0769 3412 NdisWan - ok
11:36:33.0821 3412 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
11:36:33.0868 3412 NDProxy - ok
11:36:33.0897 3412 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
11:36:33.0914 3412 NetBIOS - ok
11:36:34.0029 3412 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
11:36:34.0032 3412 NetBT - ok
11:36:34.0057 3412 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
11:36:34.0059 3412 Netlogon - ok
11:36:34.0113 3412 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
11:36:34.0118 3412 Netman - ok
11:36:34.0292 3412 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:36:34.0294 3412 NetMsmqActivator - ok
11:36:34.0301 3412 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:36:34.0303 3412 NetPipeActivator - ok
11:36:34.0360 3412 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
11:36:34.0381 3412 netprofm - ok
11:36:34.0393 3412 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:36:34.0394 3412 NetTcpActivator - ok
11:36:34.0404 3412 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:36:34.0406 3412 NetTcpPortSharing - ok
11:36:34.0439 3412 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys
11:36:34.0441 3412 nfrd960 - ok
11:36:34.0562 3412 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\windows\System32\nlasvc.dll
11:36:34.0566 3412 NlaSvc - ok
11:36:34.0635 3412 [ 907B5E1E4A592E5EDC5E4CCBDE4863C2 ] nmwcd C:\windows\system32\drivers\ccdcmbx64.sys
11:36:34.0636 3412 nmwcd - ok
11:36:34.0681 3412 [ 41C1AC1F3613435EB32D67BCB80A5FA5 ] nmwcdc C:\windows\system32\drivers\ccdcmbox64.sys
11:36:34.0681 3412 nmwcdc - ok
11:36:34.0712 3412 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
11:36:34.0740 3412 Npfs - ok
11:36:34.0804 3412 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
11:36:34.0816 3412 nsi - ok
11:36:34.0849 3412 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
11:36:34.0851 3412 nsiproxy - ok
11:36:35.0421 3412 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
11:36:35.0432 3412 Ntfs - ok
11:36:35.0538 3412 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
11:36:35.0539 3412 Null - ok
11:36:35.0624 3412 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
11:36:35.0626 3412 nvraid - ok
11:36:35.0674 3412 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
11:36:35.0676 3412 nvstor - ok
11:36:35.0787 3412 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
11:36:35.0789 3412 nv_agp - ok
11:36:36.0159 3412 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:36:36.0180 3412 odserv - ok
11:36:36.0246 3412 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
11:36:36.0264 3412 ohci1394 - ok
11:36:36.0309 3412 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:36:36.0325 3412 ose - ok
11:36:36.0401 3412 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
11:36:36.0406 3412 p2pimsvc - ok
11:36:36.0468 3412 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
11:36:36.0480 3412 p2psvc - ok
11:36:36.0515 3412 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\DRIVERS\parport.sys
11:36:36.0527 3412 Parport - ok
11:36:36.0561 3412 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
11:36:36.0573 3412 partmgr - ok
11:36:36.0779 3412 [ AFADA8B97BE3C9398DC6C770409C3544 ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
11:36:36.0780 3412 PassThru Service - ok
11:36:36.0890 3412 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
11:36:36.0909 3412 PcaSvc - ok
11:36:36.0963 3412 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
11:36:36.0978 3412 pci - ok
11:36:37.0005 3412 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
11:36:37.0021 3412 pciide - ok
11:36:37.0093 3412 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\DRIVERS\pcmcia.sys
11:36:37.0095 3412 pcmcia - ok
11:36:37.0123 3412 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
11:36:37.0136 3412 pcw - ok
11:36:37.0232 3412 [ 4A8CC4D25525F456069887D5E8C53225 ] PdiService C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
11:36:37.0234 3412 PdiService - ok
11:36:37.0296 3412 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
11:36:37.0312 3412 PEAUTH - ok
11:36:37.0436 3412 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\windows\system32\peerdistsvc.dll
11:36:37.0448 3412 PeerDistSvc - ok
11:36:38.0080 3412 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
11:36:38.0083 3412 PerfHost - ok
11:36:38.0117 3412 [ F20612DF7E12DE3A087D0F44CC545FB1 ] PersonalSecureDrive C:\windows\System32\drivers\psd.sys
11:36:38.0118 3412 PersonalSecureDrive - ok
11:36:38.0230 3412 [ ED3FD75339C3B6FEC93EAE2513E0A46E ] PersonalSecureDriveService C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe
11:36:38.0232 3412 PersonalSecureDriveService - ok
11:36:38.0348 3412 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
11:36:38.0368 3412 pla - ok
11:36:38.0437 3412 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
11:36:38.0444 3412 PlugPlay - ok
11:36:38.0466 3412 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
11:36:38.0518 3412 PNRPAutoReg - ok
11:36:38.0566 3412 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
11:36:38.0571 3412 PNRPsvc - ok
11:36:38.0682 3412 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
11:36:38.0693 3412 PolicyAgent - ok
11:36:38.0794 3412 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
11:36:38.0799 3412 Power - ok
11:36:38.0872 3412 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
11:36:38.0882 3412 PptpMiniport - ok
11:36:38.0921 3412 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\DRIVERS\processr.sys
11:36:38.0923 3412 Processor - ok
11:36:38.0978 3412 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
11:36:38.0982 3412 ProfSvc - ok
11:36:39.0024 3412 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
11:36:39.0026 3412 ProtectedStorage - ok
11:36:39.0077 3412 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
11:36:39.0078 3412 Psched - ok
11:36:39.0205 3412 [ 543A4EF0923BF70D126625B034EF25AF ] PSI_SVC_2 c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
11:36:39.0207 3412 PSI_SVC_2 - ok
11:36:39.0241 3412 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\windows\system32\Drivers\PxHlpa64.sys
11:36:39.0242 3412 PxHlpa64 - ok
11:36:39.0581 3412 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\DRIVERS\ql2300.sys
11:36:39.0591 3412 ql2300 - ok
11:36:39.0834 3412 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\DRIVERS\ql40xx.sys
11:36:39.0836 3412 ql40xx - ok
11:36:39.0938 3412 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
11:36:39.0950 3412 QWAVE - ok
11:36:40.0004 3412 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
11:36:40.0069 3412 QWAVEdrv - ok
11:36:40.0085 3412 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
11:36:40.0094 3412 RasAcd - ok
11:36:40.0123 3412 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
11:36:40.0125 3412 RasAgileVpn - ok
11:36:40.0176 3412 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
11:36:40.0184 3412 RasAuto - ok
11:36:40.0243 3412 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
11:36:40.0258 3412 Rasl2tp - ok
11:36:40.0328 3412 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
11:36:40.0341 3412 RasMan - ok
11:36:40.0363 3412 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
11:36:40.0379 3412 RasPppoe - ok
11:36:40.0414 3412 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
11:36:40.0427 3412 RasSstp - ok
11:36:40.0468 3412 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
11:36:40.0478 3412 rdbss - ok
11:36:40.0504 3412 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\DRIVERS\rdpbus.sys
11:36:40.0519 3412 rdpbus - ok
11:36:40.0545 3412 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
11:36:40.0546 3412 RDPCDD - ok
11:36:40.0594 3412 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\windows\system32\drivers\rdpdr.sys
11:36:40.0610 3412 RDPDR - ok
11:36:40.0619 3412 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
11:36:40.0620 3412 RDPENCDD - ok
11:36:40.0644 3412 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
11:36:40.0646 3412 RDPREFMP - ok
11:36:40.0695 3412 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
11:36:40.0705 3412 RdpVideoMiniport - ok
11:36:40.0781 3412 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
11:36:40.0799 3412 RDPWD - ok
11:36:40.0867 3412 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
11:36:40.0879 3412 rdyboost - ok
11:36:40.0911 3412 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
11:36:40.0927 3412 RemoteAccess - ok
11:36:40.0977 3412 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
11:36:40.0981 3412 RemoteRegistry - ok
11:36:41.0032 3412 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
11:36:41.0039 3412 RFCOMM - ok
11:36:41.0075 3412 [ 3DCA561AAF776AA2E356FB5B142AA5F8 ] rimspci C:\windows\system32\DRIVERS\rimspe64.sys
11:36:41.0076 3412 rimspci - ok
11:36:41.0096 3412 [ C4581F04AA130892555B821F1FBAA151 ] risdpcie C:\windows\system32\DRIVERS\risdpe64.sys
11:36:41.0097 3412 risdpcie - ok
11:36:41.0194 3412 [ A4579105A3C5B6290701EAD0C153E07A ] rixdpcie C:\windows\system32\DRIVERS\rixdpe64.sys
11:36:41.0195 3412 rixdpcie - ok
11:36:41.0254 3412 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
11:36:41.0302 3412 RpcEptMapper - ok
11:36:41.0394 3412 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
11:36:41.0410 3412 RpcLocator - ok
11:36:41.0588 3412 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
11:36:41.0595 3412 RpcSs - ok
11:36:41.0641 3412 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
11:36:41.0656 3412 rspndr - ok
11:36:41.0682 3412 [ 26E0D15FB1835F7ED638F157CCD2E04D ] RsvLock C:\windows\system32\drivers\RsvLock.sys
11:36:41.0683 3412 RsvLock - ok
11:36:41.0843 3412 RTCore64 - ok
11:36:41.0869 3412 [ 39A1CF40AA29A16FE176B825195A3E0B ] rtsuvc C:\windows\system32\DRIVERS\rtsuvc.sys
11:36:41.0871 3412 rtsuvc - ok
11:36:41.0914 3412 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\windows\system32\drivers\vms3cap.sys
11:36:41.0915 3412 s3cap - ok
11:36:41.0952 3412 [ 6EF8E5E3A079C97C70915CF740E89977 ] SafeBoot C:\windows\system32\drivers\SafeBoot.sys
11:36:41.0952 3412 Suspicious file (NoAccess): C:\windows\system32\drivers\SafeBoot.sys. md5: 6EF8E5E3A079C97C70915CF740E89977
11:36:41.0953 3412 SafeBoot ( LockedFile.Multi.Generic ) - warning
11:36:41.0953 3412 SafeBoot - detected LockedFile.Multi.Generic (1)
11:36:41.0974 3412 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
11:36:41.0977 3412 SamSs - ok
11:36:42.0000 3412 [ FD8714A36C4646DE22DDC7E36F6D09EF ] SbAlg C:\windows\system32\drivers\SbAlg.sys
11:36:42.0002 3412 SbAlg - ok
11:36:42.0028 3412 [ 43027F1996F3AC6BD54B8A871996B7B3 ] SbFsLock C:\windows\system32\drivers\SbFsLock.sys
11:36:42.0029 3412 SbFsLock - ok
11:36:42.0046 3412 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
11:36:42.0048 3412 sbp2port - ok
11:36:42.0255 3412 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
11:36:42.0263 3412 SBSDWSCService - ok
11:36:42.0318 3412 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
11:36:42.0332 3412 SCardSvr - ok
11:36:42.0385 3412 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
11:36:42.0395 3412 scfilter - ok
11:36:42.0601 3412 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
11:36:42.0612 3412 Schedule - ok
11:36:42.0697 3412 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
11:36:42.0698 3412 SCPolicySvc - ok
11:36:42.0734 3412 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\windows\system32\drivers\sdbus.sys
11:36:42.0749 3412 sdbus - ok
11:36:42.0872 3412 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
11:36:42.0920 3412 SDRSVC - ok
11:36:42.0990 3412 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
11:36:42.0991 3412 secdrv - ok
11:36:43.0028 3412 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
11:36:43.0041 3412 seclogon - ok
11:36:43.0095 3412 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\system32\sens.dll
11:36:43.0099 3412 SENS - ok
11:36:43.0120 3412 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
11:36:43.0124 3412 SensrSvc - ok
11:36:43.0155 3412 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\DRIVERS\serenum.sys
11:36:43.0174 3412 Serenum - ok
11:36:43.0232 3412 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\DRIVERS\serial.sys
11:36:43.0286 3412 Serial - ok
11:36:43.0386 3412 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\DRIVERS\sermouse.sys
11:36:43.0400 3412 sermouse - ok
11:36:43.0470 3412 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
11:36:43.0480 3412 SessionEnv - ok
11:36:43.0526 3412 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
11:36:43.0536 3412 sffdisk - ok
11:36:43.0560 3412 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
11:36:43.0572 3412 sffp_mmc - ok
11:36:43.0601 3412 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
11:36:43.0620 3412 sffp_sd - ok
11:36:43.0688 3412 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\DRIVERS\sfloppy.sys
11:36:43.0689 3412 sfloppy - ok
11:36:43.0745 3412 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
11:36:43.0757 3412 SharedAccess - ok
11:36:43.0837 3412 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
11:36:43.0843 3412 ShellHWDetection - ok
11:36:43.0857 3412 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\DRIVERS\SiSRaid2.sys
11:36:43.0858 3412 SiSRaid2 - ok
11:36:43.0886 3412 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\DRIVERS\sisraid4.sys
11:36:43.0888 3412 SiSRaid4 - ok
11:36:43.0954 3412 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
11:36:43.0965 3412 SkypeUpdate - ok
11:36:44.0042 3412 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
11:36:44.0048 3412 Smb - ok
11:36:44.0130 3412 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
11:36:44.0189 3412 SNMPTRAP - ok
11:36:44.0261 3412 [ F9369327409492097B0BB7CE86BD29DE ] Soluto C:\windows\system32\DRIVERS\Soluto.sys
11:36:44.0262 3412 Soluto - ok
11:36:44.0421 3412 [ ACF7389DA65760FED2B224C51EDC3A2B ] SolutoLauncherService C:\Program Files\Soluto\SolutoLauncherService.exe
11:36:44.0423 3412 SolutoLauncherService - ok
11:36:44.0559 3412 [ BCA25A87AD78FEDAC5C5ABD92DB3BECD ] SolutoRemoteService C:\Program Files\Soluto\SolutoRemoteService.exe
11:36:44.0579 3412 SolutoRemoteService - ok
11:36:44.0634 3412 [ F6D4A0E0C37B0ED1361D23FF672E8BF7 ] SolutoService C:\Program Files\Soluto\SolutoService.exe
11:36:44.0639 3412 SolutoService - ok
11:36:44.0664 3412 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
11:36:44.0672 3412 spldr - ok
11:36:44.0781 3412 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
11:36:44.0788 3412 Spooler - ok
11:36:45.0213 3412 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
11:36:45.0284 3412 sppsvc - ok
11:36:45.0319 3412 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
11:36:45.0329 3412 sppuinotify - ok
11:36:45.0470 3412 [ 602884696850C86434530790B110E8EB ] sptd C:\windows\system32\Drivers\sptd.sys
11:36:45.0470 3412 Suspicious file (NoAccess): C:\windows\system32\Drivers\sptd.sys. md5: 602884696850C86434530790B110E8EB
11:36:45.0472 3412 sptd ( LockedFile.Multi.Generic ) - warning
11:36:45.0472 3412 sptd - detected LockedFile.Multi.Generic (1)
11:36:45.0552 3412 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
11:36:45.0564 3412 srv - ok
11:36:45.0735 3412 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
11:36:45.0783 3412 srv2 - ok
11:36:45.0844 3412 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
11:36:45.0899 3412 srvnet - ok
11:36:45.0943 3412 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
11:36:45.0948 3412 SSDPSRV - ok
11:36:45.0969 3412 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
11:36:45.0976 3412 SstpSvc - ok
11:36:46.0099 3412 [ F8807AAF697E1D20C9D7716A4941E574 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
11:36:46.0101 3412 STacSV - ok
11:36:46.0135 3412 [ E57B778208C783D8DEBAB320C16A1B82 ] StarOpen C:\windows\system32\drivers\StarOpen.sys
11:36:46.0135 3412 StarOpen - ok
11:36:46.0167 3412 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\DRIVERS\stexstor.sys
11:36:46.0168 3412 stexstor - ok
11:36:46.0229 3412 [ 96DF19A03D37F8568141612D31F0D035 ] STHDA C:\windows\system32\DRIVERS\stwrt64.sys
11:36:46.0233 3412 STHDA - ok
11:36:46.0329 3412 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
11:36:46.0344 3412 stisvc - ok
11:36:46.0381 3412 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\windows\system32\drivers\vmstorfl.sys
11:36:46.0383 3412 storflt - ok
11:36:46.0415 3412 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\windows\system32\storsvc.dll
11:36:46.0432 3412 StorSvc - ok
11:36:46.0461 3412 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\windows\system32\drivers\storvsc.sys
11:36:46.0469 3412 storvsc - ok
11:36:46.0505 3412 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\drivers\swenum.sys
11:36:46.0506 3412 swenum - ok
11:36:46.0633 3412 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
11:36:46.0648 3412 swprv - ok
11:36:47.0208 3412 [ D268D2A0DB2A2BBE963E688D0B039267 ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
11:36:47.0217 3412 SynTP - ok
11:36:47.0779 3412 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
11:36:47.0806 3412 SysMain - ok
11:36:47.0870 3412 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
11:36:47.0880 3412 TabletInputService - ok
11:36:47.0937 3412 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
11:36:47.0943 3412 TapiSrv - ok
11:36:47.0967 3412 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
11:36:47.0972 3412 TBS - ok
11:36:48.0173 3412 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\windows\system32\drivers\tcpip.sys
11:36:48.0186 3412 Tcpip - ok
11:36:48.0268 3412 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
11:36:48.0280 3412 TCPIP6 - ok
11:36:48.0319 3412 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
11:36:48.0333 3412 tcpipreg - ok
11:36:48.0367 3412 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
11:36:48.0384 3412 TDPIPE - ok
11:36:48.0429 3412 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
11:36:48.0438 3412 TDTCP - ok
11:36:48.0480 3412 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
11:36:48.0481 3412 tdx - ok
11:36:49.0100 3412 [ 3E85BDD019E3DB66D9471DAD7FD6A887 ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
11:36:49.0124 3412 TeamViewer7 - ok
11:36:49.0142 3412 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\drivers\termdd.sys
11:36:49.0159 3412 TermDD - ok
11:36:49.0308 3412 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
11:36:49.0316 3412 TermService - ok
11:36:49.0347 3412 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
11:36:49.0351 3412 Themes - ok
11:36:49.0388 3412 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
11:36:49.0391 3412 THREADORDER - ok
11:36:49.0427 3412 [ DBCC20C02E8A3E43B03C304A4E40A84F ] TPM C:\windows\system32\drivers\tpm.sys
11:36:49.0428 3412 TPM - ok
11:36:49.0453 3412 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
11:36:49.0466 3412 TrkWks - ok
11:36:49.0546 3412 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
11:36:49.0547 3412 TrustedInstaller - ok
11:36:49.0580 3412 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
11:36:49.0598 3412 tssecsrv - ok
11:36:49.0633 3412 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
11:36:49.0640 3412 TsUsbFlt - ok
11:36:49.0672 3412 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
11:36:49.0690 3412 tunnel - ok
11:36:49.0743 3412 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\DRIVERS\uagp35.sys
11:36:49.0744 3412 uagp35 - ok
11:36:49.0853 3412 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
11:36:49.0867 3412 udfs - ok
11:36:49.0904 3412 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
11:36:49.0920 3412 UI0Detect - ok
11:36:49.0953 3412 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
11:36:49.0954 3412 uliagpkx - ok
11:36:50.0005 3412 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
11:36:50.0013 3412 umbus - ok
11:36:50.0040 3412 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\DRIVERS\umpass.sys
11:36:50.0056 3412 UmPass - ok
11:36:50.0174 3412 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\windows\System32\umrdp.dll
11:36:50.0230 3412 UmRdpService - ok
11:36:50.0306 3412 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
11:36:50.0318 3412 upnphost - ok
11:36:50.0351 3412 [ 4E93C8496359E97830C75AC36393654D ] upperdev C:\windows\system32\DRIVERS\usbser_lowerfltx64.sys
11:36:50.0352 3412 upperdev - ok
11:36:50.0378 3412 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
11:36:50.0395 3412 usbccgp - ok
11:36:50.0438 3412 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
11:36:50.0440 3412 usbcir - ok
11:36:50.0479 3412 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\DRIVERS\usbehci.sys
11:36:50.0536 3412 usbehci - ok
11:36:50.0684 3412 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
11:36:50.0707 3412 usbhub - ok
11:36:50.0805 3412 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\DRIVERS\usbohci.sys
11:36:50.0817 3412 usbohci - ok
11:36:50.0901 3412 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
11:36:50.0938 3412 usbprint - ok
11:36:50.0994 3412 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\windows\system32\DRIVERS\usbscan.sys
11:36:50.0995 3412 usbscan - ok
11:36:51.0029 3412 [ 4ACEE387FA8FD39F83564FCD2FC234F2 ] usbser C:\windows\system32\drivers\usbser.sys
11:36:51.0030 3412 usbser - ok
11:36:51.0062 3412 [ 8844CB19A37B65E27049D4A7786726A9 ] UsbserFilt C:\windows\system32\DRIVERS\usbser_lowerfltjx64.sys
11:36:51.0063 3412 UsbserFilt - ok
11:36:51.0119 3412 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
11:36:51.0120 3412 USBSTOR - ok
11:36:51.0141 3412 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\windows\system32\DRIVERS\usbuhci.sys
11:36:51.0157 3412 usbuhci - ok
11:36:51.0250 3412 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\System32\Drivers\usbvideo.sys
11:36:51.0257 3412 usbvideo - ok
11:36:51.0308 3412 [ 7B28E2FBE75115660FAB31079C0A9F29 ] usb_rndisx C:\windows\system32\drivers\usb8023x.sys
11:36:51.0309 3412 usb_rndisx - ok
11:36:51.0371 3412 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
11:36:51.0389 3412 UxSms - ok
11:36:51.0417 3412 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
11:36:51.0420 3412 VaultSvc - ok
11:36:51.0955 3412 [ BBE2B5036D2FF45458C747FB2513591D ] vcsFPService C:\windows\system32\vcsFPService.exe
11:36:51.0972 3412 vcsFPService - ok
11:36:52.0041 3412 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
11:36:52.0050 3412 vdrvroot - ok
11:36:52.0189 3412 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
11:36:52.0204 3412 vds - ok
11:36:52.0232 3412 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
11:36:52.0242 3412 vga - ok
11:36:52.0268 3412 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
11:36:52.0283 3412 VgaSave - ok
11:36:52.0317 3412 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
11:36:52.0332 3412 vhdmp - ok
11:36:52.0363 3412 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
11:36:52.0364 3412 viaide - ok
11:36:52.0412 3412 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\windows\system32\drivers\vmbus.sys
11:36:52.0414 3412 vmbus - ok
11:36:52.0433 3412 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\windows\system32\drivers\VMBusHID.sys
11:36:52.0435 3412 VMBusHID - ok
11:36:52.0458 3412 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
11:36:52.0472 3412 volmgr - ok
11:36:52.0562 3412 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
11:36:52.0565 3412 volmgrx - ok
11:36:52.0627 3412 [ DF8126BD41180351A093A3AD2FC8903B ] volsnap C:\windows\system32\drivers\volsnap.sys
11:36:52.0630 3412 volsnap - ok
11:36:52.0678 3412 [ B4A73CA4EF9A02B9738CEA9AD5FE5917 ] vpcbus C:\windows\system32\DRIVERS\vpchbus.sys
11:36:52.0696 3412 vpcbus - ok
11:36:52.0734 3412 [ E675FB2B48C54F09895482E2253B289C ] vpcnfltr C:\windows\system32\DRIVERS\vpcnfltr.sys
11:36:52.0749 3412 vpcnfltr - ok
11:36:52.0804 3412 [ 5FB42082B0D19A0268705F1DD343DF20 ] vpcusb C:\windows\system32\DRIVERS\vpcusb.sys
11:36:52.0817 3412 vpcusb - ok
11:36:52.0865 3412 [ 207B6539799CC1C112661A9B620DD233 ] vpcvmm C:\windows\system32\drivers\vpcvmm.sys
11:36:52.0877 3412 vpcvmm - ok
11:36:52.0907 3412 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\DRIVERS\vsmraid.sys
11:36:52.0909 3412 vsmraid - ok
11:36:53.0174 3412 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
11:36:53.0232 3412 VSS - ok
11:36:53.0270 3412 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
11:36:53.0284 3412 vwifibus - ok
11:36:53.0305 3412 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
11:36:53.0316 3412 vwififlt - ok
11:36:53.0350 3412 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
11:36:53.0365 3412 vwifimp - ok
11:36:53.0417 3412 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
11:36:53.0430 3412 W32Time - ok
11:36:53.0455 3412 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\DRIVERS\wacompen.sys
11:36:53.0457 3412 WacomPen - ok
11:36:53.0497 3412 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
11:36:53.0516 3412 WANARP - ok
11:36:53.0528 3412 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
11:36:53.0530 3412 Wanarpv6 - ok
11:36:53.0861 3412 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
11:36:53.0869 3412 WatAdminSvc - ok
11:36:54.0089 3412 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
11:36:54.0115 3412 wbengine - ok
11:36:54.0178 3412 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
11:36:54.0193 3412 WbioSrvc - ok
11:36:54.0286 3412 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
11:36:54.0301 3412 wcncsvc - ok
11:36:54.0327 3412 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
11:36:54.0332 3412 WcsPlugInService - ok
11:36:54.0377 3412 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\DRIVERS\wd.sys
11:36:54.0378 3412 Wd - ok
11:36:54.0470 3412 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
11:36:54.0486 3412 Wdf01000 - ok
11:36:54.0509 3412 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
11:36:54.0528 3412 WdiServiceHost - ok
11:36:54.0545 3412 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
11:36:54.0550 3412 WdiSystemHost - ok
11:36:54.0635 3412 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
11:36:54.0714 3412 WebClient - ok
11:36:54.0814 3412 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
11:36:54.0829 3412 Wecsvc - ok
11:36:54.0895 3412 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
11:36:54.0947 3412 wercplsupport - ok
11:36:54.0987 3412 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
11:36:54.0997 3412 WerSvc - ok
11:36:55.0018 3412 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
11:36:55.0035 3412 WfpLwf - ok
11:36:55.0065 3412 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
11:36:55.0076 3412 WIMMount - ok
11:36:55.0121 3412 WinDefend - ok
11:36:55.0130 3412 WinHttpAutoProxySvc - ok
11:36:55.0249 3412 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
11:36:55.0258 3412 Winmgmt - ok
11:36:55.0641 3412 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
11:36:55.0667 3412 WinRM - ok
11:36:55.0702 3412 [ FE88B288356E7B47B74B13372ADD906D ] WinUSB C:\windows\system32\DRIVERS\WinUSB.sys
11:36:55.0714 3412 WinUSB - ok
11:36:55.0909 3412 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
11:36:55.0927 3412 Wlansvc - ok
11:36:56.0243 3412 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:36:56.0279 3412 wlidsvc - ok
11:36:56.0324 3412 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys
11:36:56.0325 3412 WmiAcpi - ok
11:36:56.0379 3412 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
11:36:56.0392 3412 wmiApSrv - ok
11:36:56.0452 3412 WMPNetworkSvc - ok
11:36:56.0514 3412 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
11:36:56.0600 3412 WPCSvc - ok
11:36:56.0767 3412 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
11:36:56.0796 3412 WPDBusEnum - ok
11:36:56.0881 3412 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
11:36:56.0882 3412 ws2ifsl - ok
11:36:56.0933 3412 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\system32\wscsvc.dll
11:36:56.0948 3412 wscsvc - ok
11:36:56.0952 3412 WSearch - ok
11:36:57.0264 3412 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
11:36:57.0295 3412 wuauserv - ok
11:36:57.0342 3412 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\windows\system32\drivers\WudfPf.sys
11:36:57.0360 3412 WudfPf - ok
11:36:57.0406 3412 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
11:36:57.0419 3412 WUDFRd - ok
11:36:57.0452 3412 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\windows\System32\WUDFSvc.dll
11:36:57.0469 3412 wudfsvc - ok
11:36:57.0526 3412 [ CE8CF9DE9CBFDAA318BD04D8BE3FCADA ] WwanSvc C:\windows\System32\wwansvc.dll
11:36:57.0537 3412 WwanSvc - ok
11:36:57.0617 3412 [ E8EAE03EB934BD26F021B882B9F29771 ] yukonw7 C:\windows\system32\DRIVERS\yk62x64.sys
11:36:57.0621 3412 yukonw7 - ok
11:36:57.0640 3412 ================ Scan global ===============================
11:36:57.0692 3412 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
11:36:57.0775 3412 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
11:36:57.0805 3412 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
11:36:57.0843 3412 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
11:36:57.0957 3412 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
11:36:57.0963 3412 [Global] - ok
11:36:57.0963 3412 ================ Scan MBR ==================================
11:36:57.0989 3412 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:37:00.0263 3412 \Device\Harddisk0\DR0 - ok
11:37:00.0263 3412 ================ Scan VBR ==================================
11:37:00.0280 3412 [ 062152209E131DB456A38A01694E526C ] \Device\Harddisk0\DR0\Partition1
11:37:00.0289 3412 \Device\Harddisk0\DR0\Partition1 - ok
11:37:00.0309 3412 [ E31530BAE1D1CA5D99C14B53E71DD046 ] \Device\Harddisk0\DR0\Partition2
11:37:00.0310 3412 \Device\Harddisk0\DR0\Partition2 - ok
11:37:00.0349 3412 [ 1402705A255D6BCCB5628D6F3725CC17 ] \Device\Harddisk0\DR0\Partition3
11:37:00.0351 3412 \Device\Harddisk0\DR0\Partition3 - ok
11:37:00.0401 3412 [ A10A625C79E5BD56F9E1C71127E20B2E ] \Device\Harddisk0\DR0\Partition4
11:37:00.0428 3412 \Device\Harddisk0\DR0\Partition4 - ok
11:37:00.0429 3412 ============================================================
11:37:00.0429 3412 Scan finished
11:37:00.0429 3412 ============================================================
11:37:00.0438 5356 Detected object count: 2
11:37:00.0438 5356 Actual detected object count: 2
11:37:08.0550 5356 C:\windows\system32\drivers\SafeBoot.sys - copied to quarantine
11:37:08.0571 5356 SafeBoot ( LockedFile.Multi.Generic ) - User select action: Quarantine
11:37:08.0719 5356 C:\windows\system32\Drivers\sptd.sys - copied to quarantine
11:37:08.0752 5356 sptd ( LockedFile.Multi.Generic ) - User select action: Quarantine
11:57:09.0500 7688 Deinitialize success


