Dobry den,
Pri kazdom zapnuti AVG mi vykoukne okno s Detekciou virusu:
http://prntscr.com/13i1fx
Skousal sem ruzne navody jak ten virus smazat, no nic se mi nepodarilo.. Furt pise ze pristup zamitnuty... Skusal som ho vymazat aj cez nudzovi rezim ale nic nepomohlo... Zatim sem si zadne zmeni v PC nevsimnul, no internet furt pada atd... Takze to bude asi tym.....
RSIT:
Logfile of random's system information tool 1.09 (written by random/random)
Run by GAMELASTER at 2013-05-05 09:10:07
Microsoft Windows 8 Pro
System drive C: has 24 GB (31%) free of 76 GB
Total RAM: 3767 MB (58% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:10:15, on 5.5.2013
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16384)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\3.4.0.50\LightShot.exe
C:\Program Files (x86)\Clownfish\Clownfish.exe
C:\Users\GAMELASTER\AppData\Roaming\uTorrent\uTorrent.exe
C:\Program Files (x86)\Winamp\winampa.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\AVG\AVG2013\avgui.exe
C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\NetSvcHelp.exe
C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\NetiCtrlTray.exe
C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
C:\Program Files (x86)\Winamp\winamp.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_169.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_169.exe
C:\Program Files\trend micro\GAMELASTER.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - E:\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Microsoft Web Test Recorder 10.0 Helper - {876d9f09-c6d6-4324-a2cc-04dd9a4de12f} - E:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Microsoft Web Test Recorder 10.0 Helper - {DDA57003-0068-4ed2-9D32-4D1EC707D94D} - C:\Program Files (x86)\Microsoft Visual Studio 10.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll
O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - E:\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [LightShot] C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\LightShot.exe Flags: uninsdeletevalue
O4 - HKCU\..\Run: [Clownfish] "C:\Program Files (x86)\Clownfish\Clownfish.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Users\GAMELASTER\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - Global Startup: ZyXEL G-202 Wireless Adapter Utility.lnk = ?
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
O23 - Service: AsusFanControlService - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsusFanControlService\1.01.06\AsusFanControlService.exe
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @oem4.inf,%ViaKaraokeSrv.SvcDesc%;VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9698 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
C:\PROGRA~2\AVG\AVG2013\avgrsa.exe /boot
C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe /pipeName=64161437-e087-4957-8845-3c3ea6b8923c /coreSdkOptions=4382 /logConfFile="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2013\temp\a5294026-9ff8-4e24-81a0-960d6d831c1b-184-oopp.tmp" /loggerName=AVG.RS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2013\" /registryPath="SYSTEM\CurrentControlSet\Services\Avg\Avg2013" /tempPath="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2013\temp\"
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe"
"C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe"
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe"
"C:\Program Files (x86)\ASUS\AsusFanControlService\1.01.06\AsusFanControlService.exe"
"C:\Program Files (x86)\AVG\AVG2013\avgfws.exe"
"C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe"
"C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork
dashost.exe {232ff1d5-ec7f-4a3a-b422039e1b41c0e9}
"C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe" -sSQLEXPRESS
"C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe"
"C:\Program Files (x86)\AVG\AVG2013\avgemca.exe"
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\system32\viakaraokesrv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-c374631c-beb3-41da-952f-c920d9cf2987 -SystemEventPortName:HostProcess-2b0d0d8f-42b2-40bc-a9da-570755f4b25a -IoCancelEventPortName:HostProcess-5c2e682e-5589-4842-bf78-31e2cfffdeeb -NonStateChangingEventPortName:HostProcess-3581643f-c992-4558-84ad-559b28237fd0 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:cb53d338-a760-43d0-a868-fb26f6d48146 -DeviceGroupId:WudfDefaultDevicePool
taskhostex.exe
"C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe" -open
"C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe" -onlytray
C:\Windows\Explorer.EXE
C:\Windows\system32\msiexec.exe /V
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\3.4.0.50\LightShot.exe" Flags: uninsdeletevalue
"C:\Program Files (x86)\Clownfish\Clownfish.exe"
"C:\Users\GAMELASTER\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
"C:\Program Files (x86)\Winamp\winampa.exe"
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY
"C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\NetSvcHelp.exe"
"C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\NetiCtrlTray.exe"
"C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe" -hide
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\WmiApSrv.exe
"C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe" -hide
"C:\Program Files (x86)\Winamp\winamp.exe"
taskhost.exe $(Arg0)
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=4112.5332800.397795908 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_169.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox" E7CF176E110C211B 4112 "\\.\pipe\gecko-crash-server-pipe.4112" plugin
"C:\Windows\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_11_7_700_169.exe" --proxy-stub-channel=Flash4228.6F511D90.30726 --host-broker-channel=Flash4228.6F511D90.15028 --host-pid=4228 --host-npapi-version=27 --plugin-path="C:\Windows\SYSTEM32\Macromed\Flash\NPSWF32_11_7_700_169.dll"
"C:\Windows\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_11_7_700_169.exe" --channel=1656.00BAF144.638617114 --proxy-stub-channel=Flash4228.6F511D90.30726 --plugin-path="C:\Windows\SYSTEM32\Macromed\Flash\NPSWF32_11_7_700_169.dll" --host-npapi-version=27 --type=renderer
"C:\Windows\system32\SearchFilterHost.exe" 0 556 560 568 65536 564
"C:\Users\GAMELASTER\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\update-S-1-5-21-3732101377-2479867636-1582925402-1001.job
C:\Windows\tasks\update-sys.job
=========Mozilla firefox=========
ProfilePath - C:\Users\GAMELASTER\AppData\Roaming\Mozilla\Firefox\Profiles\l190mp8f.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.7.700.169 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_169.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.17.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.7.700.169 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_169.dll
C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsIQTScriptablePlugin.xpt
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
npwachk.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Program Files (x86)\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{074C1DC5-9320-4A9A-947D-C042949C6216}]
ContributeBHO Class - E:\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll [2010-03-27 164312]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-04-12 461216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{876d9f09-c6d6-4324-a2cc-04dd9a4de12f}]
Microsoft Web Test Recorder 10.0 Helper - E:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [2012-07-26 74888]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-04-12 170912]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DDA57003-0068-4ed2-9D32-4D1EC707D94D}]
Microsoft Web Test Recorder 10.0 Helper - C:\Program Files (x86)\Microsoft Visual Studio 10.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [2010-03-19 61360]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - Contribute Toolbar - E:\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll [2010-03-27 164312]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-03-22 165872]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-03-22 407536]
"Persistence"=C:\Windows\system32\igfxpers.exe [2013-03-22 441840]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-02-28 18672232]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-03-14 3672640]
"LightShot"=C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\LightShot.exe [2013-02-21 226152]
"Clownfish"=C:\Program Files (x86)\Clownfish\Clownfish.exe [2013-03-27 1262328]
"uTorrent"=C:\Users\GAMELASTER\AppData\Roaming\uTorrent\uTorrent.exe [2013-05-03 802136]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"WinampAgent"=C:\Program Files (x86)\Winamp\winampa.exe [2012-06-28 74752]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2012-07-12 5256336]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
"AVG_UI"=C:\Program Files (x86)\AVG\AVG2013\avgui.exe [2013-03-13 4394032]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-10-11 59280]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2012-10-25 421888]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
ZyXEL G-202 Wireless Adapter Utility.lnk - C:\Program Files (x86)\ZyXEL G-202\ZyXEL G-202.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2013-03-19 434176]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Base]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicDisplay.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicRender.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot file system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BrokerInfrastructure]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CryptSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DcomLaunch]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DeviceInstall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dxgkrnl.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventLog]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\FsDepends.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HelpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\LSM]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Netlogon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PCI Configuration]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PlugPlay]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PNP Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Primary disk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcSs]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SCSI Class]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sermouse.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\System Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{36FC9E60-C465-11CF-8056-444553540000}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E965-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E969-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E977-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E980-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Base]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicDisplay.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicRender.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot file system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BrokerInfrastructure]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Browser]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CryptSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DcomLaunch]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DeviceInstall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dhcp]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DnsCache]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dxgkrnl.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EventLog]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\File system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\FsDepends.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HelpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ipnat.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanServer]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanWorkstation]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LmHosts]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LSM]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Messenger]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS Wrapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ndisuio]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOSGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBT]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetDDEGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Netlogon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetMan]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Network]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetworkProvider]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PCI Configuration]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PlugPlay]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP_TDI]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Primary disk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdsessmgr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcSs]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCSI Class]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sermouse.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SharedAccess]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SmartcardSimulator]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Streams Drivers]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\System Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Tcpip]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TDI]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VirtualSmartcardReader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wcmsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{36FC9E60-C465-11CF-8056-444553540000}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E965-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E967-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E969-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96A-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96F-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E972-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E973-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E974-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E975-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E977-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97D-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E980-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0
"EnableUIADesktopToggle"=0
"EnableCursorSuppression"=1
"ConsentPromptBehaviorUser"=3
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"disablecad"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktopChanges"=1
"NoActiveDesktop"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 3 months======
2013-05-05 09:10:07 ----D---- C:\rsit
2013-05-05 09:10:07 ----D---- C:\Program Files\trend micro
2013-05-04 10:31:36 ----A---- C:\Windows\ntbtlog.txt
2013-05-04 10:30:54 ----D---- C:\Windows\pss
2013-05-04 10:01:57 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Apple Computer
2013-05-03 19:07:32 ----D---- C:\Program Files (x86)\MagicISO
2013-05-03 18:43:55 ----D---- C:\Program Files (x86)\Resource Hacker
2013-05-03 16:56:20 ----D---- C:\ProgramData\Apple Computer
2013-05-03 16:56:20 ----D---- C:\Program Files (x86)\QuickTime
2013-05-03 16:55:12 ----D---- C:\ProgramData\Apple
2013-05-03 16:55:12 ----D---- C:\Program Files (x86)\Apple Software Update
2013-05-03 16:49:57 ----D---- C:\Users\GAMELASTER\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2013-05-03 16:48:45 ----D---- C:\Users\GAMELASTER\AppData\Roaming\PACE Anti-Piracy
2013-05-03 16:48:45 ----D---- C:\ProgramData\PACE Anti-Piracy
2013-05-02 18:30:45 ----A---- C:\Windows\system32\netcfg-669312.txt
2013-05-02 18:21:01 ----A---- C:\Windows\system32\netcfg-85140.txt
2013-05-02 18:20:44 ----A---- C:\Windows\system32\netcfg-68015.txt
2013-05-01 22:10:39 ----A---- C:\Windows\system32\netcfg-10079421.txt
2013-05-01 21:04:22 ----A---- C:\Windows\dxsdkuninst.exe
2013-05-01 20:15:23 ----A---- C:\Windows\system32\XAudioD2_7.dll
2013-05-01 20:15:23 ----A---- C:\Windows\system32\XAPOFXD1_5.dll
2013-05-01 20:15:23 ----A---- C:\Windows\system32\XactEngineD3_7.dll
2013-05-01 20:15:23 ----A---- C:\Windows\system32\XactEngineA3_7.dll
2013-05-01 20:15:23 ----A---- C:\Windows\system32\X3DAudioD1_7.dll
2013-05-01 20:15:23 ----A---- C:\Windows\system32\D3DX9d_43.dll
2013-05-01 20:15:23 ----A---- C:\Windows\system32\d3dx9d_33.dll
2013-05-01 20:15:22 ----A---- C:\Windows\system32\D3DX11d_43.dll
2013-05-01 20:15:22 ----A---- C:\Windows\system32\D3DX10d_43.dll
2013-05-01 20:15:22 ----A---- C:\Windows\system32\D3DCSXd_43.dll
2013-05-01 20:15:21 ----A---- C:\Windows\SYSWOW64\XAudioD2_7.dll
2013-05-01 20:15:21 ----A---- C:\Windows\SYSWOW64\XAPOFXD1_5.dll
2013-05-01 20:15:21 ----A---- C:\Windows\SYSWOW64\XactEngineD3_7.dll
2013-05-01 20:15:21 ----A---- C:\Windows\SYSWOW64\XactEngineA3_7.dll
2013-05-01 20:15:20 ----A---- C:\Windows\SYSWOW64\X3DAudioD1_7.dll
2013-05-01 20:15:20 ----A---- C:\Windows\SYSWOW64\D3dx9d_43.dll
2013-05-01 20:15:20 ----A---- C:\Windows\SYSWOW64\d3dx9d_33.dll
2013-05-01 20:15:18 ----A---- C:\Windows\SYSWOW64\D3DX11d_43.dll
2013-05-01 20:15:17 ----A---- C:\Windows\SYSWOW64\D3DX10d_43.dll
2013-05-01 20:15:17 ----A---- C:\Windows\SYSWOW64\D3DCSXd_43.dll
2013-05-01 08:46:14 ----A---- C:\Windows\system32\netcfg-50758140.txt
2013-05-01 07:56:53 ----A---- C:\Windows\system32\netcfg-47796750.txt
2013-04-30 22:39:26 ----A---- C:\Windows\system32\netcfg-14356265.txt
2013-04-30 18:43:35 ----A---- C:\Windows\system32\netcfg-204656.txt
2013-04-30 18:43:21 ----A---- C:\Windows\system32\netcfg-191078.txt
2013-04-29 22:07:55 ----A---- C:\Windows\system32\netcfg-22218156.txt
2013-04-29 22:07:05 ----A---- C:\Windows\system32\netcfg-22168296.txt
2013-04-29 22:07:04 ----A---- C:\Windows\system32\netcfg-22166921.txt
2013-04-28 22:30:33 ----A---- C:\Windows\system32\netcfg-18728609.txt
2013-04-28 17:19:47 ----A---- C:\Windows\system32\netcfg-82625.txt
2013-04-28 17:18:10 ----A---- C:\Windows\system32\netcfg-18060828.txt
2013-04-28 16:17:05 ----D---- C:\Program Files\Application Verifier
2013-04-28 16:17:05 ----D---- C:\Program Files (x86)\Application Verifier
2013-04-28 16:17:01 ----D---- C:\ProgramData\Windows App Certification Kit
2013-04-28 16:14:20 ----D---- C:\Program Files (x86)\Microsoft Web Tools
2013-04-28 16:14:12 ----D---- C:\Program Files\Microsoft
2013-04-28 16:13:56 ----D---- C:\Program Files\IIS Express
2013-04-28 16:13:56 ----D---- C:\Program Files (x86)\IIS Express
2013-04-28 16:12:49 ----D---- C:\Program Files (x86)\NuGet
2013-04-28 16:12:42 ----D---- C:\Program Files (x86)\Microsoft WCF Data Services
2013-04-28 16:11:32 ----D---- C:\Program Files (x86)\Windows Kits
2013-04-28 16:07:48 ----D---- C:\Program Files (x86)\Microsoft Help Viewer
2013-04-28 16:02:27 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2013-04-28 16:00:00 ----D---- C:\Program Files\Microsoft Visual Studio 11.0
2013-04-28 15:58:46 ----D---- C:\Windows\system32\appmgmt
2013-04-28 14:02:07 ----D---- C:\ProgramData\ALM
2013-04-28 13:49:04 ----D---- C:\Program Files (x86)\Adobe Media Player
2013-04-28 13:48:51 ----N---- C:\Windows\system32\drivers\PxHlpa64.sys
2013-04-28 13:48:51 ----N---- C:\Windows\system32\drivers\cdralw2k.sys
2013-04-28 13:48:51 ----N---- C:\Windows\system32\drivers\cdr4_xp.sys
2013-04-28 13:48:51 ----D---- C:\Program Files (x86)\My Company Name
2013-04-28 13:47:15 ----D---- C:\Program Files\Common Files\Adobe
2013-04-28 13:47:15 ----D---- C:\Program Files\Adobe
2013-04-28 13:46:28 ----D---- C:\Program Files (x86)\Adobe
2013-04-28 13:45:09 ----D---- C:\ProgramData\Adobe
2013-04-28 12:24:57 ----A---- C:\Windows\system32\netcfg-467640.txt
2013-04-28 12:24:55 ----A---- C:\Windows\system32\netcfg-466296.txt
2013-04-28 12:11:40 ----A---- C:\Windows\system32\netcfg-11300859.txt
2013-04-28 09:48:56 ----D---- C:\Users\GAMELASTER\AppData\Roaming\stetic
2013-04-28 09:48:19 ----D---- C:\Users\GAMELASTER\AppData\Roaming\MonoDevelop-Unity-2.8
2013-04-28 09:23:32 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Unity
2013-04-28 09:23:21 ----D---- C:\ProgramData\Unity
2013-04-27 21:12:17 ----D---- C:\Users\GAMELASTER\AppData\Roaming\uTorrent
2013-04-27 20:35:28 ----A---- C:\Windows\system32\netcfg-2394031.txt
2013-04-27 20:35:15 ----A---- C:\Windows\system32\netcfg-2380812.txt
2013-04-27 20:34:41 ----A---- C:\Windows\system32\netcfg-2347265.txt
2013-04-27 20:33:22 ----A---- C:\Windows\system32\netcfg-2268250.txt
2013-04-27 20:23:09 ----A---- C:\Windows\system32\netcfg-1655250.txt
2013-04-27 20:21:25 ----A---- C:\Windows\system32\netcfg-1551281.txt
2013-04-27 20:19:41 ----A---- C:\Windows\system32\netcfg-1447171.txt
2013-04-27 20:19:41 ----A---- C:\Windows\system32\netcfg-1447125.txt
2013-04-27 20:19:35 ----A---- C:\Windows\system32\netcfg-1440750.txt
2013-04-27 20:19:25 ----A---- C:\Windows\system32\netcfg-1431015.txt
2013-04-27 20:18:48 ----A---- C:\Windows\system32\netcfg-1393937.txt
2013-04-27 19:52:51 ----A---- C:\Windows\system32\netcfg-272353593.txt
2013-04-27 15:54:07 ----D---- C:\Program Files (x86)\sounds
2013-04-27 15:54:06 ----D---- C:\Program Files (x86)\Uninstall
2013-04-27 15:54:06 ----A---- C:\Program Files (x86)\uninstall.exe
2013-04-27 15:54:06 ----A---- C:\Program Files (x86)\lua5.1.dll
2013-04-27 13:54:40 ----A---- C:\Windows\system32\netcfg-250862703.txt
2013-04-27 13:30:49 ----A---- C:\Windows\system32\netcfg-249431468.txt
2013-04-27 12:01:38 ----A---- C:\Windows\system32\netcfg-244080296.txt
2013-04-26 22:28:13 ----A---- C:\Windows\system32\netcfg-195281484.txt
2013-04-26 19:10:42 ----D---- C:\Program Files (x86)\OpenAL
2013-04-26 19:10:42 ----A---- C:\Windows\SYSWOW64\wrap_oal.dll
2013-04-26 19:10:42 ----A---- C:\Windows\SYSWOW64\OpenAL32.dll
2013-04-26 19:10:42 ----A---- C:\Windows\system32\wrap_oal.dll
2013-04-26 19:10:42 ----A---- C:\Windows\system32\OpenAL32.dll
2013-04-26 19:07:25 ----D---- C:\Program Files (x86)\MonoGame
2013-04-26 19:01:59 ----D---- C:\Windows\SYSWOW64\xlive
2013-04-26 19:01:58 ----D---- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2013-04-26 18:18:26 ----A---- C:\Windows\system32\netcfg-180294812.txt
2013-04-26 14:45:28 ----A---- C:\Windows\system32\netcfg-167522890.txt
2013-04-26 14:32:21 ----A---- C:\Windows\system32\netcfg-166736515.txt
2013-04-25 21:54:54 ----A---- C:\Windows\system32\netcfg-106894687.txt
2013-04-25 20:00:32 ----D---- C:\Users\GAMELASTER\AppData\Roaming\TeamViewer
2013-04-25 19:40:19 ----D---- C:\Program Files (x86)\Microsoft XNA
2013-04-25 17:26:28 ----D---- C:\Program Files (x86)\Game_Maker8
2013-04-25 17:01:37 ----A---- C:\Windows\system32\netcfg-89298281.txt
2013-04-24 22:07:02 ----A---- C:\Windows\system32\netcfg-21228937.txt
2013-04-24 17:09:06 ----A---- C:\Windows\system32\netcfg-3353171.txt
2013-04-24 17:09:00 ----A---- C:\Windows\system32\netcfg-3347140.txt
2013-04-23 22:12:31 ----A---- C:\Windows\system32\netcfg-15051953.txt
2013-04-23 22:12:15 ----A---- C:\Windows\system32\netcfg-15036093.txt
2013-04-23 22:10:19 ----A---- C:\Windows\system32\netcfg-14920078.txt
2013-04-23 22:10:15 ----A---- C:\Windows\system32\netcfg-14916078.txt
2013-04-23 18:26:10 ----A---- C:\Windows\system32\netcfg-1470734.txt
2013-04-23 18:25:45 ----A---- C:\Windows\system32\netcfg-1446578.txt
2013-04-23 18:25:21 ----A---- C:\Windows\system32\netcfg-1421906.txt
2013-04-23 18:25:21 ----A---- C:\Windows\system32\netcfg-1421843.txt
2013-04-23 18:22:04 ----A---- C:\Windows\system32\netcfg-1224640.txt
2013-04-23 18:20:50 ----A---- C:\Windows\system32\netcfg-1151234.txt
2013-04-23 18:05:01 ----A---- C:\Windows\system32\netcfg-202640.txt
2013-04-23 18:04:59 ----A---- C:\Windows\system32\netcfg-200250.txt
2013-04-23 18:04:56 ----A---- C:\Windows\system32\netcfg-197234.txt
2013-04-23 18:04:53 ----A---- C:\Windows\system32\netcfg-194218.txt
2013-04-23 18:03:48 ----A---- C:\Windows\system32\netcfg-129234.txt
2013-04-23 18:00:23 ----A---- C:\Windows\system32\netcfg-869812.txt
2013-04-23 17:54:47 ----A---- C:\Windows\system32\netcfg-534156.txt
2013-04-23 17:54:44 ----A---- C:\Windows\system32\netcfg-531109.txt
2013-04-23 17:52:09 ----A---- C:\Windows\system32\netcfg-376140.txt
2013-04-23 17:52:06 ----A---- C:\Windows\system32\netcfg-372984.txt
2013-04-23 17:52:03 ----A---- C:\Windows\system32\netcfg-370281.txt
2013-04-23 17:48:48 ----A---- C:\Windows\system32\netcfg-174921.txt
2013-04-23 17:48:37 ----A---- C:\Windows\system32\netcfg-164500.txt
2013-04-23 17:47:25 ----A---- C:\Windows\system32\netcfg-92062.txt
2013-04-23 17:46:48 ----A---- C:\Windows\system32\netcfg-54890.txt
2013-04-23 17:45:19 ----D---- C:\Program Files (x86)\ZyXEL G-202
2013-04-23 17:45:19 ----A---- C:\Windows\system32\drivers\WlanGZG.sys
2013-04-23 17:41:33 ----A---- C:\Windows\system32\netcfg-442125.txt
2013-04-23 17:41:33 ----A---- C:\Windows\system32\netcfg-442046.txt
2013-04-23 17:41:33 ----A---- C:\Windows\system32\netcfg-441906.txt
2013-04-23 17:41:27 ----A---- C:\Windows\system32\netcfg-435875.txt
2013-04-23 17:40:46 ----A---- C:\Windows\system32\netcfg-395593.txt
2013-04-23 17:40:32 ----A---- C:\Windows\system32\netcfg-381578.txt
2013-04-23 17:39:24 ----A---- C:\Windows\system32\netcfg-312796.txt
2013-04-23 17:39:22 ----A---- C:\Windows\system32\netcfg-310734.txt
2013-04-23 17:38:21 ----A---- C:\Windows\system32\netcfg-250062.txt
2013-04-23 17:37:58 ----A---- C:\Windows\system32\netcfg-227468.txt
2013-04-23 17:36:45 ----A---- C:\Windows\system32\netcfg-153843.txt
2013-04-23 17:31:59 ----A---- C:\Windows\system32\netcfg-8512718.txt
2013-04-23 17:25:57 ----A---- C:\Windows\system32\netcfg-8151015.txt
2013-04-23 17:25:45 ----A---- C:\Windows\system32\netcfg-8139531.txt
2013-04-23 17:24:58 ----A---- C:\Windows\system32\netcfg-8091765.txt
2013-04-23 17:24:48 ----A---- C:\Windows\system32\netcfg-8082562.txt
2013-04-23 17:19:58 ----A---- C:\Windows\system32\netcfg-7791765.txt
2013-04-23 17:19:57 ----A---- C:\Windows\system32\netcfg-7791234.txt
2013-04-23 17:18:54 ----A---- C:\Windows\system32\netcfg-7727718.txt
2013-04-23 15:55:15 ----A---- C:\Windows\system32\netcfg-2708968.txt
2013-04-23 15:54:47 ----A---- C:\Windows\system32\netcfg-2680953.txt
2013-04-23 15:54:42 ----A---- C:\Windows\system32\netcfg-2676062.txt
2013-04-22 22:27:07 ----A---- C:\Windows\system32\netcfg-439078.txt
2013-04-22 22:22:14 ----A---- C:\Windows\system32\netcfg-145703.txt
2013-04-22 22:22:14 ----A---- C:\Windows\system32\netcfg-145656.txt
2013-04-22 22:22:09 ----A---- C:\Windows\system32\netcfg-140859.txt
2013-04-22 22:20:37 ----A---- C:\Windows\system32\netcfg-49062.txt
2013-04-22 22:19:32 ----A---- C:\Windows\system32\netcfg-1348015.txt
2013-04-22 22:19:26 ----A---- C:\Windows\system32\netcfg-1342578.txt
2013-04-22 22:19:23 ----A---- C:\Windows\system32\netcfg-1339437.txt
2013-04-22 22:18:38 ----D---- C:\Program Files\ASUS
2013-04-22 22:18:37 ----A---- C:\Windows\SYSWOW64\drivers\ASUSFILTER.sys
2013-04-22 22:17:51 ----A---- C:\Windows\system32\drivers\ndisrd.sys
2013-04-22 22:16:58 ----A---- C:\Windows\system32\netcfg-1194296.txt
2013-04-22 21:59:38 ----A---- C:\Windows\system32\netcfg-154125.txt
2013-04-22 21:58:23 ----A---- C:\Windows\system32\netcfg-79437.txt
2013-04-22 21:57:58 ----A---- C:\Windows\system32\netcfg-54484.txt
2013-04-22 17:48:03 ----A---- C:\Windows\PE_Rom.dll
2013-04-22 17:46:59 ----A---- C:\Windows\system32\netcfg-183062.txt
2013-04-22 17:46:45 ----A---- C:\Windows\system32\netcfg-168875.txt
2013-04-22 16:49:11 ----A---- C:\Windows\system32\netcfg-55796.txt
2013-04-21 19:55:57 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Microsoft Corporation
2013-04-21 18:44:06 ----A---- C:\Windows\system32\netcfg-66937.txt
2013-04-21 18:43:52 ----A---- C:\Windows\system32\netcfg-53515.txt
2013-04-21 09:32:12 ----A---- C:\Windows\system32\netcfg-45937.txt
2013-04-21 09:27:27 ----A---- C:\Windows\system32\netcfg-593421.txt
2013-04-21 09:18:20 ----A---- C:\Windows\system32\netcfg-46546.txt
2013-04-21 09:17:06 ----A---- C:\Windows\system32\netcfg-657234.txt
2013-04-20 22:57:35 ----A---- C:\Windows\system32\netcfg-9955828.txt
2013-04-20 15:04:45 ----D---- C:\Program Files\Paint.NET
2013-04-20 12:12:49 ----A---- C:\Windows\system32\netcfg-12240921.txt
2013-04-20 10:23:20 ----A---- C:\Windows\system32\netcfg-5677125.txt
2013-04-19 22:20:51 ----A---- C:\Windows\system32\netcfg-7120890.txt
2013-04-19 20:23:39 ----A---- C:\Windows\system32\netcfg-89500.txt
2013-04-19 20:23:19 ----A---- C:\Windows\system32\netcfg-69609.txt
2013-04-19 20:21:39 ----A---- C:\Windows\SYSWOW64\ZDCN50.dll
2013-04-19 20:21:28 ----A---- C:\Windows\system32\netcfg-328500.txt
2013-04-19 20:21:28 ----A---- C:\Windows\system32\netcfg-327875.txt
2013-04-19 20:15:25 ----A---- C:\Windows\system32\netcfg-61843.txt
2013-04-19 20:13:48 ----A---- C:\Windows\system32\ZDCN50.dll
2013-04-19 20:13:22 ----A---- C:\Windows\system32\drivers\WlanGZ64.sys
2013-04-19 20:12:53 ----A---- C:\Windows\system32\netcfg-773171.txt
2013-04-19 20:12:53 ----A---- C:\Windows\system32\netcfg-773093.txt
2013-04-19 20:12:47 ----A---- C:\Windows\system32\netcfg-766828.txt
2013-04-19 20:07:26 ----A---- C:\Windows\system32\netcfg-445875.txt
2013-04-19 20:07:17 ----A---- C:\Windows\system32\netcfg-436937.txt
2013-04-19 20:03:14 ----A---- C:\Windows\system32\netcfg-194531.txt
2013-04-19 20:03:12 ----A---- C:\Windows\system32\netcfg-192343.txt
2013-04-19 20:02:45 ----A---- C:\Windows\system32\netcfg-165093.txt
2013-04-19 16:00:33 ----A---- C:\Windows\system32\netcfg-8932875.txt
2013-04-19 13:36:05 ----A---- C:\Windows\system32\netcfg-264656.txt
2013-04-19 13:35:59 ----A---- C:\Windows\system32\netcfg-259406.txt
2013-04-19 13:35:32 ----A---- C:\Windows\system32\netcfg-232171.txt
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Virus Generic29.AJGE nejede smazat[+2 Posti, dlhy log]
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
GAMELASTER
- Návštěvník
- Příspěvky: 107
- Registrován: 13 led 2012 16:53
Virus Generic29.AJGE nejede smazat[+2 Posti, dlhy log]
Naposledy upravil(a) GAMELASTER dne 05 kvě 2013 08:26, celkem upraveno 1 x.