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 09.05.11
Prihlásený: 14.09.16
Príspevky: 618
Témy: 2 | 2
NapísalOffline : 25.03.2013 14:34 | pomoc s http://adf.ly/Kwky2

Neviem prečo si mažeš legitímne ovládače.

stiahni si TDSSQlook http://www.malwareinfo.nl/tools/TDSSQlook.exe
daj uložiť na plochu
Zobrazia sa možnosti zvoľ možnosť A
zobrazi sa log vlož ho sem


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 18.11.09
Prihlásený: 29.11.16
Príspevky: 89
Témy: 17 | 17
Bydlisko: Ružomberok
Napísal autor témyOffline : 25.03.2013 15:05 | pomoc s http://adf.ly/Kwky2

nevidim kde na tej stranke sa to da stiahnut.... :(


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 09.05.11
Prihlásený: 14.09.16
Príspevky: 618
Témy: 2 | 2
NapísalOffline : 25.03.2013 15:40 | pomoc s http://adf.ly/Kwky2

na tejto stránke máš rozobratý safeboot.sys https://kc.mcafee.com/corporate/index?p ... id=KB60662
tu máš sptd http://www.duplexsecure.com/downloads/


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 18.11.09
Prihlásený: 29.11.16
Príspevky: 89
Témy: 17 | 17
Bydlisko: Ružomberok
Napísal autor témyOffline : 25.03.2013 17:42 | pomoc s http://adf.ly/Kwky2

sptd som preinstaloval, z toho safebootu som trochu mimo to este postudujem,
Tu je vypis z TDSSQlook, som ho nakoniec nasiel na disku

TDSSKiller Quarantine Information log
TDSS Qlook Version 1.0.0.5 - nexter - po 25. 03. 2013 - 17:40:09,12.
Microsoft Windows 7 Professional 6.1.7601 Service Pack 1
***** START SCAN po 25. 03. 2013 17:40:12,34 *****

---------- TDSSKiller logs ----------

TDSSKiller.2.8.16.0_23.03.2013_11.32.41_log.txt

---------- TDSSStarter logs ----------


---------- DIR LIST ----------

C:\TDSSKiller_Quarantine\23.03.2013_11.32.42
C:\TDSSKiller_Quarantine\23.01.2013_13.48.58
C:\TDSSKiller_Quarantine\23.01.2013_13.48.58\susp0001
C:\TDSSKiller_Quarantine\23.01.2013_13.48.58\susp0000
C:\TDSSKiller_Quarantine\23.01.2013_13.48.58\susp0000\object.ini
C:\TDSSKiller_Quarantine\23.01.2013_13.48.58\susp0000\svc0000
C:\TDSSKiller_Quarantine\23.01.2013_13.48.58\susp0000\svc0000\tsk0000.dta
C:\TDSSKiller_Quarantine\23.01.2013_13.48.58\susp0000\svc0000\object.ini
C:\TDSSKiller_Quarantine\23.01.2013_13.48.58\susp0000\svc0000\tsk0000.ini
C:\TDSSKiller_Quarantine\23.01.2013_13.48.58\susp0001\object.ini
C:\TDSSKiller_Quarantine\23.01.2013_13.48.58\susp0001\svc0000
C:\TDSSKiller_Quarantine\23.01.2013_13.48.58\susp0001\svc0000\tsk0000.dta
C:\TDSSKiller_Quarantine\23.01.2013_13.48.58\susp0001\svc0000\object.ini
C:\TDSSKiller_Quarantine\23.01.2013_13.48.58\susp0001\svc0000\tsk0000.ini
C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0003
C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0002
C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0001
C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0000
C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0000\object.ini
C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0000\svc0000
C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0000\svc0000\object.ini
C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0000\svc0000\tsk0000.ini
C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0000\svc0000\tsk0000.dta
C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0001\svc0000
C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0001\object.ini
C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0001\svc0000\tsk0000.dta
C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0001\svc0000\object.ini
C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0001\svc0000\tsk0000.ini
C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0002\object.ini
C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0002\svc0000
C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0002\svc0000\tsk0000.dta
C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0002\svc0000\object.ini
C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0002\svc0000\tsk0000.ini
C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0003\object.ini
C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0003\svc0000
C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0003\svc0000\tsk0000.dta
C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0003\svc0000\object.ini
C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0003\svc0000\tsk0000.ini

---------- INI FILES ----------

=== C:\TDSSKiller_Quarantine\23.01.2013_13.48.58\susp0000\object.ini

[InfectedObject]
Verdict: LockedFile.Multi.Generic


=== C:\TDSSKiller_Quarantine\23.01.2013_13.48.58\susp0000\svc0000\object.ini

[InfectedObject]
Type: Service
Name: SafeBoot
Type: Kernel driver (0x1)
Start: Boot (0x0)
Suspicious states: Locked file;


=== C:\TDSSKiller_Quarantine\23.01.2013_13.48.58\susp0000\svc0000\tsk0000.ini

[InfectedFile]
Type: Raw image
Src: C:\windows\system32\drivers\SafeBoot.sys
md5: 6EF8E5E3A079C97C70915CF740E89977


=== C:\TDSSKiller_Quarantine\23.01.2013_13.48.58\susp0001\object.ini

[InfectedObject]
Verdict: LockedFile.Multi.Generic


=== C:\TDSSKiller_Quarantine\23.01.2013_13.48.58\susp0001\svc0000\object.ini

[InfectedObject]
Type: Service
Name: sptd
Type: Kernel driver (0x1)
Start: Boot (0x0)
ImagePath: System32\Drivers\sptd.sys
Suspicious states: Locked file;


=== C:\TDSSKiller_Quarantine\23.01.2013_13.48.58\susp0001\svc0000\tsk0000.ini

[InfectedFile]
Type: Raw image
Src: C:\windows\system32\Drivers\sptd.sys
md5: 602884696850C86434530790B110E8EB


=== C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0000\object.ini

[InfectedObject]
Verdict: LockedFile.Multi.Generic


=== C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0000\svc0000\object.ini

[InfectedObject]
Type: Service
Name: SafeBoot
Type: Kernel driver (0x1)
Start: Boot (0x0)
Suspicious states: Locked file;


=== C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0000\svc0000\tsk0000.ini

[InfectedFile]
Type: Raw image
Src: C:\windows\system32\drivers\SafeBoot.sys
md5: 6EF8E5E3A079C97C70915CF740E89977


=== C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0001\object.ini

[InfectedObject]
Verdict: LockedFile.Multi.Generic


=== C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0001\svc0000\object.ini

[InfectedObject]
Type: Service
Name: sptd
Type: Kernel driver (0x1)
Start: Boot (0x0)
ImagePath: System32\Drivers\sptd.sys
Suspicious states: Locked file;


=== C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0001\svc0000\tsk0000.ini

[InfectedFile]
Type: Raw image
Src: C:\windows\system32\Drivers\sptd.sys
md5: 602884696850C86434530790B110E8EB


=== C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0002\object.ini

[InfectedObject]
Verdict: LockedFile.Multi.Generic


=== C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0002\svc0000\object.ini

[InfectedObject]
Type: Service
Name: SafeBoot
Type: Kernel driver (0x1)
Start: Boot (0x0)
Suspicious states: Locked file;


=== C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0002\svc0000\tsk0000.ini

[InfectedFile]
Type: Raw image
Src: C:\windows\system32\drivers\SafeBoot.sys
md5: 6EF8E5E3A079C97C70915CF740E89977


=== C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0003\object.ini

[InfectedObject]
Verdict: LockedFile.Multi.Generic


=== C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0003\svc0000\object.ini

[InfectedObject]
Type: Service
Name: sptd
Type: Kernel driver (0x1)
Start: Boot (0x0)
ImagePath: System32\Drivers\sptd.sys
Suspicious states: Locked file;


=== C:\TDSSKiller_Quarantine\23.03.2013_11.32.42\susp0003\svc0000\tsk0000.ini

[InfectedFile]
Type: Raw image
Src: C:\windows\system32\Drivers\sptd.sys
md5: 602884696850C86434530790B110E8EB


***** END SCAN po 25. 03. 2013 17:40:12,76 *****


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 18.11.09
Prihlásený: 29.11.16
Príspevky: 89
Témy: 17 | 17
Bydlisko: Ružomberok
Napísal autor témyOffline : 27.03.2013 7:29 | pomoc s http://adf.ly/Kwky2

Neviem s cim dalej pokracovat.... cakam na instrukcie.


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 09.05.11
Prihlásený: 14.09.16
Príspevky: 618
Témy: 2 | 2
NapísalOffline : 27.03.2013 13:49 | pomoc s http://adf.ly/Kwky2

inštrukcie máš v linkoch


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 18.11.09
Prihlásený: 29.11.16
Príspevky: 89
Témy: 17 | 17
Bydlisko: Ružomberok
Napísal autor témyOffline : 27.03.2013 14:15 | pomoc s http://adf.ly/Kwky2

vsetko je vykonane akurat neviem co s tym safebootom. Na stranke co si mi poslal je popis chyby ktory mne nerobi a aj subory nie su pre W7.


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 09.05.11
Prihlásený: 14.09.16
Príspevky: 618
Témy: 2 | 2
NapísalOffline : 27.03.2013 14:38 | pomoc s http://adf.ly/Kwky2

Stiahni si systemLook http://jpshortstuff.247fixes.com/SystemLook.exe ulož ho a spusť
Do okna skopíruj nasledovne
:filefind
*safeboot.sys*
Následne klikny na Look
O chvíľu vyhodí log z názvom systemlook
Skopíruj ho sem


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 18.11.09
Prihlásený: 29.11.16
Príspevky: 89
Témy: 17 | 17
Bydlisko: Ružomberok
Napísal autor témyOffline : 27.03.2013 15:08 | pomoc s http://adf.ly/Kwky2

SystemLook 30.07.11 by jpshortstuff
Log created at 15:02 on 27/03/2013 by nexter
Administrator - Elevation successful
WARNING: SystemLook running under WOW64. Use SystemLook_x64 for accurate results.

========== filefind ==========

Searching for "*safeboot.sys*"
C:\$RECYCLE.BIN\S-1-5-21-2184412465-192472027-3838285202-1002\$ROY52UV\SafeBoot.sys --a---- 102912 bytes [13:08 27/03/2013] [14:14 20/02/2009] 26184E04AC6357D038216DB7F7A67E5E
C:\Users\nexter\Desktop\Appdir 64-bit\SafeBoot.sys --a---- 56032 bytes [13:09 27/03/2013] [14:15 20/02/2009] B2A793B0527312EF18B602FADF23E3FA
C:\Users\nexter\Desktop\WinDriverDir 64-bit\SafeBoot.sys --a---- 56032 bytes [13:08 27/03/2013] [14:14 20/02/2009] B2A793B0527312EF18B602FADF23E3FA
C:\Windows\System32\drivers\SafeBoot.sys ------- 110520 bytes [00:11 02/02/2010] [00:11 02/02/2010] 31B48CB3D35D076291E3B8AFD9A7F203
C:\Windows\SysWOW64\drivers\SafeBoot.sys ------- 110520 bytes [00:11 02/02/2010] [00:11 02/02/2010] 31B48CB3D35D076291E3B8AFD9A7F203

-= EOF =-


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 09.05.11
Prihlásený: 14.09.16
Príspevky: 618
Témy: 2 | 2
NapísalOffline : 27.03.2013 15:12 | pomoc s http://adf.ly/Kwky2

je to OK


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 18.11.09
Prihlásený: 29.11.16
Príspevky: 89
Témy: 17 | 17
Bydlisko: Ružomberok
Napísal autor témyOffline : 27.03.2013 15:24 | pomoc s http://adf.ly/Kwky2

no ale problem s adf.ly stale zostal, teda mierne sa to zlepsilo pretoze uz ma nehodi az na stranku ale vypise prvy link ktory "purchasereviews.net/donate.php" ktory ma vzdy hodil na adf.ly, no teraz to zostane uz lenp pri purchaserewiews a potom to zastane...