-
GAMELASTER
- Návštěvník
- Příspěvky: 107
- Registrován: 13 led 2012 16:53
Re: Virus Generic29.AJGE nejede smazat
2013-04-19 13:35:29 ----A---- C:\Windows\system32\netcfg-229140.txt
2013-04-19 13:35:17 ----A---- C:\Windows\system32\netcfg-216796.txt
2013-04-19 13:35:16 ----A---- C:\Windows\system32\netcfg-216390.txt
2013-04-19 13:34:13 ----A---- C:\Windows\system32\netcfg-152921.txt
2013-04-19 13:34:03 ----A---- C:\Windows\system32\netcfg-143593.txt
2013-04-19 13:33:22 ----A---- C:\Windows\system32\netcfg-101890.txt
2013-04-19 13:33:20 ----A---- C:\Windows\system32\netcfg-100562.txt
2013-04-19 13:32:46 ----A---- C:\Windows\system32\netcfg-66484.txt
2013-04-19 13:32:35 ----A---- C:\Windows\system32\netcfg-55015.txt
2013-04-19 12:59:44 ----A---- C:\Windows\system32\netcfg-103953.txt
2013-04-19 12:59:43 ----A---- C:\Windows\system32\netcfg-103062.txt
2013-04-19 12:59:16 ----A---- C:\Windows\system32\netcfg-75921.txt
2013-04-18 22:11:03 ----A---- C:\Windows\system32\netcfg-8469640.txt
2013-04-18 19:51:59 ----A---- C:\Windows\system32\netcfg-124843.txt
2013-04-18 19:51:58 ----A---- C:\Windows\system32\netcfg-124062.txt
2013-04-18 19:51:12 ----A---- C:\Windows\system32\netcfg-78531.txt
2013-04-18 19:50:58 ----A---- C:\Windows\system32\netcfg-63843.txt
2013-04-18 19:19:10 ----D---- C:\Program Files (x86)\Clownfish
2013-04-18 18:05:00 ----A---- C:\Windows\system32\netcfg-107640.txt
2013-04-18 17:12:47 ----A---- C:\Windows\system32\netcfg-3448875.txt
2013-04-18 16:17:20 ----A---- C:\Windows\system32\netcfg-121968.txt
2013-04-18 16:17:19 ----A---- C:\Windows\system32\netcfg-121234.txt
2013-04-18 16:16:35 ----A---- C:\Windows\system32\netcfg-77125.txt
2013-04-18 16:16:24 ----A---- C:\Windows\system32\netcfg-66015.txt
2013-04-18 16:15:50 ----D---- C:\Windows\Minidump
2013-04-18 14:55:15 ----A---- C:\Windows\system32\netcfg-135171.txt
2013-04-18 14:55:14 ----A---- C:\Windows\system32\netcfg-134203.txt
2013-04-18 14:54:40 ----A---- C:\Windows\system32\netcfg-100046.txt
2013-04-17 22:36:07 ----A---- C:\Windows\system32\netcfg-2709921.txt
2013-04-17 22:21:20 ----A---- C:\Windows\system32\netcfg-1823562.txt
2013-04-17 22:18:37 ----A---- C:\Windows\system32\netcfg-1660406.txt
2013-04-17 22:04:36 ----D---- C:\ProgramData\Stardock
2013-04-17 21:52:57 ----A---- C:\Windows\system32\netcfg-119968.txt
2013-04-17 21:52:56 ----A---- C:\Windows\system32\netcfg-119046.txt
2013-04-17 21:52:24 ----A---- C:\Windows\system32\netcfg-87140.txt
2013-04-17 21:51:53 ----A---- C:\Windows\system32\netcfg-56281.txt
2013-04-17 20:23:53 ----A---- C:\Windows\system32\netcfg-106069953.txt
2013-04-17 20:23:51 ----A---- C:\Windows\system32\netcfg-106068531.txt
2013-04-17 17:03:24 ----A---- C:\Windows\system32\netcfg-94041343.txt
2013-04-17 17:02:54 ----A---- C:\Windows\system32\netcfg-94010953.txt
2013-04-17 16:16:15 ----A---- C:\Windows\system32\netcfg-91212359.txt
2013-04-17 16:16:15 ----A---- C:\Windows\system32\netcfg-91212125.txt
2013-04-17 16:16:11 ----A---- C:\Windows\system32\netcfg-91208687.txt
2013-04-17 16:16:03 ----A---- C:\Windows\system32\netcfg-91200828.txt
2013-04-17 15:22:06 ----A---- C:\Windows\system32\netcfg-87963906.txt
2013-04-17 15:22:05 ----A---- C:\Windows\system32\netcfg-87962578.txt
2013-04-17 15:21:45 ----A---- C:\Windows\system32\netcfg-87942000.txt
2013-04-16 22:19:01 ----A---- C:\Windows\system32\netcfg-26583796.txt
2013-04-16 21:43:01 ----A---- C:\Windows\system32\netcfg-24423515.txt
2013-04-16 21:42:57 ----A---- C:\Windows\system32\netcfg-24419906.txt
2013-04-16 21:42:31 ----A---- C:\Windows\system32\netcfg-24394125.txt
2013-04-16 20:42:20 ----A---- C:\Windows\system32\netcfg-20789156.txt
2013-04-16 15:07:56 ----D---- C:\Program Files (x86)\GTASACenter
2013-04-16 14:57:29 ----A---- C:\Windows\system32\netcfg-98375.txt
2013-04-16 14:57:28 ----A---- C:\Windows\system32\netcfg-97640.txt
2013-04-16 14:56:57 ----A---- C:\Windows\system32\netcfg-66468.txt
2013-04-16 07:09:03 ----A---- C:\Windows\system32\netcfg-848031.txt
2013-04-16 06:57:11 ----A---- C:\Windows\system32\netcfg-136093.txt
2013-04-16 06:57:10 ----A---- C:\Windows\system32\netcfg-134750.txt
2013-04-16 06:56:08 ----A---- C:\Windows\system32\netcfg-73328.txt
2013-04-15 22:15:31 ----A---- C:\Windows\system32\netcfg-5507234.txt
2013-04-15 20:45:49 ----A---- C:\Windows\system32\netcfg-125625.txt
2013-04-15 20:45:47 ----A---- C:\Windows\system32\netcfg-122703.txt
2013-04-15 20:45:31 ----A---- C:\Windows\system32\netcfg-107125.txt
2013-04-15 20:45:31 ----A---- C:\Windows\system32\netcfg-107078.txt
2013-04-15 20:45:21 ----A---- C:\Windows\system32\netcfg-97359.txt
2013-04-15 20:41:35 ----A---- C:\Windows\system32\netcfg-580984.txt
2013-04-15 20:40:09 ----A---- C:\Windows\system32\netcfg-494843.txt
2013-04-15 20:40:05 ----A---- C:\Windows\system32\netcfg-491406.txt
2013-04-15 20:39:42 ----D---- C:\Users\GAMELASTER\AppData\Roaming\AVG2013
2013-04-15 20:36:51 ----A---- C:\Windows\system32\netcfg-296828.txt
2013-04-15 20:36:50 ----A---- C:\Windows\system32\netcfg-296406.txt
2013-04-15 20:36:35 ----D---- C:\Users\GAMELASTER\AppData\Roaming\TuneUp Software
2013-04-15 20:36:01 ----HD---- C:\$AVG
2013-04-15 20:36:01 ----D---- C:\ProgramData\AVG2013
2013-04-15 20:33:25 ----A---- C:\Windows\system32\netcfg-90906.txt
2013-04-15 20:33:24 ----A---- C:\Windows\system32\netcfg-90140.txt
2013-04-15 20:32:39 ----A---- C:\Windows\system32\netcfg-44812.txt
2013-04-15 20:31:15 ----A---- C:\Windows\system32\netcfg-13685968.txt
2013-04-15 20:31:05 ----A---- C:\Windows\system32\netcfg-13676187.txt
2013-04-15 20:31:05 ----A---- C:\Windows\system32\netcfg-13675953.txt
2013-04-15 20:16:45 ----A---- C:\Windows\system32\netcfg-12816453.txt
2013-04-15 20:14:54 ----D---- C:\Program Files (x86)\AVG
2013-04-15 20:01:45 ----D---- C:\Program Files (x86)\SystemRequirementsLab
2013-04-15 17:09:11 ----A---- C:\Windows\system32\netcfg-1561781.txt
2013-04-15 17:09:10 ----A---- C:\Windows\system32\netcfg-1561390.txt
2013-04-15 16:47:38 ----A---- C:\Windows\system32\netcfg-268796.txt
2013-04-15 16:47:36 ----A---- C:\Windows\system32\netcfg-266968.txt
2013-04-15 16:45:57 ----A---- C:\Windows\system32\netcfg-168390.txt
2013-04-15 16:43:40 ----A---- C:\Windows\system32\netcfg-31437.txt
2013-04-14 22:16:41 ----A---- C:\Windows\system32\netcfg-4503421.txt
2013-04-14 21:03:01 ----A---- C:\Windows\system32\netcfg-83484.txt
2013-04-14 21:03:01 ----A---- C:\Windows\system32\netcfg-83218.txt
2013-04-14 21:02:23 ----A---- C:\Windows\system32\netcfg-45015.txt
2013-04-14 21:02:13 ----A---- C:\Windows\system32\netcfg-35031.txt
2013-04-14 20:11:19 ----A---- C:\Windows\system32\netcfg-3861156.txt
2013-04-14 19:08:52 ----A---- C:\Windows\system32\netcfg-114203.txt
2013-04-14 19:08:52 ----A---- C:\Windows\system32\netcfg-113687.txt
2013-04-14 19:07:37 ----A---- C:\Windows\system32\netcfg-39531.txt
2013-04-14 19:06:00 ----A---- C:\Windows\system32\netcfg-14873234.txt
2013-04-14 19:05:30 ----D---- C:\ProgramData\Intel
2013-04-14 15:00:01 ----A---- C:\Windows\system32\netcfg-114000.txt
2013-04-14 15:00:00 ----A---- C:\Windows\system32\netcfg-113312.txt
2013-04-14 14:59:02 ----A---- C:\Windows\system32\netcfg-54843.txt
2013-04-14 14:53:58 ----A---- C:\Windows\system32\netcfg-20803609.txt
2013-04-14 14:18:08 ----D---- C:\Program Files (x86)\Microsoft Office
2013-04-14 14:18:06 ----D---- C:\ProgramData\Microsoft Help
2013-04-14 14:18:06 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 8
2013-04-14 14:17:50 ----D---- C:\Program Files\Microsoft Visual Studio 8
2013-04-14 14:10:09 ----A---- C:\Windows\system32\perfh01B.dat
2013-04-14 14:10:09 ----A---- C:\Windows\system32\perfc01B.dat
2013-04-14 14:05:38 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2013-04-14 14:05:38 ----A---- C:\Windows\SYSWOW64\PresentationNative_v0300.dll
2013-04-14 14:05:38 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-04-14 14:05:35 ----A---- C:\Windows\system32\TsWpfWrp.exe
2013-04-14 14:05:35 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2013-04-14 14:05:35 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-04-14 09:19:06 ----D---- C:\Users\GAMELASTER\AppData\Roaming\LolClient
2013-04-14 09:09:30 ----A---- C:\Windows\system32\netcfg-134890.txt
2013-04-14 09:09:29 ----A---- C:\Windows\system32\netcfg-134171.txt
2013-04-14 09:08:44 ----A---- C:\Windows\system32\netcfg-89031.txt
2013-04-14 07:09:14 ----A---- C:\Windows\system32\netcfg-38823859.txt
2013-04-14 02:54:25 ----A---- C:\Windows\system32\netcfg-23534734.txt
2013-04-14 02:48:22 ----A---- C:\Windows\system32\netcfg-23171781.txt
2013-04-13 23:30:35 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2013-04-13 23:30:35 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2013-04-13 23:30:34 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2013-04-13 23:26:56 ----D---- C:\Riot Games
2013-04-13 21:17:39 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Syncfusion
2013-04-13 21:05:19 ----A---- C:\Windows\system32\netcfg-2588953.txt
2013-04-13 21:00:43 ----A---- C:\Windows\system32\netcfg-2313640.txt
2013-04-13 20:59:57 ----A---- C:\Windows\system32\netcfg-2267484.txt
2013-04-13 20:58:31 ----A---- C:\Windows\system32\netcfg-2181437.txt
2013-04-13 20:58:26 ----A---- C:\Windows\system32\netcfg-2175781.txt
2013-04-13 20:32:46 ----A---- C:\Windows\system32\netcfg-636578.txt
2013-04-13 20:21:16 ----A---- C:\Windows\system32\netcfg-965125.txt
2013-04-13 20:08:19 ----A---- C:\Windows\system32\netcfg-188625.txt
2013-04-13 18:21:29 ----A---- C:\Windows\system32\netcfg-1527609.txt
2013-04-13 18:20:11 ----A---- C:\Windows\system32\netcfg-1449234.txt
2013-04-13 18:19:47 ----A---- C:\Windows\system32\netcfg-1424859.txt
2013-04-13 18:19:05 ----A---- C:\Windows\system32\netcfg-1382812.txt
2013-04-13 18:18:22 ----A---- C:\Windows\system32\netcfg-1340250.txt
2013-04-13 18:17:45 ----A---- C:\Windows\system32\netcfg-1303312.txt
2013-04-13 18:17:33 ----A---- C:\Windows\system32\netcfg-1291515.txt
2013-04-13 18:17:06 ----A---- C:\Windows\system32\netcfg-1263906.txt
2013-04-13 18:16:49 ----A---- C:\Windows\system32\netcfg-1247562.txt
2013-04-13 18:16:12 ----A---- C:\Windows\system32\netcfg-1210234.txt
2013-04-13 18:14:10 ----A---- C:\Windows\system32\netcfg-1088156.txt
2013-04-13 18:14:02 ----A---- C:\Windows\system32\netcfg-1079687.txt
2013-04-13 18:12:58 ----D---- C:\Program Files (x86)\PdaNet for Android
2013-04-13 18:12:58 ----A---- C:\Windows\system32\WinUSBCoInstaller.dll
2013-04-13 18:12:58 ----A---- C:\Windows\system32\WdfCoInstaller01007.dll
2013-04-13 18:12:58 ----A---- C:\Windows\system32\drivers\pneteth.sys
2013-04-13 17:54:46 ----A---- C:\Windows\system32\netcfg-633625.txt
2013-04-13 17:54:45 ----A---- C:\Windows\system32\ZDCNDIS6a64.sys
2013-04-13 17:54:44 ----A---- C:\Windows\SYSWOW64\ZDCNDIS6a64.sys
2013-04-13 17:54:44 ----A---- C:\Windows\SYSWOW64\ZDCndis5.sys
2013-04-13 17:44:59 ----A---- C:\Windows\system32\netcfg-45656.txt
2013-04-12 22:58:18 ----D---- C:\Windows\Panther
2013-04-12 22:35:19 ----A---- C:\Windows\system32\admintest.txt
2013-04-12 22:33:05 ----D---- C:\Users\GAMELASTER\AppData\Roaming\WinRAR
2013-04-12 22:33:01 ----D---- C:\Program Files\WinRAR
2013-04-12 22:23:02 ----D---- C:\Program Files (x86)\Intel
2013-04-12 22:23:00 ----D---- C:\Intel
2013-04-12 22:23:00 ----A---- C:\Windows\SYSWOW64\OpenCL.DLL
2013-04-12 22:23:00 ----A---- C:\Windows\system32\OpenCL.DLL
2013-04-12 22:22:16 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Macromedia
2013-04-12 22:18:11 ----D---- C:\Windows\SoftwareDistribution
2013-04-12 22:18:10 ----A---- C:\Windows\system32\netcfg-1018625.txt
2013-04-12 22:18:08 ----A---- C:\Windows\system32\netcfg-1016062.txt
2013-04-12 22:16:20 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Adobe
2013-04-12 22:15:49 ----D---- C:\ProgramData\PRICache
2013-04-12 22:15:42 ----SD---- C:\Users\GAMELASTER\AppData\Roaming\Microsoft
2013-04-12 22:15:42 ----D---- C:\Windows\CSC
2013-04-12 22:01:41 ----SHD---- C:\Recovery
2013-04-12 22:01:18 ----ASH---- C:\hiberfil.sys
2013-04-12 21:59:51 ----A---- C:\Windows\system32\netcfg-71265.txt
2013-04-12 21:59:45 ----A---- C:\Windows\system32\netcfg-65031.txt
2013-04-12 21:59:45 ----A---- C:\Windows\system32\netcfg-64843.txt
2013-04-12 21:59:44 ----A---- C:\Windows\system32\netcfg-64453.txt
2013-04-12 21:59:44 ----A---- C:\Windows\system32\netcfg-64031.txt
2013-04-12 21:59:44 ----A---- C:\Windows\system32\netcfg-63687.txt
2013-04-12 21:59:43 ----A---- C:\Windows\system32\netcfg-63500.txt
2013-04-12 21:59:43 ----A---- C:\Windows\system32\netcfg-63296.txt
2013-04-12 21:59:43 ----A---- C:\Windows\system32\netcfg-63109.txt
2013-04-12 21:59:43 ----A---- C:\Windows\system32\netcfg-62828.txt
2013-04-12 21:59:42 ----A---- C:\Windows\system32\netcfg-62125.txt
2013-04-12 21:59:34 ----D---- C:\Windows\Prefetch
2013-04-12 21:58:48 ----ASH---- C:\swapfile.sys
2013-04-12 21:58:48 ----ASH---- C:\pagefile.sys
2013-04-12 21:58:46 ----SHD---- C:\System Volume Information
2013-04-12 21:18:08 ----D---- C:\Program Files (x86)\Skillbrains
2013-04-12 21:01:55 ----D---- C:\ProgramData\Microsoft Visual Studio
2013-04-12 20:26:54 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2013-04-12 20:24:34 ----D---- C:\ProgramData\Package Cache
2013-04-12 20:20:24 ----D---- C:\Program Files (x86)\Syncfusion
2013-04-12 20:06:29 ----D---- C:\Users\GAMELASTER\AppData\Roaming\.minecraft
2013-04-12 20:06:25 ----D---- C:\ProgramData\Sun
2013-04-12 20:06:21 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2013-04-12 20:06:21 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-04-12 20:06:21 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2013-04-12 20:06:12 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-04-12 20:06:12 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-04-12 20:06:12 ----A---- C:\Windows\SYSWOW64\java.exe
2013-04-12 20:06:01 ----D---- C:\Program Files (x86)\Java
2013-04-12 20:04:41 ----A---- C:\Windows\SYSWOW64\perf-SQLAgent$SQLEXPRESS-sqlagtctr10.1.2531.0.dll
2013-04-12 20:04:41 ----A---- C:\Windows\system32\perf-SQLAgent$SQLEXPRESS-sqlagtctr10.1.2531.0.dll
2013-04-12 20:04:33 ----A---- C:\Windows\SYSWOW64\perf-MSSQL$SQLEXPRESS-sqlctr10.1.2531.0.dll
2013-04-12 20:04:33 ----A---- C:\Windows\system32\perf-MSSQL$SQLEXPRESS-sqlctr10.1.2531.0.dll
2013-04-12 20:03:59 ----D---- C:\Windows\system32\RsFx
2013-04-12 20:03:38 ----D---- C:\Program Files\Microsoft Visual Studio 9.0
2013-04-12 20:03:24 ----D---- C:\Program Files\Microsoft.NET
2013-04-12 20:00:04 ----D---- C:\Program Files\Microsoft SQL Server
2013-04-12 19:59:53 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2013-04-12 19:59:20 ----D---- C:\Program Files\Microsoft Sync Framework
2013-04-12 19:59:08 ----D---- C:\Program Files\Microsoft Synchronization Services
2013-04-12 19:59:08 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2013-04-12 19:58:57 ----D---- C:\Program Files (x86)\Microsoft Synchronization Services
2013-04-12 19:58:56 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2013-04-12 19:58:44 ----D---- C:\ProgramData\PreEmptive Solutions
2013-04-12 19:57:35 ----D---- C:\Program Files\MSBuild
2013-04-12 19:57:32 ----D---- C:\Program Files\Reference Assemblies
2013-04-12 19:56:46 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-04-12 19:55:25 ----D---- C:\Program Files (x86)\Microsoft ASP.NET
2013-04-12 19:55:22 ----D---- C:\Program Files\IIS
2013-04-12 19:55:21 ----D---- C:\Program Files (x86)\IIS
2013-04-12 19:49:37 ----D---- C:\Windows\SYSWOW64\1033
2013-04-12 19:49:08 ----D---- C:\Program Files (x86)\MSBuild
2013-04-12 19:49:08 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 10.0
2013-04-12 19:49:08 ----D---- C:\Program Files (x86)\Microsoft F#
2013-04-12 19:49:08 ----D---- C:\Program Files (x86)\HTML Help Workshop
2013-04-12 19:46:29 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 9.0
2013-04-12 19:46:06 ----D---- C:\Windows\system32\1033
2013-04-12 19:46:06 ----D---- C:\Windows\symbols
2013-04-12 19:46:05 ----D---- C:\Program Files\Microsoft Visual Studio 10.0
2013-04-12 19:46:05 ----D---- C:\Program Files\Microsoft Help Viewer
2013-04-12 19:46:05 ----D---- C:\Program Files (x86)\Reference Assemblies
2013-04-12 19:46:05 ----D---- C:\Program Files (x86)\Microsoft SDKs
2013-04-12 19:45:24 ----D---- C:\Windows\PCHEALTH
2013-04-12 18:50:17 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2013-04-12 18:50:13 ----D---- C:\Users\GAMELASTER\AppData\Roaming\DAEMON Tools Lite
2013-04-12 18:50:06 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2013-04-12 18:49:25 ----D---- C:\ProgramData\DAEMON Tools Lite
2013-04-12 18:34:24 ----A---- C:\Windows\system32\VtSrdAPO.dll
2013-04-12 18:34:24 ----A---- C:\Windows\system32\VIASysFx.dll
2013-04-12 18:34:24 ----A---- C:\Windows\system32\VIAPropPageExt.dll
2013-04-12 18:34:24 ----A---- C:\Windows\system32\ViaMicArrayPropPageExt.dll
2013-04-12 18:34:24 ----A---- C:\Windows\system32\ViaMicArrayAPO.dll
2013-04-12 18:34:24 ----A---- C:\Windows\system32\ViakaraokeSrv.exe
2013-04-12 18:34:24 ----A---- C:\Windows\system32\ViaKaraokePropPageExt.dll
2013-04-12 18:34:24 ----A---- C:\Windows\system32\ViaKaraokeApo.dll
2013-04-12 18:34:24 ----A---- C:\Windows\system32\PropPageExt.dll
2013-04-12 18:34:24 ----A---- C:\Windows\system32\nQPropPageExt.dll
2013-04-12 18:34:24 ----A---- C:\Windows\system32\nQAPO.dll
2013-04-12 18:34:24 ----A---- C:\Windows\system32\Dts2PropPageExt.dll
2013-04-12 18:34:24 ----A---- C:\Windows\system32\Dts2APO.dll
2013-04-12 18:34:24 ----A---- C:\Windows\system32\drivers\viahduaa.sys
2013-04-12 18:33:45 ----N---- C:\Windows\difxapi.dll
2013-04-12 18:33:44 ----D---- C:\Program Files (x86)\VIA
2013-04-12 18:29:06 ----A---- C:\Windows\system32\netcfg-4878265.txt
2013-04-12 18:29:06 ----A---- C:\Windows\system32\netcfg-4878156.txt
2013-04-12 18:29:05 ----A---- C:\Windows\system32\netcfg-4877296.txt
2013-04-12 18:28:20 ----RA---- C:\Windows\SYSWOW64\drivers\AsUpIO.sys
2013-04-12 18:28:13 ----A---- C:\Windows\SYSWOW64\drivers\UpdateHelper.dll
2013-04-12 18:28:07 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-04-12 18:27:33 ----D---- C:\ProgramData\ASUS
2013-04-12 18:27:21 ----N---- C:\Windows\SYSWOW64\AsIO.dll
2013-04-12 18:27:21 ----D---- C:\Program Files (x86)\ASUS
2013-04-12 18:27:21 ----A---- C:\Windows\SYSWOW64\drivers\AsIO.sys
2013-04-12 18:27:19 ----N---- C:\Windows\SYSWOW64\drivers\AsInsHelp64.sys
2013-04-12 18:27:19 ----N---- C:\Windows\SYSWOW64\drivers\AsInsHelp32.sys
2013-04-12 18:27:19 ----D---- C:\Windows\SYSWOW64\drivers\MFDLL
2013-04-12 18:25:48 ----A---- C:\Windows\Language_trs.ini
2013-04-12 18:25:47 ----A---- C:\Windows\SYSWOW64\drivers\ASUSHWIO.SYS
2013-04-12 18:25:47 ----A---- C:\Windows\Ascd_tmp.ini
2013-04-12 18:23:52 ----D---- C:\ProgramData\MTA San Andreas All
2013-04-12 18:23:52 ----D---- C:\Program Files (x86)\MTA San Andreas 1.3
2013-04-12 18:19:14 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Notepad++
2013-04-12 18:19:14 ----D---- C:\Program Files (x86)\Notepad++
2013-04-12 18:18:32 ----D---- C:\Program Files (x86)\WinSCP
2013-04-12 18:16:32 ----HD---- C:\ProgramData\Common Files
2013-04-12 18:16:32 ----D---- C:\ProgramData\MFAData
2013-04-12 18:16:07 ----D---- C:\Program Files (x86)\PuTTY
2013-04-12 18:09:06 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2013-04-12 18:09:06 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2013-04-12 18:09:06 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2013-04-12 18:09:06 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2013-04-12 18:09:06 ----A---- C:\Windows\system32\XAudio2_7.dll
2013-04-12 18:09:06 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2013-04-12 18:09:06 ----A---- C:\Windows\system32\xactengine3_7.dll
2013-04-12 18:09:06 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2013-04-12 18:09:05 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2013-04-12 18:09:05 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2013-04-12 18:09:05 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2013-04-12 18:09:05 ----A---- C:\Windows\system32\d3dx11_43.dll
2013-04-12 18:09:05 ----A---- C:\Windows\system32\d3dx10_43.dll
2013-04-12 18:09:05 ----A---- C:\Windows\system32\d3dcsx_43.dll
2013-04-12 18:09:04 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2013-04-12 18:09:04 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2013-04-12 18:09:04 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2013-04-12 18:09:04 ----A---- C:\Windows\system32\XAudio2_6.dll
2013-04-12 18:09:04 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2013-04-12 18:09:04 ----A---- C:\Windows\system32\D3DX9_43.dll
2013-04-12 18:09:03 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2013-04-12 18:09:03 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2013-04-12 18:09:03 ----A---- C:\Windows\system32\xactengine3_6.dll
2013-04-12 18:09:03 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2013-04-12 18:09:02 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2013-04-12 18:09:02 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2013-04-12 18:09:02 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2013-04-12 18:09:02 ----A---- C:\Windows\system32\XAudio2_5.dll
2013-04-12 18:09:02 ----A---- C:\Windows\system32\xactengine3_5.dll
2013-04-12 18:09:02 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2013-04-12 18:09:01 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2013-04-12 18:09:01 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2013-04-12 18:09:01 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2013-04-12 18:09:01 ----A---- C:\Windows\system32\d3dx11_42.dll
2013-04-12 18:09:01 ----A---- C:\Windows\system32\d3dx10_42.dll
2013-04-12 18:09:01 ----A---- C:\Windows\system32\d3dcsx_42.dll
2013-04-12 18:09:00 ----A---- C:\Windows\system32\D3DX9_42.dll
2013-04-12 18:08:59 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2013-04-12 18:08:59 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2013-04-12 18:08:59 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2013-04-12 18:08:59 ----A---- C:\Windows\system32\D3DX9_41.dll
2013-04-12 18:08:59 ----A---- C:\Windows\system32\d3dx10_41.dll
2013-04-12 18:08:59 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2013-04-12 18:08:58 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2013-04-12 18:08:58 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2013-04-12 18:08:58 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2013-04-12 18:08:58 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2013-04-12 18:08:58 ----A---- C:\Windows\system32\XAudio2_4.dll
2013-04-12 18:08:58 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2013-04-12 18:08:58 ----A---- C:\Windows\system32\xactengine3_4.dll
2013-04-12 18:08:58 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2013-04-12 18:08:57 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2013-04-12 18:08:57 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2013-04-12 18:08:57 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2013-04-12 18:08:57 ----A---- C:\Windows\system32\D3DX9_40.dll
2013-04-12 18:08:57 ----A---- C:\Windows\system32\d3dx10_40.dll
2013-04-12 18:08:57 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2013-04-12 18:08:56 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2013-04-12 18:08:56 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2013-04-12 18:08:56 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2013-04-12 18:08:56 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2013-04-12 18:08:56 ----A---- C:\Windows\system32\XAudio2_3.dll
2013-04-12 18:08:56 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2013-04-12 18:08:56 ----A---- C:\Windows\system32\xactengine3_3.dll
2013-04-12 18:08:56 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2013-04-12 18:08:55 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2013-04-12 18:08:55 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2013-04-12 18:08:55 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2013-04-12 18:08:55 ----A---- C:\Windows\system32\XAudio2_2.dll
2013-04-12 18:08:55 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2013-04-12 18:08:55 ----A---- C:\Windows\system32\xactengine3_2.dll
2013-04-12 18:08:55 ----A---- C:\Windows\system32\d3dx10_39.dll
2013-04-12 18:08:55 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2013-04-12 18:08:54 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2013-04-12 18:08:54 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2013-04-12 18:08:54 ----A---- C:\Windows\system32\XAudio2_1.dll
2013-04-12 18:08:54 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2013-04-12 18:08:54 ----A---- C:\Windows\system32\D3DX9_39.dll
2013-04-12 18:08:53 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2013-04-12 18:08:53 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2013-04-12 18:08:53 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2013-04-12 18:08:53 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2013-04-12 18:08:53 ----A---- C:\Windows\system32\xactengine3_1.dll
2013-04-12 18:08:53 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2013-04-12 18:08:53 ----A---- C:\Windows\system32\d3dx10_38.dll
2013-04-12 18:08:53 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2013-04-12 18:08:52 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2013-04-12 18:08:52 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2013-04-12 18:08:52 ----A---- C:\Windows\system32\XAudio2_0.dll
2013-04-12 18:08:52 ----A---- C:\Windows\system32\D3DX9_38.dll
2013-04-12 18:08:51 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2013-04-12 18:08:51 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2013-04-12 18:08:51 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2013-04-12 18:08:51 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2013-04-12 18:08:51 ----A---- C:\Windows\system32\xactengine3_0.dll
2013-04-12 18:08:51 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2013-04-12 18:08:51 ----A---- C:\Windows\system32\d3dx10_37.dll
2013-04-12 18:08:51 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2013-04-12 18:08:50 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2013-04-12 18:08:50 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2013-04-12 18:08:50 ----A---- C:\Windows\system32\xactengine2_10.dll
2013-04-12 18:08:50 ----A---- C:\Windows\system32\D3DX9_37.dll
2013-04-12 18:08:49 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2013-04-12 18:08:49 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2013-04-12 18:08:49 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2013-04-12 18:08:49 ----A---- C:\Windows\system32\d3dx9_36.dll
2013-04-12 18:08:49 ----A---- C:\Windows\system32\d3dx10_36.dll
2013-04-12 18:08:49 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2013-04-12 18:08:48 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2013-04-12 18:08:48 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2013-04-12 18:08:48 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2013-04-12 18:08:48 ----A---- C:\Windows\system32\xactengine2_9.dll
2013-04-12 18:08:48 ----A---- C:\Windows\system32\d3dx10_35.dll
2013-04-12 18:08:48 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2013-04-12 18:08:47 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2013-04-12 18:08:47 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2013-04-12 18:08:47 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2013-04-12 18:08:47 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2013-04-12 18:08:47 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2013-04-12 18:08:47 ----A---- C:\Windows\system32\xactengine2_8.dll
2013-04-12 18:08:47 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2013-04-12 18:08:47 ----A---- C:\Windows\system32\d3dx9_35.dll
2013-04-12 18:08:47 ----A---- C:\Windows\system32\d3dx10_34.dll
2013-04-12 18:08:47 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2013-04-12 18:08:46 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2013-04-12 18:08:46 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2013-04-12 18:08:46 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2013-04-12 18:08:46 ----A---- C:\Windows\system32\xinput1_3.dll
2013-04-12 18:08:46 ----A---- C:\Windows\system32\xactengine2_7.dll
2013-04-12 18:08:46 ----A---- C:\Windows\system32\d3dx9_34.dll
2013-04-12 18:08:45 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2013-04-12 18:08:45 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2013-04-12 18:08:45 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2013-04-12 18:08:45 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2013-04-12 18:08:45 ----A---- C:\Windows\system32\xactengine2_6.dll
2013-04-12 18:08:45 ----A---- C:\Windows\system32\d3dx9_33.dll
2013-04-12 18:08:45 ----A---- C:\Windows\system32\d3dx10_33.dll
2013-04-12 18:08:45 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2013-04-12 18:08:44 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2013-04-12 18:08:44 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2013-04-12 18:08:44 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2013-04-12 18:08:44 ----A---- C:\Windows\system32\xactengine2_5.dll
2013-04-12 18:08:44 ----A---- C:\Windows\system32\d3dx9_32.dll
2013-04-12 18:08:44 ----A---- C:\Windows\system32\d3dx10.dll
2013-04-12 18:08:43 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2013-04-12 18:08:43 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2013-04-12 18:08:43 ----A---- C:\Windows\system32\xactengine2_4.dll
2013-04-12 18:08:43 ----A---- C:\Windows\system32\x3daudio1_1.dll
2013-04-12 18:08:43 ----A---- C:\Windows\system32\d3dx9_31.dll
2013-04-12 18:08:42 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2013-04-12 18:08:42 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2013-04-12 18:08:42 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2013-04-12 18:08:42 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2013-04-12 18:08:42 ----A---- C:\Windows\system32\xinput1_2.dll
2013-04-12 18:08:42 ----A---- C:\Windows\system32\xinput1_1.dll
2013-04-12 18:08:42 ----A---- C:\Windows\system32\xactengine2_3.dll
2013-04-12 18:08:42 ----A---- C:\Windows\system32\xactengine2_2.dll
2013-04-12 18:08:41 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2013-04-12 18:08:41 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2013-04-12 18:08:41 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2013-04-12 18:08:41 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2013-04-12 18:08:41 ----A---- C:\Windows\system32\xactengine2_1.dll
2013-04-12 18:08:41 ----A---- C:\Windows\system32\xactengine2_0.dll
2013-04-12 18:08:41 ----A---- C:\Windows\system32\x3daudio1_0.dll
2013-04-12 18:08:41 ----A---- C:\Windows\system32\d3dx9_30.dll
2013-04-12 18:08:40 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2013-04-12 18:08:40 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2013-04-12 18:08:40 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2013-04-12 18:08:40 ----A---- C:\Windows\system32\d3dx9_29.dll
2013-04-12 18:08:40 ----A---- C:\Windows\system32\d3dx9_28.dll
2013-04-12 18:08:40 ----A---- C:\Windows\system32\d3dx9_27.dll
2013-04-12 18:08:39 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2013-04-12 18:08:39 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2013-04-12 18:08:39 ----A---- C:\Windows\system32\d3dx9_26.dll
2013-04-12 18:08:39 ----A---- C:\Windows\system32\d3dx9_25.dll
2013-04-12 18:08:39 ----A---- C:\Windows\system32\d3dx9_24.dll
2013-04-12 18:07:59 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-04-12 17:59:17 ----D---- C:\Program Files (x86)\Mafia 2 Multiplayer
2013-04-12 17:32:36 ----D---- C:\Program Files (x86)\Altap Salamander
2013-04-12 17:32:22 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2013-04-12 17:32:22 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2013-04-12 17:32:01 ----D---- C:\Program Files (x86)\Winamp Detect
2013-04-12 17:31:52 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Winamp
2013-04-12 17:31:52 ----D---- C:\Program Files (x86)\Winamp
2013-04-12 17:22:22 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-04-12 17:22:20 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-04-12 17:15:38 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Skype
2013-04-12 17:15:32 ----RD---- C:\Program Files (x86)\Skype
2013-04-12 17:15:22 ----D---- C:\ProgramData\Skype
2013-04-12 17:14:27 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Mozilla
2013-04-12 17:14:20 ----D---- C:\ProgramData\Mozilla
2013-04-12 17:07:08 ----RSHD---- C:\Windows Activation Technologies
2013-04-12 17:06:45 ----A---- C:\Windows\system32\SLCHook.dll
2013-03-22 17:32:56 ----A---- C:\Windows\SYSWOW64\IntelCpHeciSvc.exe
2013-03-22 17:32:56 ----A---- C:\Windows\system32\igfxtray.exe
2013-03-22 17:32:54 ----A---- C:\Windows\system32\igfxsrvc.exe
2013-03-22 17:32:54 ----A---- C:\Windows\system32\igfxpers.exe
2013-03-22 17:32:54 ----A---- C:\Windows\system32\igfxext.exe
2013-03-22 17:32:52 ----A---- C:\Windows\system32\hkcmd.exe
2013-03-22 17:32:52 ----A---- C:\Windows\system32\GfxUIHotKeyMenu.exe
2013-03-22 17:32:52 ----A---- C:\Windows\system32\GfxUIEx.exe
2013-03-22 17:32:50 ----A---- C:\Windows\system32\DPTopologyApp.exe
2013-03-22 17:32:50 ----A---- C:\Windows\system32\difx64.exe
2013-03-22 17:32:50 ----A---- C:\Windows\system32\CustomModeApp.exe
2013-03-19 21:37:46 ----A---- C:\Windows\system32\igfxCoIn_v3071.dll
2013-03-19 21:34:16 ----A---- C:\Windows\system32\igdrcl64.dll
2013-03-19 21:33:58 ----A---- C:\Windows\system32\igdbcl64.dll
2013-03-19 21:33:50 ----A---- C:\Windows\system32\IntelOpenCL64.dll
2013-03-19 21:33:34 ----A---- C:\Windows\SYSWOW64\igdrcl32.dll
2013-03-19 21:33:12 ----A---- C:\Windows\SYSWOW64\igdbcl32.dll
2013-03-19 21:33:10 ----A---- C:\Windows\SYSWOW64\IntelOpenCL32.dll
2013-03-19 21:32:48 ----A---- C:\Windows\system32\igdfcl64.dll
2013-03-19 21:32:10 ----A---- C:\Windows\SYSWOW64\ig7icd32.dll
2013-03-19 21:32:06 ----A---- C:\Windows\SYSWOW64\igdumdim32.dll
2013-03-19 21:32:04 ----A---- C:\Windows\SYSWOW64\igdde32.dll
2013-03-19 21:32:04 ----A---- C:\Windows\SYSWOW64\igd10iumd32.dll
2013-03-19 21:32:02 ----A---- C:\Windows\SYSWOW64\igdail32.dll
2013-03-19 21:31:54 ----A---- C:\Windows\system32\ig7icd64.dll
2013-03-19 21:31:48 ----A---- C:\Windows\system32\igdumdim64.dll
2013-03-19 21:31:44 ----A---- C:\Windows\system32\igdde64.dll
2013-03-19 21:31:44 ----A---- C:\Windows\system32\igd10iumd64.dll
2013-03-19 21:31:44 ----A---- C:\Windows\system32\drivers\igdkmd64.sys
2013-03-19 21:31:42 ----A---- C:\Windows\system32\igdail64.dll
2013-03-19 21:29:28 ----A---- C:\Windows\SYSWOW64\igdfcl32.dll
2013-03-19 21:27:56 ----A---- C:\Windows\SYSWOW64\igfxdv32.dll
2013-03-19 21:27:52 ----A---- C:\Windows\SYSWOW64\igfxexps32.dll
2013-03-19 21:27:44 ----A---- C:\Windows\system32\MetroIntelGenericUIFramework.dll
2013-03-19 21:27:44 ----A---- C:\Windows\system32\igfxTMM.dll
2013-03-19 21:27:44 ----A---- C:\Windows\system32\igfxdo.dll
2013-03-19 21:27:44 ----A---- C:\Windows\system32\IGFXDEVLib.dll
2013-03-19 21:27:44 ----A---- C:\Windows\system32\gfxSrvc.dll
2013-03-19 21:27:42 ----A---- C:\Windows\system32\igfxexps.dll
2013-03-19 21:27:42 ----A---- C:\Windows\system32\GfxRes.dll
2013-03-19 21:25:48 ----A---- C:\Windows\SYSWOW64\Intel_OpenCL_ICD32.dll
2013-03-19 21:25:48 ----A---- C:\Windows\system32\Intel_OpenCL_ICD64.dll
2013-03-19 21:25:44 ----A---- C:\Windows\SYSWOW64\iglhsip32.dll
2013-03-19 21:25:44 ----A---- C:\Windows\SYSWOW64\iglhcp32.dll
2013-03-19 21:25:44 ----A---- C:\Windows\SYSWOW64\igfxcmrt32.dll
2013-03-19 21:25:44 ----A---- C:\Windows\SYSWOW64\igfxcmjit32.dll
2013-03-19 21:25:44 ----A---- C:\Windows\SYSWOW64\igfx11cmrt32.dll
2013-03-19 21:25:44 ----A---- C:\Windows\system32\iglhsip64.dll
2013-03-19 21:25:44 ----A---- C:\Windows\system32\iglhcp64.dll
2013-03-19 21:25:44 ----A---- C:\Windows\system32\igfxcmrt64.dll
2013-03-19 21:25:44 ----A---- C:\Windows\system32\igfxcmjit64.dll
2013-03-19 21:25:44 ----A---- C:\Windows\system32\igfx11cmrt64.dll
2013-03-19 21:24:26 ----A---- C:\Windows\SYSWOW64\igdusc32.dll
2013-03-19 21:23:34 ----A---- C:\Windows\system32\igdusc64.dll
2013-02-26 23:40:46 ----A---- C:\Windows\system32\drivers\avgidsdrivera.sys
2013-02-24 23:37:28 ----A---- C:\Windows\system32\drivers\avgwfpa.sys
2013-02-08 04:37:56 ----A---- C:\Windows\system32\drivers\avgmfx64.sys
2013-02-08 04:37:54 ----A---- C:\Windows\system32\drivers\avgloga.sys
2013-02-08 04:37:50 ----A---- C:\Windows\system32\drivers\avgidsha.sys
2013-02-08 04:37:42 ----A---- C:\Windows\system32\drivers\avgldx64.sys
2013-02-08 04:37:40 ----A---- C:\Windows\system32\drivers\avgrkx64.sys
======List of files/folders modified in the last 3 months======
2013-05-05 09:10:07 ----RD---- C:\Program Files
2013-05-05 09:09:04 ----D---- C:\Windows\Temp
2013-05-04 22:00:00 ----D---- C:\Windows\system32\sru
2013-05-04 20:09:03 ----D---- C:\Windows\system32\config
2013-05-04 10:31:36 ----D---- C:\Windows
2013-05-03 19:07:32 ----RD---- C:\Program Files (x86)
2013-05-03 19:07:29 ----D---- C:\Windows\SysWOW64
2013-05-03 16:56:51 ----SHD---- C:\Windows\Installer
2013-05-03 16:56:39 ----D---- C:\Program Files\Internet Explorer
2013-05-03 16:56:20 ----HD---- C:\ProgramData
2013-05-03 16:55:41 ----D---- C:\Windows\WinSxS
2013-05-03 16:55:31 ----D---- C:\Program Files (x86)\Common Files
2013-05-03 16:55:14 ----D---- C:\Windows\system32\Tasks
2013-05-03 15:55:47 ----D---- C:\Windows\Microsoft.NET
2013-05-03 13:11:01 ----D---- C:\Windows\AUInstallAgent
2013-05-03 13:08:33 ----HD---- C:\Program Files\WindowsApps
2013-05-02 21:16:19 ----RD---- C:\Windows\System32
2013-05-01 21:02:07 ----RSD---- C:\Windows\assembly
2013-05-01 20:11:53 ----D---- C:\Windows\Logs
2013-05-01 07:59:26 ----D---- C:\Windows\Inf
2013-04-28 19:24:52 ----D---- C:\Windows\rescache
2013-04-28 17:19:02 ----RSD---- C:\Windows\Fonts
2013-04-28 16:19:45 ----SD---- C:\ProgramData\Microsoft
2013-04-28 16:17:35 ----D---- C:\Program Files\Common Files\microsoft shared
2013-04-28 16:13:32 ----D---- C:\Windows\CbsTemp
2013-04-28 16:01:26 ----D---- C:\Windows\SYSWOW64\drivers
2013-04-28 16:00:23 ----D---- C:\Windows\system32\Drivers
2013-04-28 16:00:17 ----D---- C:\Windows\system32\drivers\UMDF
2013-04-28 16:00:14 ----SD---- C:\Windows\system32\Microsoft
2013-04-28 16:00:14 ----D---- C:\Windows\system32\DriverStore
2013-04-28 15:59:43 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2013-04-28 13:48:51 ----D---- C:\Windows\system32\catroot
2013-04-28 13:47:15 ----D---- C:\Program Files\Common Files
2013-04-28 13:02:17 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-04-24 18:47:51 ----D---- C:\Windows\SYSWOW64\config
2013-04-23 17:48:51 ----D---- C:\Windows\system32\NDF
2013-04-22 22:18:39 ----D---- C:\Windows\system32\catroot2
2013-04-20 20:14:48 ----D---- C:\Windows\system32\wdi
2013-04-15 20:36:31 ----HD---- C:\Windows\ELAMBKUP
2013-04-14 14:09:08 ----D---- C:\Windows\SYSWOW64\en-US
2013-04-14 14:09:07 ----D---- C:\Windows\system32\en-US
2013-04-12 22:15:51 ----D---- C:\Windows\WinStore
2013-04-12 22:15:49 ----RD---- C:\Windows\ImmersiveControlPanel
2013-04-12 22:15:41 ----RD---- C:\Users
2013-04-12 22:01:41 ----D---- C:\Windows\system32\Recovery
2013-04-12 21:18:09 ----D---- C:\Windows\Tasks
2013-04-12 20:26:52 ----D---- C:\Program Files (x86)\Microsoft.NET
2013-04-12 19:55:27 ----SHD---- C:\$Recycle.Bin
2013-04-12 17:32:06 ----D---- C:\Windows\system32\restore
2013-03-19 21:27:46 ----A---- C:\Windows\system32\igfxsrvc.dll
2013-03-19 21:27:46 ----A---- C:\Windows\system32\igfxress.dll
2013-03-19 21:27:44 ----A---- C:\Windows\system32\igfxpph.dll
2013-03-19 21:27:44 ----A---- C:\Windows\system32\igfxdev.dll
2013-03-19 21:27:44 ----A---- C:\Windows\system32\hccutils.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ACPI;@acpi.inf,%ACPI.SvcDesc%;Microsoft ACPI Driver; C:\Windows\System32\drivers\ACPI.sys [2012-07-26 424688]
R0 acpiex;Microsoft ACPIEx Driver; C:\Windows\System32\Drivers\acpiex.sys [2012-07-26 77040]
R0 atapi;@mshdc.inf,%idechannel.DeviceDesc%;IDE Channel; C:\Windows\System32\drivers\atapi.sys [2012-07-26 25840]
R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2013-02-08 71480]
R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2013-02-08 311096]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2013-02-08 116536]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2013-02-08 45880]
R0 CLFS;@%SystemRoot%\system32\drivers\clfs.sys,-100; C:\Windows\System32\drivers\CLFS.sys [2012-07-26 361200]
R0 CNG;CNG; C:\Windows\System32\Drivers\cng.sys [2012-07-26 562400]
R0 disk;@disk.inf,%disk_ServiceDesc%;Disk Driver; C:\Windows\System32\drivers\disk.sys [2012-07-26 102640]
R0 EhStorClass;@%SystemRoot%\system32\drivers\EhStorClass.sys,-100; C:\Windows\System32\drivers\EhStorClass.sys [2012-07-26 81136]
R0 FileInfo;@%SystemRoot%\system32\drivers\fileinfo.sys,-100; C:\Windows\System32\drivers\fileinfo.sys [2012-07-26 71920]
R0 FltMgr;@%SystemRoot%\system32\drivers\fltmgr.sys,-10001; C:\Windows\system32\drivers\fltmgr.sys [2012-07-26 374512]
R0 fvevol;@%SystemRoot%\system32\drivers\fvevol.sys,-100; C:\Windows\System32\DRIVERS\fvevol.sys [2012-07-26 465136]
R0 KSecDD;KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [2012-07-26 100080]
R0 KSecPkg;KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [2012-07-26 172272]
R0 mountmgr;@%SystemRoot%\system32\drivers\mountmgr.sys,-100; C:\Windows\System32\drivers\mountmgr.sys [2012-07-26 93936]
R0 msisadrv;msisadrv; C:\Windows\System32\drivers\msisadrv.sys [2012-07-26 17136]
R0 Mup;@%systemroot%\system32\drivers\mup.sys,-101; C:\Windows\System32\Drivers\mup.sys [2012-07-26 83696]
R0 NDIS;@%SystemRoot%\system32\drivers\ndis.sys,-200; C:\Windows\system32\drivers\ndis.sys [2012-07-26 1000688]
R0 partmgr;@%SystemRoot%\system32\drivers\partmgr.sys,-100; C:\Windows\System32\drivers\partmgr.sys [2012-07-26 91888]
R0 pci;@machine.inf,%pci_svcdesc%;PCI Bus Driver; C:\Windows\System32\drivers\pci.sys [2012-07-26 234224]
R0 pciide;pciide; C:\Windows\System32\drivers\pciide.sys [2012-07-26 14064]
R0 pcw;Performance Counters for Windows Driver; C:\Windows\System32\drivers\pcw.sys [2012-07-26 52464]
R0 pdc;@%SystemRoot%\system32\drivers\pdc.sys,-100; C:\Windows\system32\drivers\pdc.sys [2012-07-26 68848]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2009-07-09 55280]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2012-07-26 217328]
R0 spaceport;@spaceport.inf,%Spaceport_ServiceDesc%;Storage Spaces Driver; C:\Windows\System32\drivers\spaceport.sys [2012-07-26 283888]
R0 Tcpip;@%SystemRoot%\system32\tcpipcfg.dll,-50003; C:\Windows\System32\drivers\tcpip.sys [2012-07-26 2224880]
R0 vdrvroot;@vdrvroot.inf,%vdrvroot_svcdesc%;Microsoft Virtual Drive Enumerator; C:\Windows\System32\drivers\vdrvroot.sys [2012-07-26 36080]
R0 volmgr;@volmgr.inf,%volmgr_svcdesc%;Volume Manager Driver; C:\Windows\System32\drivers\volmgr.sys [2012-07-26 83184]
R0 volmgrx;@%SystemRoot%\system32\drivers\volmgrx.sys,-100; C:\Windows\System32\drivers\volmgrx.sys [2012-07-26 378608]
R0 volsnap;@volume.inf,%VolumeClassName%;Storage volumes; C:\Windows\System32\drivers\volsnap.sys [2012-07-26 332016]
R0 Wdf01000;@%SystemRoot%\system32\drivers\Wdf01000.sys,-1000; C:\Windows\system32\drivers\Wdf01000.sys [2012-07-26 785512]
R0 WFPLWFS;@%SystemRoot%\System32\drivers\wfplwfs.sys,-6000; C:\Windows\system32\DRIVERS\wfplwfs.sys [2012-07-26 96496]
R1 AFD;@%systemroot%\system32\drivers\afd.sys,-1000; C:\Windows\system32\drivers\afd.sys [2012-07-26 561152]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2012-08-22 15232]
R1 AsUpIO;AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [2010-08-03 14464]
R1 Avgfwfd;@oem10.inf,%AvgfwfdService_Desc%;AVG network filter service; C:\Windows\system32\DRIVERS\avgfwd6a.sys [2012-09-04 50296]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2013-02-26 246072]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2013-02-08 206136]
R1 Avgwfpa;AVG Firewall Driver; C:\Windows\system32\DRIVERS\avgwfpa.sys [2013-02-24 247608]
R1 BasicDisplay;BasicDisplay; C:\Windows\System32\drivers\BasicDisplay.sys [2012-07-26 48640]
R1 BasicRender;BasicRender; C:\Windows\System32\drivers\BasicRender.sys [2012-07-26 29696]
R1 Beep;Beep; C:\Windows\system32\drivers\Beep.sys [2012-07-26 7680]
R1 cdrom;@cdrom.inf,%cdrom_ServiceDesc%;CD-ROM Driver; C:\Windows\System32\drivers\cdrom.sys [2012-07-26 174080]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2012-07-26 571392]
R1 Dfsc;@%systemroot%\system32\wkssvc.dll,-1008; C:\Windows\System32\Drivers\dfsc.sys [2012-07-26 118784]
R1 discache;@%systemroot%\system32\drivers\discache.sys,-102; C:\Windows\System32\drivers\discache.sys [2012-07-26 50688]
R1 dtsoftbus01;@oem5.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\Windows\System32\drivers\dtsoftbus01.sys [2013-04-12 283200]
R1 Msfs;Msfs; C:\Windows\system32\drivers\Msfs.sys [2012-07-26 26112]
R1 mssmbios;@mssmbios.inf,%mssmbios_svcdesc%;Microsoft System Management BIOS Driver; C:\Windows\System32\drivers\mssmbios.sys [2012-07-26 37616]
R1 ndisrd;@oem3.inf,%ndisrd_Desc%;WinpkFilter LightWeight Filter; C:\Windows\system32\DRIVERS\ndisrd.sys [2012-05-31 32400]
R1 NetBIOS;@netnb.inf,%NetBIOS_Desc%;NetBIOS Interface; C:\Windows\system32\DRIVERS\netbios.sys [2012-07-26 46080]
R1 NetBT;@%SystemRoot%\system32\drivers\netbt.sys,-2; C:\Windows\System32\DRIVERS\netbt.sys [2012-07-26 331776]
R1 Npfs;Npfs; C:\Windows\system32\drivers\Npfs.sys [2012-07-26 49152]
R1 npsvctrig;@npsvctrig.inf,%NPSVCTRIG.SvcDisplayName%;Named pipe service trigger provider; C:\Windows\System32\drivers\npsvctrig.sys [2012-07-26 23552]
R1 nsiproxy;@%SystemRoot%\system32\drivers\nsiproxy.sys,-2; C:\Windows\system32\drivers\nsiproxy.sys [2012-07-26 34304]
R1 Null;Null; C:\Windows\system32\drivers\Null.sys [2012-07-26 5632]
R1 Psched;@%SystemRoot%\System32\drivers\pacer.sys,-101; C:\Windows\system32\DRIVERS\pacer.sys [2012-07-26 145408]
R1 rdbss;@%systemroot%\system32\wkssvc.dll,-1000; C:\Windows\system32\DRIVERS\rdbss.sys [2012-07-26 423936]
R1 tdx;@%SystemRoot%\system32\tcpipcfg.dll,-50004; C:\Windows\system32\DRIVERS\tdx.sys [2012-07-26 117248]
R1 Wanarpv6;@%systemroot%\system32\rascfg.dll,-32012; C:\Windows\system32\DRIVERS\wanarp.sys [2012-07-26 83456]
R2 lltdio;@%SystemRoot%\system32\lltdres.dll,-6; C:\Windows\system32\DRIVERS\lltdio.sys [2012-07-26 60416]
R2 luafv;@%systemroot%\system32\drivers\luafv.sys,-100; C:\Windows\system32\drivers\luafv.sys [2012-07-26 134144]
R2 Ndu;@%SystemRoot%\system32\drivers\Ndu.sys,-10001; C:\Windows\system32\drivers\Ndu.sys [2012-07-26 97792]
R2 PEAUTH;PEAUTH; C:\Windows\system32\drivers\peauth.sys [2012-07-26 804864]
R2 rspndr;@%SystemRoot%\system32\lltdres.dll,-5; C:\Windows\system32\DRIVERS\rspndr.sys [2012-07-26 78848]
R2 secdrv;Security Driver; C:\Windows\system32\drivers\secdrv.sys [2012-07-26 23040]
R2 tcpipreg;TCP/IP Registry Compatibility; C:\Windows\System32\drivers\tcpipreg.sys [2012-07-26 45056]
R3 ASUSFILTER;ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [2011-09-20 46152]
R3 bowser;@%systemroot%\system32\browser.dll,-102; C:\Windows\system32\DRIVERS\bowser.sys [2012-07-26 101888]
R3 CompositeBus;@CompositeBus.inf,%CompositeBus.SVCDESC%;Composite Bus Enumerator Driver; C:\Windows\System32\drivers\CompositeBus.sys [2012-07-26 36352]
R3 condrv;Console Driver; C:\Windows\System32\drivers\condrv.sys [2012-07-26 33792]
R3 DXGKrnl;LDDM Graphics Subsystem; C:\Windows\System32\drivers\dxgkrnl.sys [2012-07-26 1448688]
R3 HDAudBus;@hdaudbus.inf,%HDAudBus.SVCDESC%;Microsoft UAA Bus Driver for High Definition Audio; C:\Windows\System32\drivers\HDAudBus.sys [2012-07-26 71168]
R3 HidUsb;@input.inf,%HID.SvcDesc%;Microsoft HID Class Driver; C:\Windows\System32\drivers\hidusb.sys [2012-07-26 27648]
R3 HTTP;@%SystemRoot%\system32\drivers\http.sys,-1; C:\Windows\system32\drivers\HTTP.sys [2012-07-26 859136]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2013-03-19 4534784]
R3 intelppm;@cpu.inf,%IntelPPM.SvcDesc%;Intel Processor Driver; C:\Windows\System32\drivers\intelppm.sys [2012-07-26 89088]
R3 kbdclass;@keyboard.inf,%kbdclass.SvcDesc%;Keyboard Class Driver; C:\Windows\System32\drivers\kbdclass.sys [2012-07-26 48368]
R3 kbdhid;@keyboard.inf,%KBDHID.SvcDesc%;Keyboard HID Driver; C:\Windows\System32\drivers\kbdhid.sys [2012-07-26 29184]
R3 kdnic;@kdnic.inf,%KdNic.Service.DispName%;Microsoft Kernel Debug Network Miniport (NDIS 6.20); C:\Windows\system32\DRIVERS\kdnic.sys [2012-07-26 18432]
R3 ksthunk;Kernel Streaming Thunks; C:\Windows\system32\drivers\ksthunk.sys [2012-07-26 21376]
R3 MEIx64;@oem2.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\drivers\HECIx64.sys [2013-01-11 64624]
R3 monitor;@monitor.inf,%Monitor.SVCDESC%;Microsoft Monitor Class Function Driver Service; C:\Windows\system32\DRIVERS\monitor.sys [2012-07-26 30720]
R3 mouclass;@msmouse.inf,%mouclass.SvcDesc%;Mouse Class Driver; C:\Windows\System32\drivers\mouclass.sys [2012-07-26 45808]
R3 mouhid;@msmouse.inf,%MOUHID.SvcDesc%;Mouse HID Driver; C:\Windows\System32\drivers\mouhid.sys [2012-07-26 26112]
R3 mrxsmb;@%systemroot%\system32\wkssvc.dll,-1002; C:\Windows\system32\DRIVERS\mrxsmb.sys [2012-07-26 368128]
R3 mrxsmb10;@%systemroot%\system32\wkssvc.dll,-1004; C:\Windows\system32\DRIVERS\mrxsmb10.sys [2012-07-26 279552]
R3 mrxsmb20;@%systemroot%\system32\wkssvc.dll,-1006; C:\Windows\system32\DRIVERS\mrxsmb20.sys [2012-07-26 214016]
R3 NativeWifiP;@%SystemRoot%\System32\drivers\nwifi.sys,-101; C:\Windows\system32\DRIVERS\nwifi.sys [2012-07-26 427520]
R3 NdisTapi;@%systemroot%\system32\rascfg.dll,-32001; C:\Windows\system32\DRIVERS\ndistapi.sys [2012-07-26 25088]
R3 Ndisuio;@ndisuio.inf,%NDISUIO_Desc%;NDIS Usermode I/O Protocol; C:\Windows\system32\DRIVERS\ndisuio.sys [2012-07-26 58880]
R3 NdisWan;@%systemroot%\system32\rascfg.dll,-32002; C:\Windows\system32\DRIVERS\ndiswan.sys [2012-07-26 174080]
R3 NDProxy;NDIS Proxy; C:\Windows\system32\drivers\NDProxy.sys [2012-07-26 60416]
R3 Ntfs;Ntfs; C:\Windows\system32\drivers\Ntfs.sys [2012-07-26 1934064]
R3 Parport;@msports.inf,%Parport.SVCDESC%;Parallel port driver; C:\Windows\System32\drivers\parport.sys [2012-07-26 105984]
R3 PptpMiniport;@%systemroot%\system32\rascfg.dll,-32006; C:\Windows\system32\DRIVERS\raspptp.sys [2012-07-26 114176]
R3 RasAgileVpn;@netavpna.inf,%Svc-Mp-AgileVpn-DispName%;WAN Miniport (IKEv2); C:\Windows\system32\DRIVERS\AgileVpn.sys [2012-07-26 68608]
R3 Rasl2tp;@%systemroot%\system32\rascfg.dll,-32005; C:\Windows\system32\DRIVERS\rasl2tp.sys [2012-07-26 124928]
R3 RasPppoe;@%systemroot%\system32\rascfg.dll,-32007; C:\Windows\system32\DRIVERS\raspppoe.sys [2012-07-26 81920]
R3 RasSstp;@%systemroot%\system32\sstpsvc.dll,-202; C:\Windows\system32\DRIVERS\rassstp.sys [2012-07-26 92672]
R3 rdpbus;@rdpbus.inf,%rdpbus_svcdesc%;Remote Desktop Device Redirector Bus Driver; C:\Windows\System32\drivers\rdpbus.sys [2012-07-26 22528]
R3 RDPDR;@%SystemRoot%\System32\DRIVERS\rdpdr.sys,-100; C:\Windows\System32\drivers\rdpdr.sys [2012-07-26 179712]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-07-26 27888]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2012-06-02 589824]