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 09.05.11
Prihlásený: 14.09.16
Príspevky: 618
Témy: 2 | 2
NapísalOffline : 27.03.2013 15:40 | pomoc s http://adf.ly/Kwky2

Stiahni si OTL
http://oldtimer.geekstogo.com/OTL.exe
Pre OS XP spusť pod administratorom
Pre OS vista ,7
Zaškrtni LOP check ,Purity check, všetkých používateľov (scan all users )
Klinky na prehľadať (RUN SCAN)
Prebehne scan keď skonči vyskočia logy OTL.txt a Extras.txt tie sem vlož


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 18.11.09
Prihlásený: 29.11.16
Príspevky: 89
Témy: 17 | 17
Bydlisko: Ružomberok
Napísal autor témyOffline : 27.03.2013 16:27 | pomoc s http://adf.ly/Kwky2

1/2

OTL Extras logfile created on: 3/27/2013 4:03:22 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\nexter\Desktop
64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16521)
Locale: 00000409 | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy

3.74 Gb Total Physical Memory | 1.09 Gb Available Physical Memory | 29.24% Memory free
7.48 Gb Paging File | 3.20 Gb Available in Paging File | 42.79% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 448.47 Gb Total Space | 143.74 Gb Free Space | 32.05% Space Free | Partition Type: NTFS
Drive E: | 1.99 Gb Total Space | 1.39 Gb Free Space | 69.98% Space Free | Partition Type: FAT32
Drive M: | 1.88 Gb Total Space | 1.86 Gb Free Space | 98.96% Space Free | Partition Type: FAT

Computer Name: SOHLER | User Name: nexter | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
.url[@ = InternetShortcut] -- C:\windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)

[HKEY_USERS\S-1-5-21-2184412465-192472027-3838285202-1002\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{067DFC10-BDBB-4517-BCCD-B61B9B5234C0}" = lport=50248 | protocol=6 | dir=in | name=autodesk content service |
"{1A6D49F1-9B88-4E93-B7A7-E7F1E3D6F2CA}" = lport=547 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{1D3E341A-4913-4B1F-A71F-A3D1689F4646}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{202BF76F-FFB1-428F-B308-C3E5F3A3342B}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{213548E0-D07B-400E-A55C-E77E1E8AD3D2}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{26BF566B-CDA1-4E0D-BAE2-19FF8DEB2ECD}" = rport=138 | protocol=17 | dir=out | app=system |
"{2844F3B5-B28A-4093-AB31-3777860CE805}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{28DFD14E-9E05-47C1-BC73-5F3DA879770A}" = lport=445 | protocol=6 | dir=in | app=system |
"{2CE8EE66-D483-4F11-B410-82F6D1C8319A}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{30846D60-FEA6-40D7-9335-2A39E01303A1}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{46B70733-E01F-4FF7-989F-119F62A10A13}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{5DB01B98-2B77-486F-A552-5FD6A5B34CE9}" = lport=53 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{6F31B892-41AF-451D-8F83-54997749D691}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{6F5AADED-C832-4C8D-BF82-549B0351D6D3}" = lport=138 | protocol=17 | dir=in | app=system |
"{725FF4CD-5678-42BE-A43D-3418BC934991}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{7A8BEED5-018B-4C36-8B9F-16E1DA49A3B1}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{7EA3F42B-BB6B-4714-B7B9-3FDD4E90FE87}" = lport=139 | protocol=6 | dir=in | app=system |
"{85A251B0-55C4-4A92-8345-AC5F8F1A6B55}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{8CD42143-E71D-4C91-A735-689C19E16F1B}" = rport=2869 | protocol=6 | dir=out | app=system |
"{90C469BA-0CB3-45BD-AD13-51D837D80034}" = lport=137 | protocol=17 | dir=in | app=system |
"{95023CC5-8773-48EF-9410-F9720089D4AC}" = rport=139 | protocol=6 | dir=out | app=system |
"{96C71694-0D46-43F9-A2DB-0108FBE08802}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{A23C35FD-871B-4697-AA01-63A8EC67CEFE}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{A9ED9D5E-6D4F-4643-821E-AFA8660C3D33}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{B4A6B866-ECCA-4324-848A-C8BAC35FAA5D}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{B6D0B4BD-2832-4504-AFEB-A52148E292F8}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{CB7A54F7-3118-495A-9BAD-A2BA03397AA7}" = rport=137 | protocol=17 | dir=out | app=system |
"{DEAE2035-1DDD-47D3-896C-93E40605D99D}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\outlook.exe |
"{E018ED5E-F3AD-41C6-997C-41ED00A9236E}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{E8DC39AA-C889-4FDF-BDAC-5C2D36FD7766}" = rport=445 | protocol=6 | dir=out | app=system |
"{EA2EE6CA-610A-4173-AC87-2892E31105D0}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{EE7BDB67-5164-4ADE-88A9-341043E7D209}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F0826E29-1BB0-436D-B713-3E3C8B629E4F}" = lport=2869 | protocol=6 | dir=in | app=system |
"{F3FB35F6-763B-4D0D-915B-D55C7701532D}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00D3F153-A890-4796-A68B-AD226A6D6ECF}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer_service.exe |
"{0E0322BD-1EBD-479E-8EE5-74DCB9923BD3}" = dir=in | app=c:\windows\system32\lxeccoms.exe |
"{0F4F6D58-5EB8-4A00-AA1C-14FFA16ADAE0}" = protocol=6 | dir=in | app=c:\program files\soluto\solutoservice.exe |
"{11973EA8-47FE-4EA5-A20D-A563EB495423}" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{134102AB-956F-4643-96A2-F863BD6E4DA7}" = protocol=17 | dir=in | app=c:\program files\soluto\solutocleanup.exe |
"{150D6847-A916-4250-B718-BD41AFA730D9}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{1FD78ADF-919D-480B-8052-D97D6012FFD3}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer_service.exe |
"{2313B8F7-924E-445C-9831-733713B201DC}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{27E650F1-74FC-450F-97B0-0DBE856B27FD}" = protocol=6 | dir=in | app=c:\program files\soluto\soluto.exe |
"{36C50D33-AF08-4F1C-86A9-96EA2412668F}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{4213B4CF-70D2-4427-8A07-70F3F29B6EB1}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{46D8D4C3-4BFE-4E78-A10E-876A2203636D}" = protocol=17 | dir=in | app=c:\program files\soluto\solutoservice.exe |
"{48F0B040-BC32-4EC9-B800-80CF4631741A}" = protocol=6 | dir=in | app=c:\program files\soluto\solutocleanup.exe |
"{547EF0D0-38B6-4CC7-ADB4-1C5E2C56BCFD}" = protocol=17 | dir=in | app=c:\program files\soluto\solutocleanup.exe |
"{5A6E5167-C1FE-49D4-AFF5-FC106825E23D}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{5B618CE6-6AD4-4D43-A1F4-844FBE4DEE15}" = protocol=6 | dir=in | app=c:\program files\soluto\solutocleanup.exe |
"{62EF9785-BDC1-4525-9BD0-21526A3CE779}" = protocol=17 | dir=in | app=c:\program files\soluto\solutoconsole.exe |
"{68479FF2-0D74-401F-998D-BC96A06E7C42}" = protocol=6 | dir=in | app=c:\program files\soluto\solutoupdateservice.exe |
"{6D817ADD-71D6-458C-B154-7DF4401801B9}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{6FD59C79-E88B-409B-94DA-2109BB7EAFFD}" = protocol=17 | dir=in | app=c:\program files\soluto\soluto.exe |
"{70F0AAD9-62DB-4754-85A3-B59A8BBF1CC4}" = protocol=17 | dir=in | app=c:\program files\soluto\solutoconsole.exe |
"{71136053-C567-436C-8825-08495059D1C8}" = protocol=6 | dir=in | app=c:\program files\soluto\solutoconsole.exe |
"{750EC948-25A2-4CDB-8B4C-D9E234F581AA}" = protocol=17 | dir=in | app=c:\program files\soluto\solutoservice.exe |
"{79465575-A5C6-49ED-832E-5AF1EF6FCFE3}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{91CFE66F-50BE-49E6-91C8-3CB0E8808037}" = protocol=58 | dir=in | name=@hnetcfg.dll,-148 |
"{9DC8972D-9D24-4262-8A9B-A350D9B06EC4}" = protocol=6 | dir=in | app=c:\program files\soluto\solutoservice.exe |
"{ADC6C31C-3B38-4AAF-9187-C3175A21E4EB}" = dir=in | app=c:\windows\system32\lxeccoms.exe |
"{B608A56F-E497-4784-9DE9-C23F80DB5FF0}" = dir=in | app=c:\windows\system32\lxeccoms.exe |
"{B6E3DBF9-326B-4A40-88C0-0437223989B9}" = dir=in | app=c:\windows\system32\lxeccoms.exe |
"{B9C08E21-A76E-4BE6-AD4C-826B173EBA94}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{BC39EAF6-3504-4C09-9E1E-161F5C9AA263}" = protocol=6 | dir=in | app=c:\program files\soluto\solutoconsole.exe |
"{C06D9B5F-A9A3-4023-9E96-B8C3AE422D9B}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{C0F483AF-687F-4EFC-8295-ADF5E960AABE}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{C4223F53-B616-4045-A104-B2330C6A20C1}" = protocol=6 | dir=in | app=c:\program files\soluto\solutoupdateservice.exe |
"{C5F462FC-8769-4B71-978E-998C75329296}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer.exe |
"{CB7FCCFF-79D9-4A16-9EB2-8233AA21F02F}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{CC1E0061-DA95-438C-8975-425F27697CFB}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{D04965DE-6C9B-422F-943E-4B3C46EC9BCF}" = protocol=6 | dir=in | app=c:\program files\soluto\soluto.exe |
"{E3AA2FDD-2D39-4685-BEA0-0622577C52A0}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{E511D392-1D1F-434A-8B65-031A371B84D2}" = protocol=17 | dir=in | app=c:\program files\soluto\solutoupdateservice.exe |
"{EF35BD25-536D-4AAB-A47B-CB4448B07AE4}" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{F1A7F679-BDD9-437E-A4F2-832A7E39E9EE}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer.exe |
"{FBBEA566-04B0-4732-AF44-CCF566E3B77E}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{FD5F188A-C39B-41C9-9550-78AF95DB6873}" = protocol=17 | dir=in | app=c:\program files\soluto\solutoupdateservice.exe |
"{FDF8EA4C-F92B-4002-A106-74405235FAF9}" = protocol=17 | dir=in | app=c:\program files\soluto\soluto.exe |
"TCP Query User{371708FB-6CCF-4EC2-973E-C1CAE1D468EB}C:\program files (x86)\winamp\winamp.exe" = protocol=6 | dir=in | app=c:\program files (x86)\winamp\winamp.exe |
"TCP Query User{74DCB3FD-DB90-4D27-83FE-74F976D0E19B}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"TCP Query User{8F743886-6F62-432B-970A-D34615614AF7}C:\program files\windows sidebar\sidebar.exe" = protocol=6 | dir=in | app=c:\program files\windows sidebar\sidebar.exe |
"TCP Query User{A4D6E088-0ACE-474F-91CE-074C747A4EB0}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"UDP Query User{8385899C-BB10-4F58-9FB0-C9ED2546F73D}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"UDP Query User{8BCCE59B-0139-4A24-AECC-F7665C940548}C:\program files (x86)\winamp\winamp.exe" = protocol=17 | dir=in | app=c:\program files (x86)\winamp\winamp.exe |
"UDP Query User{94DB458D-B0A9-4F91-8D02-7835AED96F0A}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"UDP Query User{CA8FE992-8C55-48B7-814D-00DEFEF4D317}C:\program files\windows sidebar\sidebar.exe" = protocol=17 | dir=in | app=c:\program files\windows sidebar\sidebar.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{027E5FAB-1476-4C59-AAB4-32EF28520399}" = Windows Live Language Selector
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{1012456A-D118-37E0-E837-34AA28602013}" = AMD Drag and Drop Transcoding
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
"{1C292266-E054-4090-84D5-869649E4F9C7}" = HP Power Data
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{26A24AE4-039D-4CA4-87B4-2F86416024FF}" = Java(TM) 6 Update 24 (64-bit)
"{26A24AE4-039D-4CA4-87B4-2F86417004FF}" = Java(TM) 7 Update 4 (64-bit)
"{33C19CDE-E935-11E0-A0DA-F04DA23A5C58}" = MSVCRT Redists
"{34E6F14D-68F9-486D-87BA-6AA8431F3F44}" = Drive Encryption for HP ProtectTools
"{48903EFA-28EB-4BBB-A950-60C993731C0C}" = SaveByClick
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{4F2B8F3E-70FA-AA71-4526-3BFDEDE502EF}" = AMD Fuel
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
"{51DDB4F9-7FFF-4970-AED4-DB3C22A5C522}" = Corel Graphics - Windows Shell Extension 64 Bit
"{547B7192-B452-467C-AE4D-775056CF8529}" = HP 3D DriveGuard
"{55B52830-024A-443E-AF61-61E1E71AFA1B}" = Device Access Manager for HP ProtectTools
"{5783F2D7-9001-0409-0102-0060B0CE6BBA}" = AutoCAD 2011 - English
"{5783F2D7-9001-0409-1102-0060B0CE6BBA}" = AutoCAD 2011 Language Pack - English
"{5783F2D7-9017-0409-0102-0060B0CE6BBA}" = AutoCAD Plant 3D 2011
"{5783F2D7-9017-0409-1102-0060B0CE6BBA}" = AutoCAD Plant 3D 2011 Language Pack - English
"{5783F2D7-B017-0409-0102-0060B0CE6BBA}" = AutoCAD Plant 3D 2013 - English
"{5783F2D7-B017-0409-1102-0060B0CE6BBA}" = AutoCAD Plant 3D 2013 Language Pack - English
"{5783F2D7-B017-0409-2102-0060B0CE6BBA}" = AutoCAD Plant 3D 2013 - English
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6674F235-A9BF-4B76-8A4D-D9D07919735C}" = Embedded Security for HP ProtectTools
"{68CA3A47-3F7E-0E92-DC0D-5B0C02D9AFAD}" = ccc-utility64
"{6BB150E8-6CBB-5F8F-CAE7-BE21B2C92D31}" = AMD Accelerated Video Transcoding
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{70675CAC-C262-4765-BBCA-FB0D66252AF4}" = Soluto
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{82C1E6E4-6718-4EFD-9DCC-E276D690EF46}" = Autodesk Inventor Fusion plug-in for AutoCAD 2013
"{86E45973-5352-439F-A115-2E8EE4D40140}" = ActivClient x64
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007
"{90120000-002A-041B-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Slovak) 2007
"{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
"{914F7627-B645-9895-F723-BAEAAC865E75}" = AMD Catalyst Install Manager
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9D06DE3F-0B91-4E1F-B791-619A9D1B53EF}" = HP ProtectTools Security Manager
"{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}" = Broadcom 2070 Bluetooth 2.1 + EDR
"{A7500970-FE98-11E1-B560-F04DA23A5C58}" = Vegas Pro 12.0 (64-bit)
"{AB085680-FE98-11E1-A232-F04DA23A5C58}" = MSVCRT Redists
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}" = Nokia Connectivity Cable Driver
"{C7AE4EC3-9C13-4213-8457-74D16B353F91}" = HP Web Camera
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{D1C6B636-5578-4A9E-ACCF-2AFA5F166335}" = HP Power Assistant
"{D4761C4F-5ED9-11E1-9202-F04DA23A5C58}" = MSVCRT Redists
"{DA3372D5-F228-5C71-3FAC-177D4AEE8659}" = AMD Media Foundation Decoders
"{DD966CEF-5EA9-4BA2-B210-490FEBC27EA7}" = Validity Fingerprint Driver
"{EC720706-3F19-4B7F-BDDD-E31D9B3921D2}" = HP Wireless Assistant
"{EE5F74BC-5CD5-4EF2-86BA-81E6CF46A18F}" = Autodesk Sync
"{F4477CC0-7293-414A-93BC-20EE897A80F0}" = Java Card Security for HP ProtectTools
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{FE2F4875-095C-427C-9A97-4F8DE05ACF22}" = Autodesk Inventor Fusion plug-in language pack for AutoCAD 2013
"{FFF5619F-2013-0064-A85E-9994F70A9E5D}" = Autodesk Inventor Fusion 2013
"3BA80AB4C7E9F8497C115C844953A3D4BEB84D21" = Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800)
"6B6B5E96843E55CF5CF8C7E45FB457F1FE642FF1" = Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405)
"7E38E30BB92ED94B21CF062A7386554CBA991FEB" = Windows Driver Package - Broadcom Bluetooth (12/16/2009 6.2.0.9414)
"AutoCAD 2011 - English" = AutoCAD 2011 - English
"AutoCAD Plant 3D 2013 - English" = AutoCAD Plant 3D 2013 - English
"Autodesk Inventor Fusion 2013" = Autodesk Inventor Fusion 2013
"Autodesk Inventor Fusion plug-in for AutoCAD 2013" = Autodesk Inventor Fusion plug-in for AutoCAD 2013
"Broadcom 802.11 Wireless LAN Adapter" = Broadcom 802.11 Wireless LAN Adapter
"Canon LBP6300" = Canon LBP6300
"CCleaner" = CCleaner
"Defraggler" = Defraggler
"HPProtectTools" = HP ProtectTools Security Manager
"Lexmark Pro800-Pro900 Series" = Lexmark Pro800-Pro900 Series
"LSI Soft Modem" = LSI HDA Modem
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"WinRAR archiver" = WinRAR 4.11 (64-bit)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"_{B6BFCD02-BA0E-41A9-9C9C-6624C4BB475F}" = Corel Graphics - Windows Shell Extension
"_{CE54DCE1-E00A-4D91-ACB9-A2D916C24051}" = CorelDRAW(R) Graphics Suite X5
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{00307EA9-0A62-4F28-8963-B185D7B278F7}" = Vaisala Humidity Calculator
"{03D45A4B-D7F5-C03E-1650-885756303D13}" = CCC Help Norwegian
"{04801E42-B1A6-4C52-9F3D-CADB5A050433}" = HP Software Setup
"{07A540AB-D785-11D5-8E89-0090275862A0}" = Corel Graphics Suite 11
"{07FA4960-B038-49EB-891B-9F95930AA544}" = HP Customer Experience Enhancements
"{08223707-D0AD-4128-99FE-A52B3B82A155}" = D.Signer/XAdES Xml plugin v1.1.0.0
"{0ABBF310-94E4-4AE8-A6BD-10345A3F6439}" = Google Drive
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0DEA342C-15CB-4F52-97B6-06A9C4B9C06F}" = SDK
"{1017A80C-6F09-4548-A84D-EDD6AC9525F0}" = Lexmark Panel nástroju
"{10812DE7-2E57-4740-B226-6B3BE34AF9D7}" = Lexmark Tools for Office
"{117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}" = Autodesk Material Library 2013
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{1B1CCFB2-E7D3-4F2B-8755-51AAF8BC39B9}" = Earth Science Picture of the Day Gadget
"{1D61E881-43CD-447B-9E6B-D2C6138B2862}" = HP Webcam
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F9E5C64-165D-4679-BBB3-498D216D017B}" = HTC Sync
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{24584BB7-0D2D-4A04-81B7-393C8CB87498}" = HP Software Framework
"{2487FBE2-3A7F-4E48-98D5-57A0AD824BF7}" = D.Signer/XAdES v1.1.0.0
"{24D9A3E0-D086-4B62-AF93-63CF6B05CB48}" = CorelDRAW Graphics Suite X5 - Custom Data
"{260ED378-2B8C-4831-ADAE-D0712D119AC5}" = CorelDRAW Graphics Suite X5 - VSTA
"{26945917-E053-45F6-AF98-309730CFC318}" = Visual Basic for Applications (R) Core
"{26A24AE4-039D-4CA4-87B4-2F83216033FF}" = Java(TM) 6 Update 37
"{284E9E9A-D8BE-3588-D0BA-E9BB61970A1D}" = CCC Help Hungarian
"{299C0434-4F4E-341F-A916-4E07AEB35E79}" = Microsoft Visual Studio Tools for Applications 2.0 Runtime
"{2DA697D7-FED3-4DE2-A174-92A2A12F9688}" = HP SoftPaq Download Manager
"{30E18A93-982E-AF1B-D646-E8C5DAECA390}" = CCC Help French
"{31A559C1-9E4D-423B-9DD3-34A6C5398752}" = HTC BMP USB Driver
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{33C9F24B-1D92-4632-A915-81E3BB1D5D6B}" = Theft Recovery
"{3472C84E-2FD0-439F-B27F-C290C1E4CD8B}" = CorelDRAW Graphics Suite X5 - Filters
"{34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}" = Firebird SQL Server - MAGIX Edition
"{3516C69A-024D-42A8-B948-FFAA7B9CC49A}" = Windows SideShow Managed Runtime 1.0
"{3544DED1-07DB-40C0-98F3-435A6DA195C7}" = Google SketchUp 8
"{356658C7-8C60-4A43-AF50-75CA8E642934}" = CorelDRAW Graphics Suite X5 - CZ
"{3E8A20E1-223F-11E2-9116-B8AC6F98CCE3}" = Google Earth
"{4021F8B5-E8BB-D0F9-AF28-4970013FAE3D}" = AMD VISION Engine Control Center
"{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}" = HP Advisor
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{470D66DF-B597-124E-EDCE-8B966AA5F230}" = CCC Help Portuguese
"{47FA2C44-D148-4DBC-AF60-B91934AA4842}" = Adobe AIR
"{483924A6-52C5-9169-0280-14272D5FBA70}" = CCC Help Chinese Standard
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.1
"{54B8F4A1-02B0-4D32-8F37-925526C0EEC6}" = CorelDRAW Graphics Suite X5 - Connect
"{5545EEE1-FA36-4F76-B6BE-5696E7F4E2D6}" = VBA (2627.01)
"{57400C1E-BC51-4ECE-AD2A-A6096204DDEC}" = CorelDRAW Graphics Suite X5 - VBA
"{57AE1BE1-24E8-4169-D52C-ABE31BD91562}" = CCC Help Finnish
"{59123CCF-FED2-46FF-9293-D1DC80042219}" = CorelDRAW Graphics Suite X5 - Redist
"{5B5745F7-23EF-9E5E-6689-512C9FA08222}" = CCC Help English
"{5BF8E079-D6E2-4323-B794-75152371122A}" = Windows 7 Default Setting
"{5D26BF7B-BEF6-477D-8FC1-0C1C159B6364}_is1" = Quicksys RegDefrag 2.9
"{5E627606-53B9-42D1-97E1-D03F6229E248}" = Windows Live UX Platform Language Pack
"{606E12B9-641F-4644-A22A-FF38AE980AFD}" = Autodesk Material Library Base Resolution Image Library 2013
"{625031C9-E249-2A53-C282-C1E9872B211E}" = CCC Help Turkish
"{62978C1C-FE2E-4A4E-851D-3EB406C9EBC2}" = CorelDRAW Graphics Suite X5 - Draw
"{62F029AB-85F2-0000-866A-9FC0DD99DDBC}" = Autodesk Content Service
"{62F029AB-85F2-0001-866A-9FC0DD99DDBC}" = Autodesk Content Service Language Pack
"{6491AB99-A11E-41FD-A5E7-32DE8A097B8E}" = Windows Live Essentials
"{655E0B5A-7ADF-A052-587F-64F0E59B58E7}" = CCC Help Dutch
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6D6664A9-3342-4948-9B7E-034EFE366F0F}" = HTC Driver Installer
"{6D6ADF03-B257-4EA5-BBC1-1D145AF8D514}" = File Sanitizer For HP ProtectTools
"{6F340107-F9AA-47C6-B54C-C3A19F11553F}" = Hewlett-Packard ACLM.NET v1.1.1.0
"{6F37D92B-41AA-44B7-80D2-457ABDE11896}" = Windows Live Photo Common
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{74437563-D720-0307-90FC-1C351B1041D7}" = Catalyst Control Center Localization All
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7861911B-4270-498A-8F7A-FCF0570F4877}" = HP QuickWeb
"{7861911B-4270-498A-8F7A-FCF0570F48E3}" = HP QuickWeb
"{789A4D10-821B-3FA5-52B0-F0FAEEDED9F4}" = CCC Help Czech
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}" = Text-To-Speech-Runtime
"{7BA14A92-C229-5E00-3ADE-8D22F81B849E}" = CCC Help German
"{7BE15435-2D3E-4B58-867F-9C75BED0208C}" = QuickTime
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{7E890D16-5CB9-4F18-BAA1-CCD0A543CAE5}" = MAGIX Music Maker MX Premium Download Version
"{7F77DB04-A969-40a4-89EF-06CE06D56524}" = pdfforge Toolbar v5.0
"{80A5B901-C7BD-D300-17BA-9E02F18EAB77}" = CCC Help Danish
"{82F505E6-5879-B30A-12B7-7795969D3BBB}" = CCC Help Polish
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{8476003F-6927-8393-C6F4-FAF47D61D00B}" = CCC Help Korean
"{89A2D79E-B3AD-A83A-795F-5645EFF922D3}" = CCC Help Greek
"{89C0F58F-9E5B-2B45-D9DF-7988A54BECA8}" = CCC Help Italian
"{8B91D776-792D-F02B-DE43-BF398549C729}" = CCC Help Spanish
"{8D20B4D7-3422-4099-9332-39F27E617A6F}" = Autodesk Design Review 2011
"{8D4B1DDC-0CB5-4908-B740-A385C2F3B6A9}" = HP User Guides 0185
"{8D8024F1-2945-49A5-9B78-5AB7B11D7942}_is1" = Auslogics Registry Cleaner
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8F272838-BDD6-B433-D650-25E231AEFA8A}" = Catalyst Control Center InstallProxy
"{90120000-0015-041B-0000-0000000FF1CE}" = Microsoft Office Access MUI (Slovak) 2007
"{90120000-0015-041B-0000-0000000FF1CE}_ENTERPRISER_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-041B-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Slovak) 2007
"{90120000-0016-041B-0000-0000000FF1CE}_ENTERPRISER_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-041B-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Slovak) 2007
"{90120000-0018-041B-0000-0000000FF1CE}_ENTERPRISER_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-041B-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Slovak) 2007
"{90120000-0019-041B-0000-0000000FF1CE}_ENTERPRISER_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-041B-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Slovak) 2007
"{90120000-001A-041B-0000-0000000FF1CE}_ENTERPRISER_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-041B-0000-0000000FF1CE}" = Microsoft Office Word MUI (Slovak) 2007
"{90120000-001B-041B-0000-0000000FF1CE}_ENTERPRISER_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISER_{0B7A4B67-2A38-42B1-9857-662FAB361E08}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISER_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISER_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}_PRJPRO_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_PRJPRO_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040E-0000-0000000FF1CE}" = Microsoft Office Proof (Hungarian) 2007
"{90120000-001F-040E-0000-0000000FF1CE}_ENTERPRISER_{0AD4BB83-13B4-4C9D-9BAC-7F64E0B2D5D7}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISER_{FDF9A959-241A-4662-A8DE-7DED9C22D160}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_PRJPRO_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISER_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002A-0000-1000-0000000FF1CE}_PRJPRO_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002A-0409-1000-0000000FF1CE}_PRJPRO_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002A-041B-1000-0000000FF1CE}_ENTERPRISER_{8382BA92-20E3-47B6-971B-F673F0492D4E}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-002C-041B-0000-0000000FF1CE}" = Microsoft Office Proofing (Slovak) 2007
"{90120000-003B-0000-0000-0000000FF1CE}" = Microsoft Office Project Professional 2007
"{90120000-003B-0000-0000-0000000FF1CE}_PRJPRO_{8446EB22-A746-46DC-B1BD-E0DFA1F3CDDA}" = Microsoft Office Project 2007 Service Pack 3 (SP3)
"{90120000-0044-041B-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Slovak) 2007
"{90120000-0044-041B-0000-0000000FF1CE}_ENTERPRISER_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_PRJPRO_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-041B-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Slovak) 2007
"{90120000-006E-041B-0000-0000000FF1CE}_ENTERPRISER_{8382BA92-20E3-47B6-971B-F673F0492D4E}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-041B-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Slovak) 2007
"{90120000-00A1-041B-0000-0000000FF1CE}_ENTERPRISER_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00B4-0409-0000-0000000FF1CE}" = Microsoft Office Project MUI (English) 2007
"{90120000-00B4-0409-0000-0000000FF1CE}_PRJPRO_{F3CD3F3F-726C-4414-A1FE-5CD0968313EA}" = Microsoft Office Project 2007 Service Pack 3 (SP3)
"{90120000-00BA-041B-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Slovak) 2007
"{90120000-00BA-041B-0000-0000000FF1CE}_ENTERPRISER_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00D1-0409-0000-0000000FF1CE}" = Microsoft Office Access database engine 2007 (English)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_PRJPRO_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0116-0409-1000-0000000FF1CE}_PRJPRO_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{91120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{9244E956-5939-4B88-930C-0699D4AB2B95}" = CorelDRAW Graphics Suite X5 - WT
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}" = FARO LS 1.1.406.58
"{96AC1B0B-02D1-4FAA-9C1E-C92ECA74921A}" = HP Setup
"{975951E7-14D0-49AF-A630-89680D12D7F6}" = Autodesk Material Library 2011 Medium Image library
"{97F77D62-5110-4FA3-A2D3-410B92D31199}" = Windows Live Fotogaléria
"{983BE967-28E9-5C78-8851-638DAC4AF66E}" = CCC Help Swedish
"{983F7145-CABF-4EDD-9F3D-E06B2F024BD3}" = CorelDRAW Graphics Suite X5 - FontNav
"{994359E8-D614-4CC6-84DB-415C27D2BA12}" = MAGIX Screenshare
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9DEABCB6-B759-4D52-92F8-51B34A2B4D40}" = Autodesk Material Library 2011
"{A1B04B6B-25BB-48AD-8BD9-D31A86E89F3E}" = CorelDRAW Graphics Suite X5 - PHOTO-PAINT
"{A6365256-0FBA-4DCD-88CE-D92A4DC9328E}" = HP ESU for Microsoft Windows 7
"{A707240D-18D3-07F4-AE2E-6AE76C220192}" = CCC Help Japanese
"{A83279FD-CA4B-4206-9535-90974DE76654}" = Apple Application Support
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}" = Microsoft Visual Studio Tools for Applications 2.0 - ENU
"{AC76BA86-1029-4770-7760-000000000004}" = Adobe Acrobat 9 Pro - Czech, Hungarian, Polish, Slovak
"{AC76BA86-1029-4770-7760-000000000004}{AC76BA86-1029-4770-7760-000000000004}" = Adobe Acrobat 9 Pro - Czech, Hungarian, Polish, Slovak
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI (11.0.02) - Czech
"{AE140A73-39CD-470F-B14A-B531C2A5F462}" = HP QuickLook
"{AF9E97C1-7431-426D-A8D5-ABE40995C0B1}" = DirectX 9 Runtime
"{B399C91E-96F2-4265-9884-1C9A10E9FCF4}" = CorelDRAW Graphics Suite X5
"{B6BFCD02-BA0E-41A9-9C9C-6624C4BB475F}" = Corel Graphics - Windows Shell Extension
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B95AC87D-630B-603F-3F12-AA22B3BBA69C}" = CCC Help Chinese Traditional
"{C97CC14E-4789-4FC5-BC75-79191F7CE009}" = HP Hotkey Support
"{CA3861BA-1D96-4D66-B577-318E1602C4F3}" = CorelDRAW Graphics Suite X5 - Common
"{CA43FE4F-9FF2-4AD7-88F0-CC3BAC17B226}" = HP Support Assistant
"{CA9BCD4D-B782-4637-8F1F-F9A328D3C244}" = CanoScan Toolbox Ver4.9
"{CD1E078C-A6B9-47DA-B035-6365C85C7832}" = Autodesk Material Library 2011 Base Image library
"{CE54DCE1-E00A-4D91-ACB9-A2D916C24051}" = CorelDRAW Graphics Suite X5 - Setup Files
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D2C5E510-BE6D-42CC-9F61-E4F939078474}" = Lexmark
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D596EEA2-C6C8-45D3-89DF-FA2DBE99F829}" = Visual Basic for Applications (R) Core - English
"{D642FF8D-438D-4545-A1D5-2EDB4BCAE3BA}" = CorelDRAW Graphics Suite X5 - Photozoom Plugin
"{D69F9215-B06A-4ADF-A464-E2607B2FA296}" = Privacy Manager for HP ProtectTools
"{DE6CBC04-8673-4DBA-BA81-07F1639CEB5F}" = CorelDRAW Graphics Suite X5 - IPM
"{E031338C-839D-4EDD-9537-99B653C39D81}" = Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}" = HP Webcam Driver
"{E0E55FC1-C53D-4F8D-B14B-B59C312747C8}" = LightScribe System Software
"{E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}" = Catalyst Control Center - Branding
"{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}" = IDT Audio
"{EB1C554C-5343-9A69-1B8C-666AF192CA19}" = CCC Help Russian
"{EBCB66BD-328F-421C-96BA-8E66C7B69336}" = MAGIX Speed burnR (MSI)
"{ED238DD0-F1F1-46CC-ADD7-F56A36088B71}_is1" = DRSR verzia 0.1
"{EDB98D5A-A6FB-425C-BFB7-51A0924B762D}" = CorelDRAW Graphics Suite X5 - Capture
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F32D24DD-D787-10F9-D21E-BC3FAB3064CB}" = Catalyst Control Center Graphics Previews Common
"{F5CC2EF8-20A4-4366-A681-3FE849E65809}" = RICOH Media Driver
"{F8D90583-7BB5-75A9-B23F-A353AD4674BC}" = CCC Help Thai
"{FB3D07AE-73D0-47A9-AC12-6F50BF8B6202}" = Windows Live Movie Maker
"{FE4B83DE-85CF-4DE5-90CE-A2735A0E1F21}" = CorelDRAW Graphics Suite X5 - VideoBrowser
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Aide PDF to DXF Converter_is1" = Aide PDF to DXF Converter 9.6
"AutoCAD Plant 3D 2011" = AutoCAD Plant 3D 2011
"Autodesk Content Service" = Autodesk Content Service
"Autodesk Design Review 2011" = Autodesk Design Review 2011
"avast" = avast! Free Antivirus
"Cisco Connect" = Cisco Connect
"Drive Encryption" = Drive Encryption for HP ProtectTools
"DVDFab 8 Qt_is1" = DVDFab 8.2.0.7 (25/08/2012) Qt
"ENTERPRISER" = Microsoft Office Enterprise 2007
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.50
"Foxit Reader" = Foxit Reader
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.11.32.918
"GamePlayLabs Plugin" = GamePlayLabs Plugin
"Google Chrome" = Google Chrome
"Google Desktop" = Google Desktop
"IDAutomation.com Code 39 Font Advantage Package" = IDAutomation.com Code 39 Font Advantage Package
"InstallShield_{07A540AB-D785-11D5-8E89-0090275862A0}" = CorelDRAW Graphics Suite 11
"InstallShield_{33C9F24B-1D92-4632-A915-81E3BB1D5D6B}" = Theft Recovery
"MAGIX_MSI_mm18dlx" = MAGIX Music Maker MX Premium Download Version
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verzia 1.70.0.1100
"Marvell Miniport Driver" = Marvell Miniport Driver
"Mobile Partner" = Mobile Partner
"MozBackup" = MozBackup 1.5.1
"Mozilla Firefox 19.0.2 (x86 sk)" = Mozilla Firefox 19.0.2 (x86 sk)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MPE" = MyPhoneExplorer
"PC Translator 2004 Komplet" = PC Translator 2004 Komplet
"PRJPRO" = Microsoft Office Project Professional 2007
"Snapshot Viewer" = Snapshot Viewer
"SP_661c9f97" =
"TeamViewer 7" = TeamViewer 7
"Totalcmd" = Total Commander (Remove or Repair)
"uTorrent" = µTorrent
"Virtual DJ - Atomix Productions" = Virtual DJ - Atomix Productions
"VLC media player" = VLC media player 1.1.11
"Winamp" = Winamp
"WinLiveSuite" = Windows Live Essentials

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-2184412465-192472027-3838285202-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"c1cf4c0f01c31177" = eDANE – aplikácia sekcie daňovej FR SR pre podávanie daňových dokumentov
"Flux" = F.lux
"pdfsam" = pdfsam
"PhotoFiltre" = PhotoFiltre
"PhotoFiltre Studio X" = PhotoFiltre Studio X
"Winamp Detect" = Winamp Detector Plug-in

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 3/25/2013 6:26:16 AM | Computer Name = sohler | Source = SideBySide | ID = 16842827
Description = Activation context generation failed for "C:\Program Files (x86)\Skype\Toolbars\Internet
Explorer\SkypeIEPluginBroker.exe".Error in manifest or policy file "C:\Program
Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPluginBroker.exe" on line 2.
Multiple
requestedPrivileges elements are not allowed in manifest.

Error - 3/25/2013 12:00:39 PM | Computer Name = sohler | Source = VSS | ID = 8194
Description =

Error - 3/25/2013 2:04:13 PM | Computer Name = sohler | Source = .NET Runtime | ID = 1026
Description =

Error - 3/26/2013 5:56:26 AM | Computer Name = sohler | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: acad.exe, verzia: 24.1.49.0, časová značka:
0x4b724de9 Názov chybového modulu: mfc90u.dll, verzia: 9.0.30729.6161, časová značka:
0x4dacf630 Kód výnimky: 0xc0000005 Odstup chyby: 0x0000000000089a15 Identifikácia
chybného procesu: 0x1860 Čas spustenia chybnej aplikácie: 0x01ce29f43e9d48d6 Cesta
chybnej aplikácie: C:\Program Files\Autodesk\AutoCAD 2011\acad.exe Cesta chybného
modulu: C:\windows\WinSxS\amd64_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_044aad0bab1eb146\mfc90u.dll
Identifikácia
hlásenia: 6c2c9ec0-95fb-11e2-8083-70f395268cce

Error - 3/26/2013 6:53:41 AM | Computer Name = sohler | Source = SideBySide | ID = 16842827
Description = Activation context generation failed for "C:\Program Files (x86)\Skype\Toolbars\Internet
Explorer\SkypeIEPluginBroker.exe".Error in manifest or policy file "C:\Program
Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPluginBroker.exe" on line 2.
Multiple
requestedPrivileges elements are not allowed in manifest.

Error - 3/26/2013 3:43:03 PM | Computer Name = sohler | Source = .NET Runtime | ID = 1026
Description =

Error - 3/26/2013 3:43:20 PM | Computer Name = sohler | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: Connect.Service.ContentService.exe, verzia:
3.0.84.0, časová značka: 0x4f344200 Názov chybového modulu: KERNELBASE.dll, verzia:
6.1.7601.18015, časová značka: 0x50b83c8a Kód výnimky: 0xe0434352 Odstup chyby: 0x0000c41f
Identifikácia
chybného procesu: 0x930 Čas spustenia chybnej aplikácie: 0x01ce2a5a1b095e01 Cesta
chybnej aplikácie: C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
Cesta
chybného modulu: C:\windows\syswow64\KERNELBASE.dll Identifikácia hlásenia: 6947bd06-964d-11e2-8e09-70f395268cce

Error - 3/27/2013 4:07:12 AM | Computer Name = sohler | Source = .NET Runtime | ID = 1026
Description =

Error - 3/27/2013 4:07:31 AM | Computer Name = sohler | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: Connect.Service.ContentService.exe, verzia:
3.0.84.0, časová značka: 0x4f344200 Názov chybového modulu: KERNELBASE.dll, verzia:
6.1.7601.18015, časová značka: 0x50b83c8a Kód výnimky: 0xe0434352 Odstup chyby: 0x0000c41f
Identifikácia
chybného procesu: 0x908 Čas spustenia chybnej aplikácie: 0x01ce2ac2109e7487 Cesta
chybnej aplikácie: C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
Cesta
chybného modulu: C:\windows\syswow64\KERNELBASE.dll Identifikácia hlásenia: 5ef4a14e-96b5-11e2-8760-70f395268cce

Error - 3/27/2013 10:44:23 AM | Computer Name = sohler | Source = SideBySide | ID = 16842827
Description = Activation context generation failed for "C:\Program Files (x86)\Skype\Toolbars\Internet
Explorer\SkypeIEPluginBroker.exe".Error in manifest or policy file "C:\Program
Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPluginBroker.exe" on line 2.
Multiple
requestedPrivileges elements are not allowed in manifest.

[ Hewlett-Packard Events ]
Error - 1/17/2013 7:42:50 AM | Computer Name = sohler | Source = HPSF.exe | ID = 4000
Description =

Error - 1/21/2013 9:22:50 AM | Computer Name = sohler | Source = HPSFMsgr.exe | ID = 4000
Description = HP Error ID: -2147221164 at System.RuntimeTypeHandle.CreateInstance(RuntimeType
type, Boolean publicOnly, Boolean noCheck, Boolean& canBeCached, RuntimeMethodHandle&
ctor, Boolean& bNeedSecurityCheck) at System.RuntimeType.CreateInstanceSlow(Boolean
publicOnly, Boolean fillCache) at System.RuntimeType.CreateInstanceImpl(Boolean
publicOnly, Boolean skipVisibilityChecks, Boolean fillCache) at System.Activator.CreateInstance(Type
type, Boolean nonPublic) at HPSA_Messenger.MessengerCom.TrayDeskBand.isTaskbarDisplayed()
StackTrace:
at System.RuntimeTypeHandle.CreateInstance(RuntimeType type, Boolean publicOnly,
Boolean noCheck, Boolean& canBeCached, RuntimeMethodHandle& ctor, Boolean& bNeedSecurityCheck)

at System.RuntimeType.CreateInstanceSlow(Boolean publicOnly, Boolean fillCache)

at System.RuntimeType.CreateInstanceImpl(Boolean publicOnly, Boolean skipVisibilityChecks,
Boolean fillCache) at System.Activator.CreateInstance(Type type, Boolean nonPublic)

at HPSA_Messenger.MessengerCom.TrayDeskBand.isTaskbarDisplayed() Source: mscorlib

Name:
HPSFMsgr.exe Version: 01.00.00.00 Path: C:\Program Files (x86)\Hewlett-Packard\HP
Support Framework\Resources\HPSFMessenger\HPSFMsgr.exe Format: sk-SK RAM: 3830 Ram
Utilization: 40 TargetSite: System.Object CreateInstance(System.RuntimeType, Boolean,
Boolean, Boolean ByRef, System.RuntimeMethodHandle ByRef, Boolean ByRef)

Error - 1/29/2013 6:08:25 AM | Computer Name = sohler | Source = HPSF.exe | ID = 4000
Description =

Error - 1/29/2013 6:09:36 AM | Computer Name = sohler | Source = HPSF.exe | ID = 4000
Description =

Error - 2/13/2013 2:30:05 AM | Computer Name = sohler | Source = HPSF.exe | ID = 4000
Description =

Error - 3/14/2013 2:07:20 AM | Computer Name = sohler | Source = HPSF.exe | ID = 4000
Description =

Error - 3/14/2013 2:07:20 AM | Computer Name = sohler | Source = HPSF.exe | ID = 4000
Description =

Error - 3/14/2013 2:07:20 AM | Computer Name = sohler | Source = HPSF.exe | ID = 4000
Description =

Error - 3/14/2013 2:07:48 AM | Computer Name = sohler | Source = HPSF.exe | ID = 4000
Description =

Error - 3/21/2013 7:19:55 AM | Computer Name = sohler | Source = HPSF.exe | ID = 4000
Description =

[ HP Power Assistant Events ]
Error - 5/23/2012 1:06:36 AM | Computer Name = sohler | Source = HP PA Application | ID = 0
Description = Current OS (processorVersion=64, version=6.1, servicePack=1.0) not
found in the dat file.

Error - 5/24/2012 1:04:28 AM | Computer Name = sohler | Source = HP PA Application | ID = 0
Description = Current OS (processorVersion=64, version=6.1, servicePack=1.0) not
found in the dat file.

Error - 5/25/2012 1:09:24 AM | Computer Name = sohler | Source = HP PA Application | ID = 0
Description = Current OS (processorVersion=64, version=6.1, servicePack=1.0) not
found in the dat file.

Error - 5/25/2012 5:49:50 AM | Computer Name = sohler | Source = HP PA Application | ID = 0
Description = Current OS (processorVersion=64, version=6.1, servicePack=1.0) not
found in the dat file.

Error - 5/28/2012 1:17:38 AM | Computer Name = sohler | Source = HP PA Application | ID = 0
Description = Current OS (processorVersion=64, version=6.1, servicePack=1.0) not
found in the dat file.

Error - 5/29/2012 2:16:10 AM | Computer Name = sohler | Source = HP PA Application | ID = 0
Description = Current OS (processorVersion=64, version=6.1, servicePack=1.0) not
found in the dat file.


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 18.11.09
Prihlásený: 29.11.16
Príspevky: 89
Témy: 17 | 17
Bydlisko: Ružomberok
Napísal autor témyOffline : 27.03.2013 16:27 | pomoc s http://adf.ly/Kwky2

2/2

Error - 5/30/2012 1:00:55 AM | Computer Name = sohler | Source = HP PA Application | ID = 0
Description = Current OS (processorVersion=64, version=6.1, servicePack=1.0) not
found in the dat file.

Error - 5/30/2012 5:59:04 AM | Computer Name = sohler | Source = HP PA Application | ID = 0
Description = Current OS (processorVersion=64, version=6.1, servicePack=1.0) not
found in the dat file.

Error - 5/31/2012 1:06:37 AM | Computer Name = sohler | Source = HP PA Application | ID = 0
Description = Current OS (processorVersion=64, version=6.1, servicePack=1.0) not
found in the dat file.

Error - 6/1/2012 1:14:48 AM | Computer Name = sohler | Source = HP PA Application | ID = 0
Description = Current OS (processorVersion=64, version=6.1, servicePack=1.0) not
found in the dat file.

[ HP Software Framework Events ]
Error - 3/20/2013 12:00:42 PM | Computer Name = sohler | Source = CaslSmBios | ID = 5
Description = 2013. 03. 20 17:00:42.358|00000C08|Error |[CaslWmi]A::Unregister{hpCasl.enReturnCode(string)}|Error
unregistering the PMC.Data event. Exception: Object reference not set to an instance
of an object.

Error - 3/20/2013 12:00:43 PM | Computer Name = sohler | Source = CaslSmBios | ID = 5
Description = 2013. 03. 20 17:00:43.388|00000C08|Error |[CaslWmi]A::Unregister{hpCasl.enReturnCode(string)}|Error
unregistering the Wireless.GlobalChanged event. Exception: Object reference not
set to an instance of an object.

Error - 3/22/2013 3:00:08 PM | Computer Name = sohler | Source = CaslSmBios | ID = 5
Description = 2013. 03. 22 20:00:08.394|000013E8|Error |[CaslWmi]A::Unregister{hpCasl.enReturnCode(string)}|Error
unregistering the PMC.Data event. Exception: Object reference not set to an instance
of an object.

Error - 3/22/2013 3:00:08 PM | Computer Name = sohler | Source = CaslSmBios | ID = 5
Description = 2013. 03. 22 20:00:08.613|000013E8|Error |[CaslWmi]A::Unregister{hpCasl.enReturnCode(string)}|Error
unregistering the Wireless.GlobalChanged event. Exception: Object reference not
set to an instance of an object.

Error - 3/23/2013 9:23:09 AM | Computer Name = sohler | Source = CaslSmBios | ID = 5
Description = 2013. 03. 23 14:23:08.254|00001254|Error |[CaslWmi]A::Unregister{hpCasl.enReturnCode(string)}|Error
unregistering the PMC.Data event. Exception: Object reference not set to an instance
of an object.

Error - 3/23/2013 9:23:09 AM | Computer Name = sohler | Source = CaslSmBios | ID = 5
Description = 2013. 03. 23 14:23:09.455|00001254|Error |[CaslWmi]A::Unregister{hpCasl.enReturnCode(string)}|Error
unregistering the Wireless.GlobalChanged event. Exception: Object reference not
set to an instance of an object.

Error - 3/23/2013 11:10:29 AM | Computer Name = sohler | Source = CaslSmBios | ID = 5
Description = 2013. 03. 23 16:10:29.376|000017E4|Error |[CaslWmi]A::Unregister{hpCasl.enReturnCode(string)}|Error
unregistering the PMC.Data event. Exception: Object reference not set to an instance
of an object.

Error - 3/23/2013 11:10:29 AM | Computer Name = sohler | Source = CaslSmBios | ID = 5
Description = 2013. 03. 23 16:10:29.454|000017E4|Error |[CaslWmi]A::Unregister{hpCasl.enReturnCode(string)}|Error
unregistering the Wireless.GlobalChanged event. Exception: Object reference not
set to an instance of an object.