R3 SensorsSimulatorDriver;@oem9.inf,%WudfSensorsSimulatorDriverDisplayName%;UMDF Reflector service for SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 198656]
R3 Serenum;@msports.inf,%Serenum.SVCDESC%;Serenum Filter Driver; C:\Windows\System32\drivers\serenum.sys [2012-07-26 23040]
R3 Serial;@msports.inf,%Serial.SVCDESC%;Serial port driver; C:\Windows\System32\drivers\serial.sys [2012-07-26 76800]
R3 srv;@%systemroot%\system32\srvsvc.dll,-102; C:\Windows\System32\DRIVERS\srv.sys [2012-07-26 416768]
R3 srv2;@%systemroot%\system32\srvsvc.dll,-104; C:\Windows\System32\DRIVERS\srv2.sys [2012-07-26 619520]
R3 srvnet;srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [2012-07-26 248832]
R3 swenum;@swenum.inf,%SWENUM.SVCDESC%;Software Bus Driver; C:\Windows\System32\drivers\swenum.sys [2012-07-26 13680]
R3 TPM;@tpm.inf,%TPM%;TPM; C:\Windows\system32\drivers\tpm.sys [2012-07-26 148720]
R3 tunnel;@nettun.inf,%TUNNEL.Service.DisplayName%;Microsoft Tunnel Miniport Adapter Driver; C:\Windows\system32\DRIVERS\tunnel.sys [2012-07-26 149504]
R3 UCX01000;USB Controller Extension; C:\Windows\System32\drivers\ucx01000.sys [2012-07-26 212208]
R3 umbus;@umbus.inf,%umbus.SVCDESC%;UMBus Enumerator Driver; C:\Windows\System32\drivers\umbus.sys [2012-07-26 48128]
R3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;USB Audio Driver (WDM); C:\Windows\system32\drivers\usbaudio.sys [2012-07-26 121856]
R3 usbccgp;@usb.inf,%GenericParent.SvcDesc%;Microsoft USB Generic Parent Driver; C:\Windows\System32\drivers\usbccgp.sys [2012-07-26 120832]
R3 usbehci;@usbport.inf,%EHCIMP.SvcDesc%;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\Windows\System32\drivers\usbehci.sys [2012-07-26 78576]
R3 usbhub;@usbport.inf,%ROOTHUB.SvcDesc%;Microsoft USB Standard Hub Driver; C:\Windows\System32\drivers\usbhub.sys [2012-07-26 496368]
R3 USBHUB3;@usbhub3.inf,%UsbHub3.SVCDESC%;SuperSpeed Hub; C:\Windows\System32\drivers\UsbHub3.sys [2012-07-26 445168]
R3 USBXHCI;@usbxhci.inf,%PCI\CC_0C0330.DeviceDesc%;USB xHCI Compliant Host Controller; C:\Windows\System32\drivers\USBXHCI.SYS [2012-07-26 337136]
R3 VIAHdAudAddService;@oem4.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2012-07-07 2201744]
R3 WmiAcpi;@wmiacpi.inf,%WMIMAP.SvcDesc%;Microsoft Windows Management Interface for ACPI; C:\Windows\System32\drivers\wmiacpi.sys [2012-07-26 17408]
R4 cdfs;CD/DVD File System Reader; C:\Windows\system32\DRIVERS\cdfs.sys [2012-07-26 108544]
S0 3ware;3ware; C:\Windows\System32\drivers\3ware.sys [2012-07-26 106736]
S0 adp94xx;adp94xx; C:\Windows\System32\drivers\adp94xx.sys [2012-07-26 492272]
S0 adpahci;adpahci; C:\Windows\System32\drivers\adpahci.sys [2012-07-26 340720]
S0 adpu320;adpu320; C:\Windows\System32\drivers\adpu320.sys [2012-07-26 184048]
S0 agp440;@machine.inf,%agp440_svcdesc%;Intel AGP Bus Filter; C:\Windows\System32\drivers\agp440.sys [2012-07-26 63216]
S0 amdsata;amdsata; C:\Windows\System32\drivers\amdsata.sys [2012-07-26 76016]
S0 amdsbs;amdsbs; C:\Windows\System32\drivers\amdsbs.sys [2012-07-26 258288]
S0 amdxata;amdxata; C:\Windows\System32\drivers\amdxata.sys [2012-07-26 26352]
S0 arc;arc; C:\Windows\System32\drivers\arc.sys [2012-07-26 104688]
S0 arcsas;@arcsas.inf,%arcsas_ServiceName%;Adaptec SAS/SATA-II RAID Windows Inbox Miniport Driver; C:\Windows\System32\drivers\arcsas.sys [2012-07-26 108272]
S0 Avgboota;AVG Early Launch Anti-Malware Driver; C:\Windows\system32\DRIVERS\avgboota.sys [2012-10-26 20912]
S0 b06bdrv;@netbvbda.inf,%vbd_srv_desc%;Broadcom NetXtreme II VBD; C:\Windows\System32\drivers\bxvbda.sys [2012-07-26 539376]
S0 ebdrv;@netevbda.inf,%vbd_srv_desc%;Broadcom NetXtreme II 10 GigE VBD; C:\Windows\System32\drivers\evbda.sys [2012-07-26 3295984]
S0 EhStorTcgDrv;@ehstortcgdrv.inf,%EhStorTcgDrv.Desc%;Microsoft driver for storage devices supporting IEEE 1667 and TCG protocols; C:\Windows\System32\drivers\EhStorTcgDrv.sys [2012-07-26 113904]
S0 gagp30kx;@machine.inf,%gagp30kx_svcdesc%;Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms; C:\Windows\System32\drivers\gagp30kx.sys [2012-07-26 66800]
S0 HpSAMD;HpSAMD; C:\Windows\System32\drivers\HpSAMD.sys [2012-07-26 64752]
S0 hwpolicy;@%systemroot%\system32\drivers\hwpolicy.sys,-101; C:\Windows\System32\drivers\hwpolicy.sys [2012-07-26 24816]
S0 iaStorV;@iastorv.inf,%*PNP0600.DeviceDesc%;Intel RAID Controller Windows 7; C:\Windows\System32\drivers\iaStorV.sys [2012-07-26 411888]
S0 iirsp;iirsp; C:\Windows\System32\drivers\iirsp.sys [2012-07-26 45296]
S0 intelide;intelide; C:\Windows\System32\drivers\intelide.sys [2012-07-26 18672]
S0 isapnp;isapnp; C:\Windows\System32\drivers\isapnp.sys [2012-07-26 22256]
S0 LSI_SAS;LSI_SAS; C:\Windows\System32\drivers\lsi_sas.sys [2012-07-26 108784]
S0 LSI_SAS2;LSI_SAS2; C:\Windows\System32\drivers\lsi_sas2.sys [2012-07-26 92400]
S0 LSI_SCSI;LSI_SCSI; C:\Windows\System32\drivers\lsi_scsi.sys [2012-07-26 116976]
S0 LSI_SSS;LSI_SSS; C:\Windows\System32\drivers\lsi_sss.sys [2012-07-26 81136]
S0 megasas;megasas; C:\Windows\System32\drivers\megasas.sys [2012-07-26 51952]
S0 MegaSR;MegaSR; C:\Windows\System32\drivers\MegaSR.sys [2012-07-26 353008]
S0 mvumis;mvumis; C:\Windows\System32\drivers\mvumis.sys [2012-07-26 64240]
S0 nfrd960;nfrd960; C:\Windows\System32\drivers\nfrd960.sys [2012-07-26 52464]
S0 nv_agp;@machine.inf,%agpnvidia_svcdesc%;NVIDIA nForce AGP Bus Filter; C:\Windows\System32\drivers\nv_agp.sys [2012-07-26 125168]
S0 nvraid;nvraid; C:\Windows\System32\drivers\nvraid.sys [2012-07-26 150256]
S0 nvstor;nvstor; C:\Windows\System32\drivers\nvstor.sys [2012-07-26 168176]
S0 pcmcia;pcmcia; C:\Windows\System32\drivers\pcmcia.sys [2012-07-26 237808]
S0 sbp2port;@sbp2.inf,%sbp2_ServiceDesc%;SBP-2 Transport/Protocol Bus Driver; C:\Windows\System32\drivers\sbp2port.sys [2012-07-26 107760]
S0 SiSRaid2;SiSRaid2; C:\Windows\System32\drivers\SiSRaid2.sys [2012-07-26 44784]
S0 SiSRaid4;SiSRaid4; C:\Windows\System32\drivers\sisraid4.sys [2012-07-26 81648]
S0 stexstor;stexstor; C:\Windows\System32\drivers\stexstor.sys [2012-07-26 30960]
S0 storahci;@mshdc.inf,%storahci_ServiceDescription%;Microsoft Standard SATA AHCI Driver; C:\Windows\System32\drivers\storahci.sys [2012-07-26 77552]
S0 storflt;@%SystemRoot%\system32\vmstorfltres.dll,-1000; C:\Windows\system32\DRIVERS\vmstorfl.sys [2012-07-26 45160]
S0 storvsc;storvsc; C:\Windows\System32\drivers\storvsc.sys [2012-07-26 37992]
S0 uagp35;@machine.inf,%uagp35_svcdesc%;Microsoft AGPv3.5 Filter; C:\Windows\System32\drivers\uagp35.sys [2012-07-26 65776]
S0 uliagpkx;@machine.inf,%uliagpkx_svcdesc%;Uli AGP Bus Filter; C:\Windows\System32\drivers\uliagpkx.sys [2012-07-26 66800]
S0 viaide;viaide; C:\Windows\System32\drivers\viaide.sys [2012-07-26 19184]
S0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\System32\drivers\vmbus.sys [2012-07-26 137832]
S0 vsmraid;vsmraid; C:\Windows\System32\drivers\vsmraid.sys [2012-07-26 164080]
S0 VSTXRAID;@vstxraid.inf,%Driver.DeviceDesc%;VIA StorX Storage Controller Windows Driver; C:\Windows\System32\drivers\vstxraid.sys [2012-07-26 322800]
S0 Wd;@wd.inf,%WdServiceDisplayName%;Microsoft Watchdog Timer Driver; C:\Windows\System32\drivers\wd.sys [2012-07-26 23792]
S1 dam;@%SystemRoot%\system32\drivers\dam.sys,-100; C:\Windows\system32\drivers\dam.sys [2012-07-26 55024]
S3 1394ohci;@1394.inf,%PCI\CC_0C0010.DeviceDesc%;1394 OHCI Compliant Host Controller; C:\Windows\System32\drivers\1394ohci.sys [2012-07-26 226304]
S3 acpipagr;@acpipagr.inf,%SvcDesc%;ACPI Processor Aggregator Driver; C:\Windows\System32\drivers\acpipagr.sys [2012-07-26 10240]
S3 AcpiPmi;@acpipmi.inf,%AcpiPmi.SvcDesc%;ACPI Power Meter Driver; C:\Windows\System32\drivers\acpipmi.sys
2013-04-19 13:35:17 ----A---- C:\Windows\system32\netcfg-216796.txt
2013-04-19 13:35:16 ----A---- C:\Windows\system32\netcfg-216390.txt
2013-04-19 13:34:13 ----A---- C:\Windows\system32\netcfg-152921.txt
2013-04-19 13:34:03 ----A---- C:\Windows\system32\netcfg-143593.txt
2013-04-19 13:33:22 ----A---- C:\Windows\system32\netcfg-101890.txt
2013-04-19 13:33:20 ----A---- C:\Windows\system32\netcfg-100562.txt
2013-04-19 13:32:46 ----A---- C:\Windows\system32\netcfg-66484.txt
2013-04-19 13:32:35 ----A---- C:\Windows\system32\netcfg-55015.txt
2013-04-19 12:59:44 ----A---- C:\Windows\system32\netcfg-103953.txt
2013-04-19 12:59:43 ----A---- C:\Windows\system32\netcfg-103062.txt
2013-04-19 12:59:16 ----A---- C:\Windows\system32\netcfg-75921.txt
2013-04-18 22:11:03 ----A---- C:\Windows\system32\netcfg-8469640.txt
2013-04-18 19:51:59 ----A---- C:\Windows\system32\netcfg-124843.txt
2013-04-18 19:51:58 ----A---- C:\Windows\system32\netcfg-124062.txt
2013-04-18 19:51:12 ----A---- C:\Windows\system32\netcfg-78531.txt
2013-04-18 19:50:58 ----A---- C:\Windows\system32\netcfg-63843.txt
2013-04-18 19:19:10 ----D---- C:\Program Files (x86)\Clownfish
2013-04-18 18:05:00 ----A---- C:\Windows\system32\netcfg-107640.txt
2013-04-18 17:12:47 ----A---- C:\Windows\system32\netcfg-3448875.txt
2013-04-18 16:17:20 ----A---- C:\Windows\system32\netcfg-121968.txt
2013-04-18 16:17:19 ----A---- C:\Windows\system32\netcfg-121234.txt
2013-04-18 16:16:35 ----A---- C:\Windows\system32\netcfg-77125.txt
2013-04-18 16:16:24 ----A---- C:\Windows\system32\netcfg-66015.txt
2013-04-18 16:15:50 ----D---- C:\Windows\Minidump
2013-04-18 14:55:15 ----A---- C:\Windows\system32\netcfg-135171.txt
2013-04-18 14:55:14 ----A---- C:\Windows\system32\netcfg-134203.txt
2013-04-18 14:54:40 ----A---- C:\Windows\system32\netcfg-100046.txt
2013-04-17 22:36:07 ----A---- C:\Windows\system32\netcfg-2709921.txt
2013-04-17 22:21:20 ----A---- C:\Windows\system32\netcfg-1823562.txt
2013-04-17 22:18:37 ----A---- C:\Windows\system32\netcfg-1660406.txt
2013-04-17 22:04:36 ----D---- C:\ProgramData\Stardock
2013-04-17 21:52:57 ----A---- C:\Windows\system32\netcfg-119968.txt
2013-04-17 21:52:56 ----A---- C:\Windows\system32\netcfg-119046.txt
2013-04-17 21:52:24 ----A---- C:\Windows\system32\netcfg-87140.txt
2013-04-17 21:51:53 ----A---- C:\Windows\system32\netcfg-56281.txt
2013-04-17 20:23:53 ----A---- C:\Windows\system32\netcfg-106069953.txt
2013-04-17 20:23:51 ----A---- C:\Windows\system32\netcfg-106068531.txt
2013-04-17 17:03:24 ----A---- C:\Windows\system32\netcfg-94041343.txt
2013-04-17 17:02:54 ----A---- C:\Windows\system32\netcfg-94010953.txt
2013-04-17 16:16:15 ----A---- C:\Windows\system32\netcfg-91212359.txt
2013-04-17 16:16:15 ----A---- C:\Windows\system32\netcfg-91212125.txt
2013-04-17 16:16:11 ----A---- C:\Windows\system32\netcfg-91208687.txt
2013-04-17 16:16:03 ----A---- C:\Windows\system32\netcfg-91200828.txt
2013-04-17 15:22:06 ----A---- C:\Windows\system32\netcfg-87963906.txt
2013-04-17 15:22:05 ----A---- C:\Windows\system32\netcfg-87962578.txt
2013-04-17 15:21:45 ----A---- C:\Windows\system32\netcfg-87942000.txt
2013-04-16 22:19:01 ----A---- C:\Windows\system32\netcfg-26583796.txt
2013-04-16 21:43:01 ----A---- C:\Windows\system32\netcfg-24423515.txt
2013-04-16 21:42:57 ----A---- C:\Windows\system32\netcfg-24419906.txt
2013-04-16 21:42:31 ----A---- C:\Windows\system32\netcfg-24394125.txt
2013-04-16 20:42:20 ----A---- C:\Windows\system32\netcfg-20789156.txt
2013-04-16 15:07:56 ----D---- C:\Program Files (x86)\GTASACenter
2013-04-16 14:57:29 ----A---- C:\Windows\system32\netcfg-98375.txt
2013-04-16 14:57:28 ----A---- C:\Windows\system32\netcfg-97640.txt
2013-04-16 14:56:57 ----A---- C:\Windows\system32\netcfg-66468.txt
2013-04-16 07:09:03 ----A---- C:\Windows\system32\netcfg-848031.txt
2013-04-16 06:57:11 ----A---- C:\Windows\system32\netcfg-136093.txt
2013-04-16 06:57:10 ----A---- C:\Windows\system32\netcfg-134750.txt
2013-04-16 06:56:08 ----A---- C:\Windows\system32\netcfg-73328.txt
2013-04-15 22:15:31 ----A---- C:\Windows\system32\netcfg-5507234.txt
2013-04-15 20:45:49 ----A---- C:\Windows\system32\netcfg-125625.txt
2013-04-15 20:45:47 ----A---- C:\Windows\system32\netcfg-122703.txt
2013-04-15 20:45:31 ----A---- C:\Windows\system32\netcfg-107125.txt
2013-04-15 20:45:31 ----A---- C:\Windows\system32\netcfg-107078.txt
2013-04-15 20:45:21 ----A---- C:\Windows\system32\netcfg-97359.txt
2013-04-15 20:41:35 ----A---- C:\Windows\system32\netcfg-580984.txt
2013-04-15 20:40:09 ----A---- C:\Windows\system32\netcfg-494843.txt
2013-04-15 20:40:05 ----A---- C:\Windows\system32\netcfg-491406.txt
2013-04-15 20:39:42 ----D---- C:\Users\GAMELASTER\AppData\Roaming\AVG2013
2013-04-15 20:36:51 ----A---- C:\Windows\system32\netcfg-296828.txt
2013-04-15 20:36:50 ----A---- C:\Windows\system32\netcfg-296406.txt
2013-04-15 20:36:35 ----D---- C:\Users\GAMELASTER\AppData\Roaming\TuneUp Software
2013-04-15 20:36:01 ----HD---- C:\$AVG
2013-04-15 20:36:01 ----D---- C:\ProgramData\AVG2013
2013-04-15 20:33:25 ----A---- C:\Windows\system32\netcfg-90906.txt
2013-04-15 20:33:24 ----A---- C:\Windows\system32\netcfg-90140.txt
2013-04-15 20:32:39 ----A---- C:\Windows\system32\netcfg-44812.txt
2013-04-15 20:31:15 ----A---- C:\Windows\system32\netcfg-13685968.txt
2013-04-15 20:31:05 ----A---- C:\Windows\system32\netcfg-13676187.txt
2013-04-15 20:31:05 ----A---- C:\Windows\system32\netcfg-13675953.txt
2013-04-15 20:16:45 ----A---- C:\Windows\system32\netcfg-12816453.txt
2013-04-15 20:14:54 ----D---- C:\Program Files (x86)\AVG
2013-04-15 20:01:45 ----D---- C:\Program Files (x86)\SystemRequirementsLab
2013-04-15 17:09:11 ----A---- C:\Windows\system32\netcfg-1561781.txt
2013-04-15 17:09:10 ----A---- C:\Windows\system32\netcfg-1561390.txt
2013-04-15 16:47:38 ----A---- C:\Windows\system32\netcfg-268796.txt
2013-04-15 16:47:36 ----A---- C:\Windows\system32\netcfg-266968.txt
2013-04-15 16:45:57 ----A---- C:\Windows\system32\netcfg-168390.txt
2013-04-15 16:43:40 ----A---- C:\Windows\system32\netcfg-31437.txt
2013-04-14 22:16:41 ----A---- C:\Windows\system32\netcfg-4503421.txt
2013-04-14 21:03:01 ----A---- C:\Windows\system32\netcfg-83484.txt
2013-04-14 21:03:01 ----A---- C:\Windows\system32\netcfg-83218.txt
2013-04-14 21:02:23 ----A---- C:\Windows\system32\netcfg-45015.txt
2013-04-14 21:02:13 ----A---- C:\Windows\system32\netcfg-35031.txt
2013-04-14 20:11:19 ----A---- C:\Windows\system32\netcfg-3861156.txt
2013-04-14 19:08:52 ----A---- C:\Windows\system32\netcfg-114203.txt
2013-04-14 19:08:52 ----A---- C:\Windows\system32\netcfg-113687.txt
2013-04-14 19:07:37 ----A---- C:\Windows\system32\netcfg-39531.txt
2013-04-14 19:06:00 ----A---- C:\Windows\system32\netcfg-14873234.txt
2013-04-14 19:05:30 ----D---- C:\ProgramData\Intel
2013-04-14 15:00:01 ----A---- C:\Windows\system32\netcfg-114000.txt
2013-04-14 15:00:00 ----A---- C:\Windows\system32\netcfg-113312.txt
2013-04-14 14:59:02 ----A---- C:\Windows\system32\netcfg-54843.txt
2013-04-14 14:53:58 ----A---- C:\Windows\system32\netcfg-20803609.txt
2013-04-14 14:18:08 ----D---- C:\Program Files (x86)\Microsoft Office
2013-04-14 14:18:06 ----D---- C:\ProgramData\Microsoft Help
2013-04-14 14:18:06 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 8
2013-04-14 14:17:50 ----D---- C:\Program Files\Microsoft Visual Studio 8
2013-04-14 14:10:09 ----A---- C:\Windows\system32\perfh01B.dat
2013-04-14 14:10:09 ----A---- C:\Windows\system32\perfc01B.dat
2013-04-14 14:05:38 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2013-04-14 14:05:38 ----A---- C:\Windows\SYSWOW64\PresentationNative_v0300.dll
2013-04-14 14:05:38 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-04-14 14:05:35 ----A---- C:\Windows\system32\TsWpfWrp.exe
2013-04-14 14:05:35 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2013-04-14 14:05:35 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-04-14 09:19:06 ----D---- C:\Users\GAMELASTER\AppData\Roaming\LolClient
2013-04-14 09:09:30 ----A---- C:\Windows\system32\netcfg-134890.txt
2013-04-14 09:09:29 ----A---- C:\Windows\system32\netcfg-134171.txt
2013-04-14 09:08:44 ----A---- C:\Windows\system32\netcfg-89031.txt
2013-04-14 07:09:14 ----A---- C:\Windows\system32\netcfg-38823859.txt
2013-04-14 02:54:25 ----A---- C:\Windows\system32\netcfg-23534734.txt
2013-04-14 02:48:22 ----A---- C:\Windows\system32\netcfg-23171781.txt
2013-04-13 23:30:35 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2013-04-13 23:30:35 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2013-04-13 23:30:34 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2013-04-13 23:26:56 ----D---- C:\Riot Games
2013-04-13 21:17:39 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Syncfusion
2013-04-13 21:05:19 ----A---- C:\Windows\system32\netcfg-2588953.txt
2013-04-13 21:00:43 ----A---- C:\Windows\system32\netcfg-2313640.txt
2013-04-13 20:59:57 ----A---- C:\Windows\system32\netcfg-2267484.txt
2013-04-13 20:58:31 ----A---- C:\Windows\system32\netcfg-2181437.txt
2013-04-13 20:58:26 ----A---- C:\Windows\system32\netcfg-2175781.txt
2013-04-13 20:32:46 ----A---- C:\Windows\system32\netcfg-636578.txt
2013-04-13 20:21:16 ----A---- C:\Windows\system32\netcfg-965125.txt
2013-04-13 20:08:19 ----A---- C:\Windows\system32\netcfg-188625.txt
2013-04-13 18:21:29 ----A---- C:\Windows\system32\netcfg-1527609.txt
2013-04-13 18:20:11 ----A---- C:\Windows\system32\netcfg-1449234.txt
2013-04-13 18:19:47 ----A---- C:\Windows\system32\netcfg-1424859.txt
2013-04-13 18:19:05 ----A---- C:\Windows\system32\netcfg-1382812.txt
2013-04-13 18:18:22 ----A---- C:\Windows\system32\netcfg-1340250.txt
2013-04-13 18:17:45 ----A---- C:\Windows\system32\netcfg-1303312.txt
2013-04-13 18:17:33 ----A---- C:\Windows\system32\netcfg-1291515.txt
2013-04-13 18:17:06 ----A---- C:\Windows\system32\netcfg-1263906.txt
2013-04-13 18:16:49 ----A---- C:\Windows\system32\netcfg-1247562.txt
2013-04-13 18:16:12 ----A---- C:\Windows\system32\netcfg-1210234.txt
2013-04-13 18:14:10 ----A---- C:\Windows\system32\netcfg-1088156.txt
2013-04-13 18:14:02 ----A---- C:\Windows\system32\netcfg-1079687.txt
2013-04-13 18:12:58 ----D---- C:\Program Files (x86)\PdaNet for Android
2013-04-13 18:12:58 ----A---- C:\Windows\system32\WinUSBCoInstaller.dll
2013-04-13 18:12:58 ----A---- C:\Windows\system32\WdfCoInstaller01007.dll
2013-04-13 18:12:58 ----A---- C:\Windows\system32\drivers\pneteth.sys
2013-04-13 17:54:46 ----A---- C:\Windows\system32\netcfg-633625.txt
2013-04-13 17:54:45 ----A---- C:\Windows\system32\ZDCNDIS6a64.sys
2013-04-13 17:54:44 ----A---- C:\Windows\SYSWOW64\ZDCNDIS6a64.sys
2013-04-13 17:54:44 ----A---- C:\Windows\SYSWOW64\ZDCndis5.sys
2013-04-13 17:44:59 ----A---- C:\Windows\system32\netcfg-45656.txt
2013-04-12 22:58:18 ----D---- C:\Windows\Panther
2013-04-12 22:35:19 ----A---- C:\Windows\system32\admintest.txt
2013-04-12 22:33:05 ----D---- C:\Users\GAMELASTER\AppData\Roaming\WinRAR
2013-04-12 22:33:01 ----D---- C:\Program Files\WinRAR
2013-04-12 22:23:02 ----D---- C:\Program Files (x86)\Intel
2013-04-12 22:23:00 ----D---- C:\Intel
2013-04-12 22:23:00 ----A---- C:\Windows\SYSWOW64\OpenCL.DLL
2013-04-12 22:23:00 ----A---- C:\Windows\system32\OpenCL.DLL
2013-04-12 22:22:16 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Macromedia
2013-04-12 22:18:11 ----D---- C:\Windows\SoftwareDistribution
2013-04-12 22:18:10 ----A---- C:\Windows\system32\netcfg-1018625.txt
2013-04-12 22:18:08 ----A---- C:\Windows\system32\netcfg-1016062.txt
2013-04-12 22:16:20 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Adobe
2013-04-12 22:15:49 ----D---- C:\ProgramData\PRICache
2013-04-12 22:15:42 ----SD---- C:\Users\GAMELASTER\AppData\Roaming\Microsoft
2013-04-12 22:15:42 ----D---- C:\Windows\CSC
2013-04-12 22:01:41 ----SHD---- C:\Recovery
2013-04-12 22:01:18 ----ASH---- C:\hiberfil.sys
2013-04-12 21:59:51 ----A---- C:\Windows\system32\netcfg-71265.txt
2013-04-12 21:59:45 ----A---- C:\Windows\system32\netcfg-65031.txt
2013-04-12 21:59:45 ----A---- C:\Windows\system32\netcfg-64843.txt
2013-04-12 21:59:44 ----A---- C:\Windows\system32\netcfg-64453.txt
2013-04-12 21:59:44 ----A---- C:\Windows\system32\netcfg-64031.txt
2013-04-12 21:59:44 ----A---- C:\Windows\system32\netcfg-63687.txt
2013-04-12 21:59:43 ----A---- C:\Windows\system32\netcfg-63500.txt
2013-04-12 21:59:43 ----A---- C:\Windows\system32\netcfg-63296.txt
2013-04-12 21:59:43 ----A---- C:\Windows\system32\netcfg-63109.txt
2013-04-12 21:59:43 ----A---- C:\Windows\system32\netcfg-62828.txt
2013-04-12 21:59:42 ----A---- C:\Windows\system32\netcfg-62125.txt
2013-04-12 21:59:34 ----D---- C:\Windows\Prefetch
2013-04-12 21:58:48 ----ASH---- C:\swapfile.sys
2013-04-12 21:58:48 ----ASH---- C:\pagefile.sys
2013-04-12 21:58:46 ----SHD---- C:\System Volume Information
2013-04-12 21:18:08 ----D---- C:\Program Files (x86)\Skillbrains
2013-04-12 21:01:55 ----D---- C:\ProgramData\Microsoft Visual Studio
2013-04-12 20:26:54 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2013-04-12 20:24:34 ----D---- C:\ProgramData\Package Cache
2013-04-12 20:20:24 ----D---- C:\Program Files (x86)\Syncfusion
2013-04-12 20:06:29 ----D---- C:\Users\GAMELASTER\AppData\Roaming\.minecraft
2013-04-12 20:06:25 ----D---- C:\ProgramData\Sun
2013-04-12 20:06:21 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2013-04-12 20:06:21 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-04-12 20:06:21 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2013-04-12 20:06:12 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-04-12 20:06:12 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-04-12 20:06:12 ----A---- C:\Windows\SYSWOW64\java.exe
2013-04-12 20:06:01 ----D---- C:\Program Files (x86)\Java
2013-04-12 20:04:41 ----A---- C:\Windows\SYSWOW64\perf-SQLAgent$SQLEXPRESS-sqlagtctr10.1.2531.0.dll
2013-04-12 20:04:41 ----A---- C:\Windows\system32\perf-SQLAgent$SQLEXPRESS-sqlagtctr10.1.2531.0.dll
2013-04-12 20:04:33 ----A---- C:\Windows\SYSWOW64\perf-MSSQL$SQLEXPRESS-sqlctr10.1.2531.0.dll
2013-04-12 20:04:33 ----A---- C:\Windows\system32\perf-MSSQL$SQLEXPRESS-sqlctr10.1.2531.0.dll
2013-04-12 20:03:59 ----D---- C:\Windows\system32\RsFx
2013-04-12 20:03:38 ----D---- C:\Program Files\Microsoft Visual Studio 9.0
2013-04-12 20:03:24 ----D---- C:\Program Files\Microsoft.NET
2013-04-12 20:00:04 ----D---- C:\Program Files\Microsoft SQL Server
2013-04-12 19:59:53 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2013-04-12 19:59:20 ----D---- C:\Program Files\Microsoft Sync Framework
2013-04-12 19:59:08 ----D---- C:\Program Files\Microsoft Synchronization Services
2013-04-12 19:59:08 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2013-04-12 19:58:57 ----D---- C:\Program Files (x86)\Microsoft Synchronization Services
2013-04-12 19:58:56 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2013-04-12 19:58:44 ----D---- C:\ProgramData\PreEmptive Solutions
2013-04-12 19:57:35 ----D---- C:\Program Files\MSBuild
2013-04-12 19:57:32 ----D---- C:\Program Files\Reference Assemblies
2013-04-12 19:56:46 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-04-12 19:55:25 ----D---- C:\Program Files (x86)\Microsoft ASP.NET
2013-04-12 19:55:22 ----D---- C:\Program Files\IIS
2013-04-12 19:55:21 ----D---- C:\Program Files (x86)\IIS
2013-04-12 19:49:37 ----D---- C:\Windows\SYSWOW64\1033
2013-04-12 19:49:08 ----D---- C:\Program Files (x86)\MSBuild
2013-04-12 19:49:08 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 10.0
2013-04-12 19:49:08 ----D---- C:\Program Files (x86)\Microsoft F#
2013-04-12 19:49:08 ----D---- C:\Program Files (x86)\HTML Help Workshop
2013-04-12 19:46:29 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 9.0
2013-04-12 19:46:06 ----D---- C:\Windows\system32\1033
2013-04-12 19:46:06 ----D---- C:\Windows\symbols
2013-04-12 19:46:05 ----D---- C:\Program Files\Microsoft Visual Studio 10.0
2013-04-12 19:46:05 ----D---- C:\Program Files\Microsoft Help Viewer
2013-04-12 19:46:05 ----D---- C:\Program Files (x86)\Reference Assemblies
2013-04-12 19:46:05 ----D---- C:\Program Files (x86)\Microsoft SDKs
2013-04-12 19:45:24 ----D---- C:\Windows\PCHEALTH
2013-04-12 18:50:17 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2013-04-12 18:50:13 ----D---- C:\Users\GAMELASTER\AppData\Roaming\DAEMON Tools Lite
2013-04-12 18:50:06 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2013-04-12 18:49:25 ----D---- C:\ProgramData\DAEMON Tools Lite
2013-04-12 18:34:24 ----A---- C:\Windows\system32\VtSrdAPO.dll
2013-04-12 18:34:24 ----A---- C:\Windows\system32\VIASysFx.dll
2013-04-12 18:34:24 ----A---- C:\Windows\system32\VIAPropPageExt.dll
2013-04-12 18:34:24 ----A---- C:\Windows\system32\ViaMicArrayPropPageExt.dll
2013-04-12 18:34:24 ----A---- C:\Windows\system32\ViaMicArrayAPO.dll
2013-04-12 18:34:24 ----A---- C:\Windows\system32\ViakaraokeSrv.exe
2013-04-12 18:34:24 ----A---- C:\Windows\system32\ViaKaraokePropPageExt.dll
2013-04-12 18:34:24 ----A---- C:\Windows\system32\ViaKaraokeApo.dll
2013-04-12 18:34:24 ----A---- C:\Windows\system32\PropPageExt.dll
2013-04-12 18:34:24 ----A---- C:\Windows\system32\nQPropPageExt.dll
2013-04-12 18:34:24 ----A---- C:\Windows\system32\nQAPO.dll
2013-04-12 18:34:24 ----A---- C:\Windows\system32\Dts2PropPageExt.dll
2013-04-12 18:34:24 ----A---- C:\Windows\system32\Dts2APO.dll
2013-04-12 18:34:24 ----A---- C:\Windows\system32\drivers\viahduaa.sys
2013-04-12 18:33:45 ----N---- C:\Windows\difxapi.dll
2013-04-12 18:33:44 ----D---- C:\Program Files (x86)\VIA
2013-04-12 18:29:06 ----A---- C:\Windows\system32\netcfg-4878265.txt
2013-04-12 18:29:06 ----A---- C:\Windows\system32\netcfg-4878156.txt
2013-04-12 18:29:05 ----A---- C:\Windows\system32\netcfg-4877296.txt
2013-04-12 18:28:20 ----RA---- C:\Windows\SYSWOW64\drivers\AsUpIO.sys
2013-04-12 18:28:13 ----A---- C:\Windows\SYSWOW64\drivers\UpdateHelper.dll
2013-04-12 18:28:07 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-04-12 18:27:33 ----D---- C:\ProgramData\ASUS
2013-04-12 18:27:21 ----N---- C:\Windows\SYSWOW64\AsIO.dll
2013-04-12 18:27:21 ----D---- C:\Program Files (x86)\ASUS
2013-04-12 18:27:21 ----A---- C:\Windows\SYSWOW64\drivers\AsIO.sys
2013-04-12 18:27:19 ----N---- C:\Windows\SYSWOW64\drivers\AsInsHelp64.sys
2013-04-12 18:27:19 ----N---- C:\Windows\SYSWOW64\drivers\AsInsHelp32.sys
2013-04-12 18:27:19 ----D---- C:\Windows\SYSWOW64\drivers\MFDLL
2013-04-12 18:25:48 ----A---- C:\Windows\Language_trs.ini
2013-04-12 18:25:47 ----A---- C:\Windows\SYSWOW64\drivers\ASUSHWIO.SYS
2013-04-12 18:25:47 ----A---- C:\Windows\Ascd_tmp.ini
2013-04-12 18:23:52 ----D---- C:\ProgramData\MTA San Andreas All
2013-04-12 18:23:52 ----D---- C:\Program Files (x86)\MTA San Andreas 1.3
2013-04-12 18:19:14 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Notepad++
2013-04-12 18:19:14 ----D---- C:\Program Files (x86)\Notepad++
2013-04-12 18:18:32 ----D---- C:\Program Files (x86)\WinSCP
2013-04-12 18:16:32 ----HD---- C:\ProgramData\Common Files
2013-04-12 18:16:32 ----D---- C:\ProgramData\MFAData
2013-04-12 18:16:07 ----D---- C:\Program Files (x86)\PuTTY
2013-04-12 18:09:06 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2013-04-12 18:09:06 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2013-04-12 18:09:06 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2013-04-12 18:09:06 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2013-04-12 18:09:06 ----A---- C:\Windows\system32\XAudio2_7.dll
2013-04-12 18:09:06 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2013-04-12 18:09:06 ----A---- C:\Windows\system32\xactengine3_7.dll
2013-04-12 18:09:06 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2013-04-12 18:09:05 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2013-04-12 18:09:05 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2013-04-12 18:09:05 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2013-04-12 18:09:05 ----A---- C:\Windows\system32\d3dx11_43.dll
2013-04-12 18:09:05 ----A---- C:\Windows\system32\d3dx10_43.dll
2013-04-12 18:09:05 ----A---- C:\Windows\system32\d3dcsx_43.dll
2013-04-12 18:09:04 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2013-04-12 18:09:04 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2013-04-12 18:09:04 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2013-04-12 18:09:04 ----A---- C:\Windows\system32\XAudio2_6.dll
2013-04-12 18:09:04 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2013-04-12 18:09:04 ----A---- C:\Windows\system32\D3DX9_43.dll
2013-04-12 18:09:03 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2013-04-12 18:09:03 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2013-04-12 18:09:03 ----A---- C:\Windows\system32\xactengine3_6.dll
2013-04-12 18:09:03 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2013-04-12 18:09:02 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2013-04-12 18:09:02 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2013-04-12 18:09:02 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2013-04-12 18:09:02 ----A---- C:\Windows\system32\XAudio2_5.dll
2013-04-12 18:09:02 ----A---- C:\Windows\system32\xactengine3_5.dll
2013-04-12 18:09:02 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2013-04-12 18:09:01 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2013-04-12 18:09:01 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2013-04-12 18:09:01 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2013-04-12 18:09:01 ----A---- C:\Windows\system32\d3dx11_42.dll
2013-04-12 18:09:01 ----A---- C:\Windows\system32\d3dx10_42.dll
2013-04-12 18:09:01 ----A---- C:\Windows\system32\d3dcsx_42.dll
2013-04-12 18:09:00 ----A---- C:\Windows\system32\D3DX9_42.dll
2013-04-12 18:08:59 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2013-04-12 18:08:59 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2013-04-12 18:08:59 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2013-04-12 18:08:59 ----A---- C:\Windows\system32\D3DX9_41.dll
2013-04-12 18:08:59 ----A---- C:\Windows\system32\d3dx10_41.dll
2013-04-12 18:08:59 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2013-04-12 18:08:58 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2013-04-12 18:08:58 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2013-04-12 18:08:58 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2013-04-12 18:08:58 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2013-04-12 18:08:58 ----A---- C:\Windows\system32\XAudio2_4.dll
2013-04-12 18:08:58 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2013-04-12 18:08:58 ----A---- C:\Windows\system32\xactengine3_4.dll
2013-04-12 18:08:58 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2013-04-12 18:08:57 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2013-04-12 18:08:57 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2013-04-12 18:08:57 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2013-04-12 18:08:57 ----A---- C:\Windows\system32\D3DX9_40.dll
2013-04-12 18:08:57 ----A---- C:\Windows\system32\d3dx10_40.dll
2013-04-12 18:08:57 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2013-04-12 18:08:56 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2013-04-12 18:08:56 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2013-04-12 18:08:56 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2013-04-12 18:08:56 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2013-04-12 18:08:56 ----A---- C:\Windows\system32\XAudio2_3.dll
2013-04-12 18:08:56 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2013-04-12 18:08:56 ----A---- C:\Windows\system32\xactengine3_3.dll
2013-04-12 18:08:56 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2013-04-12 18:08:55 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2013-04-12 18:08:55 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2013-04-12 18:08:55 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2013-04-12 18:08:55 ----A---- C:\Windows\system32\XAudio2_2.dll
2013-04-12 18:08:55 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2013-04-12 18:08:55 ----A---- C:\Windows\system32\xactengine3_2.dll
2013-04-12 18:08:55 ----A---- C:\Windows\system32\d3dx10_39.dll
2013-04-12 18:08:55 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2013-04-12 18:08:54 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2013-04-12 18:08:54 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2013-04-12 18:08:54 ----A---- C:\Windows\system32\XAudio2_1.dll
2013-04-12 18:08:54 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2013-04-12 18:08:54 ----A---- C:\Windows\system32\D3DX9_39.dll
2013-04-12 18:08:53 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2013-04-12 18:08:53 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2013-04-12 18:08:53 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2013-04-12 18:08:53 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2013-04-12 18:08:53 ----A---- C:\Windows\system32\xactengine3_1.dll
2013-04-12 18:08:53 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2013-04-12 18:08:53 ----A---- C:\Windows\system32\d3dx10_38.dll
2013-04-12 18:08:53 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2013-04-12 18:08:52 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2013-04-12 18:08:52 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2013-04-12 18:08:52 ----A---- C:\Windows\system32\XAudio2_0.dll
2013-04-12 18:08:52 ----A---- C:\Windows\system32\D3DX9_38.dll
2013-04-12 18:08:51 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2013-04-12 18:08:51 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2013-04-12 18:08:51 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2013-04-12 18:08:51 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2013-04-12 18:08:51 ----A---- C:\Windows\system32\xactengine3_0.dll
2013-04-12 18:08:51 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2013-04-12 18:08:51 ----A---- C:\Windows\system32\d3dx10_37.dll
2013-04-12 18:08:51 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2013-04-12 18:08:50 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2013-04-12 18:08:50 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2013-04-12 18:08:50 ----A---- C:\Windows\system32\xactengine2_10.dll
2013-04-12 18:08:50 ----A---- C:\Windows\system32\D3DX9_37.dll
2013-04-12 18:08:49 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2013-04-12 18:08:49 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2013-04-12 18:08:49 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2013-04-12 18:08:49 ----A---- C:\Windows\system32\d3dx9_36.dll
2013-04-12 18:08:49 ----A---- C:\Windows\system32\d3dx10_36.dll
2013-04-12 18:08:49 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2013-04-12 18:08:48 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2013-04-12 18:08:48 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2013-04-12 18:08:48 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2013-04-12 18:08:48 ----A---- C:\Windows\system32\xactengine2_9.dll
2013-04-12 18:08:48 ----A---- C:\Windows\system32\d3dx10_35.dll
2013-04-12 18:08:48 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2013-04-12 18:08:47 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2013-04-12 18:08:47 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2013-04-12 18:08:47 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2013-04-12 18:08:47 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2013-04-12 18:08:47 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2013-04-12 18:08:47 ----A---- C:\Windows\system32\xactengine2_8.dll
2013-04-12 18:08:47 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2013-04-12 18:08:47 ----A---- C:\Windows\system32\d3dx9_35.dll
2013-04-12 18:08:47 ----A---- C:\Windows\system32\d3dx10_34.dll
2013-04-12 18:08:47 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2013-04-12 18:08:46 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2013-04-12 18:08:46 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2013-04-12 18:08:46 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2013-04-12 18:08:46 ----A---- C:\Windows\system32\xinput1_3.dll
2013-04-12 18:08:46 ----A---- C:\Windows\system32\xactengine2_7.dll
2013-04-12 18:08:46 ----A---- C:\Windows\system32\d3dx9_34.dll
2013-04-12 18:08:45 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2013-04-12 18:08:45 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2013-04-12 18:08:45 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2013-04-12 18:08:45 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2013-04-12 18:08:45 ----A---- C:\Windows\system32\xactengine2_6.dll
2013-04-12 18:08:45 ----A---- C:\Windows\system32\d3dx9_33.dll
2013-04-12 18:08:45 ----A---- C:\Windows\system32\d3dx10_33.dll
2013-04-12 18:08:45 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2013-04-12 18:08:44 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2013-04-12 18:08:44 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2013-04-12 18:08:44 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2013-04-12 18:08:44 ----A---- C:\Windows\system32\xactengine2_5.dll
2013-04-12 18:08:44 ----A---- C:\Windows\system32\d3dx9_32.dll
2013-04-12 18:08:44 ----A---- C:\Windows\system32\d3dx10.dll
2013-04-12 18:08:43 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2013-04-12 18:08:43 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2013-04-12 18:08:43 ----A---- C:\Windows\system32\xactengine2_4.dll
2013-04-12 18:08:43 ----A---- C:\Windows\system32\x3daudio1_1.dll
2013-04-12 18:08:43 ----A---- C:\Windows\system32\d3dx9_31.dll
2013-04-12 18:08:42 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2013-04-12 18:08:42 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2013-04-12 18:08:42 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2013-04-12 18:08:42 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2013-04-12 18:08:42 ----A---- C:\Windows\system32\xinput1_2.dll
2013-04-12 18:08:42 ----A---- C:\Windows\system32\xinput1_1.dll
2013-04-12 18:08:42 ----A---- C:\Windows\system32\xactengine2_3.dll
2013-04-12 18:08:42 ----A---- C:\Windows\system32\xactengine2_2.dll
2013-04-12 18:08:41 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2013-04-12 18:08:41 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2013-04-12 18:08:41 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2013-04-12 18:08:41 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2013-04-12 18:08:41 ----A---- C:\Windows\system32\xactengine2_1.dll
2013-04-12 18:08:41 ----A---- C:\Windows\system32\xactengine2_0.dll
2013-04-12 18:08:41 ----A---- C:\Windows\system32\x3daudio1_0.dll
2013-04-12 18:08:41 ----A---- C:\Windows\system32\d3dx9_30.dll
2013-04-12 18:08:40 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2013-04-12 18:08:40 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2013-04-12 18:08:40 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2013-04-12 18:08:40 ----A---- C:\Windows\system32\d3dx9_29.dll
2013-04-12 18:08:40 ----A---- C:\Windows\system32\d3dx9_28.dll
2013-04-12 18:08:40 ----A---- C:\Windows\system32\d3dx9_27.dll
2013-04-12 18:08:39 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2013-04-12 18:08:39 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2013-04-12 18:08:39 ----A---- C:\Windows\system32\d3dx9_26.dll
2013-04-12 18:08:39 ----A---- C:\Windows\system32\d3dx9_25.dll
2013-04-12 18:08:39 ----A---- C:\Windows\system32\d3dx9_24.dll
2013-04-12 18:07:59 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-04-12 17:59:17 ----D---- C:\Program Files (x86)\Mafia 2 Multiplayer
2013-04-12 17:32:36 ----D---- C:\Program Files (x86)\Altap Salamander
2013-04-12 17:32:22 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2013-04-12 17:32:22 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2013-04-12 17:32:01 ----D---- C:\Program Files (x86)\Winamp Detect
2013-04-12 17:31:52 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Winamp
2013-04-12 17:31:52 ----D---- C:\Program Files (x86)\Winamp
2013-04-12 17:22:22 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-04-12 17:22:20 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-04-12 17:15:38 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Skype
2013-04-12 17:15:32 ----RD---- C:\Program Files (x86)\Skype
2013-04-12 17:15:22 ----D---- C:\ProgramData\Skype
2013-04-12 17:14:27 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Mozilla
2013-04-12 17:14:20 ----D---- C:\ProgramData\Mozilla
2013-04-12 17:07:08 ----RSHD---- C:\Windows Activation Technologies
2013-04-12 17:06:45 ----A---- C:\Windows\system32\SLCHook.dll
2013-03-22 17:32:56 ----A---- C:\Windows\SYSWOW64\IntelCpHeciSvc.exe
2013-03-22 17:32:56 ----A---- C:\Windows\system32\igfxtray.exe
2013-03-22 17:32:54 ----A---- C:\Windows\system32\igfxsrvc.exe
2013-03-22 17:32:54 ----A---- C:\Windows\system32\igfxpers.exe
2013-03-22 17:32:54 ----A---- C:\Windows\system32\igfxext.exe
2013-03-22 17:32:52 ----A---- C:\Windows\system32\hkcmd.exe
2013-03-22 17:32:52 ----A---- C:\Windows\system32\GfxUIHotKeyMenu.exe
2013-03-22 17:32:52 ----A---- C:\Windows\system32\GfxUIEx.exe
2013-03-22 17:32:50 ----A---- C:\Windows\system32\DPTopologyApp.exe
2013-03-22 17:32:50 ----A---- C:\Windows\system32\difx64.exe
2013-03-22 17:32:50 ----A---- C:\Windows\system32\CustomModeApp.exe
2013-03-19 21:37:46 ----A---- C:\Windows\system32\igfxCoIn_v3071.dll
2013-03-19 21:34:16 ----A---- C:\Windows\system32\igdrcl64.dll
2013-03-19 21:33:58 ----A---- C:\Windows\system32\igdbcl64.dll
2013-03-19 21:33:50 ----A---- C:\Windows\system32\IntelOpenCL64.dll
2013-03-19 21:33:34 ----A---- C:\Windows\SYSWOW64\igdrcl32.dll
2013-03-19 21:33:12 ----A---- C:\Windows\SYSWOW64\igdbcl32.dll
2013-03-19 21:33:10 ----A---- C:\Windows\SYSWOW64\IntelOpenCL32.dll
2013-03-19 21:32:48 ----A---- C:\Windows\system32\igdfcl64.dll
2013-03-19 21:32:10 ----A---- C:\Windows\SYSWOW64\ig7icd32.dll
2013-03-19 21:32:06 ----A---- C:\Windows\SYSWOW64\igdumdim32.dll
2013-03-19 21:32:04 ----A---- C:\Windows\SYSWOW64\igdde32.dll
2013-03-19 21:32:04 ----A---- C:\Windows\SYSWOW64\igd10iumd32.dll
2013-03-19 21:32:02 ----A---- C:\Windows\SYSWOW64\igdail32.dll
2013-03-19 21:31:54 ----A---- C:\Windows\system32\ig7icd64.dll
2013-03-19 21:31:48 ----A---- C:\Windows\system32\igdumdim64.dll
2013-03-19 21:31:44 ----A---- C:\Windows\system32\igdde64.dll
2013-03-19 21:31:44 ----A---- C:\Windows\system32\igd10iumd64.dll
2013-03-19 21:31:44 ----A---- C:\Windows\system32\drivers\igdkmd64.sys
2013-03-19 21:31:42 ----A---- C:\Windows\system32\igdail64.dll
2013-03-19 21:29:28 ----A---- C:\Windows\SYSWOW64\igdfcl32.dll
2013-03-19 21:27:56 ----A---- C:\Windows\SYSWOW64\igfxdv32.dll
2013-03-19 21:27:52 ----A---- C:\Windows\SYSWOW64\igfxexps32.dll
2013-03-19 21:27:44 ----A---- C:\Windows\system32\MetroIntelGenericUIFramework.dll
2013-03-19 21:27:44 ----A---- C:\Windows\system32\igfxTMM.dll
2013-03-19 21:27:44 ----A---- C:\Windows\system32\igfxdo.dll
2013-03-19 21:27:44 ----A---- C:\Windows\system32\IGFXDEVLib.dll
2013-03-19 21:27:44 ----A---- C:\Windows\system32\gfxSrvc.dll
2013-03-19 21:27:42 ----A---- C:\Windows\system32\igfxexps.dll
2013-03-19 21:27:42 ----A---- C:\Windows\system32\GfxRes.dll
2013-03-19 21:25:48 ----A---- C:\Windows\SYSWOW64\Intel_OpenCL_ICD32.dll
2013-03-19 21:25:48 ----A---- C:\Windows\system32\Intel_OpenCL_ICD64.dll
2013-03-19 21:25:44 ----A---- C:\Windows\SYSWOW64\iglhsip32.dll
2013-03-19 21:25:44 ----A---- C:\Windows\SYSWOW64\iglhcp32.dll
2013-03-19 21:25:44 ----A---- C:\Windows\SYSWOW64\igfxcmrt32.dll
2013-03-19 21:25:44 ----A---- C:\Windows\SYSWOW64\igfxcmjit32.dll
2013-03-19 21:25:44 ----A---- C:\Windows\SYSWOW64\igfx11cmrt32.dll
2013-03-19 21:25:44 ----A---- C:\Windows\system32\iglhsip64.dll
2013-03-19 21:25:44 ----A---- C:\Windows\system32\iglhcp64.dll
2013-03-19 21:25:44 ----A---- C:\Windows\system32\igfxcmrt64.dll
2013-03-19 21:25:44 ----A---- C:\Windows\system32\igfxcmjit64.dll
2013-03-19 21:25:44 ----A---- C:\Windows\system32\igfx11cmrt64.dll
2013-03-19 21:24:26 ----A---- C:\Windows\SYSWOW64\igdusc32.dll
2013-03-19 21:23:34 ----A---- C:\Windows\system32\igdusc64.dll
2013-02-26 23:40:46 ----A---- C:\Windows\system32\drivers\avgidsdrivera.sys
2013-02-24 23:37:28 ----A---- C:\Windows\system32\drivers\avgwfpa.sys
2013-02-08 04:37:56 ----A---- C:\Windows\system32\drivers\avgmfx64.sys
2013-02-08 04:37:54 ----A---- C:\Windows\system32\drivers\avgloga.sys
2013-02-08 04:37:50 ----A---- C:\Windows\system32\drivers\avgidsha.sys
2013-02-08 04:37:42 ----A---- C:\Windows\system32\drivers\avgldx64.sys
2013-02-08 04:37:40 ----A---- C:\Windows\system32\drivers\avgrkx64.sys
======List of files/folders modified in the last 3 months======
2013-05-05 09:10:07 ----RD---- C:\Program Files
2013-05-05 09:09:04 ----D---- C:\Windows\Temp
2013-05-04 22:00:00 ----D---- C:\Windows\system32\sru
2013-05-04 20:09:03 ----D---- C:\Windows\system32\config
2013-05-04 10:31:36 ----D---- C:\Windows
2013-05-03 19:07:32 ----RD---- C:\Program Files (x86)
2013-05-03 19:07:29 ----D---- C:\Windows\SysWOW64
2013-05-03 16:56:51 ----SHD---- C:\Windows\Installer
2013-05-03 16:56:39 ----D---- C:\Program Files\Internet Explorer
2013-05-03 16:56:20 ----HD---- C:\ProgramData
2013-05-03 16:55:41 ----D---- C:\Windows\WinSxS
2013-05-03 16:55:31 ----D---- C:\Program Files (x86)\Common Files
2013-05-03 16:55:14 ----D---- C:\Windows\system32\Tasks
2013-05-03 15:55:47 ----D---- C:\Windows\Microsoft.NET
2013-05-03 13:11:01 ----D---- C:\Windows\AUInstallAgent
2013-05-03 13:08:33 ----HD---- C:\Program Files\WindowsApps
2013-05-02 21:16:19 ----RD---- C:\Windows\System32
2013-05-01 21:02:07 ----RSD---- C:\Windows\assembly
2013-05-01 20:11:53 ----D---- C:\Windows\Logs
2013-05-01 07:59:26 ----D---- C:\Windows\Inf
2013-04-28 19:24:52 ----D---- C:\Windows\rescache
2013-04-28 17:19:02 ----RSD---- C:\Windows\Fonts
2013-04-28 16:19:45 ----SD---- C:\ProgramData\Microsoft
2013-04-28 16:17:35 ----D---- C:\Program Files\Common Files\microsoft shared
2013-04-28 16:13:32 ----D---- C:\Windows\CbsTemp
2013-04-28 16:01:26 ----D---- C:\Windows\SYSWOW64\drivers
2013-04-28 16:00:23 ----D---- C:\Windows\system32\Drivers
2013-04-28 16:00:17 ----D---- C:\Windows\system32\drivers\UMDF
2013-04-28 16:00:14 ----SD---- C:\Windows\system32\Microsoft
2013-04-28 16:00:14 ----D---- C:\Windows\system32\DriverStore
2013-04-28 15:59:43 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2013-04-28 13:48:51 ----D---- C:\Windows\system32\catroot
2013-04-28 13:47:15 ----D---- C:\Program Files\Common Files
2013-04-28 13:02:17 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-04-24 18:47:51 ----D---- C:\Windows\SYSWOW64\config
2013-04-23 17:48:51 ----D---- C:\Windows\system32\NDF
2013-04-22 22:18:39 ----D---- C:\Windows\system32\catroot2
2013-04-20 20:14:48 ----D---- C:\Windows\system32\wdi
2013-04-15 20:36:31 ----HD---- C:\Windows\ELAMBKUP
2013-04-14 14:09:08 ----D---- C:\Windows\SYSWOW64\en-US
2013-04-14 14:09:07 ----D---- C:\Windows\system32\en-US
2013-04-12 22:15:51 ----D---- C:\Windows\WinStore
2013-04-12 22:15:49 ----RD---- C:\Windows\ImmersiveControlPanel
2013-04-12 22:15:41 ----RD---- C:\Users
2013-04-12 22:01:41 ----D---- C:\Windows\system32\Recovery
2013-04-12 21:18:09 ----D---- C:\Windows\Tasks
2013-04-12 20:26:52 ----D---- C:\Program Files (x86)\Microsoft.NET
2013-04-12 19:55:27 ----SHD---- C:\$Recycle.Bin
2013-04-12 17:32:06 ----D---- C:\Windows\system32\restore
2013-03-19 21:27:46 ----A---- C:\Windows\system32\igfxsrvc.dll
2013-03-19 21:27:46 ----A---- C:\Windows\system32\igfxress.dll
2013-03-19 21:27:44 ----A---- C:\Windows\system32\igfxpph.dll
2013-03-19 21:27:44 ----A---- C:\Windows\system32\igfxdev.dll
2013-03-19 21:27:44 ----A---- C:\Windows\system32\hccutils.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ACPI;@acpi.inf,%ACPI.SvcDesc%;Microsoft ACPI Driver; C:\Windows\System32\drivers\ACPI.sys [2012-07-26 424688]
R0 acpiex;Microsoft ACPIEx Driver; C:\Windows\System32\Drivers\acpiex.sys [2012-07-26 77040]
R0 atapi;@mshdc.inf,%idechannel.DeviceDesc%;IDE Channel; C:\Windows\System32\drivers\atapi.sys [2012-07-26 25840]
R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2013-02-08 71480]
R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2013-02-08 311096]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2013-02-08 116536]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2013-02-08 45880]
R0 CLFS;@%SystemRoot%\system32\drivers\clfs.sys,-100; C:\Windows\System32\drivers\CLFS.sys [2012-07-26 361200]
R0 CNG;CNG; C:\Windows\System32\Drivers\cng.sys [2012-07-26 562400]
R0 disk;@disk.inf,%disk_ServiceDesc%;Disk Driver; C:\Windows\System32\drivers\disk.sys [2012-07-26 102640]
R0 EhStorClass;@%SystemRoot%\system32\drivers\EhStorClass.sys,-100; C:\Windows\System32\drivers\EhStorClass.sys [2012-07-26 81136]
R0 FileInfo;@%SystemRoot%\system32\drivers\fileinfo.sys,-100; C:\Windows\System32\drivers\fileinfo.sys [2012-07-26 71920]
R0 FltMgr;@%SystemRoot%\system32\drivers\fltmgr.sys,-10001; C:\Windows\system32\drivers\fltmgr.sys [2012-07-26 374512]
R0 fvevol;@%SystemRoot%\system32\drivers\fvevol.sys,-100; C:\Windows\System32\DRIVERS\fvevol.sys [2012-07-26 465136]
R0 KSecDD;KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [2012-07-26 100080]
R0 KSecPkg;KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [2012-07-26 172272]
R0 mountmgr;@%SystemRoot%\system32\drivers\mountmgr.sys,-100; C:\Windows\System32\drivers\mountmgr.sys [2012-07-26 93936]
R0 msisadrv;msisadrv; C:\Windows\System32\drivers\msisadrv.sys [2012-07-26 17136]
R0 Mup;@%systemroot%\system32\drivers\mup.sys,-101; C:\Windows\System32\Drivers\mup.sys [2012-07-26 83696]
R0 NDIS;@%SystemRoot%\system32\drivers\ndis.sys,-200; C:\Windows\system32\drivers\ndis.sys [2012-07-26 1000688]
R0 partmgr;@%SystemRoot%\system32\drivers\partmgr.sys,-100; C:\Windows\System32\drivers\partmgr.sys [2012-07-26 91888]
R0 pci;@machine.inf,%pci_svcdesc%;PCI Bus Driver; C:\Windows\System32\drivers\pci.sys [2012-07-26 234224]
R0 pciide;pciide; C:\Windows\System32\drivers\pciide.sys [2012-07-26 14064]
R0 pcw;Performance Counters for Windows Driver; C:\Windows\System32\drivers\pcw.sys [2012-07-26 52464]
R0 pdc;@%SystemRoot%\system32\drivers\pdc.sys,-100; C:\Windows\system32\drivers\pdc.sys [2012-07-26 68848]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2009-07-09 55280]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2012-07-26 217328]
R0 spaceport;@spaceport.inf,%Spaceport_ServiceDesc%;Storage Spaces Driver; C:\Windows\System32\drivers\spaceport.sys [2012-07-26 283888]
R0 Tcpip;@%SystemRoot%\system32\tcpipcfg.dll,-50003; C:\Windows\System32\drivers\tcpip.sys [2012-07-26 2224880]
R0 vdrvroot;@vdrvroot.inf,%vdrvroot_svcdesc%;Microsoft Virtual Drive Enumerator; C:\Windows\System32\drivers\vdrvroot.sys [2012-07-26 36080]
R0 volmgr;@volmgr.inf,%volmgr_svcdesc%;Volume Manager Driver; C:\Windows\System32\drivers\volmgr.sys [2012-07-26 83184]
R0 volmgrx;@%SystemRoot%\system32\drivers\volmgrx.sys,-100; C:\Windows\System32\drivers\volmgrx.sys [2012-07-26 378608]
R0 volsnap;@volume.inf,%VolumeClassName%;Storage volumes; C:\Windows\System32\drivers\volsnap.sys [2012-07-26 332016]
R0 Wdf01000;@%SystemRoot%\system32\drivers\Wdf01000.sys,-1000; C:\Windows\system32\drivers\Wdf01000.sys [2012-07-26 785512]
R0 WFPLWFS;@%SystemRoot%\System32\drivers\wfplwfs.sys,-6000; C:\Windows\system32\DRIVERS\wfplwfs.sys [2012-07-26 96496]
R1 AFD;@%systemroot%\system32\drivers\afd.sys,-1000; C:\Windows\system32\drivers\afd.sys [2012-07-26 561152]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2012-08-22 15232]
R1 AsUpIO;AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [2010-08-03 14464]
R1 Avgfwfd;@oem10.inf,%AvgfwfdService_Desc%;AVG network filter service; C:\Windows\system32\DRIVERS\avgfwd6a.sys [2012-09-04 50296]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2013-02-26 246072]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2013-02-08 206136]