Error - 3/24/2013 8:45:45 AM | Computer Name = sohler | Source = CaslSmBios | ID = 5
Description = 2013. 03. 24 13:45:45.531|00001794|Error |[CaslWmi]A::Unregister{hpCasl.enReturnCode(string)}|Error
unregistering the PMC.Data event. Exception: Object reference not set to an instance
of an object.

Error - 3/24/2013 8:45:45 AM | Computer Name = sohler | Source = CaslSmBios | ID = 5
Description = 2013. 03. 24 13:45:45.562|00001794|Error |[CaslWmi]A::Unregister{hpCasl.enReturnCode(string)}|Error
unregistering the Wireless.GlobalChanged event. Exception: Object reference not
set to an instance of an object.

[ HP Wireless Assistant Events ]
Error - 9/12/2011 1:46:13 AM | Computer Name = sohler | Source = HP WA Service | ID = 0
Description = System.Runtime.InteropServices.COMException Filter hlásení zrušil volanie.
(Exception from HRESULT: 0x80010002 (RPC_E_CALL_CANCELED)) at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) at System.Management.ManagementScope.InitializeGuts(Object
o) at System.Management.ManagementScope.Initialize() at System.Management.ManagementObjectSearcher.Initialize()

at System.Management.ManagementObjectSearcher.Get() at HPPA_Service.CurrentConfiguration.FindDevice(String
hostPath, String portName) at HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__9(RadioHardware
radio) at System.Linq.Enumerable.WhereSelectListIterator`2.MoveNext() at System.Linq.Enumerable.WhereSelectEnumerableIterator`2.MoveNext()

at HPPA_Service.CurrentConfiguration.ReloadRadioList()

Error - 9/26/2011 6:31:47 AM | Computer Name = sohler | Source = HP WA Service | ID = 0
Description = System.Runtime.InteropServices.COMException Filter hlásení zrušil volanie.
(Exception from HRESULT: 0x80010002 (RPC_E_CALL_CANCELED)) at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) at System.Management.ManagementScope.InitializeGuts(Object
o) at System.Management.ManagementScope.Initialize() at System.Management.ManagementObjectSearcher.Initialize()

at System.Management.ManagementObjectSearcher.Get() at HPPA_Service.CurrentConfiguration.FindDevice(String
hostPath, String portName) at HPPA_Service.CurrentConfiguration.ApplyDeviceManagerState(List`1
radios) at HPPA_Service.CurrentConfiguration.ReloadRadioList()

Error - 4/22/2012 1:18:08 PM | Computer Name = sohler | Source = HP WA Service | ID = 0
Description = System.Runtime.InteropServices.COMException at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) at System.Management.ManagementObject.Initialize(Boolean
getObject) at System.Management.ManagementBaseObject.get_Properties() at System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) at HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 4/22/2012 1:18:08 PM | Computer Name = sohler | Source = HP WA Service | ID = 0
Description = System.Runtime.InteropServices.COMException at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) at System.Management.ManagementObject.Initialize(Boolean
getObject) at System.Management.ManagementBaseObject.get_Properties() at System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) at HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 7/9/2012 2:21:18 PM | Computer Name = sohler | Source = HP WA Application | ID = 0
Description = HardwareAccess.UnableToConnectException Application.ApplicationStartup;
failed to create hardware layer Error in the application. at HardwareAccess.Hardware..ctor(Dispatcher
dispatcher, ServicePort port, Int32 timeout) at HardwareAccess.Hardware.Create(Dispatcher
dispatcher, ServicePort port, Int32 timeout) at HPWA_Main.App.ApplicationStartup(Object
sender, StartupEventArgs args)

Error - 7/9/2012 2:21:34 PM | Computer Name = sohler | Source = HP WA Application | ID = 0
Description = MainWindow.ShowImpl; not initialized, closing application...

Error - 8/19/2012 11:16:26 AM | Computer Name = sohler | Source = HP WA Service | ID = 0
Description = System.Runtime.InteropServices.COMException Filter hlásení zrušil volanie.
(Exception from HRESULT: 0x80010002 (RPC_E_CALL_CANCELED)) at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) at System.Management.ManagementScope.InitializeGuts(Object
o) at System.Management.ManagementScope.Initialize() at System.Management.ManagementObject.Initialize(Boolean
getObject) at System.Management.ManagementBaseObject.get_Properties() at System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) at HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 12/10/2012 2:10:57 AM | Computer Name = sohler | Source = HP WA Service | ID = 0
Description = System.Runtime.InteropServices.COMException Filter hlásení zrušil volanie.
(Exception from HRESULT: 0x80010002 (RPC_E_CALL_CANCELED)) at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) at System.Management.ManagementScope.InitializeGuts(Object
o) at System.Management.ManagementScope.Initialize() at System.Management.ManagementObjectSearcher.Initialize()

at System.Management.ManagementObjectSearcher.Get() at HPPA_Service.CurrentConfiguration.FindDevice(String
hostPath, String portName) at HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__9(RadioHardware
radio) at System.Linq.Enumerable.WhereSelectListIterator`2.MoveNext() at System.Linq.Enumerable.WhereSelectEnumerableIterator`2.MoveNext()

at HPPA_Service.CurrentConfiguration.ReloadRadioList()

[ Media Center Events ]
Error - 4/2/2012 7:46:11 AM | Computer Name = sohler | Source = MCUpdate | ID = 0
Description = 13:46:10 - Chyba pripájania na Internet. 13:46:11 - Nebolo možné
spojiť sa so serverom..

Error - 6/16/2012 4:31:11 AM | Computer Name = sohler | Source = MCUpdate | ID = 0
Description = 10:31:10 - Chyba pripájania na Internet. 10:31:10 - Nebolo možné
spojiť sa so serverom..

Error - 8/27/2012 6:31:18 AM | Computer Name = sohler | Source = MCUpdate | ID = 0
Description = 12:31:16 - Chyba pripájania na Internet. 12:31:17 - Nebolo možné
spojiť sa so serverom..

Error - 11/18/2012 4:01:26 AM | Computer Name = sohler | Source = MCUpdate | ID = 0
Description = 9:01:25 - Chyba pripájania na Internet. 9:01:25 - Nebolo možné
spojiť sa so serverom..

Error - 2/6/2013 11:02:17 AM | Computer Name = sohler | Source = MCUpdate | ID = 0
Description = 16:02:10 - Chyba pripájania na Internet. 16:02:10 - Nebolo možné
spojiť sa so serverom..

[ OSession Events ]
Error - 12/8/2011 11:20:57 AM | Computer Name = sohler | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 402
seconds with 180 seconds of active time. This session ended with a crash.

Error - 4/11/2012 3:19:52 AM | Computer Name = sohler | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6612.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 4007
seconds with 2100 seconds of active time. This session ended with a crash.

Error - 5/28/2012 11:26:06 AM | Computer Name = sohler | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6607.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 20
seconds with 0 seconds of active time. This session ended with a crash.

Error - 7/11/2012 4:35:51 AM | Computer Name = sohler | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 4086
seconds with 720 seconds of active time. This session ended with a crash.

Error - 3/18/2013 8:29:55 AM | Computer Name = sohler | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
12.0.6665.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 13894
seconds with 780 seconds of active time. This session ended with a crash.

[ System Events ]
Error - 3/26/2013 3:44:20 PM | Computer Name = sohler | Source = Service Control Manager | ID = 7000
Description = Spustenie služby Soluto PCGenome Core Service zlyhalo kvôli nasledujúcej
chybe: %%1053

Error - 3/27/2013 1:48:51 AM | Computer Name = sohler | Source = DCOM | ID = 10010
Description =

Error - 3/27/2013 3:33:33 AM | Computer Name = sohler | Source = bowser | ID = 8003
Description =

Error - 3/27/2013 4:08:06 AM | Computer Name = sohler | Source = Service Control Manager | ID = 7009
Description = Počas čakania na pripojenie služby lxecCATSCustConnectService bol
dosiahnutý časový limit (30000 ms).

Error - 3/27/2013 4:08:06 AM | Computer Name = sohler | Source = Service Control Manager | ID = 7000
Description = Spustenie služby lxecCATSCustConnectService zlyhalo kvôli nasledujúcej
chybe: %%1053

Error - 3/27/2013 4:08:19 AM | Computer Name = sohler | Source = Service Control Manager | ID = 7009
Description = Počas čakania na pripojenie služby Mobile Partner. OUC bol dosiahnutý
časový limit (30000 ms).

Error - 3/27/2013 4:08:19 AM | Computer Name = sohler | Source = Service Control Manager | ID = 7000
Description = Spustenie služby Mobile Partner. OUC zlyhalo kvôli nasledujúcej chybe:
%%1053

Error - 3/27/2013 4:09:43 AM | Computer Name = sohler | Source = DCOM | ID = 10005
Description =

Error - 3/27/2013 4:09:43 AM | Computer Name = sohler | Source = Service Control Manager | ID = 7009
Description = Počas čakania na pripojenie služby HP Software Framework Service bol
dosiahnutý časový limit (30000 ms).

Error - 3/27/2013 4:09:43 AM | Computer Name = sohler | Source = Service Control Manager | ID = 7000
Description = Spustenie služby HP Software Framework Service zlyhalo kvôli nasledujúcej
chybe: %%1053


< End of report >


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 18.11.09
Prihlásený: 29.11.16
Príspevky: 89
Témy: 17 | 17
Bydlisko: Ružomberok
Napísal autor témyOffline : 27.03.2013 16:28 | pomoc s http://adf.ly/Kwky2

1/2

OTL logfile created on: 3/27/2013 4:03:22 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\nexter\Desktop
64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16521)
Locale: 00000409 | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy

3.74 Gb Total Physical Memory | 1.09 Gb Available Physical Memory | 29.24% Memory free
7.48 Gb Paging File | 3.20 Gb Available in Paging File | 42.79% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 448.47 Gb Total Space | 143.74 Gb Free Space | 32.05% Space Free | Partition Type: NTFS
Drive E: | 1.99 Gb Total Space | 1.39 Gb Free Space | 69.98% Space Free | Partition Type: FAT32
Drive M: | 1.88 Gb Total Space | 1.86 Gb Free Space | 98.96% Space Free | Partition Type: FAT

Computer Name: SOHLER | User Name: nexter | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - File not found --
PRC - [2013/03/27 16:01:51 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\nexter\Desktop\OTL.exe
PRC - [2013/03/27 15:01:36 | 000,139,264 | ---- | M] () -- C:\Users\nexter\Desktop\SystemLook.exe
PRC - [2013/03/13 16:09:43 | 001,822,424 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe
PRC - [2013/03/11 01:22:07 | 001,274,320 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2013/03/07 15:29:07 | 000,917,400 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2013/03/07 00:32:44 | 004,767,304 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2013/03/07 00:32:44 | 000,045,248 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2013/02/15 23:04:53 | 001,352,776 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
PRC - [2012/12/18 20:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/09/12 17:15:30 | 000,523,680 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
PRC - [2012/09/06 10:32:12 | 000,197,536 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
PRC - [2012/07/02 09:35:28 | 000,218,624 | ---- | M] () -- C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe
PRC - [2012/03/23 13:25:24 | 000,087,040 | ---- | M] () -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
PRC - [2011/03/16 11:26:40 | 000,113,264 | ---- | M] (Portrait Displays, Inc.) -- C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
PRC - [2011/01/23 18:47:42 | 000,770,728 | ---- | M] () -- C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\lxecmon.exe
PRC - [2010/11/16 14:37:30 | 000,230,912 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\ProgramData\DatacardService\DCSHelper.exe
PRC - [2010/03/25 15:02:02 | 000,090,112 | ---- | M] (Hewlett-Packard Company) -- c:\Program Files (x86)\Hewlett-Packard\HP QuickLook\HPDayStarterService.exe
PRC - [2010/03/17 01:37:08 | 000,036,864 | ---- | M] (Hewlett-Packard Development Company, L.P) -- c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
PRC - [2010/03/10 14:26:48 | 000,189,728 | ---- | M] (Protexis Inc.) -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
PRC - [2010/02/24 07:56:12 | 001,160,480 | ---- | M] (Infineon Technologies AG) -- C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IFXSPMGT.exe
PRC - [2010/02/24 07:44:38 | 000,214,304 | ---- | M] (Infineon Technologies AG) -- C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe
PRC - [2010/02/24 06:27:24 | 000,992,544 | ---- | M] (Infineon Technologies AG) -- C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IFXTCS.exe
PRC - [2010/02/02 01:09:48 | 000,281,192 | ---- | M] (McAfee, Inc.) -- c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
PRC - [2010/02/02 01:05:52 | 000,704,512 | ---- | M] (McAfee, Inc.) -- c:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe
PRC - [2010/01/19 19:17:10 | 000,297,984 | ---- | M] (Hewlett-Packard) -- C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
PRC - [2009/12/29 13:19:14 | 000,013,600 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
PRC - [2009/08/27 16:09:10 | 001,253,376 | ---- | M] (MAGIX AG) -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe


========== Modules (No Company Name) ==========

MOD - [2013/03/27 15:01:36 | 000,139,264 | ---- | M] () -- C:\Users\nexter\Desktop\SystemLook.exe
MOD - [2013/03/13 16:09:42 | 014,717,144 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll
MOD - [2013/03/11 01:22:06 | 000,459,728 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\25.0.1364.172\ppgooglenaclpluginchrome.dll
MOD - [2013/03/11 01:22:05 | 012,662,224 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\25.0.1364.172\PepperFlash\pepflashplayer.dll
MOD - [2013/03/11 01:22:04 | 004,050,896 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\25.0.1364.172\pdf.dll
MOD - [2013/03/11 01:21:18 | 000,596,944 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\25.0.1364.172\libglesv2.dll
MOD - [2013/03/11 01:21:18 | 000,124,368 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\25.0.1364.172\libegl.dll
MOD - [2013/03/11 01:21:16 | 001,552,848 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\25.0.1364.172\ffmpegsumo.dll
MOD - [2013/03/07 15:29:21 | 003,069,848 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2012/10/24 09:01:25 | 000,034,816 | ---- | M] () -- C:\Program Files (x86)\Google\Google Desktop Search\gzlib.dll
MOD - [2012/09/23 20:43:36 | 000,313,992 | ---- | M] () -- C:\Program Files (x86)\Adobe\Reader 11.0\Reader\sqlite.dll
MOD - [2011/03/04 11:02:54 | 007,745,536 | ---- | M] () -- C:\Program Files (x86)\Common Files\LightScribe\QtGui4.dll
MOD - [2011/03/04 11:02:52 | 000,135,168 | ---- | M] () -- C:\Program Files (x86)\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
MOD - [2011/03/04 11:02:50 | 002,121,728 | ---- | M] () -- C:\Program Files (x86)\Common Files\LightScribe\QtCore4.dll
MOD - [2011/01/23 18:47:42 | 000,770,728 | ---- | M] () -- C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\lxecmon.exe
MOD - [2010/04/01 11:24:28 | 001,159,168 | ---- | M] () -- C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\lxecdrs.dll
MOD - [2010/04/01 11:23:27 | 000,389,120 | ---- | M] () -- C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\lxecscw.dll
MOD - [2009/05/27 06:16:50 | 000,192,512 | ---- | M] () -- C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\lxecdatr.dll
MOD - [2009/04/28 08:56:23 | 000,024,064 | ---- | M] () -- C:\Windows\SysWOW64\LXECsmr.dll
MOD - [2009/03/09 23:43:49 | 000,155,648 | ---- | M] () -- C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\lxeccaps.dll
MOD - [2009/02/20 09:48:03 | 000,299,008 | ---- | M] () -- C:\Windows\SysWOW64\LXECsm.dll