R1 Avgwfpa;AVG Firewall Driver; C:\Windows\system32\DRIVERS\avgwfpa.sys [2013-02-24 247608]
R1 BasicDisplay;BasicDisplay; C:\Windows\System32\drivers\BasicDisplay.sys [2012-07-26 48640]
R1 BasicRender;BasicRender; C:\Windows\System32\drivers\BasicRender.sys [2012-07-26 29696]
R1 Beep;Beep; C:\Windows\system32\drivers\Beep.sys [2012-07-26 7680]
R1 cdrom;@cdrom.inf,%cdrom_ServiceDesc%;CD-ROM Driver; C:\Windows\System32\drivers\cdrom.sys [2012-07-26 174080]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2012-07-26 571392]
R1 Dfsc;@%systemroot%\system32\wkssvc.dll,-1008; C:\Windows\System32\Drivers\dfsc.sys [2012-07-26 118784]
R1 discache;@%systemroot%\system32\drivers\discache.sys,-102; C:\Windows\System32\drivers\discache.sys [2012-07-26 50688]
R1 dtsoftbus01;@oem5.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\Windows\System32\drivers\dtsoftbus01.sys [2013-04-12 283200]
R1 Msfs;Msfs; C:\Windows\system32\drivers\Msfs.sys [2012-07-26 26112]
R1 mssmbios;@mssmbios.inf,%mssmbios_svcdesc%;Microsoft System Management BIOS Driver; C:\Windows\System32\drivers\mssmbios.sys [2012-07-26 37616]
R1 ndisrd;@oem3.inf,%ndisrd_Desc%;WinpkFilter LightWeight Filter; C:\Windows\system32\DRIVERS\ndisrd.sys [2012-05-31 32400]
R1 NetBIOS;@netnb.inf,%NetBIOS_Desc%;NetBIOS Interface; C:\Windows\system32\DRIVERS\netbios.sys [2012-07-26 46080]
R1 NetBT;@%SystemRoot%\system32\drivers\netbt.sys,-2; C:\Windows\System32\DRIVERS\netbt.sys [2012-07-26 331776]
R1 Npfs;Npfs; C:\Windows\system32\drivers\Npfs.sys [2012-07-26 49152]
R1 npsvctrig;@npsvctrig.inf,%NPSVCTRIG.SvcDisplayName%;Named pipe service trigger provider; C:\Windows\System32\drivers\npsvctrig.sys [2012-07-26 23552]
R1 nsiproxy;@%SystemRoot%\system32\drivers\nsiproxy.sys,-2; C:\Windows\system32\drivers\nsiproxy.sys [2012-07-26 34304]
R1 Null;Null; C:\Windows\system32\drivers\Null.sys [2012-07-26 5632]
R1 Psched;@%SystemRoot%\System32\drivers\pacer.sys,-101; C:\Windows\system32\DRIVERS\pacer.sys [2012-07-26 145408]
R1 rdbss;@%systemroot%\system32\wkssvc.dll,-1000; C:\Windows\system32\DRIVERS\rdbss.sys [2012-07-26 423936]
R1 tdx;@%SystemRoot%\system32\tcpipcfg.dll,-50004; C:\Windows\system32\DRIVERS\tdx.sys [2012-07-26 117248]
R1 Wanarpv6;@%systemroot%\system32\rascfg.dll,-32012; C:\Windows\system32\DRIVERS\wanarp.sys [2012-07-26 83456]
R2 lltdio;@%SystemRoot%\system32\lltdres.dll,-6; C:\Windows\system32\DRIVERS\lltdio.sys [2012-07-26 60416]
R2 luafv;@%systemroot%\system32\drivers\luafv.sys,-100; C:\Windows\system32\drivers\luafv.sys [2012-07-26 134144]
R2 Ndu;@%SystemRoot%\system32\drivers\Ndu.sys,-10001; C:\Windows\system32\drivers\Ndu.sys [2012-07-26 97792]
R2 PEAUTH;PEAUTH; C:\Windows\system32\drivers\peauth.sys [2012-07-26 804864]
R2 rspndr;@%SystemRoot%\system32\lltdres.dll,-5; C:\Windows\system32\DRIVERS\rspndr.sys [2012-07-26 78848]
R2 secdrv;Security Driver; C:\Windows\system32\drivers\secdrv.sys [2012-07-26 23040]
R2 tcpipreg;TCP/IP Registry Compatibility; C:\Windows\System32\drivers\tcpipreg.sys [2012-07-26 45056]
R3 ASUSFILTER;ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [2011-09-20 46152]
R3 bowser;@%systemroot%\system32\browser.dll,-102; C:\Windows\system32\DRIVERS\bowser.sys [2012-07-26 101888]
R3 CompositeBus;@CompositeBus.inf,%CompositeBus.SVCDESC%;Composite Bus Enumerator Driver; C:\Windows\System32\drivers\CompositeBus.sys [2012-07-26 36352]
R3 condrv;Console Driver; C:\Windows\System32\drivers\condrv.sys [2012-07-26 33792]
R3 DXGKrnl;LDDM Graphics Subsystem; C:\Windows\System32\drivers\dxgkrnl.sys [2012-07-26 1448688]
R3 HDAudBus;@hdaudbus.inf,%HDAudBus.SVCDESC%;Microsoft UAA Bus Driver for High Definition Audio; C:\Windows\System32\drivers\HDAudBus.sys [2012-07-26 71168]
R3 HidUsb;@input.inf,%HID.SvcDesc%;Microsoft HID Class Driver; C:\Windows\System32\drivers\hidusb.sys [2012-07-26 27648]
R3 HTTP;@%SystemRoot%\system32\drivers\http.sys,-1; C:\Windows\system32\drivers\HTTP.sys [2012-07-26 859136]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2013-03-19 4534784]
R3 intelppm;@cpu.inf,%IntelPPM.SvcDesc%;Intel Processor Driver; C:\Windows\System32\drivers\intelppm.sys [2012-07-26 89088]
R3 kbdclass;@keyboard.inf,%kbdclass.SvcDesc%;Keyboard Class Driver; C:\Windows\System32\drivers\kbdclass.sys [2012-07-26 48368]
R3 kbdhid;@keyboard.inf,%KBDHID.SvcDesc%;Keyboard HID Driver; C:\Windows\System32\drivers\kbdhid.sys [2012-07-26 29184]
R3 kdnic;@kdnic.inf,%KdNic.Service.DispName%;Microsoft Kernel Debug Network Miniport (NDIS 6.20); C:\Windows\system32\DRIVERS\kdnic.sys [2012-07-26 18432]
R3 ksthunk;Kernel Streaming Thunks; C:\Windows\system32\drivers\ksthunk.sys [2012-07-26 21376]
R3 MEIx64;@oem2.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\drivers\HECIx64.sys [2013-01-11 64624]
R3 monitor;@monitor.inf,%Monitor.SVCDESC%;Microsoft Monitor Class Function Driver Service; C:\Windows\system32\DRIVERS\monitor.sys [2012-07-26 30720]
R3 mouclass;@msmouse.inf,%mouclass.SvcDesc%;Mouse Class Driver; C:\Windows\System32\drivers\mouclass.sys [2012-07-26 45808]
R3 mouhid;@msmouse.inf,%MOUHID.SvcDesc%;Mouse HID Driver; C:\Windows\System32\drivers\mouhid.sys [2012-07-26 26112]
R3 mrxsmb;@%systemroot%\system32\wkssvc.dll,-1002; C:\Windows\system32\DRIVERS\mrxsmb.sys [2012-07-26 368128]
R3 mrxsmb10;@%systemroot%\system32\wkssvc.dll,-1004; C:\Windows\system32\DRIVERS\mrxsmb10.sys [2012-07-26 279552]
R3 mrxsmb20;@%systemroot%\system32\wkssvc.dll,-1006; C:\Windows\system32\DRIVERS\mrxsmb20.sys [2012-07-26 214016]
R3 NativeWifiP;@%SystemRoot%\System32\drivers\nwifi.sys,-101; C:\Windows\system32\DRIVERS\nwifi.sys [2012-07-26 427520]
R3 NdisTapi;@%systemroot%\system32\rascfg.dll,-32001; C:\Windows\system32\DRIVERS\ndistapi.sys [2012-07-26 25088]
R3 Ndisuio;@ndisuio.inf,%NDISUIO_Desc%;NDIS Usermode I/O Protocol; C:\Windows\system32\DRIVERS\ndisuio.sys [2012-07-26 58880]
R3 NdisWan;@%systemroot%\system32\rascfg.dll,-32002; C:\Windows\system32\DRIVERS\ndiswan.sys [2012-07-26 174080]
R3 NDProxy;NDIS Proxy; C:\Windows\system32\drivers\NDProxy.sys [2012-07-26 60416]
R3 Ntfs;Ntfs; C:\Windows\system32\drivers\Ntfs.sys [2012-07-26 1934064]
R3 Parport;@msports.inf,%Parport.SVCDESC%;Parallel port driver; C:\Windows\System32\drivers\parport.sys [2012-07-26 105984]
R3 PptpMiniport;@%systemroot%\system32\rascfg.dll,-32006; C:\Windows\system32\DRIVERS\raspptp.sys [2012-07-26 114176]
R3 RasAgileVpn;@netavpna.inf,%Svc-Mp-AgileVpn-DispName%;WAN Miniport (IKEv2); C:\Windows\system32\DRIVERS\AgileVpn.sys [2012-07-26 68608]
R3 Rasl2tp;@%systemroot%\system32\rascfg.dll,-32005; C:\Windows\system32\DRIVERS\rasl2tp.sys [2012-07-26 124928]
R3 RasPppoe;@%systemroot%\system32\rascfg.dll,-32007; C:\Windows\system32\DRIVERS\raspppoe.sys [2012-07-26 81920]
R3 RasSstp;@%systemroot%\system32\sstpsvc.dll,-202; C:\Windows\system32\DRIVERS\rassstp.sys [2012-07-26 92672]
R3 rdpbus;@rdpbus.inf,%rdpbus_svcdesc%;Remote Desktop Device Redirector Bus Driver; C:\Windows\System32\drivers\rdpbus.sys [2012-07-26 22528]
R3 RDPDR;@%SystemRoot%\System32\DRIVERS\rdpdr.sys,-100; C:\Windows\System32\drivers\rdpdr.sys [2012-07-26 179712]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-07-26 27888]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2012-06-02 589824]
R3 SensorsSimulatorDriver;@oem9.inf,%WudfSensorsSimulatorDriverDisplayName%;UMDF Reflector service for SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 198656]
R3 Serenum;@msports.inf,%Serenum.SVCDESC%;Serenum Filter Driver; C:\Windows\System32\drivers\serenum.sys [2012-07-26 23040]
R3 Serial;@msports.inf,%Serial.SVCDESC%;Serial port driver; C:\Windows\System32\drivers\serial.sys [2012-07-26 76800]
R3 srv;@%systemroot%\system32\srvsvc.dll,-102; C:\Windows\System32\DRIVERS\srv.sys [2012-07-26 416768]
R3 srv2;@%systemroot%\system32\srvsvc.dll,-104; C:\Windows\System32\DRIVERS\srv2.sys [2012-07-26 619520]
R3 srvnet;srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [2012-07-26 248832]
R3 swenum;@swenum.inf,%SWENUM.SVCDESC%;Software Bus Driver; C:\Windows\System32\drivers\swenum.sys [2012-07-26 13680]
R3 TPM;@tpm.inf,%TPM%;TPM; C:\Windows\system32\drivers\tpm.sys [2012-07-26 148720]
R3 tunnel;@nettun.inf,%TUNNEL.Service.DisplayName%;Microsoft Tunnel Miniport Adapter Driver; C:\Windows\system32\DRIVERS\tunnel.sys [2012-07-26 149504]
R3 UCX01000;USB Controller Extension; C:\Windows\System32\drivers\ucx01000.sys [2012-07-26 212208]
R3 umbus;@umbus.inf,%umbus.SVCDESC%;UMBus Enumerator Driver; C:\Windows\System32\drivers\umbus.sys [2012-07-26 48128]
R3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;USB Audio Driver (WDM); C:\Windows\system32\drivers\usbaudio.sys [2012-07-26 121856]
R3 usbccgp;@usb.inf,%GenericParent.SvcDesc%;Microsoft USB Generic Parent Driver; C:\Windows\System32\drivers\usbccgp.sys [2012-07-26 120832]
R3 usbehci;@usbport.inf,%EHCIMP.SvcDesc%;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\Windows\System32\drivers\usbehci.sys [2012-07-26 78576]
R3 usbhub;@usbport.inf,%ROOTHUB.SvcDesc%;Microsoft USB Standard Hub Driver; C:\Windows\System32\drivers\usbhub.sys [2012-07-26 496368]
R3 USBHUB3;@usbhub3.inf,%UsbHub3.SVCDESC%;SuperSpeed Hub; C:\Windows\System32\drivers\UsbHub3.sys [2012-07-26 445168]
R3 USBXHCI;@usbxhci.inf,%PCI\CC_0C0330.DeviceDesc%;USB xHCI Compliant Host Controller; C:\Windows\System32\drivers\USBXHCI.SYS [2012-07-26 337136]
R3 VIAHdAudAddService;@oem4.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2012-07-07 2201744]
R3 WmiAcpi;@wmiacpi.inf,%WMIMAP.SvcDesc%;Microsoft Windows Management Interface for ACPI; C:\Windows\System32\drivers\wmiacpi.sys [2012-07-26 17408]
R4 cdfs;CD/DVD File System Reader; C:\Windows\system32\DRIVERS\cdfs.sys [2012-07-26 108544]
S0 3ware;3ware; C:\Windows\System32\drivers\3ware.sys [2012-07-26 106736]
S0 adp94xx;adp94xx; C:\Windows\System32\drivers\adp94xx.sys [2012-07-26 492272]
S0 adpahci;adpahci; C:\Windows\System32\drivers\adpahci.sys [2012-07-26 340720]
S0 adpu320;adpu320; C:\Windows\System32\drivers\adpu320.sys [2012-07-26 184048]
S0 agp440;@machine.inf,%agp440_svcdesc%;Intel AGP Bus Filter; C:\Windows\System32\drivers\agp440.sys [2012-07-26 63216]
S0 amdsata;amdsata; C:\Windows\System32\drivers\amdsata.sys [2012-07-26 76016]
S0 amdsbs;amdsbs; C:\Windows\System32\drivers\amdsbs.sys [2012-07-26 258288]
S0 amdxata;amdxata; C:\Windows\System32\drivers\amdxata.sys [2012-07-26 26352]
S0 arc;arc; C:\Windows\System32\drivers\arc.sys [2012-07-26 104688]
S0 arcsas;@arcsas.inf,%arcsas_ServiceName%;Adaptec SAS/SATA-II RAID Windows Inbox Miniport Driver; C:\Windows\System32\drivers\arcsas.sys [2012-07-26 108272]
S0 Avgboota;AVG Early Launch Anti-Malware Driver; C:\Windows\system32\DRIVERS\avgboota.sys [2012-10-26 20912]
S0 b06bdrv;@netbvbda.inf,%vbd_srv_desc%;Broadcom NetXtreme II VBD; C:\Windows\System32\drivers\bxvbda.sys [2012-07-26 539376]
S0 ebdrv;@netevbda.inf,%vbd_srv_desc%;Broadcom NetXtreme II 10 GigE VBD; C:\Windows\System32\drivers\evbda.sys [2012-07-26 3295984]
S0 EhStorTcgDrv;@ehstortcgdrv.inf,%EhStorTcgDrv.Desc%;Microsoft driver for storage devices supporting IEEE 1667 and TCG protocols; C:\Windows\System32\drivers\EhStorTcgDrv.sys [2012-07-26 113904]
S0 gagp30kx;@machine.inf,%gagp30kx_svcdesc%;Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms; C:\Windows\System32\drivers\gagp30kx.sys [2012-07-26 66800]
S0 HpSAMD;HpSAMD; C:\Windows\System32\drivers\HpSAMD.sys [2012-07-26 64752]
S0 hwpolicy;@%systemroot%\system32\drivers\hwpolicy.sys,-101; C:\Windows\System32\drivers\hwpolicy.sys [2012-07-26 24816]
S0 iaStorV;@iastorv.inf,%*PNP0600.DeviceDesc%;Intel RAID Controller Windows 7; C:\Windows\System32\drivers\iaStorV.sys [2012-07-26 411888]
S0 iirsp;iirsp; C:\Windows\System32\drivers\iirsp.sys [2012-07-26 45296]
S0 intelide;intelide; C:\Windows\System32\drivers\intelide.sys [2012-07-26 18672]
S0 isapnp;isapnp; C:\Windows\System32\drivers\isapnp.sys [2012-07-26 22256]
S0 LSI_SAS;LSI_SAS; C:\Windows\System32\drivers\lsi_sas.sys [2012-07-26 108784]
S0 LSI_SAS2;LSI_SAS2; C:\Windows\System32\drivers\lsi_sas2.sys [2012-07-26 92400]
S0 LSI_SCSI;LSI_SCSI; C:\Windows\System32\drivers\lsi_scsi.sys [2012-07-26 116976]
S0 LSI_SSS;LSI_SSS; C:\Windows\System32\drivers\lsi_sss.sys [2012-07-26 81136]
S0 megasas;megasas; C:\Windows\System32\drivers\megasas.sys [2012-07-26 51952]
S0 MegaSR;MegaSR; C:\Windows\System32\drivers\MegaSR.sys [2012-07-26 353008]
S0 mvumis;mvumis; C:\Windows\System32\drivers\mvumis.sys [2012-07-26 64240]
S0 nfrd960;nfrd960; C:\Windows\System32\drivers\nfrd960.sys [2012-07-26 52464]
S0 nv_agp;@machine.inf,%agpnvidia_svcdesc%;NVIDIA nForce AGP Bus Filter; C:\Windows\System32\drivers\nv_agp.sys [2012-07-26 125168]
S0 nvraid;nvraid; C:\Windows\System32\drivers\nvraid.sys [2012-07-26 150256]
S0 nvstor;nvstor; C:\Windows\System32\drivers\nvstor.sys [2012-07-26 168176]
S0 pcmcia;pcmcia; C:\Windows\System32\drivers\pcmcia.sys [2012-07-26 237808]
S0 sbp2port;@sbp2.inf,%sbp2_ServiceDesc%;SBP-2 Transport/Protocol Bus Driver; C:\Windows\System32\drivers\sbp2port.sys [2012-07-26 107760]
S0 SiSRaid2;SiSRaid2; C:\Windows\System32\drivers\SiSRaid2.sys [2012-07-26 44784]
S0 SiSRaid4;SiSRaid4; C:\Windows\System32\drivers\sisraid4.sys [2012-07-26 81648]
S0 stexstor;stexstor; C:\Windows\System32\drivers\stexstor.sys [2012-07-26 30960]
S0 storahci;@mshdc.inf,%storahci_ServiceDescription%;Microsoft Standard SATA AHCI Driver; C:\Windows\System32\drivers\storahci.sys [2012-07-26 77552]
S0 storflt;@%SystemRoot%\system32\vmstorfltres.dll,-1000; C:\Windows\system32\DRIVERS\vmstorfl.sys [2012-07-26 45160]
S0 storvsc;storvsc; C:\Windows\System32\drivers\storvsc.sys [2012-07-26 37992]
S0 uagp35;@machine.inf,%uagp35_svcdesc%;Microsoft AGPv3.5 Filter; C:\Windows\System32\drivers\uagp35.sys [2012-07-26 65776]
S0 uliagpkx;@machine.inf,%uliagpkx_svcdesc%;Uli AGP Bus Filter; C:\Windows\System32\drivers\uliagpkx.sys [2012-07-26 66800]
S0 viaide;viaide; C:\Windows\System32\drivers\viaide.sys [2012-07-26 19184]
S0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\System32\drivers\vmbus.sys [2012-07-26 137832]
S0 vsmraid;vsmraid; C:\Windows\System32\drivers\vsmraid.sys [2012-07-26 164080]
S0 VSTXRAID;@vstxraid.inf,%Driver.DeviceDesc%;VIA StorX Storage Controller Windows Driver; C:\Windows\System32\drivers\vstxraid.sys [2012-07-26 322800]
S0 Wd;@wd.inf,%WdServiceDisplayName%;Microsoft Watchdog Timer Driver; C:\Windows\System32\drivers\wd.sys [2012-07-26 23792]
S1 dam;@%SystemRoot%\system32\drivers\dam.sys,-100; C:\Windows\system32\drivers\dam.sys [2012-07-26 55024]
S3 1394ohci;@1394.inf,%PCI\CC_0C0010.DeviceDesc%;1394 OHCI Compliant Host Controller; C:\Windows\System32\drivers\1394ohci.sys [2012-07-26 226304]
S3 acpipagr;@acpipagr.inf,%SvcDesc%;ACPI Processor Aggregator Driver; C:\Windows\System32\drivers\acpipagr.sys [2012-07-26 10240]
S3 AcpiPmi;@acpipmi.inf,%AcpiPmi.SvcDesc%;ACPI Power Meter Driver; C:\Windows\System32\drivers\acpipmi.sys
-
GAMELASTER
- Návštěvník
- Příspěvky: 107
- Registrován: 13 led 2012 16:53
Re: Virus Generic29.AJGE nejede smazat
[2012-07-26 12288]
S3 acpitime;@acpitime.inf,%AcpiTime.SvcDesc%;ACPI Wake Alarm Driver; C:\Windows\System32\drivers\acpitime.sys [2012-07-26 10752]
S3 AmdK8;@cpu.inf,%AmdK8.SvcDesc%;AMD K8 Processor Driver; C:\Windows\System32\drivers\amdk8.sys [2012-07-26 90624]
S3 AmdPPM;@cpu.inf,%AmdPPM.SvcDesc%;AMD Processor Driver; C:\Windows\System32\drivers\amdppm.sys [2012-07-26 88064]
S3 AppID;@%systemroot%\system32\appidsvc.dll,-102; C:\Windows\system32\drivers\appid.sys [2012-07-26 79360]
S3 AsyncMac;@%systemroot%\system32\rascfg.dll,-32000; C:\Windows\system32\DRIVERS\asyncmac.sys [2012-07-26 26624]
S3 athrusb;@oem9.inf,%ATHR.Service.DispName%;Atheros Wireless LAN USB device driver; C:\Windows\system32\DRIVERS\athrxusb.sys [2008-07-29 1075712]
S3 BthAvrcpTg;@bthaudhid.inf,%BthAvrcpTg_SvcDesc%;Bluetooth Audio/Video Remote Control HID; C:\Windows\System32\drivers\BthAvrcpTg.sys [2012-07-26 31104]
S3 BthHFEnum;@bthhfenum.inf,%BthHFEnum.SVCDESC%;Bluetooth Hands-Free Audio and Call Control HID Enumerator; C:\Windows\System32\drivers\bthhfenum.sys [2012-07-26 51200]
S3 bthhfhid;@bthaudhid.inf,%BthAudioHFHid.SVCDESC%;Bluetooth Hands-Free Call Control HID; C:\Windows\System32\drivers\BthHFHid.sys [2012-07-26 29952]
S3 BTHMODEM;@bthspp.inf,%BthSerial.DisplayName%;Bluetooth Serial Communications Driver; C:\Windows\System32\drivers\bthmodem.sys [2012-07-26 65536]
S3 circlass;@circlass.inf,%circlass.SVCDESC%;Consumer IR Devices; C:\Windows\System32\drivers\circlass.sys [2012-07-26 45056]
S3 CmBatt;@cmbatt.inf,%CmBatt.SvcDesc%;Microsoft ACPI Control Method Battery Driver; C:\Windows\System32\drivers\CmBatt.sys [2012-07-26 25600]
S3 dmvsc;dmvsc; C:\Windows\System32\drivers\dmvsc.sys [2012-07-26 33280]
S3 drmkaud;@wdmaudio.inf,%drmkaud.SvcDesc%;Microsoft Trusted Audio Drivers; C:\Windows\system32\drivers\drmkaud.sys [2012-07-26 5632]
S3 ErrDev;@errdev.inf,%ERRDEV.SvcDesc%;Microsoft Hardware Error Device Driver; C:\Windows\System32\drivers\errdev.sys [2012-07-26 10240]
S3 exfat;exFAT File System Driver; C:\Windows\system32\drivers\exfat.sys [2012-07-26 194560]
S3 FairplayKD;FairplayKD; \??\C:\ProgramData\MTA San Andreas All\1.3\temp\FairplayKD.sys []
S3 fastfat;FAT12/16/32 File System Driver; C:\Windows\system32\drivers\fastfat.sys [2012-07-26 210672]
S3 fdc;@fdc.inf,%fdc_ServiceDesc%;Floppy Disk Controller Driver; C:\Windows\System32\drivers\fdc.sys [2012-07-26 30720]
S3 Filetrace;@%SystemRoot%\system32\drivers\filetrace.sys,-10001; C:\Windows\system32\drivers\filetrace.sys [2012-07-26 34816]
S3 flpydisk;@flpydisk.inf,%floppy_ServiceDesc%;Floppy Disk Driver; C:\Windows\System32\drivers\flpydisk.sys [2012-07-26 24576]
S3 FsDepends;@%SystemRoot%\system32\drivers\fsdepends.sys,-10001; C:\Windows\System32\drivers\FsDepends.sys [2012-07-26 57584]
S3 FxPPM;@cpu.inf,%FxPPM.SvcDesc%;Power Framework Processor Driver; C:\Windows\System32\drivers\fxppm.sys [2012-07-26 22528]
S3 gencounter;@wgencounter.inf,%GenCounter.SVCDESC%;Microsoft Hyper-V Generation Counter; C:\Windows\System32\drivers\vmgencounter.sys [2012-07-26 12288]
S3 GPIOClx0101;Microsoft GPIO Class Extension Driver; C:\Windows\System32\Drivers\msgpioclx.sys [2012-07-26 120048]
S3 HdAudAddService;@hdaudio.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2012-07-26 339968]
S3 HidBatt;@hidbatt.inf,%HidBatt.SvcDesc%;HID UPS Battery Driver; C:\Windows\System32\drivers\HidBatt.sys [2012-07-26 27136]
S3 HidBth;@hidbth.inf,%HIDBTH.SvcDesc%;Microsoft Bluetooth HID Miniport; C:\Windows\System32\drivers\hidbth.sys [2012-07-26 95744]
S3 hidi2c;@hidi2c.inf,%hidi2c.SVCDESC%;Microsoft I2C HID Miniport Driver; C:\Windows\System32\drivers\hidi2c.sys [2012-07-26 38400]
S3 HidIr;@hidir.inf,%HIDIR.SvcDesc%;Microsoft Infrared HID Driver; C:\Windows\System32\drivers\hidir.sys [2012-07-26 46080]
S3 hyperkbd;hyperkbd; C:\Windows\System32\drivers\hyperkbd.sys [2012-07-26 11776]
S3 HyperVideo;HyperVideo; C:\Windows\system32\DRIVERS\HyperVideo.sys [2012-07-26 24576]
S3 i8042prt;@keyboard.inf,%i8042prt.SvcDesc%;i8042 Keyboard and PS/2 Mouse Port Driver; C:\Windows\System32\drivers\i8042prt.sys [2012-07-26 112640]
S3 IpFilterDriver;@%systemroot%\system32\rascfg.dll,-32013; C:\Windows\system32\DRIVERS\ipfltdrv.sys [2012-07-26 89088]
S3 IPMIDRV;IPMIDRV; C:\Windows\System32\drivers\IPMIDrv.sys [2012-07-26 78336]
S3 IPNAT;IP Network Address Translator; C:\Windows\System32\drivers\ipnat.sys [2012-07-26 145920]
S3 IRENUM;@%SystemRoot%\system32\drivers\irenum.sys,-100; C:\Windows\system32\drivers\irenum.sys [2012-07-26 17920]
S3 iScsiPrt;@iscsi.inf,%iScsiPortName%;iScsiPort Driver; C:\Windows\System32\drivers\msiscsi.sys [2012-07-26 277744]
S3 Modem;Modem; C:\Windows\system32\drivers\modem.sys [2012-07-26 40448]
S3 mpsdrv;@%SystemRoot%\system32\FirewallAPI.dll,-23092; C:\Windows\System32\drivers\mpsdrv.sys [2012-07-26 74752]
S3 MRxDAV;@%systemroot%\system32\webclnt.dll,-104; C:\Windows\system32\drivers\mrxdav.sys [2012-07-26 141312]
S3 MsBridge;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2012-07-26 129536]
S3 msgpiowin32;@msgpiowin32.inf,%GPIO.SvcDesc%;GPIO Buttons Driver; C:\Windows\System32\drivers\msgpiowin32.sys [2012-07-26 28400]
S3 mshidkmdf;@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100; C:\Windows\System32\drivers\mshidkmdf.sys [2012-07-26 8704]
S3 mshidumdf;@%SystemRoot%\system32\drivers\mshidumdf.sys,-100; C:\Windows\System32\drivers\mshidumdf.sys [2012-07-26 10752]
S3 MSKSSRV;@ksfilter.inf,%MSKSSRV.DeviceDesc%;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2012-07-26 11008]
S3 MsLldp;@C:\Windows\system32\DRIVERS\mslldp.sys,-200; C:\Windows\system32\DRIVERS\mslldp.sys [2012-07-26 68608]
S3 MSPCLOCK;@ksfilter.inf,%MSPCLOCK.DeviceDesc%;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2012-07-26 7168]
S3 MSPQM;@ksfilter.inf,%MSPQM.DeviceDesc%;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2012-07-26 6912]
S3 MsRPC;MsRPC; C:\Windows\system32\drivers\MsRPC.sys [2012-07-26 390896]
S3 MSTEE;@ksfilter.inf,%MSTEE.DeviceDesc%;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2012-07-26 8192]
S3 MTConfig;@mtconfig.inf,%MTConfig.SVCDESC%;Microsoft Input Configuration Driver; C:\Windows\System32\drivers\MTConfig.sys [2012-07-26 14848]
S3 NdisCap;@%SystemRoot%\System32\drivers\ndiscap.sys,-5000; C:\Windows\system32\DRIVERS\ndiscap.sys [2012-07-26 46592]
S3 NdisImPlatform;@%SystemRoot%\System32\drivers\ndisimplatform.sys,-501; C:\Windows\system32\DRIVERS\NdisImPlatform.sys [2012-07-26 126464]
S3 NDISWANLEGACY;@%systemroot%\system32\rascfg.dll,-32014; C:\Windows\system32\DRIVERS\ndiswan.sys [2012-07-26 174080]
S3 pneteth;@oem8.inf,%pneteth.Service.DispName%;PdaNet Broadband; C:\Windows\system32\DRIVERS\pneteth.sys [2011-11-25 15360]
S3 Processor;@cpu.inf,%Processor.SvcDesc%;Processor Driver; C:\Windows\System32\drivers\processr.sys [2012-07-26 87552]
S3 QWAVEdrv;@%SystemRoot%\system32\drivers\qwavedrv.sys,-1; C:\Windows\system32\drivers\qwavedrv.sys [2012-07-26 46592]
S3 RasAcd;Remote Access Auto Connection Driver; C:\Windows\System32\DRIVERS\rasacd.sys [2012-07-26 16384]
S3 RDPWD;RDP Winstation Driver; C:\Windows\system32\drivers\RDPWD.sys [2012-07-26 208384]
S3 s3cap;s3cap; C:\Windows\System32\drivers\vms3cap.sys [2012-07-26 7168]
S3 scfilter;@%SystemRoot%\System32\drivers\scfilter.sys,-11; C:\Windows\System32\DRIVERS\scfilter.sys [2012-07-26 36864]
S3 sdbus;sdbus; C:\Windows\System32\drivers\sdbus.sys [2012-07-26 193264]
S3 sdstor;@sdstor.inf,%sdstor_ServiceDesc%;SD Storage Port Driver; C:\Windows\System32\drivers\sdstor.sys [2012-07-26 56560]
S3 SerCx;Serial UART Support Library; C:\Windows\system32\drivers\SerCx.sys [2012-07-26 62976]
S3 sermouse;@msmouse.inf,%sermouse.SvcDesc%;Serial Mouse Driver; C:\Windows\System32\drivers\sermouse.sys [2012-07-26 27136]
S3 sfloppy;@flpydisk.inf,%sfloppy_devdesc%;High-Capacity Floppy Disk Drive; C:\Windows\System32\drivers\sfloppy.sys [2012-07-26 16896]
S3 SpbCx;Simple Peripheral Bus Support Library; C:\Windows\system32\drivers\SpbCx.sys [2012-07-26 59392]
S3 storvsp;storvsp; C:\Windows\System32\drivers\storvsp.sys [2012-07-26 67584]
S3 TCPIP6;@netip6.inf,%MS_TCPIP6.TCPIP6.ServiceDescription%;Microsoft IPv6 Protocol Driver; C:\Windows\system32\DRIVERS\tcpip.sys [2012-07-26 2224880]
S3 terminpt;@termmou.inf,%TermInpt.SVCDESC%;Microsoft Remote Desktop Input Driver; C:\Windows\System32\drivers\terminpt.sys [2012-07-26 36592]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-07-26 57344]
S3 TsUsbGD;@tsgenericusbdriver.inf,%TsUsbGD.DeviceDesc.Generic%;Remote Desktop Generic USB Device; C:\Windows\System32\drivers\TsUsbGD.sys [2012-07-26 30208]
S3 UASPStor;@uaspstor.inf,%UASPortName%;USB Attached SCSI (UAS) Driver; C:\Windows\System32\drivers\uaspstor.sys [2012-07-26 97008]
S3 UmPass;@umpass.inf,%UmPass.SVCDESC%;Microsoft UMPass Driver; C:\Windows\System32\drivers\umpass.sys [2012-07-26 11776]
S3 usbcir;@usbcir.inf,%usbcir.SVCDESC%;eHome Infrared Receiver (USBCIR); C:\Windows\System32\drivers\usbcir.sys [2012-07-26 99328]
S3 usbohci;@usbport.inf,%OHCIMP.SvcDesc%;Microsoft USB Open Host Controller Miniport Driver; C:\Windows\System32\drivers\usbohci.sys [2012-07-26 27136]
S3 usbprint;@usbprint.inf,%USBPRINT.SvcDesc%;Microsoft USB PRINTER Class; C:\Windows\System32\drivers\usbprint.sys [2012-07-26 25600]
S3 USBSTOR;@usbstor.inf,%USBSTOR.SvcDesc%;USB Mass Storage Driver; C:\Windows\System32\drivers\USBSTOR.SYS [2012-07-26 119024]
S3 usbuhci;@usbport.inf,%UHCIMP.SvcDesc%;Microsoft USB Universal Host Controller Miniport Driver; C:\Windows\System32\drivers\usbuhci.sys [2012-07-26 32256]
S3 VerifierExt;@%SystemRoot%\system32\drivers\VerifierExt.sys,-1000; C:\Windows\system32\drivers\VerifierExt.sys [2012-07-26 106224]
S3 vhdmp;vhdmp; C:\Windows\System32\drivers\vhdmp.sys [2012-07-26 496368]
S3 Vid;Vid; C:\Windows\System32\drivers\Vid.sys [2012-07-26 203776]
S3 VMBusHID;VMBusHID; C:\Windows\System32\drivers\VMBusHID.sys [2012-07-26 22144]
S3 vmbusr;@%SystemRoot%\system32\vmbusres.dll,-1001; C:\Windows\System32\drivers\vmbusr.sys [2012-07-26 117248]
S3 vpci;@wvpci.inf,%vpci.SVCDESC%;Microsoft Hyper-V Virtual PCI Bus; C:\Windows\System32\drivers\vpci.sys [2012-07-26 67824]
S3 vpcivsp;@wvpcivsp.inf,%vpcivsp.SVCDESC%;Microsoft Hyper-V PCI Server; C:\Windows\System32\drivers\vpcivsp.sys [2012-07-26 66048]
S3 VSPerfDrv100;Performance Tools Driver 10.0; \??\C:\Program Files (x86)\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\x64\VSPerfDrv100.sys [2010-03-17 68440]
S3 VSPerfDrv110;Performance Tools Driver 11.0; \??\E:\Program Files (x86)\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\x64\VSPerfDrv110.sys [2012-07-13 70264]