========== Services (SafeList) ==========

SRV:64bit: - [2013/03/07 00:32:44 | 000,045,248 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2013/02/15 23:04:08 | 001,432,400 | ---- | M] (Flexera Software, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64)
SRV:64bit: - [2013/02/03 19:35:28 | 000,183,264 | ---- | M] (Soluto) [Auto | Running] -- C:\Program Files\Soluto\SolutoLauncherService.exe -- (SolutoLauncherService)
SRV:64bit: - [2013/02/03 19:35:22 | 000,552,928 | ---- | M] (Soluto) [Auto | Running] -- C:\Program Files\Soluto\SolutoService.exe -- (SolutoService)
SRV:64bit: - [2013/02/03 19:32:58 | 001,239,552 | ---- | M] (Soluto) [On_Demand | Stopped] -- C:\Program Files\Soluto\SolutoRemoteService.exe -- (SolutoRemoteService)
SRV:64bit: - [2013/01/29 08:57:09 | 000,271,360 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Program Files\IDT\WDM\stacsv64.exe -- (STacSV)
SRV:64bit: - [2013/01/29 08:57:08 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\IDT\WDM\AESTSr64.exe -- (AESTFilters)
SRV:64bit: - [2012/07/11 19:54:58 | 000,140,672 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore64.exe -- (!SASCORE)
SRV:64bit: - [2012/07/04 07:20:54 | 000,238,080 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2012/07/04 01:36:06 | 000,361,984 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV:64bit: - [2011/09/12 17:08:46 | 000,142,904 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe -- (HP Power Assistant Service)
SRV:64bit: - [2011/05/13 17:58:10 | 000,030,520 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Windows\SysNative\hpservice.exe -- (hpsrv)
SRV:64bit: - [2010/04/14 14:08:30 | 001,052,328 | ---- | M] ( ) [Auto | Running] -- C:\Windows\SysNative\lxeccoms.exe -- (lxec_device)
SRV:64bit: - [2010/04/14 14:08:23 | 000,045,736 | ---- | M] () [Auto | Stopped] -- C:\windows\SysNative\spool\DRIVERS\x64\3\\lxecserv.exe -- (lxecCATSCustConnectService)
SRV:64bit: - [2010/04/05 19:12:00 | 000,103,992 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe -- (HP Wireless Assistant Service)
SRV:64bit: - [2010/03/31 00:04:50 | 000,462,088 | ---- | M] (DigitalPersona, Inc.) [Auto | Running] -- c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe -- (DpHost)
SRV:64bit: - [2010/02/18 13:52:30 | 002,045,232 | ---- | M] (Validity Sensors, Inc.) [Auto | Stopped] -- C:\Windows\SysNative\vcsFPService.exe -- (vcsFPService)
SRV:64bit: - [2010/02/02 01:09:48 | 000,281,192 | ---- | M] (McAfee, Inc.) [Auto | Running] -- c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe -- (HpFkCryptService)
SRV:64bit: - [2010/02/02 01:05:52 | 000,704,512 | ---- | M] (McAfee, Inc.) [On_Demand | Running] -- c:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe -- (DEBridge)
SRV:64bit: - [2010/01/21 18:42:44 | 000,016,896 | ---- | M] (LSI Corporation) [Auto | Running] -- C:\Program Files\LSI SoftModem\agr64svc.exe -- (AgereModemAudio)
SRV:64bit: - [2009/12/29 13:19:12 | 000,873,248 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins)
SRV:64bit: - [2009/07/14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2009/06/04 00:38:36 | 000,277,032 | ---- | M] (ActivIdentity) [Auto | Running] -- C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe -- (ac.sharedstore)
SRV - [2013/03/13 16:09:44 | 000,253,656 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/03/07 15:29:15 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/12/18 20:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/12/14 16:49:28 | 000,682,344 | ---- | M] (Malwarebytes Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012/12/14 16:49:28 | 000,398,184 | ---- | M] (Malwarebytes Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012/09/12 17:15:30 | 000,523,680 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe -- (hpHotkeyMonitor)
SRV - [2012/09/06 10:32:12 | 000,197,536 | ---- | M] (Hewlett-Packard Company) [On_Demand | Running] -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe -- (HPDrvMntSvc.exe)
SRV - [2012/07/02 09:35:28 | 000,218,624 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe -- (Mobile Partner. RunOuc)
SRV - [2012/03/23 13:25:24 | 000,087,040 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe -- (PassThru Service)
SRV - [2012/02/09 17:05:18 | 000,018,720 | ---- | M] (Autodesk, Inc.) [Auto | Stopped] -- C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe -- (Autodesk Content Service)
SRV - [2012/01/19 12:47:20 | 003,027,840 | ---- | M] (TeamViewer GmbH) [On_Demand | Stopped] -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe -- (TeamViewer7)
SRV - [2011/06/21 14:57:34 | 000,085,560 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe -- (HP Support Assistant Service)
SRV - [2011/06/19 16:42:11 | 000,651,720 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2011/03/16 11:26:40 | 000,113,264 | ---- | M] (Portrait Displays, Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe -- (PdiService)
SRV - [2010/11/16 14:38:16 | 000,339,456 | ---- | M] () [Auto | Running] -- C:\ProgramData\DatacardService\HWDeviceService64.exe -- (HWDeviceService64.exe)
SRV - [2010/04/14 14:08:23 | 000,045,736 | ---- | M] () [Auto | Stopped] -- C:\windows\system32\spool\DRIVERS\x64\3\\lxecserv.exe -- (lxecCATSCustConnectService)
SRV - [2010/04/14 14:08:12 | 000,598,696 | ---- | M] ( ) [Auto | Running] -- C:\Windows\SysWOW64\lxeccoms.exe -- (lxec_device)
SRV - [2010/03/25 15:02:02 | 000,090,112 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- c:\Program Files (x86)\Hewlett-Packard\HP QuickLook\HPDayStarterService.exe -- (HPDayStarterService)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/17 01:37:08 | 000,036,864 | ---- | M] (Hewlett-Packard Development Company, L.P) [Auto | Running] -- c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe -- (HP ProtectTools Service)
SRV - [2010/03/10 14:26:48 | 000,189,728 | ---- | M] (Protexis Inc.) [Auto | Running] -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
SRV - [2010/02/24 07:56:12 | 001,160,480 | ---- | M] (Infineon Technologies AG) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IFXSPMGT.exe -- (IFXSpMgtSrv)
SRV - [2010/02/24 07:44:38 | 000,214,304 | ---- | M] (Infineon Technologies AG) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe -- (PersonalSecureDriveService)
SRV - [2010/02/24 06:27:24 | 000,992,544 | ---- | M] (Infineon Technologies AG) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IFXTCS.exe -- (IFXTCS)
SRV - [2010/02/18 13:26:46 | 001,664,304 | ---- | M] (Validity Sensors, Inc.) [Auto | Stopped] -- C:\Windows\SysWOW64\vcsFPService.exe -- (vcsFPService)
SRV - [2010/01/19 19:17:10 | 000,297,984 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe -- (HPFSService)
SRV - [2009/12/07 19:36:10 | 000,362,040 | ---- | M] (Hewlett-Packard Ltd) [On_Demand | Stopped] -- c:\Windows\SysWOW64\flcdlock.exe -- (FLCDLOCK)
SRV - [2009/08/27 16:09:10 | 001,253,376 | ---- | M] (MAGIX AG) [Auto | Running] -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe -- (Fabs)
SRV - [2009/06/10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2008/08/07 10:10:02 | 003,276,800 | ---- | M] (MAGIX®) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe -- (FirebirdServerMAGIXInstance)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/03/25 17:01:12 | 000,564,824 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2013/03/07 00:33:21 | 001,025,808 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2013/03/07 00:33:21 | 000,377,920 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2013/03/07 00:33:21 | 000,178,624 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2013/03/07 00:33:21 | 000,070,992 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2013/03/07 00:33:21 | 000,068,920 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2013/03/07 00:33:21 | 000,065,336 | ---- | M] () [Kernel | Boot | Running] -- C:\windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2013/03/07 00:33:20 | 000,080,816 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2013/03/07 00:33:20 | 000,033,400 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2013/02/12 05:12:06 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usb8023x.sys -- (usb_rndisx)
DRV:64bit: - [2013/02/03 19:32:42 | 000,054,728 | ---- | M] (Soluto LTD.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\Soluto.sys -- (Soluto)
DRV:64bit: - [2013/01/29 08:57:11 | 000,515,584 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\stwrt64.sys -- (STHDA)
DRV:64bit: - [2012/12/14 16:49:28 | 000,024,176 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2012/08/23 15:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/08/23 15:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012/07/04 07:59:32 | 011,922,944 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2012/07/04 06:10:56 | 000,359,936 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2012/07/03 17:21:52 | 000,019,600 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\windows\SysNative\drivers\aswKbd.sys -- (aswKbd)
DRV:64bit: - [2012/07/02 09:35:36 | 000,421,376 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ewusbwwan.sys -- (ewusbmbb)
DRV:64bit: - [2012/07/02 09:35:36 | 000,221,312 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ewusbmdm.sys -- (hwdatacard)
DRV:64bit: - [2012/07/02 09:35:36 | 000,117,248 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ew_hwusbdev.sys -- (ew_hwusbdev)
DRV:64bit: - [2012/07/02 09:35:36 | 000,086,016 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ew_jubusenum.sys -- (huawei_enumerator)
DRV:64bit: - [2012/04/18 15:05:16 | 000,019,304 | ---- | M] (GARMIN Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\grmnusb.sys -- (grmnusb)
DRV:64bit: - [2012/03/05 16:04:30 | 000,053,888 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys -- (AODDriver4.1)
DRV:64bit: - [2012/03/01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/08/17 08:58:26 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltjx64.sys -- (UsbserFilt)
DRV:64bit: - [2011/08/17 08:58:22 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev)
DRV:64bit: - [2011/08/17 08:58:20 | 000,027,136 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbox64.sys -- (nmwcdc)
DRV:64bit: - [2011/08/17 08:58:16 | 000,019,968 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcd)
DRV:64bit: - [2011/07/22 17:26:56 | 000,014,928 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2011/07/12 22:55:18 | 000,012,368 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:64bit: - [2011/07/07 20:30:38 | 001,379,376 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2011/05/13 17:58:16 | 000,030,008 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\hpdskflt.sys -- (hpdskflt)
DRV:64bit: - [2011/05/13 17:57:58 | 000,043,320 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Accelerometer.sys -- (Accelerometer)
DRV:64bit: - [2011/04/22 10:04:29 | 003,058,168 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX)
DRV:64bit: - [2011/03/11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/03/04 20:44:12 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2010/11/20 14:34:02 | 000,360,832 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\vpcvmm.sys -- (vpcvmm)
DRV:64bit: - [2010/11/20 14:34:02 | 000,194,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vpchbus.sys -- (vpcbus)
DRV:64bit: - [2010/11/20 14:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 12:35:32 | 000,095,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vpcusb.sys -- (vpcusb)
DRV:64bit: - [2010/11/20 12:35:20 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\vpcnfltr.sys -- (vpcnfltr)
DRV:64bit: - [2010/11/20 11:43:57 | 000,032,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:64bit: - [2010/11/20 10:37:42 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2010/06/25 15:08:10 | 000,036,928 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\htcnprot.sys -- (htcnprot)
DRV:64bit: - [2010/03/09 02:21:42 | 000,123,408 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2010/02/18 09:18:24 | 000,046,136 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\amdiox64.sys -- (amdiox64)
DRV:64bit: - [2010/02/16 20:24:20 | 000,025,912 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV:64bit: - [2010/02/02 01:11:36 | 000,015,688 | ---- | M] (McAfee, Inc.) [File_System | Boot | Running] -- C:\windows\SysNative\drivers\SbFsLock.sys -- (SbFsLock)
DRV:64bit: - [2010/02/02 01:11:34 | 000,058,184 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\windows\SysNative\drivers\RsvLock.sys -- (RsvLock)
DRV:64bit: - [2010/02/02 01:11:32 | 000,056,648 | ---- | M] () [Kernel | Boot | Running] -- C:\windows\SysNative\drivers\SafeBoot.sys -- (SafeBoot)
DRV:64bit: - [2010/01/30 06:46:04 | 000,089,344 | ---- | M] (Realtek Semiconductor Corp.) [2 MP Fixed] [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rtsuvc.sys -- (rtsuvc)
DRV:64bit: - [2010/01/26 04:06:06 | 000,044,576 | ---- | M] (Infineon Technologies AG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\psd.sys -- (PersonalSecureDrive)
DRV:64bit: - [2010/01/21 18:42:48 | 001,209,856 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\agrsm64.sys -- (AgereSoftModem)
DRV:64bit: - [2010/01/08 11:23:00 | 000,395,776 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:64bit: - [2010/01/07 19:22:44 | 000,021,160 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwrchid.sys -- (btwrchid)
DRV:64bit: - [2010/01/07 19:22:40 | 000,035,104 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwl2cap.sys -- (btwl2cap)
DRV:64bit: - [2010/01/07 19:22:36 | 000,132,648 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwavdt.sys -- (btwavdt)
DRV:64bit: - [2010/01/07 19:22:34 | 000,098,344 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwaudio.sys -- (btwaudio)
DRV:64bit: - [2009/12/11 13:32:06 | 000,055,808 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\rixdpe64.sys -- (rixdpcie)
DRV:64bit: - [2009/11/12 13:48:56 | 000,005,504 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\windows\SysNative\drivers\StarOpen.sys -- (StarOpen)
DRV:64bit: - [2009/11/01 18:16:50 | 000,033,736 | ---- | M] (HTC, Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ANDROIDUSB.sys -- (HTCAND64)
DRV:64bit: - [2009/10/28 16:54:00 | 000,079,360 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\risdpe64.sys -- (risdpcie)
DRV:64bit: - [2009/10/26 13:52:00 | 000,061,952 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\rimspe64.sys -- (rimspci)
DRV:64bit: - [2009/10/21 21:37:52 | 000,040,760 | ---- | M] (Hewlett-Packard Development Company L.P.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\DAMDrv64.sys -- (DAMDrv)
DRV:64bit: - [2009/08/23 13:55:32 | 000,016,440 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AtiPcie.sys -- (AtiPcie)
DRV:64bit: - [2009/07/14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/14 00:21:48 | 000,038,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:64bit: - [2009/06/10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/06/04 19:32:52 | 000,060,160 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\windows\SysNative\drivers\SbAlg.sys -- (SbAlg)
DRV:64bit: - [2009/04/22 07:14:44 | 000,146,048 | ---- | M] (Andrea Electronics Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AESTAu64.sys -- (AESTAud)
DRV - [2010/02/02 01:11:46 | 000,051,800 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\windows\SysWow64\drivers\SbAlg.sys -- (SbAlg)
DRV - [2010/02/02 01:11:28 | 000,013,256 | ---- | M] (McAfee, Inc.) [File_System | Boot | Running] -- C:\windows\SysWow64\drivers\SbFsLock.sys -- (SbFsLock)
DRV - [2010/02/02 01:11:24 | 000,040,088 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\windows\SysWow64\drivers\rsvlock.sys -- (RsvLock)
DRV - [2010/02/02 01:11:22 | 000,110,520 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\windows\SysWow64\drivers\SafeBoot.sys -- (SafeBoot)
DRV - [2009/11/12 13:48:56 | 000,007,168 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\windows\SysWow64\drivers\StarOpen.sys -- (StarOpen)
DRV - [2009/07/14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{5C107638-26D5-4D6C-A04A-D9F6E9391E01}: "URL" = http://www.bing.com/search?q={searchTerms}&form=CMNTDF&pc=CMNTDF&src=IE-SearchBox
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{5C107638-26D5-4D6C-A04A-D9F6E9391E01}: "URL" = http://www.bing.com/search?q={searchTerms}&form=CMNTDF&pc=CMNTDF&src=IE-SearchBox


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-2184412465-192472027-3838285202-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-2184412465-192472027-3838285202-1002\..\SearchScopes,DefaultScope = {5C107638-26D5-4D6C-A04A-D9F6E9391E01}
IE - HKU\S-1-5-21-2184412465-192472027-3838285202-1002\..\SearchScopes\{5C107638-26D5-4D6C-A04A-D9F6E9391E01}: "URL" = http://www.bing.com/search?q={searchTerms}&form=CMNTDF&pc=CMNTDF&src=IE-SearchBox
IE - HKU\S-1-5-21-2184412465-192472027-3838285202-1002\..\SearchScopes\{8A244612-A1F7-11E0-95C0-E71F4824019B}: "URL" = http://badoo.com/startpage/?source=bsb&q={searchTerms}
IE - HKU\S-1-5-21-2184412465-192472027-3838285202-1002\..\SearchScopes\{CAA28645-68E2-4C39-A762-904A77D81BD9}: "URL" = http://search.yahoo.com/search?fr=chr-g ... =827316&p={searchTerms}
IE - HKU\S-1-5-21-2184412465-192472027-3838285202-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:19.0.2
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF64_11_6_602_180.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.4.0: C:\windows\system32\npDeployJava1.dll (Sun Microsystems, Inc.)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.4.0: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll ()
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_37: C:\windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\otis@digitalpersona.com: c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt\ [2010/05/27 01:06:31 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2013/03/22 17:19:47 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 19.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/03/27 10:26:33 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 19.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/03/08 09:23:53 | 000,000,000 | ---D | M]

[2013/03/27 10:27:05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\nexter\AppData\Roaming\mozilla\Extensions
[2013/03/27 10:26:33 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/03/08 09:23:49 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/03/08 09:23:49 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
[2013/03/08 09:23:49 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
[2013/03/07 15:30:04 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011/10/26 19:49:56 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll
[2013/03/07 19:55:01 | 000,001,583 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\atlas-sk.xml
[2013/03/07 19:55:01 | 000,001,380 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\azet-sk.xml
[2013/03/07 19:55:01 | 000,001,479 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\dunaj-sk.xml
[2013/03/07 19:55:01 | 000,001,473 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\slovnik-sk.xml
[2013/03/07 19:55:02 | 000,001,104 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-sk.xml
[2013/03/07 19:55:01 | 000,000,830 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\zoznam-sk.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR - homepage: http://www.google.com
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\25.0.1364.172\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\25.0.1364.172\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\25.0.1364.172\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\windows\SysWOW64\Macromed\Flash\NPSWF32.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.290.11 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U29 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Winamp Application Detector (Disabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll
CHR - plugin: Foxit Reader Plugin for Mozilla (Disabled) = C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Facebook Video Calling Plugin (Disabled) = C:\Users\nexter\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll
CHR - Extension: TV = C:\Users\nexter\AppData\Local\Google\Chrome\User Data\Default\Extensions\beobeededemalmllhkmnkinmfembdimh\1.0.12_0\
CHR - Extension: YouTube = C:\Users\nexter\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\
CHR - Extension: H\u013Eada\u0165 v Google = C:\Users\nexter\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\
CHR - Extension: avast! WebRep = C:\Users\nexter\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1483_0\
CHR - Extension: Kontrola po\u0161ty Google = C:\Users\nexter\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff\4.4.0_0\
CHR - Extension: DvdVideoSoft Free Youtube Download = C:\Users\nexter\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.0.0_0\
CHR - Extension: Type Fu = C:\Users\nexter\AppData\Local\Google\Chrome\User Data\Default\Extensions\okboeogmnhjpgbeaokfogelclpblaemo\2.0.0_0\
CHR - Extension: Bitdefender QuickScan = C:\Users\nexter\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdnkcidphdcakpkheohlhocaicfamjie\0.9.9.118_0\
CHR - Extension: Gmail = C:\Users\nexter\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2013/03/23 16:13:45 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (HP ProtectTools Security Manager Extension) - {395610AE-C624-4f58-B89E-23733EA00F9A} - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll (DigitalPersona, Inc.)
O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (File Sanitizer for HP ProtectTools) - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll (Hewlett-Packard)
O2 - BHO: (HP ProtectTools Security Manager Extension) - {395610AE-C624-4f58-B89E-23733EA00F9A} - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll (DigitalPersona, Inc.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Lexmark ) - {D2C5E510-BE6D-42CC-9F61-E4F939078474} - C:\Program Files\Lexmark Printable Web\bho.dll ()
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (WebTranslator) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Program Files (x86)\PC Translator\webie.dll ()
O4:64bit: - HKLM..\Run: [accrdsub] C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe (ActivIdentity)
O4:64bit: - HKLM..\Run: [acevents] C:\Program Files\ActivIdentity\ActivClient\acevents.exe (ActivIdentity)
O4:64bit: - HKLM..\Run: [CNAP2 Launcher] C:\Windows\SysNative\spool\drivers\x64\3\CNAP2LAK.EXE (CANON INC.)
O4:64bit: - HKLM..\Run: [EzPrint] C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\ezprint.exe ()
O4:64bit: - HKLM..\Run: [lxecmon.exe] C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\lxecmon.exe ()
O4:64bit: - HKLM..\Run: [Soluto] c:\program files\soluto\soluto.exe (Soluto)
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [AMD AVT] C:\windows\SysWow64\cmd.exe (Microsoft Corporation)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [estar] C:\System.Sav\Util\HideDOS.EXE ()
O4 - HKLM..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\S-1-5-21-2184412465-192472027-3838285202-1002..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2184412465-192472027-3838285202-1002\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2184412465-192472027-3838285202-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2184412465-192472027-3838285202-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: =
O8:64bit: - Extra context menu item: Prevést cíl vazby do Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Prevést cíl vazby do existujícího PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Prevést do Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Pridat do stávajícího PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8:64bit: - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Prevést cíl vazby do Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Prevést cíl vazby do existujícího PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Prevést do Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Pridat do stávajícího PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: WebTran - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Program Files (x86)\PC Translator\webie.dll ()
O9 - Extra 'Tools' menuitem : &Nastaviť prekladač - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Program Files (x86)\PC Translator\webie.dll ()
O9 - Extra 'Tools' menuitem : Preložiť &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Program Files (x86)\PC Translator\webie.dll ()
O9 - Extra 'Tools' menuitem : Preložiť &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Program Files (x86)\PC Translator\webie.dll ()
O9 - Extra Button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O13 - gopher Prefix: missing
O15 - HKLM\..Trusted Domains: //about.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //Exclude.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //FWEvent.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //LanguageSelection.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //Message.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //MyAgttryCmd.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //MyAgttryNag.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //MyNotification.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //NOCLessUpdate.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //quarantine.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //ScanNow.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //strings.vbs/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //Template.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //Update.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //VirFound.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: mcafeeasap.com ([betavscan] https in Trusted sites)
O15 - HKLM\..Trusted Domains: mcafeeasap.com ([vs] https in Trusted sites)
O15 - HKLM\..Trusted Domains: mcafeeasap.com ([www] https in Trusted sites)
O15 - HKU\S-1-5-21-2184412465-192472027-3838285202-1002\..Trusted Domains: localhost ([]http in Local intranet)
O15 - HKU\S-1-5-21-2184412465-192472027-3838285202-1002\..Trusted Ranges: GD ([http] in Local intranet)
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 10.4.0)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 10.4.0)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_37)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_37)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_37)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 195.168.1.2 195.168.1.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0D044146-0F77-45DA-9CD4-BD9CFA547FA9}: NameServer = 194.154.227.17 195.91.0.17
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{253EAEDF-C912-42F0-B89B-F7A18CDF79D4}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{705F48C7-5F8D-48AD-A1BF-851D34A35BE5}: DhcpNameServer = 195.168.1.2 195.168.1.4
O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - AppInit_DLLs: (C:\PROGRA~2\Google\GOOGLE~3\GoogleDesktopNetwork3.dll) - C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/05/11 20:57:18 | 000,000,000 | ---D | M] - C:\AutoCAD Plant 3D 2011 Content -- [ NTFS ]
O32 - AutoRun File - [2013/02/15 23:02:28 | 000,000,000 | ---D | M] - C:\AutoCAD Plant 3D 2013 Content -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 18.11.09
Prihlásený: 29.11.16
Príspevky: 89
Témy: 17 | 17
Bydlisko: Ružomberok
Napísal autor témyOffline : 27.03.2013 16:28 | pomoc s http://adf.ly/Kwky2

2/2

[2013/03/27 16:01:42 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\nexter\Desktop\OTL.exe
[2013/03/27 14:09:30 | 000,000,000 | ---D | C] -- C:\Users\nexter\Desktop\Appdir 64-bit
[2013/03/27 14:08:54 | 000,000,000 | ---D | C] -- C:\Users\nexter\Desktop\WinDriverDir 64-bit
[2013/03/27 10:26:51 | 000,000,000 | ---D | C] -- C:\Users\nexter\AppData\Roaming\Mozilla
[2013/03/27 10:26:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2013/03/27 10:17:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MozBackup
[2013/03/27 10:17:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MozBackup
[2013/03/24 11:00:29 | 000,000,000 | ---D | C] -- C:\Users\nexter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bluetooth Devices
[2013/03/23 16:43:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2013/03/23 16:43:45 | 000,024,176 | ---- | C] (Malwarebytes Corporation) -- C:\windows\SysNative\drivers\mbam.sys
[2013/03/23 16:43:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2013/03/23 16:31:57 | 000,000,000 | ---D | C] -- C:\windows\temp
[2013/03/23 16:13:55 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2013/03/23 14:58:51 | 000,000,000 | ---D | C] -- C:\rsit
[2013/03/23 13:08:24 | 000,000,000 | ---D | C] -- C:\Users\nexter\AppData\Roaming\SUPERAntiSpyware.com
[2013/03/23 13:08:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
[2013/03/23 13:07:54 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2013/03/23 13:07:54 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2013/03/23 12:38:18 | 000,000,000 | ---D | C] -- C:\userscript
[2013/03/23 11:32:32 | 002,237,968 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\nexter\Desktop\tdsskiller.exe
[2013/03/22 22:39:16 | 000,518,144 | ---- | C] (SteelWerX) -- C:\windows\SWREG.exe
[2013/03/22 22:39:16 | 000,406,528 | ---- | C] (SteelWerX) -- C:\windows\SWSC.exe
[2013/03/22 22:39:16 | 000,060,416 | ---- | C] (NirSoft) -- C:\windows\NIRCMD.exe
[2013/03/22 22:34:34 | 005,042,224 | R--- | C] (Swearware) -- C:\Users\nexter\Desktop\ComboFix.exe
[2013/03/22 22:34:15 | 001,752,992 | ---- | C] (Bleeping Computer, LLC) -- C:\Users\nexter\Desktop\rkill (1).com
[2013/03/22 21:35:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2013/03/22 21:35:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spybot - Search & Destroy
[2013/03/22 17:17:44 | 000,000,000 | ---D | C] -- C:\Users\nexter\AppData\Roaming\QuickScan
[2013/03/21 08:30:06 | 000,000,000 | ---D | C] -- C:\Users\nexter\AppData\Roaming\FileOpen
[2013/03/21 08:30:06 | 000,000,000 | ---D | C] -- C:\ProgramData\FileOpen
[2013/03/18 08:32:32 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2013/03/17 20:59:39 | 000,000,000 | ---D | C] -- C:\Komku
[2013/03/15 15:40:38 | 001,054,720 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\MsSpellCheckingFacility.exe
[2013/03/15 15:40:37 | 003,958,784 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\jscript9.dll
[2013/03/15 15:40:37 | 001,509,376 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\inetcpl.cpl
[2013/03/15 15:40:37 | 001,441,280 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\inetcpl.cpl
[2013/03/15 15:40:37 | 001,400,416 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ieapfltr.dat
[2013/03/15 15:40:37 | 001,400,416 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieapfltr.dat
[2013/03/15 15:40:37 | 000,905,728 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mshtmlmedia.dll
[2013/03/15 15:40:37 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\jscript.dll
[2013/03/15 15:40:37 | 000,762,368 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieapfltr.dll
[2013/03/15 15:40:37 | 000,719,360 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mshtmlmedia.dll
[2013/03/15 15:40:37 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\jscript.dll
[2013/03/15 15:40:37 | 000,629,248 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ieapfltr.dll
[2013/03/15 15:40:37 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msfeeds.dll
[2013/03/15 15:40:37 | 000,599,552 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\vbscript.dll
[2013/03/15 15:40:37 | 000,526,848 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieui.dll
[2013/03/15 15:40:37 | 000,452,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dxtmsft.dll
[2013/03/15 15:40:37 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\html.iec
[2013/03/15 15:40:37 | 000,391,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ieui.dll
[2013/03/15 15:40:37 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\html.iec
[2013/03/15 15:40:37 | 000,281,600 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dxtrans.dll
[2013/03/15 15:40:37 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\url.dll
[2013/03/15 15:40:37 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\url.dll
[2013/03/15 15:40:37 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\elshyph.dll
[2013/03/15 15:40:37 | 000,216,064 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msls31.dll
[2013/03/15 15:40:37 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msrating.dll
[2013/03/15 15:40:37 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\elshyph.dll
[2013/03/15 15:40:37 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieUnatt.exe
[2013/03/15 15:40:37 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iexpress.exe
[2013/03/15 15:40:37 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msrating.dll
[2013/03/15 15:40:37 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iexpress.exe
[2013/03/15 15:40:37 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\occache.dll
[2013/03/15 15:40:37 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wextract.exe
[2013/03/15 15:40:37 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wextract.exe
[2013/03/15 15:40:37 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ieUnatt.exe
[2013/03/15 15:40:37 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iesysprep.dll
[2013/03/15 15:40:37 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iepeers.dll
[2013/03/15 15:40:37 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\IEAdvpack.dll
[2013/03/15 15:40:37 | 000,125,440 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\occache.dll
[2013/03/15 15:40:37 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iepeers.dll
[2013/03/15 15:40:37 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\IEAdvpack.dll
[2013/03/15 15:40:37 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iesysprep.dll
[2013/03/15 15:40:37 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\inseng.dll
[2013/03/15 15:40:37 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mshtmled.dll
[2013/03/15 15:40:37 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\SetIEInstalledDate.exe
[2013/03/15 15:40:37 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\RegisterIEPKEYs.exe
[2013/03/15 15:40:37 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\inseng.dll
[2013/03/15 15:40:37 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\icardie.dll
[2013/03/15 15:40:37 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mshtmled.dll
[2013/03/15 15:40:37 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\tdc.ocx
[2013/03/15 15:40:37 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\SetIEInstalledDate.exe
[2013/03/15 15:40:37 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\RegisterIEPKEYs.exe
[2013/03/15 15:40:37 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\icardie.dll
[2013/03/15 15:40:37 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iesetup.dll
[2013/03/15 15:40:37 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\pngfilt.dll
[2013/03/15 15:40:37 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\tdc.ocx
[2013/03/15 15:40:37 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iesetup.dll
[2013/03/15 15:40:37 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\pngfilt.dll
[2013/03/15 15:40:37 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ie4uinit.exe
[2013/03/15 15:40:37 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\imgutil.dll
[2013/03/15 15:40:37 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mshtmler.dll
[2013/03/15 15:40:37 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mshtmler.dll
[2013/03/15 15:40:37 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iernonce.dll
[2013/03/15 15:40:37 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iernonce.dll
[2013/03/15 15:40:37 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\licmgr10.dll
[2013/03/15 15:40:37 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\licmgr10.dll
[2013/03/15 15:40:37 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mshta.exe
[2013/03/15 15:40:37 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msfeedssync.exe
[2013/03/15 15:40:37 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msfeedssync.exe
[2013/03/15 15:32:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2013/03/15 15:32:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2013/03/15 15:28:26 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\usb8023x.sys
[2013/03/15 15:28:26 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\usb8023.sys
[2013/03/08 09:23:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013/03/02 20:13:14 | 000,000,000 | ---D | C] -- C:\Users\nexter\Documents\Moje palety
[2013/03/02 20:06:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Protexis
[2013/03/02 18:23:28 | 000,000,000 | ---D | C] -- C:\Users\nexter\Documents\Corel
[2013/03/02 18:23:03 | 000,000,000 | ---D | C] -- C:\Users\nexter\Documents\Visual Studio 2008
[2013/03/02 18:21:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SDKs
[2013/03/02 18:20:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 9.0
[2013/03/02 18:18:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Protexis
[2013/03/02 18:18:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Corel
[2013/03/02 18:12:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X5
[2013/03/02 18:08:30 | 000,000,000 | ---D | C] -- C:\ProgramData\CorelDRAW Graphics Suite X5
[2013/02/27 07:47:42 | 002,776,576 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msmpeg2vdec.dll
[2013/02/27 07:47:42 | 002,284,544 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msmpeg2vdec.dll
[2013/02/27 07:47:41 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\UIAnimation.dll
[2013/02/27 07:47:41 | 000,187,392 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\UIAnimation.dll
[2013/02/27 07:47:19 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WMPhoto.dll
[2013/02/27 07:47:19 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\WMPhoto.dll
[2013/02/27 07:46:56 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2013/02/27 07:46:56 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2013/02/27 07:46:56 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2013/02/27 07:46:53 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3d10_1.dll
[2013/02/27 07:46:53 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2013/02/27 07:46:53 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2013/02/27 07:46:53 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2013/02/27 07:46:53 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2013/02/27 07:46:53 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2013/02/27 07:46:52 | 002,565,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3d10warp.dll
[2013/02/27 07:46:52 | 000,522,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\XpsGdiConverter.dll
[2013/02/27 07:46:51 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\XpsGdiConverter.dll
[2013/02/27 07:46:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
[2013/02/27 07:46:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-version-l1-1-0.dll
[2013/02/27 07:46:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
[2013/02/27 07:46:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-shell32-l1-1-0.dll
[2013/02/27 07:46:49 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2013/02/27 07:46:49 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2013/02/27 07:46:49 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
[2013/02/27 07:46:49 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-ole32-l1-1-0.dll
[2013/02/27 07:46:49 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
[2013/02/27 07:46:49 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-user32-l1-1-0.dll
[2013/02/27 07:46:47 | 000,648,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3d10level9.dll
[2013/02/27 07:46:47 | 000,363,008 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dxgi.dll
[2013/02/27 07:46:46 | 001,887,232 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3d11.dll
[2013/02/27 07:46:46 | 001,504,768 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3d11.dll
[2013/02/27 07:46:46 | 000,333,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3d10_1core.dll
[2013/02/27 07:46:46 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3d10core.dll
[2013/02/27 07:46:45 | 001,238,528 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3d10.dll
[2013/02/27 07:46:45 | 001,158,144 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\XpsPrint.dll
[2013/02/27 07:46:44 | 001,682,432 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\XpsPrint.dll
[2013/02/27 07:46:42 | 001,643,520 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\DWrite.dll
[2013/02/27 07:46:41 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WindowsCodecsExt.dll
[2013/02/27 07:46:39 | 001,424,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WindowsCodecs.dll
[2013/02/27 07:46:38 | 003,928,064 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d2d1.dll
[1 C:\windows\SysWow64\*.tmp files -> C:\windows\SysWow64\*.tmp -> ]
[1 C:\Users\nexter\Desktop\*.tmp files -> C:\Users\nexter\Desktop\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/03/27 16:07:03 | 000,000,830 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2013/03/27 16:01:51 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\nexter\Desktop\OTL.exe
[2013/03/27 15:48:03 | 000,000,936 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/03/27 15:01:36 | 000,139,264 | ---- | M] () -- C:\Users\nexter\Desktop\SystemLook.exe
[2013/03/27 14:06:18 | 000,007,642 | ---- | M] () -- C:\Users\nexter\AppData\Local\Resmon.ResmonCfg
[2013/03/27 13:08:01 | 000,000,512 | ---- | M] () -- C:\windows\tasks\SUPERAntiSpyware Scheduled Task a4fe0e06-17e0-4b9d-a39d-87e17e2a17e9.job
[2013/03/27 11:36:59 | 000,020,944 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/03/27 11:36:59 | 000,020,944 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/03/27 10:26:39 | 000,001,107 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2013/03/27 10:19:54 | 025,518,683 | ---- | M] () -- C:\Users\nexter\Documents\Firefox 19.0.2 (sk) - 2013-03-27.pcv
[2013/03/27 10:17:33 | 000,000,987 | ---- | M] () -- C:\Users\Public\Desktop\MozBackup.lnk
[2013/03/27 10:16:20 | 000,000,336 | ---- | M] () -- C:\windows\tasks\HPCeeScheduleFornexter.job
[2013/03/27 09:06:27 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2013/03/27 09:06:09 | 4016,496,640 | -HS- | M] () -- C:\hiberfil.sys
[2013/03/27 08:16:38 | 000,003,392 | ---- | M] () -- C:\windows\wdict32.INI
[2013/03/27 06:48:25 | 000,000,512 | ---- | M] () -- C:\windows\tasks\SUPERAntiSpyware Scheduled Task c388c850-fec6-47d6-87ec-607c3d4deb39.job
[2013/03/26 17:02:42 | 001,079,796 | ---- | M] () -- C:\acadminidump.dmp
[2013/03/25 17:29:07 | 000,001,973 | ---- | M] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2013/03/25 17:29:06 | 000,002,024 | ---- | M] () -- C:\Users\Public\Desktop\CDBurnerXP.lnk
[2013/03/25 17:01:12 | 000,564,824 | ---- | M] (Duplex Secure Ltd.) -- C:\windows\SysNative\drivers\sptd.sys
[2013/03/25 09:48:59 | 000,783,374 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
[2013/03/25 09:48:59 | 000,655,838 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
[2013/03/25 09:48:59 | 000,122,710 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
[2013/03/23 16:43:48 | 000,001,069 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013/03/23 16:13:45 | 000,000,027 | ---- | M] () -- C:\windows\SysNative\drivers\etc\hosts
[2013/03/23 14:58:39 | 000,781,383 | ---- | M] () -- C:\Users\nexter\Desktop\RSIT.exe
[2013/03/23 14:53:02 | 000,609,993 | ---- | M] () -- C:\Users\nexter\Desktop\adwcleaner.exe
[2013/03/23 14:13:56 | 000,106,712 | ---- | M] () -- C:\Users\nexter\Desktop\estet.jpg
[2013/03/23 11:32:27 | 002,237,968 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\nexter\Desktop\tdsskiller.exe
[2013/03/22 22:34:31 | 005,042,224 | R--- | M] (Swearware) -- C:\Users\nexter\Desktop\ComboFix.exe
[2013/03/22 22:33:17 | 001,752,992 | ---- | M] (Bleeping Computer, LLC) -- C:\Users\nexter\Desktop\rkill (1).com
[2013/03/22 17:19:52 | 000,000,000 | ---- | M] () -- C:\windows\SysWow64\config.nt
[2013/03/15 15:40:38 | 001,054,720 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\MsSpellCheckingFacility.exe
[2013/03/15 15:40:37 | 003,958,784 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\jscript9.dll
[2013/03/15 15:40:37 | 001,509,376 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\inetcpl.cpl
[2013/03/15 15:40:37 | 001,441,280 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\inetcpl.cpl
[2013/03/15 15:40:37 | 001,400,416 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\ieapfltr.dat
[2013/03/15 15:40:37 | 001,400,416 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ieapfltr.dat
[2013/03/15 15:40:37 | 000,905,728 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\mshtmlmedia.dll
[2013/03/15 15:40:37 | 000,855,552 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\jscript.dll
[2013/03/15 15:40:37 | 000,762,368 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ieapfltr.dll
[2013/03/15 15:40:37 | 000,719,360 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\mshtmlmedia.dll
[2013/03/15 15:40:37 | 000,690,688 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\jscript.dll
[2013/03/15 15:40:37 | 000,629,248 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\ieapfltr.dll
[2013/03/15 15:40:37 | 000,603,136 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\msfeeds.dll
[2013/03/15 15:40:37 | 000,599,552 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\vbscript.dll
[2013/03/15 15:40:37 | 000,526,848 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ieui.dll
[2013/03/15 15:40:37 | 000,452,096 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\dxtmsft.dll
[2013/03/15 15:40:37 | 000,441,856 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\html.iec
[2013/03/15 15:40:37 | 000,391,680 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\ieui.dll
[2013/03/15 15:40:37 | 000,361,984 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\html.iec
[2013/03/15 15:40:37 | 000,281,600 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\dxtrans.dll
[2013/03/15 15:40:37 | 000,235,008 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\url.dll
[2013/03/15 15:40:37 | 000,232,960 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\url.dll
[2013/03/15 15:40:37 | 000,226,304 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\elshyph.dll
[2013/03/15 15:40:37 | 000,216,064 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\msls31.dll
[2013/03/15 15:40:37 | 000,197,120 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\msrating.dll
[2013/03/15 15:40:37 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\elshyph.dll
[2013/03/15 15:40:37 | 000,173,568 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ieUnatt.exe
[2013/03/15 15:40:37 | 000,167,424 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\iexpress.exe
[2013/03/15 15:40:37 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\msrating.dll
[2013/03/15 15:40:37 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\iexpress.exe
[2013/03/15 15:40:37 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\occache.dll
[2013/03/15 15:40:37 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\wextract.exe
[2013/03/15 15:40:37 | 000,138,752 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\wextract.exe
[2013/03/15 15:40:37 | 000,137,216 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\ieUnatt.exe
[2013/03/15 15:40:37 | 000,136,704 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\iesysprep.dll
[2013/03/15 15:40:37 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\iepeers.dll
[2013/03/15 15:40:37 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\IEAdvpack.dll
[2013/03/15 15:40:37 | 000,125,440 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\occache.dll
[2013/03/15 15:40:37 | 000,117,248 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\iepeers.dll
[2013/03/15 15:40:37 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\IEAdvpack.dll
[2013/03/15 15:40:37 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\iesysprep.dll
[2013/03/15 15:40:37 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\inseng.dll
[2013/03/15 15:40:37 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\mshtmled.dll
[2013/03/15 15:40:37 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\SetIEInstalledDate.exe
[2013/03/15 15:40:37 | 000,089,600 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\RegisterIEPKEYs.exe
[2013/03/15 15:40:37 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\inseng.dll
[2013/03/15 15:40:37 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\icardie.dll
[2013/03/15 15:40:37 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\mshtmled.dll
[2013/03/15 15:40:37 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\tdc.ocx
[2013/03/15 15:40:37 | 000,073,728 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\SetIEInstalledDate.exe
[2013/03/15 15:40:37 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\RegisterIEPKEYs.exe
[2013/03/15 15:40:37 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\icardie.dll
[2013/03/15 15:40:37 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\iesetup.dll
[2013/03/15 15:40:37 | 000,062,976 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\pngfilt.dll
[2013/03/15 15:40:37 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\tdc.ocx
[2013/03/15 15:40:37 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\iesetup.dll
[2013/03/15 15:40:37 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\pngfilt.dll
[2013/03/15 15:40:37 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ie4uinit.exe
[2013/03/15 15:40:37 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\imgutil.dll
[2013/03/15 15:40:37 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\mshtmler.dll
[2013/03/15 15:40:37 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\mshtmler.dll
[2013/03/15 15:40:37 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\iernonce.dll
[2013/03/15 15:40:37 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\iernonce.dll
[2013/03/15 15:40:37 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\licmgr10.dll
[2013/03/15 15:40:37 | 000,025,185 | ---- | M] () -- C:\windows\SysWow64\ieuinit.inf
[2013/03/15 15:40:37 | 000,025,185 | ---- | M] () -- C:\windows\SysNative\ieuinit.inf
[2013/03/15 15:40:37 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\licmgr10.dll
[2013/03/15 15:40:37 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\mshta.exe
[2013/03/15 15:40:37 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\msfeedssync.exe
[2013/03/15 15:40:37 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\msfeedssync.exe
[2013/03/15 15:32:34 | 000,002,533 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2013/03/15 07:33:36 | 000,000,374 | ---- | M] () -- C:\windows\SysNative\drivers\etc\hosts.ics
[2013/03/14 16:06:10 | 000,003,774 | ---- | M] () -- C:\windows\wtran32.INI
[2013/03/14 16:06:09 | 000,000,000 | ---- | M] () -- C:\windows\XXLGSC
[2013/03/14 12:51:43 | 000,002,143 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/03/13 16:09:43 | 000,693,976 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerApp.exe
[2013/03/13 16:09:43 | 000,073,432 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/03/07 00:33:21 | 001,025,808 | ---- | M] (AVAST Software) -- C:\windows\SysNative\drivers\aswSnx.sys
[2013/03/07 00:33:21 | 000,377,920 | ---- | M] (AVAST Software) -- C:\windows\SysNative\drivers\aswSP.sys
[2013/03/07 00:33:21 | 000,178,624 | ---- | M] () -- C:\windows\SysNative\drivers\aswVmm.sys
[2013/03/07 00:33:21 | 000,070,992 | ---- | M] (AVAST Software) -- C:\windows\SysNative\drivers\aswRdr2.sys
[2013/03/07 00:33:21 | 000,068,920 | ---- | M] (AVAST Software) -- C:\windows\SysNative\drivers\aswTdi.sys
[2013/03/07 00:33:21 | 000,065,336 | ---- | M] () -- C:\windows\SysNative\drivers\aswRvrt.sys
[2013/03/07 00:33:20 | 000,080,816 | ---- | M] (AVAST Software) -- C:\windows\SysNative\drivers\aswMonFlt.sys
[2013/03/07 00:33:20 | 000,033,400 | ---- | M] (AVAST Software) -- C:\windows\SysNative\drivers\aswFsBlk.sys
[2013/03/07 00:32:51 | 000,041,664 | ---- | M] (AVAST Software) -- C:\windows\avastSS.scr
[2013/03/07 00:32:22 | 000,287,840 | ---- | M] (AVAST Software) -- C:\windows\SysNative\aswBoot.exe
[2013/03/03 10:08:12 | 000,610,632 | ---- | M] () -- C:\windows\SysNative\FNTCACHE.DAT
[1 C:\windows\SysWow64\*.tmp files -> C:\windows\SysWow64\*.tmp -> ]
[1 C:\Users\nexter\Desktop\*.tmp files -> C:\Users\nexter\Desktop\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/03/27 15:01:33 | 000,139,264 | ---- | C] () -- C:\Users\nexter\Desktop\SystemLook.exe
[2013/03/27 10:26:39 | 000,001,119 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2013/03/27 10:26:39 | 000,001,107 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2013/03/27 10:19:18 | 025,518,683 | ---- | C] () -- C:\Users\nexter\Documents\Firefox 19.0.2 (sk) - 2013-03-27.pcv
[2013/03/27 10:17:33 | 000,000,987 | ---- | C] () -- C:\Users\Public\Desktop\MozBackup.lnk
[2013/03/26 17:02:09 | 001,079,796 | ---- | C] () -- C:\acadminidump.dmp
[2013/03/23 16:43:48 | 000,001,069 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013/03/23 14:58:36 | 000,781,383 | ---- | C] () -- C:\Users\nexter\Desktop\RSIT.exe
[2013/03/23 14:13:55 | 000,106,712 | ---- | C] () -- C:\Users\nexter\Desktop\estet.jpg
[2013/03/23 13:08:56 | 000,000,512 | ---- | C] () -- C:\windows\tasks\SUPERAntiSpyware Scheduled Task a4fe0e06-17e0-4b9d-a39d-87e17e2a17e9.job
[2013/03/23 13:08:49 | 000,000,512 | ---- | C] () -- C:\windows\tasks\SUPERAntiSpyware Scheduled Task c388c850-fec6-47d6-87ec-607c3d4deb39.job
[2013/03/23 13:08:07 | 000,001,973 | ---- | C] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2013/03/22 22:39:16 | 000,256,000 | ---- | C] () -- C:\windows\PEV.exe
[2013/03/22 22:39:16 | 000,208,896 | ---- | C] () -- C:\windows\MBR.exe
[2013/03/22 22:39:16 | 000,098,816 | ---- | C] () -- C:\windows\sed.exe
[2013/03/22 22:39:16 | 000,080,412 | ---- | C] () -- C:\windows\grep.exe
[2013/03/22 22:39:16 | 000,068,096 | ---- | C] () -- C:\windows\zip.exe
[2013/03/22 22:14:15 | 000,609,993 | ---- | C] () -- C:\Users\nexter\Desktop\adwcleaner.exe
[2013/03/22 17:19:54 | 000,178,624 | ---- | C] () -- C:\windows\SysNative\drivers\aswVmm.sys
[2013/03/22 17:19:52 | 000,065,336 | ---- | C] () -- C:\windows\SysNative\drivers\aswRvrt.sys
[2013/03/15 15:40:37 | 000,025,185 | ---- | C] () -- C:\windows\SysWow64\ieuinit.inf
[2013/03/15 15:40:37 | 000,025,185 | ---- | C] () -- C:\windows\SysNative\ieuinit.inf
[2013/03/15 15:32:34 | 000,002,533 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2013/02/28 20:32:39 | 000,000,344 | ---- | C] () -- C:\Users\nexter\Desktop\eDANE – aplikácia sekcie daňovej FR SR pre podávanie daňových dokumentov .appref-ms
[2013/02/24 17:30:56 | 000,000,063 | ---- | C] () -- C:\windows\capture.ini
[2013/02/24 15:08:16 | 000,000,208 | ---- | C] () -- C:\Users\nexter\AppData\Local\SRDownloader.err
[2013/02/24 15:07:24 | 000,001,056 | ---- | C] () -- C:\Users\nexter\AppData\Local\SRDownloader.nast
[2012/09/26 19:57:14 | 000,974,848 | ---- | C] () -- C:\windows\SysWow64\cis-2.4.dll
[2012/09/26 19:57:14 | 000,081,920 | ---- | C] () -- C:\windows\SysWow64\issacapi_bs-2.3.dll
[2012/09/26 19:57:14 | 000,065,536 | ---- | C] () -- C:\windows\SysWow64\issacapi_pe-2.3.dll
[2012/09/26 19:57:14 | 000,057,344 | ---- | C] () -- C:\windows\SysWow64\issacapi_se-2.3.dll
[2012/07/04 06:34:16 | 000,204,952 | ---- | C] () -- C:\windows\SysWow64\ativvsvl.dat
[2012/07/04 06:34:16 | 000,157,144 | ---- | C] () -- C:\windows\SysWow64\ativvsva.dat
[2012/04/18 19:39:10 | 000,028,672 | ---- | C] () -- C:\windows\SysWow64\kdbsdk32.dll
[2011/10/28 18:13:11 | 000,643,072 | ---- | C] ( ) -- C:\windows\SysWow64\lxecpmui.dll
[2011/10/28 18:13:11 | 000,364,544 | ---- | C] ( ) -- C:\windows\SysWow64\lxecinpa.dll
[2011/10/28 18:13:11 | 000,344,064 | ---- | C] () -- C:\windows\SysWow64\lxeccomx.dll
[2011/10/28 18:13:11 | 000,344,064 | ---- | C] ( ) -- C:\windows\SysWow64\lxeciesc.dll
[2011/10/28 18:13:11 | 000,106,496 | ---- | C] () -- C:\windows\SysWow64\lxecinsr.dll
[2011/10/28 18:13:11 | 000,057,344 | ---- | C] () -- C:\windows\SysWow64\lxecjswr.dll
[2011/10/28 18:13:11 | 000,036,864 | ---- | C] () -- C:\windows\SysWow64\lxeccur.dll
[2011/10/28 18:13:10 | 001,048,576 | ---- | C] ( ) -- C:\windows\SysWow64\lxecserv.dll
[2011/10/28 18:13:10 | 000,847,872 | ---- | C] ( ) -- C:\windows\SysWow64\lxecusb1.dll
[2011/10/28 18:13:10 | 000,323,584 | ---- | C] () -- C:\windows\SysWow64\lxecins.dll
[2011/10/28 18:13:10 | 000,262,144 | ---- | C] () -- C:\windows\SysWow64\lxecinsb.dll
[2011/10/28 18:13:10 | 000,253,952 | ---- | C] () -- C:\windows\SysWow64\lxeccu.dll
[2011/10/28 18:13:10 | 000,090,112 | ---- | C] () -- C:\windows\SysWow64\lxeccub.dll
[2011/10/28 18:13:09 | 000,802,816 | ---- | C] ( ) -- C:\windows\SysWow64\lxeccomc.dll
[2011/10/28 18:13:09 | 000,688,128 | ---- | C] ( ) -- C:\windows\SysWow64\lxechbn3.dll
[2011/10/28 18:13:09 | 000,598,696 | ---- | C] ( ) -- C:\windows\SysWow64\lxeccoms.exe
[2011/10/28 18:13:09 | 000,577,536 | ---- | C] ( ) -- C:\windows\SysWow64\lxeclmpm.dll
[2011/10/28 18:13:09 | 000,372,736 | ---- | C] ( ) -- C:\windows\SysWow64\lxeccomm.dll
[2011/10/28 18:13:09 | 000,324,264 | ---- | C] ( ) -- C:\windows\SysWow64\lxecih.exe
[2011/10/28 18:13:08 | 000,373,416 | ---- | C] ( ) -- C:\windows\SysWow64\lxeccfg.exe
[2011/10/21 07:44:10 | 000,000,193 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
[2011/09/26 11:49:14 | 000,004,096 | -H-- | C] () -- C:\Users\nexter\AppData\Local\keyfile3.drm
[2011/09/12 23:06:16 | 000,003,917 | ---- | C] () -- C:\windows\SysWow64\atipblag.dat
[2011/07/04 14:53:39 | 000,007,168 | ---- | C] () -- C:\windows\SysWow64\drivers\StarOpen.sys
[2011/06/28 07:33:02 | 000,213,644 | ---- | C] () -- C:\windows\SysWow64\mlfcache.dat
[2011/06/14 15:33:37 | 000,036,363 | ---- | C] () -- C:\windows\CSTBox.INI
[2011/05/16 13:35:03 | 000,003,774 | ---- | C] () -- C:\windows\wtran32.INI
[2011/05/02 06:37:23 | 000,299,008 | ---- | C] () -- C:\windows\SysWow64\LXECsm.dll
[2011/05/02 06:37:23 | 000,024,064 | ---- | C] () -- C:\windows\SysWow64\LXECsmr.dll
[2011/04/26 08:24:45 | 000,770,442 | ---- | C] () -- C:\windows\SysWow64\PerfStringBackup.INI
[2011/04/26 07:51:46 | 000,003,392 | ---- | C] () -- C:\windows\wdict32.INI
[2011/04/23 15:03:35 | 000,007,642 | ---- | C] () -- C:\Users\nexter\AppData\Local\Resmon.ResmonCfg
[2011/04/22 19:05:43 | 000,000,056 | ---- | C] () -- C:\windows\SysWow64\ezsidmv.dat
[2011/04/22 18:51:33 | 000,000,000 | ---- | C] () -- C:\windows\ativpsrm.bin