S3 vwifibus;@%SystemRoot%\System32\drivers\vwifibus.sys,-257; C:\Windows\System32\drivers\vwifibus.sys [2012-07-26 24064]
S3 WacomPen;@hiddigi.inf,%WacomPen.SVCDESC%;Wacom Serial Pen HID Driver; C:\Windows\System32\drivers\wacompen.sys [2012-07-26 27008]
S3 Wanarp;@%systemroot%\system32\rascfg.dll,-32011; C:\Windows\system32\DRIVERS\wanarp.sys [2012-07-26 83456]
S3 WdBoot;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-390; C:\Windows\system32\drivers\WdBoot.sys [2012-07-26 34216]
S3 WdFilter;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-330; C:\Windows\system32\drivers\WdFilter.sys [2012-07-26 258288]
S3 WIMMount;WIMMount; C:\Windows\system32\drivers\wimmount.sys [2012-07-26 33520]
S3 WinUSB;@oem7.inf,%WinUSB_SvcDesc%;Android USB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2012-07-26 57344]
S4 RsFx0103;RsFx0103 Driver; C:\Windows\system32\DRIVERS\RsFx0103.sys [2009-03-30 311656]
S4 udfs;udfs; C:\Windows\system32\DRIVERS\udfs.sys [2012-07-26 321024]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [2012-06-01 920736]
R2 asHmComSvc;ASUS HM Com Service; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [2012-06-01 951936]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [2012-02-17 149120]
R2 AsusFanControlService;AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.01.06\AsusFanControlService.exe [2012-05-02 1475200]
R2 AudioEndpointBuilder;@%SystemRoot%\system32\AudioEndpointBuilder.dll,-204; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R2 Audiosrv;@%SystemRoot%\system32\audiosrv.dll,-200; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R2 avgfws;AVG Firewall; C:\Program Files (x86)\AVG\AVG2013\avgfws.exe [2013-02-19 1418184]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [2013-02-27 4937264]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [2013-02-19 282624]
R2 BITS;@%SystemRoot%\system32\qmgr.dll,-1000; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R2 BrokerInfrastructure;@%windir%\system32\bisrv.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 CryptSvc;@%SystemRoot%\system32\cryptsvc.dll,-1001; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 DcomLaunch;@combase.dll,-5012; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 DeviceAssociationService;@%SystemRoot%\system32\das.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 Dhcp;@%SystemRoot%\system32\dhcpcore.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 Dnscache;@%SystemRoot%\System32\dnsapi.dll,-101; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 DPS;@%systemroot%\system32\dps.dll,-500; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R2 EventLog;@%SystemRoot%\system32\wevtsvc.dll,-200; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R2 EventSystem;@comres.dll,-2450; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 gpsvc;@gpapi.dll,-112; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 LanmanServer;@%systemroot%\system32\srvsvc.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 LanmanWorkstation;@%systemroot%\system32\wkssvc.dll,-100; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R2 lmhosts;@%SystemRoot%\system32\lmhsvc.dll,-101; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 LSM;@%windir%\system32\lsm.dll,-1001; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 MMCSS;@%systemroot%\system32\mmcss.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [2009-03-30 57617752]
R2 NlaSvc;@%SystemRoot%\System32\nlasvc.dll,-1; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R2 nsi;@%SystemRoot%\system32\nsisvc.dll,-200; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 PcaSvc;@%SystemRoot%\system32\pcasvc.dll,-1; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 Power;@%SystemRoot%\system32\umpo.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 ProfSvc;@%systemroot%\system32\profsvc.dll,-300; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 RpcEptMapper;@%windir%\system32\RpcEpMap.dll,-1001; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 RpcSs;@combase.dll,-5010; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 SamSs;@%SystemRoot%\system32\samsrv.dll,-1; C:\Windows\system32\lsass.exe [2012-07-26 35840]
R2 SENS;@%SystemRoot%\system32\Sens.dll,-200; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 ShellHWDetection;@%SystemRoot%\System32\shsvcs.dll,-12288; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R2 Schedule;@%SystemRoot%\system32\schedsvc.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 Spooler;@%systemroot%\system32\spoolsv.exe,-1; C:\Windows\System32\spoolsv.exe [2012-07-26 769024]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-02-11 129624]
R2 SysMain;@%SystemRoot%\system32\sysmain.dll,-1000; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 Themes;@%SystemRoot%\System32\themeservice.dll,-8192; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R2 TrkWks;@%SystemRoot%\system32\trkwks.dll,-1; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R2 VIAKaraokeService;@oem4.inf,%ViaKaraokeSrv.SvcDesc%;VIA Karaoke digital mixer Service; C:\Windows\system32\viakaraokesrv.exe [2012-07-07 27792]
R2 Wcmsvc;@%SystemRoot%\System32\wcmsvc.dll,-4097; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 Winmgmt;@%Systemroot%\system32\wbem\wmisvc.dll,-205; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 WlanSvc;@%SystemRoot%\System32\wlansvc.dll,-257; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R3 AeLookupSvc;@%SystemRoot%\system32\aelupsvc.dll,-1; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R3 Appinfo;@%systemroot%\system32\appinfo.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R3 CertPropSvc;@%SystemRoot%\System32\certprop.dll,-11; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R3 hidserv;@%SystemRoot%\System32\hidserv.dll,-101; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
R3 msiserver;@%SystemRoot%\system32\msimsg.dll,-27; C:\Windows\system32\msiexec.exe [2012-07-26 124416]
R3 Netman;@%SystemRoot%\system32\netman.dll,-109; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R3 netprofm;@%SystemRoot%\system32\netprofmsvc.dll,-202; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R3 PlugPlay;@%SystemRoot%\system32\umpnpmgr.dll,-200; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R3 SessionEnv;@%SystemRoot%\System32\SessEnv.dll,-1026; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R3 SSDPSRV;@%systemroot%\system32\ssdpsrv.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R3 SystemEventsBroker;@%windir%\system32\SystemEventsBrokerServer.dll,-1001; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R3 TermService;@%SystemRoot%\System32\termsrv.dll,-268; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R3 TimeBroker;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R3 WdiServiceHost;@%systemroot%\system32\wdi.dll,-502; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R3 WdiSystemHost;@%systemroot%\system32\wdi.dll,-500; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R3 WinHttpAutoProxySvc;@%SystemRoot%\system32\winhttp.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R3 wmiApSrv;@%Systemroot%\system32\wbem\wmiapsrv.exe,-110; C:\Windows\system32\wbem\WmiApSrv.exe [2012-07-26 198144]
S2 Browser;@%systemroot%\system32\browser.dll,-100; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S2 IKEEXT;@%SystemRoot%\system32\ikeext.dll,-501; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S2 PolicyAgent;@%SystemRoot%\System32\polstore.dll,-5010; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-02-28 161384]
S2 sppsvc;@%SystemRoot%\system32\sppsvc.exe,-101; C:\Windows\system32\sppsvc.exe [2012-07-26 4881408]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-04-12 256904]
S3 ALG;@%SystemRoot%\system32\Alg.exe,-112; C:\Windows\System32\alg.exe [2012-07-26 94208]
S3 AllUserInstallAgent;@%SystemRoot%\System32\AUInstallAgent.dll,-101; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 AppIDSvc;@%systemroot%\system32\appidsvc.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-12 51648]
S3 AxInstSV;@%SystemRoot%\system32\AxInstSV.dll,-103; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 BDESVC;@%SystemRoot%\system32\bdesvc.dll,-100; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 bthserv;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 COMSysApp;@comres.dll,-947; C:\Windows\system32\dllhost.exe [2012-07-26 10752]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-03-22 279024]
S3 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 defragsvc;@%SystemRoot%\system32\defragsvc.dll,-101; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 DeviceInstall;@%SystemRoot%\system32\umpnpmgr.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 dot3svc;@%systemroot%\system32\dot3svc.dll,-1102; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 DsmSvc;@%SystemRoot%\system32\DeviceSetupManager.dll,-1000; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 Eaphost;@%systemroot%\system32\eapsvc.dll,-1; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 EFS;@%SystemRoot%\system32\efssvc.dll,-100; C:\Windows\System32\lsass.exe [2012-07-26 35840]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe [2012-07-26 669696]
S3 fdPHost;@%systemroot%\system32\fdPHost.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 FDResPub;@%systemroot%\system32\fdrespub.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 fhsvc;@%systemroot%\system32\fhsvc.dll,-101; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-06 43616]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe [2012-07-25 139776]
S3 hkmsvc;@%SystemRoot%\system32\kmsvc.dll,-6; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 HomeGroupListener;@%SystemRoot%\System32\ListSvc.dll,-100; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 HomeGroupProvider;@%SystemRoot%\System32\provsvc.dll,-100; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 KeyIso;@keyiso.dll,-100; C:\Windows\system32\lsass.exe [2012-07-26 35840]
S3 KtmRm;@comres.dll,-2946; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 lltdsvc;@%SystemRoot%\system32\lltdres.dll,-1; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-04-10 115608]
S3 MSDTC;@comres.dll,-2797; C:\Windows\System32\msdtc.exe [2012-07-26 144384]
S3 MSiSCSI;@%SystemRoot%\system32\iscsidsc.dll,-5000; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 napagent;@%SystemRoot%\system32\qagentrt.dll,-6; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 NcaSvc;@%SystemRoot%\system32\ncasvc.dll,-3009; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 NcdAutoSetup;@%SystemRoot%\system32\NcdAutoSetup.dll,-100; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 Netlogon;@%SystemRoot%\System32\netlogon.dll,-102; C:\Windows\system32\lsass.exe [2012-07-26 35840]
S3 p2pimsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8004; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 p2psvc;@%SystemRoot%\system32\p2psvc.dll,-8006; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 PerfHost;@%systemroot%\sysWow64\perfhost.exe,-2; C:\Windows\SysWow64\perfhost.exe [2012-07-26 20992]
S3 pla;@%systemroot%\system32\pla.dll,-500; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 PNRPAutoReg;@%SystemRoot%\system32\pnrpauto.dll,-8002; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 PNRPsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8000; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 PrintNotify;@C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll,-1; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 QWAVE;@%SystemRoot%\system32\qwave.dll,-1; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 RasAuto;@%Systemroot%\system32\rasauto.dll,-200; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 RasMan;@%Systemroot%\system32\rasmans.dll,-200; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 RpcLocator;@%systemroot%\system32\Locator.exe,-2; C:\Windows\system32\locator.exe [2012-07-26 9728]
S3 SCPolicySvc;@%SystemRoot%\System32\certprop.dll,-13; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 SDRSVC;@%SystemRoot%\system32\sdrsvc.dll,-107; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 seclogon;@%SystemRoot%\system32\seclogon.dll,-7001; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 SensrSvc;@%SystemRoot%\System32\sensrsvc.dll,-1000; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 SNMPTRAP;@%SystemRoot%\system32\snmptrap.exe,-3; C:\Windows\System32\snmptrap.exe [2012-07-26 14848]
S3 SstpSvc;@%SystemRoot%\system32\sstpsvc.dll,-200; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-03-29 543656]
S3 stisvc;@%SystemRoot%\system32\wiaservc.dll,-9; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 svsvc;@%SystemRoot%\system32\svsvc.dll,-101; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 swprv;@%SystemRoot%\System32\swprv.dll,-103; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 TabletInputService;@%SystemRoot%\system32\TabSvc.dll,-100; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 TapiSrv;@%SystemRoot%\system32\tapisrv.dll,-10100; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [2012-07-25 126976]
S3 THREADORDER;@%systemroot%\system32\mmcss.dll,-102; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 TrustedInstaller;@%SystemRoot%\servicing\TrustedInstaller.exe,-100; C:\Windows\servicing\TrustedInstaller.exe [2012-07-26 94208]
S3 UI0Detect;@%SystemRoot%\system32\ui0detect.exe,-101; C:\Windows\system32\UI0Detect.exe [2012-07-26 40960]
S3 upnphost;@%systemroot%\system32\upnphost.dll,-213; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 VaultSvc;@%SystemRoot%\system32\vaultsvc.dll,-1003; C:\Windows\system32\lsass.exe [2012-07-26 35840]
S3 vds;@%SystemRoot%\system32\vds.exe,-100; C:\Windows\System32\vds.exe [2012-07-26 680960]
S3 vmickvpexchange;@%systemroot%\system32\vmicres.dll,-201; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 vmicrdv;@%systemroot%\system32\vmicres.dll,-601; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 vmicshutdown;@%systemroot%\system32\vmicres.dll,-301; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 vmictimesync;@%systemroot%\system32\vmicres.dll,-401; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 vmicvss;@%systemroot%\system32\vmicres.dll,-501; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 vmicheartbeat;@%systemroot%\system32\vmicres.dll,-101; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 VSS;@%systemroot%\system32\vssvc.exe,-102; C:\Windows\system32\vssvc.exe [2012-07-26 1482752]
S3 W32Time;@%SystemRoot%\system32\w32time.dll,-200; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe [2012-07-26 1616896]
S3 WbioSrvc;@%systemroot%\system32\wbiosrvc.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 wcncsvc;@%SystemRoot%\system32\wcncsvc.dll,-3; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 WcsPlugInService;@%SystemRoot%\system32\WcsPlugInService.dll,-200; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 WebClient;@%systemroot%\system32\webclnt.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 Wecsvc;@%SystemRoot%\system32\wecsvc.dll,-200; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 wercplsupport;@%SystemRoot%\System32\wercplsupport.dll,-101; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 WerSvc;@%SystemRoot%\System32\wersvc.dll,-100; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 WiaRpc;@%SystemRoot%\system32\wiarpc.dll,-2; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 WinDefend;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310; C:\Program Files\Windows Defender\MsMpEng.exe [2012-07-26 15440]
S3 WinRM;@%Systemroot%\system32\wsmsvc.dll,-101; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 wlidsvc;@%SystemRoot%\system32\wlidsvc.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service; C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2009-07-22 61976]
S4 NetTcpPortSharing;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8201; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-12 139696]
S4 RemoteAccess;@%Systemroot%\system32\mprdim.dll,-200; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S4 RemoteRegistry;@regsvc.dll,-1; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S4 SCardSvr;@%SystemRoot%\System32\SCardSvr.dll,-1; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS); C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2009-03-30 427880]
S4 SQLBrowser;SQL Server Browser; C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2009-03-30 254808]
-----------------EOF-----------------
S3 acpitime;@acpitime.inf,%AcpiTime.SvcDesc%;ACPI Wake Alarm Driver; C:\Windows\System32\drivers\acpitime.sys [2012-07-26 10752]
S3 AmdK8;@cpu.inf,%AmdK8.SvcDesc%;AMD K8 Processor Driver; C:\Windows\System32\drivers\amdk8.sys [2012-07-26 90624]
S3 AmdPPM;@cpu.inf,%AmdPPM.SvcDesc%;AMD Processor Driver; C:\Windows\System32\drivers\amdppm.sys [2012-07-26 88064]
S3 AppID;@%systemroot%\system32\appidsvc.dll,-102; C:\Windows\system32\drivers\appid.sys [2012-07-26 79360]
S3 AsyncMac;@%systemroot%\system32\rascfg.dll,-32000; C:\Windows\system32\DRIVERS\asyncmac.sys [2012-07-26 26624]
S3 athrusb;@oem9.inf,%ATHR.Service.DispName%;Atheros Wireless LAN USB device driver; C:\Windows\system32\DRIVERS\athrxusb.sys [2008-07-29 1075712]
S3 BthAvrcpTg;@bthaudhid.inf,%BthAvrcpTg_SvcDesc%;Bluetooth Audio/Video Remote Control HID; C:\Windows\System32\drivers\BthAvrcpTg.sys [2012-07-26 31104]
S3 BthHFEnum;@bthhfenum.inf,%BthHFEnum.SVCDESC%;Bluetooth Hands-Free Audio and Call Control HID Enumerator; C:\Windows\System32\drivers\bthhfenum.sys [2012-07-26 51200]
S3 bthhfhid;@bthaudhid.inf,%BthAudioHFHid.SVCDESC%;Bluetooth Hands-Free Call Control HID; C:\Windows\System32\drivers\BthHFHid.sys [2012-07-26 29952]
S3 BTHMODEM;@bthspp.inf,%BthSerial.DisplayName%;Bluetooth Serial Communications Driver; C:\Windows\System32\drivers\bthmodem.sys [2012-07-26 65536]
S3 circlass;@circlass.inf,%circlass.SVCDESC%;Consumer IR Devices; C:\Windows\System32\drivers\circlass.sys [2012-07-26 45056]
S3 CmBatt;@cmbatt.inf,%CmBatt.SvcDesc%;Microsoft ACPI Control Method Battery Driver; C:\Windows\System32\drivers\CmBatt.sys [2012-07-26 25600]
S3 dmvsc;dmvsc; C:\Windows\System32\drivers\dmvsc.sys [2012-07-26 33280]
S3 drmkaud;@wdmaudio.inf,%drmkaud.SvcDesc%;Microsoft Trusted Audio Drivers; C:\Windows\system32\drivers\drmkaud.sys [2012-07-26 5632]
S3 ErrDev;@errdev.inf,%ERRDEV.SvcDesc%;Microsoft Hardware Error Device Driver; C:\Windows\System32\drivers\errdev.sys [2012-07-26 10240]
S3 exfat;exFAT File System Driver; C:\Windows\system32\drivers\exfat.sys [2012-07-26 194560]
S3 FairplayKD;FairplayKD; \??\C:\ProgramData\MTA San Andreas All\1.3\temp\FairplayKD.sys []
S3 fastfat;FAT12/16/32 File System Driver; C:\Windows\system32\drivers\fastfat.sys [2012-07-26 210672]
S3 fdc;@fdc.inf,%fdc_ServiceDesc%;Floppy Disk Controller Driver; C:\Windows\System32\drivers\fdc.sys [2012-07-26 30720]
S3 Filetrace;@%SystemRoot%\system32\drivers\filetrace.sys,-10001; C:\Windows\system32\drivers\filetrace.sys [2012-07-26 34816]
S3 flpydisk;@flpydisk.inf,%floppy_ServiceDesc%;Floppy Disk Driver; C:\Windows\System32\drivers\flpydisk.sys [2012-07-26 24576]
S3 FsDepends;@%SystemRoot%\system32\drivers\fsdepends.sys,-10001; C:\Windows\System32\drivers\FsDepends.sys [2012-07-26 57584]
S3 FxPPM;@cpu.inf,%FxPPM.SvcDesc%;Power Framework Processor Driver; C:\Windows\System32\drivers\fxppm.sys [2012-07-26 22528]
S3 gencounter;@wgencounter.inf,%GenCounter.SVCDESC%;Microsoft Hyper-V Generation Counter; C:\Windows\System32\drivers\vmgencounter.sys [2012-07-26 12288]
S3 GPIOClx0101;Microsoft GPIO Class Extension Driver; C:\Windows\System32\Drivers\msgpioclx.sys [2012-07-26 120048]
S3 HdAudAddService;@hdaudio.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2012-07-26 339968]
S3 HidBatt;@hidbatt.inf,%HidBatt.SvcDesc%;HID UPS Battery Driver; C:\Windows\System32\drivers\HidBatt.sys [2012-07-26 27136]
S3 HidBth;@hidbth.inf,%HIDBTH.SvcDesc%;Microsoft Bluetooth HID Miniport; C:\Windows\System32\drivers\hidbth.sys [2012-07-26 95744]
S3 hidi2c;@hidi2c.inf,%hidi2c.SVCDESC%;Microsoft I2C HID Miniport Driver; C:\Windows\System32\drivers\hidi2c.sys [2012-07-26 38400]
S3 HidIr;@hidir.inf,%HIDIR.SvcDesc%;Microsoft Infrared HID Driver; C:\Windows\System32\drivers\hidir.sys [2012-07-26 46080]
S3 hyperkbd;hyperkbd; C:\Windows\System32\drivers\hyperkbd.sys [2012-07-26 11776]
S3 HyperVideo;HyperVideo; C:\Windows\system32\DRIVERS\HyperVideo.sys [2012-07-26 24576]
S3 i8042prt;@keyboard.inf,%i8042prt.SvcDesc%;i8042 Keyboard and PS/2 Mouse Port Driver; C:\Windows\System32\drivers\i8042prt.sys [2012-07-26 112640]
S3 IpFilterDriver;@%systemroot%\system32\rascfg.dll,-32013; C:\Windows\system32\DRIVERS\ipfltdrv.sys [2012-07-26 89088]
S3 IPMIDRV;IPMIDRV; C:\Windows\System32\drivers\IPMIDrv.sys [2012-07-26 78336]
S3 IPNAT;IP Network Address Translator; C:\Windows\System32\drivers\ipnat.sys [2012-07-26 145920]
S3 IRENUM;@%SystemRoot%\system32\drivers\irenum.sys,-100; C:\Windows\system32\drivers\irenum.sys [2012-07-26 17920]
S3 iScsiPrt;@iscsi.inf,%iScsiPortName%;iScsiPort Driver; C:\Windows\System32\drivers\msiscsi.sys [2012-07-26 277744]
S3 Modem;Modem; C:\Windows\system32\drivers\modem.sys [2012-07-26 40448]
S3 mpsdrv;@%SystemRoot%\system32\FirewallAPI.dll,-23092; C:\Windows\System32\drivers\mpsdrv.sys [2012-07-26 74752]
S3 MRxDAV;@%systemroot%\system32\webclnt.dll,-104; C:\Windows\system32\drivers\mrxdav.sys [2012-07-26 141312]
S3 MsBridge;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2012-07-26 129536]
S3 msgpiowin32;@msgpiowin32.inf,%GPIO.SvcDesc%;GPIO Buttons Driver; C:\Windows\System32\drivers\msgpiowin32.sys [2012-07-26 28400]
S3 mshidkmdf;@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100; C:\Windows\System32\drivers\mshidkmdf.sys [2012-07-26 8704]
S3 mshidumdf;@%SystemRoot%\system32\drivers\mshidumdf.sys,-100; C:\Windows\System32\drivers\mshidumdf.sys [2012-07-26 10752]
S3 MSKSSRV;@ksfilter.inf,%MSKSSRV.DeviceDesc%;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2012-07-26 11008]
S3 MsLldp;@C:\Windows\system32\DRIVERS\mslldp.sys,-200; C:\Windows\system32\DRIVERS\mslldp.sys [2012-07-26 68608]
S3 MSPCLOCK;@ksfilter.inf,%MSPCLOCK.DeviceDesc%;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2012-07-26 7168]
S3 MSPQM;@ksfilter.inf,%MSPQM.DeviceDesc%;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2012-07-26 6912]
S3 MsRPC;MsRPC; C:\Windows\system32\drivers\MsRPC.sys [2012-07-26 390896]
S3 MSTEE;@ksfilter.inf,%MSTEE.DeviceDesc%;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2012-07-26 8192]
S3 MTConfig;@mtconfig.inf,%MTConfig.SVCDESC%;Microsoft Input Configuration Driver; C:\Windows\System32\drivers\MTConfig.sys [2012-07-26 14848]
S3 NdisCap;@%SystemRoot%\System32\drivers\ndiscap.sys,-5000; C:\Windows\system32\DRIVERS\ndiscap.sys [2012-07-26 46592]
S3 NdisImPlatform;@%SystemRoot%\System32\drivers\ndisimplatform.sys,-501; C:\Windows\system32\DRIVERS\NdisImPlatform.sys [2012-07-26 126464]
S3 NDISWANLEGACY;@%systemroot%\system32\rascfg.dll,-32014; C:\Windows\system32\DRIVERS\ndiswan.sys [2012-07-26 174080]
S3 pneteth;@oem8.inf,%pneteth.Service.DispName%;PdaNet Broadband; C:\Windows\system32\DRIVERS\pneteth.sys [2011-11-25 15360]
S3 Processor;@cpu.inf,%Processor.SvcDesc%;Processor Driver; C:\Windows\System32\drivers\processr.sys [2012-07-26 87552]
S3 QWAVEdrv;@%SystemRoot%\system32\drivers\qwavedrv.sys,-1; C:\Windows\system32\drivers\qwavedrv.sys [2012-07-26 46592]
S3 RasAcd;Remote Access Auto Connection Driver; C:\Windows\System32\DRIVERS\rasacd.sys [2012-07-26 16384]
S3 RDPWD;RDP Winstation Driver; C:\Windows\system32\drivers\RDPWD.sys [2012-07-26 208384]
S3 s3cap;s3cap; C:\Windows\System32\drivers\vms3cap.sys [2012-07-26 7168]
S3 scfilter;@%SystemRoot%\System32\drivers\scfilter.sys,-11; C:\Windows\System32\DRIVERS\scfilter.sys [2012-07-26 36864]
S3 sdbus;sdbus; C:\Windows\System32\drivers\sdbus.sys [2012-07-26 193264]
S3 sdstor;@sdstor.inf,%sdstor_ServiceDesc%;SD Storage Port Driver; C:\Windows\System32\drivers\sdstor.sys [2012-07-26 56560]
S3 SerCx;Serial UART Support Library; C:\Windows\system32\drivers\SerCx.sys [2012-07-26 62976]
S3 sermouse;@msmouse.inf,%sermouse.SvcDesc%;Serial Mouse Driver; C:\Windows\System32\drivers\sermouse.sys [2012-07-26 27136]
S3 sfloppy;@flpydisk.inf,%sfloppy_devdesc%;High-Capacity Floppy Disk Drive; C:\Windows\System32\drivers\sfloppy.sys [2012-07-26 16896]
S3 SpbCx;Simple Peripheral Bus Support Library; C:\Windows\system32\drivers\SpbCx.sys [2012-07-26 59392]
S3 storvsp;storvsp; C:\Windows\System32\drivers\storvsp.sys [2012-07-26 67584]
S3 TCPIP6;@netip6.inf,%MS_TCPIP6.TCPIP6.ServiceDescription%;Microsoft IPv6 Protocol Driver; C:\Windows\system32\DRIVERS\tcpip.sys [2012-07-26 2224880]
S3 terminpt;@termmou.inf,%TermInpt.SVCDESC%;Microsoft Remote Desktop Input Driver; C:\Windows\System32\drivers\terminpt.sys [2012-07-26 36592]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-07-26 57344]
S3 TsUsbGD;@tsgenericusbdriver.inf,%TsUsbGD.DeviceDesc.Generic%;Remote Desktop Generic USB Device; C:\Windows\System32\drivers\TsUsbGD.sys [2012-07-26 30208]
S3 UASPStor;@uaspstor.inf,%UASPortName%;USB Attached SCSI (UAS) Driver; C:\Windows\System32\drivers\uaspstor.sys [2012-07-26 97008]
S3 UmPass;@umpass.inf,%UmPass.SVCDESC%;Microsoft UMPass Driver; C:\Windows\System32\drivers\umpass.sys [2012-07-26 11776]
S3 usbcir;@usbcir.inf,%usbcir.SVCDESC%;eHome Infrared Receiver (USBCIR); C:\Windows\System32\drivers\usbcir.sys [2012-07-26 99328]