========== ZeroAccess Check ==========

[2009/07/14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2011/06/27 12:05:35 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\Auslogics
[2013/02/16 16:43:32 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\Autodesk
[2012/12/22 14:32:46 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\avidemux
[2011/07/04 14:53:47 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\Canneverbe Limited
[2011/07/27 12:03:22 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\Canon
[2013/03/25 18:13:01 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\DAEMON Tools Lite
[2011/04/22 10:01:51 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\DigitalPersona
[2012/11/01 17:21:16 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\DVDVideoSoft
[2013/03/21 08:30:06 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\FileOpen
[2011/04/26 15:28:51 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\Foxit Software
[2011/07/04 13:52:28 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\GHISLER
[2012/07/24 19:36:52 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\HTC
[2012/07/24 19:16:38 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\HTC.388BC06ACDAB6261375BCE37FBA2E023C0D7EE34.1
[2012/10/31 17:38:46 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\Infineon
[2011/10/27 13:22:36 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\IObit
[2012/09/27 17:20:21 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\MAGIX
[2011/11/20 17:20:09 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\Mobile Atlas Creator
[2012/06/07 19:32:40 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\mojosoft
[2012/07/10 11:29:30 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\MyPhoneExplorer
[2012/03/22 20:14:15 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\Outlook
[2013/01/17 09:45:34 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\PDF Architect
[2012/04/16 15:48:02 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\PhotoFiltre
[2012/08/22 12:05:37 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\PhotoFiltre Studio X
[2012/12/23 18:10:21 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\Publish Providers
[2013/03/23 15:08:29 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\QuickScan
[2012/10/17 19:17:33 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\Samsung
[2012/06/15 06:16:07 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\Soluto
[2012/12/23 18:10:15 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\Sony
[2012/02/21 20:51:02 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\TeamViewer
[2013/03/23 10:39:23 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\uTorrent
[2012/06/25 13:18:42 | 000,000,000 | ---D | M] -- C:\Users\nexter\AppData\Roaming\Xilisoft

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 145 bytes -> C:\ProgramData\TEMP:07BF512B
@Alternate Data Stream - 136 bytes -> C:\ProgramData\TEMP:A1EDB939
@Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:587EB586

< End of report >


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 09.05.11
Prihlásený: 14.09.16
Príspevky: 618
Témy: 2 | 2
NapísalOffline : 27.03.2013 17:09 | pomoc s http://adf.ly/Kwky2

Znovu spusť OTL
Do spodného okna skenovanie/opravy (Custom Scans/Repairs) vlož nasledujúce
Kód:
:OTL
IE - HKU\S-1-5-21-2184412465-192472027-3838285202-1002\..\SearchScopes\{8A244612-A1F7-11E0-95C0-E71F4824019B}: "URL" = http://badoo.com/startpage/?source=bsb&q={searchTerms}
IE - HKU\S-1-5-21-2184412465-192472027-3838285202-1002\..\SearchScopes\{CAA28645-68E2-4C39-A762-904A77D81BD9}: "URL" = http://search.yahoo.com/search?fr=chr-g ... =827316&p={searchTerms}
IE - HKU\S-1-5-21-2184412465-192472027-3838285202-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{5C107638-26D5-4D6C-A04A-D9F6E9391E01}: "URL" = http://www.bing.com/search?q={searchTerms}&form=CMNTDF&pc=CMNTDF&src=IE-SearchBox
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{5C107638-26D5-4D6C-A04A-D9F6E9391E01}: "URL" = http://www.bing.com/search?q={searchTerms}&form=CMNTDF&pc=CMNTDF&src=IE-SearchBox
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-2184412465-192472027-3838285202-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-2184412465-192472027-3838285202-1002\..\SearchScopes,DefaultScope = {5C107638-26D5-4D6C-A04A-D9F6E9391E01}
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:19.0.2
FF - user.js - File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF64_11_6_602_180.dll File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O3 - HKLM\..\Toolbar: (no name) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (WebTranslator) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Program Files (x86)\PC Translator\webie.dll ()
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe (Hewlett-Packard Company)
O4 - HKU\S-1-5-21-2184412465-192472027-3838285202-1002..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O15 - HKLM\..Trusted Domains: //about.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //Exclude.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //FWEvent.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //LanguageSelection.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //Message.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //MyAgttryCmd.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //MyAgttryNag.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //MyNotification.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //NOCLessUpdate.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //quarantine.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //ScanNow.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //strings.vbs/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //Template.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //Update.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //VirFound.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: mcafeeasap.com ([betavscan] https in Trusted sites)
O15 - HKLM\..Trusted Domains: mcafeeasap.com ([vs] https in Trusted sites)
O15 - HKLM\..Trusted Domains: mcafeeasap.com ([www] https in Trusted sites)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
[1 C:\windows\SysWow64\*.tmp files -> C:\windows\SysWow64\*.tmp -> ]
[1 C:\Users\nexter\Desktop\*.tmp files -> C:\Users\nexter\Desktop\*.tmp -> ]
:files
C:\Windows\system32\*.tmp.dll /s
C:\Windows\system32\drivers\*.tmp.dll /s
C:\Windows\system32\dllcache\*.tmp.dll /s
C:\Windows\system32\SET*.tmp /s
C:\Windows\*.tmp /s
%ALLUSERSPROFILE%\Local Settings\temp\*.*
C:\Documents and Settings\Jakub\Local Settings\temp\*.*
C:\Documents and Settings\Jakub\Data aplikací\temp\*.*
C:\Documents and Settings\Jakub\Application Data\temp\*.*
C:\Documents and Settings\All Users\Data aplikací\temp\*.*
C:\Documents and Settings\All Users\Application Data\temp\*.*
C:\Windows\temp\*.*
%TMP%\*.*
%TEMP%\*.*
C:\Program Files (x86)\Spybot - Search & Destroy
C:\ProgramData\Spybot - Search & Destroy
C:\Users\nexter\Desktop\SystemLook.exe
C:\windows\tasks\SUPERAntiSpyware Scheduled Task c388c850-fec6-47d6-87ec-607c3d4deb39.job
C:\windows\tasks\Adobe Flash Player Updater.job
@C:\ProgramData\TEMP:07BF512B
@C:\ProgramData\TEMP:A1EDB939
@C:\ProgramData\TEMP:587EB586

:commands
[emptyjava]
[emptytemp]
[emptyflash]
[resethosts]
[purity]
[REBOOT]

Stlač tlačidlo Opraviť (RUN fix)
OTL vykoná prikazy zo scriptu reštartuje sa PC vyskoči log ten sem vlož .


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 18.11.09
Prihlásený: 29.11.16
Príspevky: 89
Témy: 17 | 17
Bydlisko: Ružomberok
Napísal autor témyOffline : 27.03.2013 20:44 | pomoc s http://adf.ly/Kwky2

Tu je log, akurat nie som si isty ci v togu co si poslal tu je JAKUB spravne:

C:\Documents and Settings\Jakub\Local Settings\temp\*.*
C:\Documents and Settings\Jakub\Data aplikací\temp\*.*
C:\Documents and Settings\Jakub\Application Data\temp\*.*

A tu je vypis logu:

All processes killed
========== OTL ==========
Registry key HKEY_USERS\S-1-5-21-2184412465-192472027-3838285202-1002\Software\Microsoft\Internet Explorer\SearchScopes\{8A244612-A1F7-11E0-95C0-E71F4824019B}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8A244612-A1F7-11E0-95C0-E71F4824019B}\ not found.
Registry key HKEY_USERS\S-1-5-21-2184412465-192472027-3838285202-1002\Software\Microsoft\Internet Explorer\SearchScopes\{CAA28645-68E2-4C39-A762-904A77D81BD9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAA28645-68E2-4C39-A762-904A77D81BD9}\ not found.
HKU\S-1-5-21-2184412465-192472027-3838285202-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable|dword:0 /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{5C107638-26D5-4D6C-A04A-D9F6E9391E01}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C107638-26D5-4D6C-A04A-D9F6E9391E01}\ not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{5C107638-26D5-4D6C-A04A-D9F6E9391E01}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C107638-26D5-4D6C-A04A-D9F6E9391E01}\ not found.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable|dword:0 /E : value set successfully!
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable|dword:0 /E : value set successfully!
HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
HKU\S-1-5-21-2184412465-192472027-3838285202-1002\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKEY_USERS\S-1-5-21-2184412465-192472027-3838285202-1002\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Prefs.js: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:19.0.2 removed from extensions.enabledAddons
64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@adobe.com/FlashPlayer\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
Use Chrome's Settings page to remove the default_search_provider items.
Use Chrome's Settings page to remove the default_search_provider items.
Use Chrome's Settings page to remove the default_search_provider items.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}\ deleted successfully.
C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{1017A80C-6F09-4548-A84D-EDD6AC9525F0} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1017A80C-6F09-4548-A84D-EDD6AC9525F0}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{47833539-D0C5-4125-9FA8-0819E2EAAC93} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{47833539-D0C5-4125-9FA8-0819E2EAAC93}\ not found.
File move failed. C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll scheduled to be moved on reboot.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AE7CD045-E861-484f-8273-0445EE161910}\ not found.
C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{BFC32E1D-EE75-4A48-BC60-104E11EE2431} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BFC32E1D-EE75-4A48-BC60-104E11EE2431}\ deleted successfully.
C:\Program Files (x86)\PC Translator\webie.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\QLBController deleted successfully.
C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe moved successfully.
Registry value HKEY_USERS\S-1-5-21-2184412465-192472027-3838285202-1002\Software\Microsoft\Windows\CurrentVersion\Run\\SUPERAntiSpyware deleted successfully.
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\//about.htm/\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\//Exclude.htm/\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\//FWEvent.htm/\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\//LanguageSelection.htm/\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\//Message.htm/\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\//MyAgttryCmd.htm/\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\//MyAgttryNag.htm/\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\//MyNotification.htm/\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\//NOCLessUpdate.htm/\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\//quarantine.htm/\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\//ScanNow.htm/\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\//strings.vbs/\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\//Template.htm/\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\//Update.htm/\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\//VirFound.htm/\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\mcafeeasap.com\betavscan\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\mcafeeasap.com\vs\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\mcafeeasap.com\www\ deleted successfully.
Starting removal of ActiveX control {7530BFB8-7293-4D34-9923-61A11451AFC5}
C:\Windows\Downloaded Program Files\OnlineScanner.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ not found.
C:\windows\SysWow64\lMMLDeleteUserData42107612FX.tmp deleted successfully.
C:\Users\nexter\Desktop\~WRL1018.tmp deleted successfully.
========== FILES ==========
File\Folder C:\Windows\system32\*.tmp.dll not found.
File\Folder C:\Windows\system32\drivers\*.tmp.dll not found.
File\Folder C:\Windows\system32\dllcache\*.tmp.dll not found.
File\Folder C:\Windows\system32\SET*.tmp not found.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2461.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2624.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP6037.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9E41.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPAF70.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPBBC0.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPCD0F.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPD8A2.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPDCF6.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPE14B.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPF07C.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP11ED.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP2BC4.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP33EB.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP6B45.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP7EC4.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP8288.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP8B7C.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP8B82.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP8B9B.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPA507.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPA9AE.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPB455.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPB681.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPC3DD.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPC883.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE291.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE56E.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPF9.tmp folder moved successfully.
C:\Windows\Installer\MSI1538.tmp moved successfully.
C:\Windows\Installer\MSI2C0E.tmp moved successfully.
C:\Windows\Installer\MSI4F9.tmp moved successfully.
C:\Windows\Installer\MSI5DD1.tmp moved successfully.
C:\Windows\Installer\MSI6B1.tmp moved successfully.
C:\Windows\Installer\MSI959B.tmp moved successfully.
C:\Windows\Installer\MSI95DB.tmp moved successfully.
C:\Windows\Installer\MSIB138.tmp moved successfully.
C:\Windows\Installer\MSIBE56.tmp moved successfully.
C:\Windows\Installer\MSIC26C.tmp moved successfully.
C:\Windows\Installer\MSIE64.tmp moved successfully.
C:\Windows\SoftwareDistribution\Download\2ea9831e17856e84683ddfa825ce04cb\BITEE98.tmp moved successfully.
C:\Windows\SoftwareDistribution\Download\5ce6e84d9f598e2c5ffe9f02ca9c3ea5\BITF05D.tmp moved successfully.
File/Folder C:\ProgramData\Local Settings\temp\*.* not found.
File\Folder C:\Documents and Settings\Jakub\Local Settings\temp\*.* not found.
File\Folder C:\Documents and Settings\Jakub\Data aplikací\temp\*.* not found.
File\Folder C:\Documents and Settings\Jakub\Application Data\temp\*.* not found.
File\Folder C:\Documents and Settings\All Users\Data aplikací\temp\*.* not found.
File\Folder C:\Documents and Settings\All Users\Application Data\temp\*.* not found.
C:\Windows\temp\ACLM_GeneratedProxy.cs moved successfully.
C:\Windows\temp\lpksetup-20130324-132744-0.log moved successfully.
C:\Windows\temp\lpksetup-20130325-071046-0.log moved successfully.
C:\Windows\temp\lpksetup-20130325-190423-0.log moved successfully.
C:\Windows\temp\lpksetup-20130326-204317-0.log moved successfully.
C:\Windows\temp\lpksetup-20130327-090735-0.log moved successfully.
C:\Windows\temp\MpCmdRun.log moved successfully.
C:\Windows\temp\MpSigStub.log moved successfully.
C:\Users\nexter\AppData\Local\Temp\AdobeARM.log moved successfully.
C:\Users\nexter\AppData\Local\Temp\alm.log moved successfully.
C:\Users\nexter\AppData\Local\Temp\amt.log moved successfully.
C:\Users\nexter\AppData\Local\Temp\Extract.exe moved successfully.
File move failed. C:\Users\nexter\AppData\Local\Temp\FXSAPIDebugLogFile.txt scheduled to be moved on reboot.
C:\Users\nexter\AppData\Local\Temp\HPHKS_VolumeHigh.ico moved successfully.
C:\Users\nexter\AppData\Local\Temp\HPHKS_VolumeLow.ico moved successfully.
C:\Users\nexter\AppData\Local\Temp\HPSAActionItems.xml moved successfully.
C:\Users\nexter\AppData\Local\Temp\IMG1278.tmp moved successfully.
C:\Users\nexter\AppData\Local\Temp\is2CC6.tmp moved successfully.
C:\Users\nexter\AppData\Local\Temp\Np-C4E0.tmp moved successfully.
C:\Users\nexter\AppData\Local\Temp\SP59346.exe moved successfully.
C:\Users\nexter\AppData\Local\Temp\swtag.log moved successfully.
C:\Users\nexter\AppData\Local\Temp\tmp_grafx.jpg moved successfully.
C:\Users\nexter\AppData\Local\Temp\Transmittal_SITE-M021_019.xls moved successfully.
C:\Users\nexter\AppData\Local\Temp\trk2BBF.tmp moved successfully.
C:\Users\nexter\AppData\Local\Temp\trk7A6A.tmp moved successfully.
C:\Users\nexter\AppData\Local\Temp\trk996E.tmp moved successfully.
C:\Users\nexter\AppData\Local\Temp\trkEAE8.tmp moved successfully.
C:\Users\nexter\AppData\Local\Temp\VolumeHigh.ico moved successfully.
C:\Users\nexter\AppData\Local\Temp\VolumeLow.ico moved successfully.
C:\Users\nexter\AppData\Local\Temp\WMIBios.inf moved successfully.
C:\Users\nexter\AppData\Local\Temp\wmplog00.sqm moved successfully.
C:\Users\nexter\AppData\Local\Temp\wmplog01.sqm moved successfully.
C:\Users\nexter\AppData\Local\Temp\~DF97170BAE9BCC4580.TMP moved successfully.
C:\Users\nexter\AppData\Local\Temp\~DFCD1817ECCF754BE7.TMP moved successfully.
File move failed. C:\Users\nexter\AppData\Local\Temp\FXSAPIDebugLogFile.txt scheduled to be moved on reboot.
C:\Program Files (x86)\Spybot - Search & Destroy\Help folder moved successfully.
C:\Program Files (x86)\Spybot - Search & Destroy folder moved successfully.
C:\ProgramData\Spybot - Search & Destroy\Recovery folder moved successfully.
C:\ProgramData\Spybot - Search & Destroy\Logs folder moved successfully.
C:\ProgramData\Spybot - Search & Destroy folder moved successfully.
C:\Users\nexter\Desktop\SystemLook.exe moved successfully.
C:\windows\tasks\SUPERAntiSpyware Scheduled Task c388c850-fec6-47d6-87ec-607c3d4deb39.job moved successfully.
C:\windows\tasks\Adobe Flash Player Updater.job moved successfully.
ADS C:\ProgramData\TEMP:07BF512B deleted successfully.
ADS C:\ProgramData\TEMP:A1EDB939 deleted successfully.
ADS C:\ProgramData\TEMP:587EB586 deleted successfully.
========== COMMANDS ==========

[EMPTYJAVA]

User: All Users

User: Default

User: Default User

User: nexter
->Java cache emptied: 0 bytes

User: Public

Total Java Files Cleaned = 0.00 mb


[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Flash cache emptied: 56466 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: nexter
->Temp folder emptied: 5416037 bytes
->Temporary Internet Files folder emptied: 1063413 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 292981691 bytes
->Google Chrome cache emptied: 358182416 bytes
->Apple Safari cache emptied: 0 bytes
->Flash cache emptied: 5183 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 81788189 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 732 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 95949 bytes
RecycleBin emptied: 105252 bytes

Total Files Cleaned = 705.00 mb


[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: nexter
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0.00 mb

C:\windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

OTL by OldTimer - Version 3.2.69.0 log created on 03272013_202540

Files\Folders moved on Reboot...
File\Folder C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll not found!
C:\Users\nexter\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\nexter\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
File move failed. C:\windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.
C:\windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...


Offline

Užívateľ
Užívateľ
Obrázok užívateľa

Registrovaný: 09.05.11
Prihlásený: 14.09.16
Príspevky: 618
Témy: 2 | 2
NapísalOffline : 27.03.2013 22:08 | pomoc s http://adf.ly/Kwky2

nastala nejaká zmena ?


 [ Príspevkov: 31 ] 1, 2


pomoc s http://adf.ly/Kwky2



Podobné témy

 Témy  Odpovede  Zobrazenia  Posledný príspevok 
V tomto fóre nie sú ďalšie neprečítané témy.

pomoc pomoc prosim nefunguje internet

v Ovládače

7

217

09.09.2017 20:37

Smith Wesson

V tomto fóre nie sú ďalšie neprečítané témy.

POMOC ???

v Delphi, Visual Basic

2

901

27.03.2008 14:32

Martinek6

V tomto fóre nie sú ďalšie neprečítané témy.

Pomoc

v Audio programy

4

678

05.02.2008 10:06

raikonen11

V tomto fóre nie sú ďalšie neprečítané témy.

Pomoc!

v Procesory

6

669

02.02.2008 18:27

Jaro

V tomto fóre nie sú ďalšie neprečítané témy.

pomoc

v nVidia grafické karty

1

637

02.02.2007 10:51

Harlequin

V tomto fóre nie sú ďalšie neprečítané témy.

Pomoc

v Operačné systémy Microsoft

3

410

29.12.2007 18:42

Dzimbo

V tomto fóre nie sú ďalšie neprečítané témy.

pomoc

v ATI/AMD grafické karty

3

466

04.03.2008 15:00

Mir

V tomto fóre nie sú ďalšie neprečítané témy.

Pomoc?

v HTML, XHTML, XML, CSS

1

94

09.08.2017 20:01

BX

V tomto fóre nie sú ďalšie neprečítané témy.

Pomoc

v Zvuk

2

560

24.11.2007 17:30

optyx

V tomto fóre nie sú ďalšie neprečítané témy.

pomoc

v PHP, ASP

2

436

02.02.2008 17:17

Punker661

V tomto fóre nie sú ďalšie neprečítané témy.

pomoc

v JavaScript, VBScript, Ajax

2

542

15.05.2009 20:15

firewall

V tomto fóre nie sú ďalšie neprečítané témy.

pomoc !

v Ovládače

1

647

18.08.2007 16:07

johny128

V tomto fóre nie sú ďalšie neprečítané témy.

Pomoc

v ATI/AMD grafické karty

3

555

02.01.2008 7:51

Daron

V tomto fóre nie sú ďalšie neprečítané témy.

pomoc

v Monitory, televízory a projektory

2

570

19.02.2008 13:40

patqo_he

V tomto fóre nie sú ďalšie neprečítané témy.

POMOC

[ Choď na stránku:Choď na stránku: 1, 2 ]

v Ostatné

30

1572

27.09.2009 20:01

workoholik16

V tomto fóre nie sú ďalšie neprečítané témy.

Pomoc

v Počítačové hry

2

207

13.06.2012 18:02

PepeTheDragon



© 2005 - 2017 PCforum, edited by JanoF