S3 usbohci;@usbport.inf,%OHCIMP.SvcDesc%;Microsoft USB Open Host Controller Miniport Driver; C:\Windows\System32\drivers\usbohci.sys [2012-07-26 27136]
S3 usbprint;@usbprint.inf,%USBPRINT.SvcDesc%;Microsoft USB PRINTER Class; C:\Windows\System32\drivers\usbprint.sys [2012-07-26 25600]
S3 USBSTOR;@usbstor.inf,%USBSTOR.SvcDesc%;USB Mass Storage Driver; C:\Windows\System32\drivers\USBSTOR.SYS [2012-07-26 119024]
S3 usbuhci;@usbport.inf,%UHCIMP.SvcDesc%;Microsoft USB Universal Host Controller Miniport Driver; C:\Windows\System32\drivers\usbuhci.sys [2012-07-26 32256]
S3 VerifierExt;@%SystemRoot%\system32\drivers\VerifierExt.sys,-1000; C:\Windows\system32\drivers\VerifierExt.sys [2012-07-26 106224]
S3 vhdmp;vhdmp; C:\Windows\System32\drivers\vhdmp.sys [2012-07-26 496368]
S3 Vid;Vid; C:\Windows\System32\drivers\Vid.sys [2012-07-26 203776]
S3 VMBusHID;VMBusHID; C:\Windows\System32\drivers\VMBusHID.sys [2012-07-26 22144]
S3 vmbusr;@%SystemRoot%\system32\vmbusres.dll,-1001; C:\Windows\System32\drivers\vmbusr.sys [2012-07-26 117248]
S3 vpci;@wvpci.inf,%vpci.SVCDESC%;Microsoft Hyper-V Virtual PCI Bus; C:\Windows\System32\drivers\vpci.sys [2012-07-26 67824]
S3 vpcivsp;@wvpcivsp.inf,%vpcivsp.SVCDESC%;Microsoft Hyper-V PCI Server; C:\Windows\System32\drivers\vpcivsp.sys [2012-07-26 66048]
S3 VSPerfDrv100;Performance Tools Driver 10.0; \??\C:\Program Files (x86)\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\x64\VSPerfDrv100.sys [2010-03-17 68440]
S3 VSPerfDrv110;Performance Tools Driver 11.0; \??\E:\Program Files (x86)\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\x64\VSPerfDrv110.sys [2012-07-13 70264]
S3 vwifibus;@%SystemRoot%\System32\drivers\vwifibus.sys,-257; C:\Windows\System32\drivers\vwifibus.sys [2012-07-26 24064]
S3 WacomPen;@hiddigi.inf,%WacomPen.SVCDESC%;Wacom Serial Pen HID Driver; C:\Windows\System32\drivers\wacompen.sys [2012-07-26 27008]
S3 Wanarp;@%systemroot%\system32\rascfg.dll,-32011; C:\Windows\system32\DRIVERS\wanarp.sys [2012-07-26 83456]
S3 WdBoot;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-390; C:\Windows\system32\drivers\WdBoot.sys [2012-07-26 34216]
S3 WdFilter;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-330; C:\Windows\system32\drivers\WdFilter.sys [2012-07-26 258288]
S3 WIMMount;WIMMount; C:\Windows\system32\drivers\wimmount.sys [2012-07-26 33520]
S3 WinUSB;@oem7.inf,%WinUSB_SvcDesc%;Android USB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2012-07-26 57344]
S4 RsFx0103;RsFx0103 Driver; C:\Windows\system32\DRIVERS\RsFx0103.sys [2009-03-30 311656]
S4 udfs;udfs; C:\Windows\system32\DRIVERS\udfs.sys [2012-07-26 321024]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [2012-06-01 920736]
R2 asHmComSvc;ASUS HM Com Service; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [2012-06-01 951936]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [2012-02-17 149120]
R2 AsusFanControlService;AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.01.06\AsusFanControlService.exe [2012-05-02 1475200]
R2 AudioEndpointBuilder;@%SystemRoot%\system32\AudioEndpointBuilder.dll,-204; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R2 Audiosrv;@%SystemRoot%\system32\audiosrv.dll,-200; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R2 avgfws;AVG Firewall; C:\Program Files (x86)\AVG\AVG2013\avgfws.exe [2013-02-19 1418184]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [2013-02-27 4937264]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [2013-02-19 282624]
R2 BITS;@%SystemRoot%\system32\qmgr.dll,-1000; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R2 BrokerInfrastructure;@%windir%\system32\bisrv.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 CryptSvc;@%SystemRoot%\system32\cryptsvc.dll,-1001; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 DcomLaunch;@combase.dll,-5012; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 DeviceAssociationService;@%SystemRoot%\system32\das.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 Dhcp;@%SystemRoot%\system32\dhcpcore.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 Dnscache;@%SystemRoot%\System32\dnsapi.dll,-101; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 DPS;@%systemroot%\system32\dps.dll,-500; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R2 EventLog;@%SystemRoot%\system32\wevtsvc.dll,-200; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R2 EventSystem;@comres.dll,-2450; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 gpsvc;@gpapi.dll,-112; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 LanmanServer;@%systemroot%\system32\srvsvc.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 LanmanWorkstation;@%systemroot%\system32\wkssvc.dll,-100; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R2 lmhosts;@%SystemRoot%\system32\lmhsvc.dll,-101; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 LSM;@%windir%\system32\lsm.dll,-1001; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 MMCSS;@%systemroot%\system32\mmcss.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [2009-03-30 57617752]
R2 NlaSvc;@%SystemRoot%\System32\nlasvc.dll,-1; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R2 nsi;@%SystemRoot%\system32\nsisvc.dll,-200; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 PcaSvc;@%SystemRoot%\system32\pcasvc.dll,-1; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 Power;@%SystemRoot%\system32\umpo.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 ProfSvc;@%systemroot%\system32\profsvc.dll,-300; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 RpcEptMapper;@%windir%\system32\RpcEpMap.dll,-1001; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 RpcSs;@combase.dll,-5010; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 SamSs;@%SystemRoot%\system32\samsrv.dll,-1; C:\Windows\system32\lsass.exe [2012-07-26 35840]
R2 SENS;@%SystemRoot%\system32\Sens.dll,-200; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 ShellHWDetection;@%SystemRoot%\System32\shsvcs.dll,-12288; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R2 Schedule;@%SystemRoot%\system32\schedsvc.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 Spooler;@%systemroot%\system32\spoolsv.exe,-1; C:\Windows\System32\spoolsv.exe [2012-07-26 769024]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-02-11 129624]
R2 SysMain;@%SystemRoot%\system32\sysmain.dll,-1000; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 Themes;@%SystemRoot%\System32\themeservice.dll,-8192; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R2 TrkWks;@%SystemRoot%\system32\trkwks.dll,-1; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R2 VIAKaraokeService;@oem4.inf,%ViaKaraokeSrv.SvcDesc%;VIA Karaoke digital mixer Service; C:\Windows\system32\viakaraokesrv.exe [2012-07-07 27792]
R2 Wcmsvc;@%SystemRoot%\System32\wcmsvc.dll,-4097; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 Winmgmt;@%Systemroot%\system32\wbem\wmisvc.dll,-205; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R2 WlanSvc;@%SystemRoot%\System32\wlansvc.dll,-257; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R3 AeLookupSvc;@%SystemRoot%\system32\aelupsvc.dll,-1; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R3 Appinfo;@%systemroot%\system32\appinfo.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R3 CertPropSvc;@%SystemRoot%\System32\certprop.dll,-11; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R3 hidserv;@%SystemRoot%\System32\hidserv.dll,-101; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
R3 msiserver;@%SystemRoot%\system32\msimsg.dll,-27; C:\Windows\system32\msiexec.exe [2012-07-26 124416]
R3 Netman;@%SystemRoot%\system32\netman.dll,-109; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R3 netprofm;@%SystemRoot%\system32\netprofmsvc.dll,-202; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R3 PlugPlay;@%SystemRoot%\system32\umpnpmgr.dll,-200; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R3 SessionEnv;@%SystemRoot%\System32\SessEnv.dll,-1026; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R3 SSDPSRV;@%systemroot%\system32\ssdpsrv.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R3 SystemEventsBroker;@%windir%\system32\SystemEventsBrokerServer.dll,-1001; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R3 TermService;@%SystemRoot%\System32\termsrv.dll,-268; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R3 TimeBroker;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R3 WdiServiceHost;@%systemroot%\system32\wdi.dll,-502; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R3 WdiSystemHost;@%systemroot%\system32\wdi.dll,-500; C:\Windows\System32\svchost.exe [2012-07-26 30208]
R3 WinHttpAutoProxySvc;@%SystemRoot%\system32\winhttp.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
R3 wmiApSrv;@%Systemroot%\system32\wbem\wmiapsrv.exe,-110; C:\Windows\system32\wbem\WmiApSrv.exe [2012-07-26 198144]
S2 Browser;@%systemroot%\system32\browser.dll,-100; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S2 IKEEXT;@%SystemRoot%\system32\ikeext.dll,-501; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S2 PolicyAgent;@%SystemRoot%\System32\polstore.dll,-5010; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-02-28 161384]
S2 sppsvc;@%SystemRoot%\system32\sppsvc.exe,-101; C:\Windows\system32\sppsvc.exe [2012-07-26 4881408]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-04-12 256904]
S3 ALG;@%SystemRoot%\system32\Alg.exe,-112; C:\Windows\System32\alg.exe [2012-07-26 94208]
S3 AllUserInstallAgent;@%SystemRoot%\System32\AUInstallAgent.dll,-101; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 AppIDSvc;@%systemroot%\system32\appidsvc.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-12 51648]
S3 AxInstSV;@%SystemRoot%\system32\AxInstSV.dll,-103; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 BDESVC;@%SystemRoot%\system32\bdesvc.dll,-100; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 bthserv;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 COMSysApp;@comres.dll,-947; C:\Windows\system32\dllhost.exe [2012-07-26 10752]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-03-22 279024]
S3 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 defragsvc;@%SystemRoot%\system32\defragsvc.dll,-101; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 DeviceInstall;@%SystemRoot%\system32\umpnpmgr.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 dot3svc;@%systemroot%\system32\dot3svc.dll,-1102; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 DsmSvc;@%SystemRoot%\system32\DeviceSetupManager.dll,-1000; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 Eaphost;@%systemroot%\system32\eapsvc.dll,-1; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 EFS;@%SystemRoot%\system32\efssvc.dll,-100; C:\Windows\System32\lsass.exe [2012-07-26 35840]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe [2012-07-26 669696]
S3 fdPHost;@%systemroot%\system32\fdPHost.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 FDResPub;@%systemroot%\system32\fdrespub.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 fhsvc;@%systemroot%\system32\fhsvc.dll,-101; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-06 43616]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe [2012-07-25 139776]
S3 hkmsvc;@%SystemRoot%\system32\kmsvc.dll,-6; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 HomeGroupListener;@%SystemRoot%\System32\ListSvc.dll,-100; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 HomeGroupProvider;@%SystemRoot%\System32\provsvc.dll,-100; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 KeyIso;@keyiso.dll,-100; C:\Windows\system32\lsass.exe [2012-07-26 35840]
S3 KtmRm;@comres.dll,-2946; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 lltdsvc;@%SystemRoot%\system32\lltdres.dll,-1; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-04-10 115608]
S3 MSDTC;@comres.dll,-2797; C:\Windows\System32\msdtc.exe [2012-07-26 144384]
S3 MSiSCSI;@%SystemRoot%\system32\iscsidsc.dll,-5000; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 napagent;@%SystemRoot%\system32\qagentrt.dll,-6; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 NcaSvc;@%SystemRoot%\system32\ncasvc.dll,-3009; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 NcdAutoSetup;@%SystemRoot%\system32\NcdAutoSetup.dll,-100; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 Netlogon;@%SystemRoot%\System32\netlogon.dll,-102; C:\Windows\system32\lsass.exe [2012-07-26 35840]
S3 p2pimsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8004; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 p2psvc;@%SystemRoot%\system32\p2psvc.dll,-8006; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 PerfHost;@%systemroot%\sysWow64\perfhost.exe,-2; C:\Windows\SysWow64\perfhost.exe [2012-07-26 20992]
S3 pla;@%systemroot%\system32\pla.dll,-500; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 PNRPAutoReg;@%SystemRoot%\system32\pnrpauto.dll,-8002; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 PNRPsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8000; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 PrintNotify;@C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll,-1; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 QWAVE;@%SystemRoot%\system32\qwave.dll,-1; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 RasAuto;@%Systemroot%\system32\rasauto.dll,-200; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 RasMan;@%Systemroot%\system32\rasmans.dll,-200; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 RpcLocator;@%systemroot%\system32\Locator.exe,-2; C:\Windows\system32\locator.exe [2012-07-26 9728]
S3 SCPolicySvc;@%SystemRoot%\System32\certprop.dll,-13; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 SDRSVC;@%SystemRoot%\system32\sdrsvc.dll,-107; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 seclogon;@%SystemRoot%\system32\seclogon.dll,-7001; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 SensrSvc;@%SystemRoot%\System32\sensrsvc.dll,-1000; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 SNMPTRAP;@%SystemRoot%\system32\snmptrap.exe,-3; C:\Windows\System32\snmptrap.exe [2012-07-26 14848]
S3 SstpSvc;@%SystemRoot%\system32\sstpsvc.dll,-200; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-03-29 543656]
S3 stisvc;@%SystemRoot%\system32\wiaservc.dll,-9; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 svsvc;@%SystemRoot%\system32\svsvc.dll,-101; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 swprv;@%SystemRoot%\System32\swprv.dll,-103; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 TabletInputService;@%SystemRoot%\system32\TabSvc.dll,-100; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 TapiSrv;@%SystemRoot%\system32\tapisrv.dll,-10100; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [2012-07-25 126976]
S3 THREADORDER;@%systemroot%\system32\mmcss.dll,-102; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 TrustedInstaller;@%SystemRoot%\servicing\TrustedInstaller.exe,-100; C:\Windows\servicing\TrustedInstaller.exe [2012-07-26 94208]
S3 UI0Detect;@%SystemRoot%\system32\ui0detect.exe,-101; C:\Windows\system32\UI0Detect.exe [2012-07-26 40960]
S3 upnphost;@%systemroot%\system32\upnphost.dll,-213; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 VaultSvc;@%SystemRoot%\system32\vaultsvc.dll,-1003; C:\Windows\system32\lsass.exe [2012-07-26 35840]
S3 vds;@%SystemRoot%\system32\vds.exe,-100; C:\Windows\System32\vds.exe [2012-07-26 680960]
S3 vmickvpexchange;@%systemroot%\system32\vmicres.dll,-201; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 vmicrdv;@%systemroot%\system32\vmicres.dll,-601; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 vmicshutdown;@%systemroot%\system32\vmicres.dll,-301; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 vmictimesync;@%systemroot%\system32\vmicres.dll,-401; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 vmicvss;@%systemroot%\system32\vmicres.dll,-501; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 vmicheartbeat;@%systemroot%\system32\vmicres.dll,-101; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 VSS;@%systemroot%\system32\vssvc.exe,-102; C:\Windows\system32\vssvc.exe [2012-07-26 1482752]
S3 W32Time;@%SystemRoot%\system32\w32time.dll,-200; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe [2012-07-26 1616896]
S3 WbioSrvc;@%systemroot%\system32\wbiosrvc.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 wcncsvc;@%SystemRoot%\system32\wcncsvc.dll,-3; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 WcsPlugInService;@%SystemRoot%\system32\WcsPlugInService.dll,-200; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 WebClient;@%systemroot%\system32\webclnt.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 Wecsvc;@%SystemRoot%\system32\wecsvc.dll,-200; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 wercplsupport;@%SystemRoot%\System32\wercplsupport.dll,-101; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 WerSvc;@%SystemRoot%\System32\wersvc.dll,-100; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 WiaRpc;@%SystemRoot%\system32\wiarpc.dll,-2; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S3 WinDefend;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310; C:\Program Files\Windows Defender\MsMpEng.exe [2012-07-26 15440]
S3 WinRM;@%Systemroot%\system32\wsmsvc.dll,-101; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S3 wlidsvc;@%SystemRoot%\system32\wlidsvc.dll,-100; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service; C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2009-07-22 61976]
S4 NetTcpPortSharing;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8201; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-12 139696]
S4 RemoteAccess;@%Systemroot%\system32\mprdim.dll,-200; C:\Windows\System32\svchost.exe [2012-07-26 30208]
S4 RemoteRegistry;@regsvc.dll,-1; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S4 SCardSvr;@%SystemRoot%\System32\SCardSvr.dll,-1; C:\Windows\system32\svchost.exe [2012-07-26 30208]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS); C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2009-03-30 427880]
S4 SQLBrowser;SQL Server Browser; C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2009-03-30 254808]
-----------------EOF-----------------
-
GAMELASTER
- Návštěvník
- Příspěvky: 107
- Registrován: 13 led 2012 16:53
Re: Virus Generic29.AJGE nejede smazat[+2 Posti, dlhy log]
http://gamelaster.net/virus.rar
^^ Tu je ten rar
P.S. OTL prestal pracovat uplne, potom sa uz uplne vypol.. GMER tky
takze z nich logy nemam
^^ Tu je ten rar
P.S. OTL prestal pracovat uplne, potom sa uz uplne vypol.. GMER tky
takze z nich logy nemam
-
GAMELASTER
- Návštěvník
- Příspěvky: 107
- Registrován: 13 led 2012 16:53
Re: Virus Generic29.AJGE nejede smazat[+2 Posti, dlhy log]
Pardon ze sem zle dal tie logy..
GMER:
TDSSKIller:
GMER:
Kód: Vybrat vše
GMER 2.1.19163 - http://www.gmer.net
Rootkit scan 2013-05-05 13:05:27
Windows 6.2.9200 x64 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP1T1L0-3 WDC_WD800JD-60JRA0 rev.05.01C05 74,53GB
Running: gmer.exe; Driver: C:\Users\GAMELA~1\AppData\Local\Temp\pwtoquoc.sys
---- User code sections - GMER 2.1 ----
.text C:\Windows\Explorer.EXE[1060] C:\Windows\SYSTEM32\ntdll.dll!NtQueryLicenseValue 000007fff29e3ed1 6 bytes JMP 00000800eb4e3ff0
.text C:\Windows\Explorer.EXE[1060] C:\Windows\system32\KERNELBASE.dll!GetModuleFileNameW 000007ffef9e2120 5 bytes JMP 00000800eb4e4830
.text C:\Windows\Explorer.EXE[1060] C:\Windows\SYSTEM32\slc.dll!SLIsWindowsGenuineLocal 000007ffed41d724 7 bytes JMP 00000800eb4e4160
.text C:\Windows\Explorer.EXE[1060] C:\Windows\SYSTEM32\sppc.dll!SLIsGenuineLocalEx 000007ffea06cbf4 5 bytes JMP 000007ffeb4e4180
.text C:\Windows\Explorer.EXE[1060] C:\Windows\SYSTEM32\MSIMG32.dll!GradientFill + 690 000007ffe73d1532 4 bytes [3D, E7, FF, 07]
.text C:\Windows\Explorer.EXE[1060] C:\Windows\SYSTEM32\MSIMG32.dll!GradientFill + 698 000007ffe73d153a 4 bytes [3D, E7, FF, 07]
.text C:\Windows\Explorer.EXE[1060] C:\Windows\SYSTEM32\MSIMG32.dll!TransparentBlt + 246 000007ffe73d165a 4 bytes [3D, E7, FF, 07]
---- Threads - GMER 2.1 ----
Thread C:\Windows\system32\csrss.exe [456:1824] fffff960008d45e8
---- Processes - GMER 2.1 ----
Library c:\windows\system32\y (*** suspicious ***) @ C:\Windows\system32\svchost.exe [912] 0000033345670000
Library c:\windows\system32\y (*** suspicious ***) @ C:\Windows\Explorer.EXE [1060] 0000033345670000
---- Registry - GMER 2.1 ----
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Kernel\RNG@RNGAuxiliarySeed 618627368
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Kernel\RNG@RNGAuxiliarySeed 618627368
---- Disk sectors - GMER 2.1 ----
Disk \Device\Harddisk1\DR1 unknown MBR code
Disk \Device\Harddisk1\DR1 unknown MBR code
---- EOF - GMER 2.1 ----Kód: Vybrat vše
12:23:35.0750 5340 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
12:23:36.0190 5340 ============================================================
12:23:36.0190 5340 Current date / time: 2013/05/05 12:23:36.0190
12:23:36.0190 5340 SystemInfo:
12:23:36.0190 5340
12:23:36.0191 5340 OS Version: 6.2.9200 ServicePack: 0.0
12:23:36.0191 5340 Product type: Workstation
12:23:36.0191 5340 ComputerName: GAMELASTERPC
12:23:36.0191 5340 UserName: GAMELASTER
12:23:36.0191 5340 Windows directory: C:\Windows
12:23:36.0191 5340 System windows directory: C:\Windows
12:23:36.0191 5340 Running under WOW64
12:23:36.0191 5340 Processor architecture: Intel x64
12:23:36.0191 5340 Number of processors: 2
12:23:36.0191 5340 Page size: 0x1000
12:23:36.0191 5340 Boot type: Normal boot
12:23:36.0191 5340 ============================================================
12:23:37.0378 5340 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:23:37.0386 5340 Drive \Device\Harddisk1\DR1 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:23:37.0410 5340 ============================================================
12:23:37.0410 5340 \Device\Harddisk0\DR0:
12:23:37.0412 5340 MBR partitions:
12:23:37.0412 5340 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x8C004F3
12:23:37.0425 5340 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x8C0442D, BlocksNum 0x145C0154
12:23:37.0425 5340 \Device\Harddisk1\DR1:
12:23:37.0425 5340 MBR partitions:
12:23:37.0425 5340 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x950E800
12:23:37.0425 5340 ============================================================
12:23:37.0455 5340 C: <-> \Device\Harddisk1\DR1\Partition1
12:23:37.0499 5340 D: <-> \Device\Harddisk0\DR0\Partition2
12:23:37.0535 5340 E: <-> \Device\Harddisk0\DR0\Partition1
12:23:37.0535 5340 ============================================================
12:23:37.0535 5340 Initialize success
12:23:37.0535 5340 ============================================================
12:23:39.0946 4724 ============================================================
12:23:39.0946 4724 Scan started
12:23:39.0946 4724 Mode: Manual;
12:23:39.0946 4724 ============================================================
12:23:41.0934 4724 ================ Scan system memory ========================
12:23:41.0934 4724 Scan interrupted by user!
12:23:41.0934 4724 ================ Scan services =============================
12:23:41.0937 4724 Scan interrupted by user!
12:23:41.0937 4724 ================ Scan global ===============================
12:23:41.0937 4724 Scan interrupted by user!
12:23:41.0937 4724 ================ Scan MBR ==================================
12:23:41.0937 4724 Scan interrupted by user!
12:23:41.0937 4724 ================ Scan VBR ==================================
12:23:41.0937 4724 Scan interrupted by user!
12:23:41.0937 4724 ============================================================
12:23:41.0937 4724 Scan finished
12:23:41.0937 4724 ============================================================
12:23:41.0944 5444 Detected object count: 0
12:23:41.0944 5444 Actual detected object count: 0
12:24:00.0830 5776 ============================================================
12:24:00.0830 5776 Scan started
12:24:00.0830 5776 Mode: Manual; SigCheck; TDLFS;
12:24:00.0830 5776 ============================================================
12:24:01.0230 5776 ================ Scan system memory ========================
12:24:01.0230 5776 System memory - ok
12:24:01.0230 5776 ================ Scan services =============================
12:24:01.0393 5776 [ E890C46E4754F0DF51BAFCC8D2E07498 ] 1394ohci C:\Windows\System32\drivers\1394ohci.sys
12:24:01.0449 5776 1394ohci - ok
12:24:01.0472 5776 [ 4F18D4C7EA14F11A7211F60D553C03DB ] 3ware C:\Windows\system32\drivers\3ware.sys
12:24:01.0483 5776 3ware - ok
12:24:01.0501 5776 [ A3BDA4D1186C8F47FA1BC8E91F197537 ] ACPI C:\Windows\system32\drivers\ACPI.sys
12:24:01.0529 5776 ACPI - ok
12:24:01.0535 5776 [ DC968C37822117E576B933F34A2D130C ] acpiex C:\Windows\system32\Drivers\acpiex.sys
12:24:01.0545 5776 acpiex - ok
12:24:01.0559 5776 [ 0CA9F7C3A78227C21A0A7854E245CFB2 ] acpipagr C:\Windows\System32\drivers\acpipagr.sys
12:24:01.0585 5776 acpipagr - ok
12:24:01.0601 5776 [ 8EB8DA03B142D3DD1EB9ED8107A76C43 ] AcpiPmi C:\Windows\System32\drivers\acpipmi.sys
12:24:01.0631 5776 AcpiPmi - ok
12:24:01.0635 5776 [ CBCE725C5D86ABA7D2604E22951AA9B8 ] acpitime C:\Windows\System32\drivers\acpitime.sys
12:24:01.0650 5776 acpitime - ok
12:24:01.0735 5776 [ 479901C99FA62D1C3261B7ACB1228DAD ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:24:01.0745 5776 AdobeFlashPlayerUpdateSvc - ok
12:24:01.0767 5776 [ 93C6388592B99925C1D1576E465BC80F ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
12:24:01.0795 5776 adp94xx - ok
12:24:01.0806 5776 [ D27763E0247292654E7F7D16444C7C72 ] adpahci C:\Windows\system32\drivers\adpahci.sys
12:24:01.0824 5776 adpahci - ok
12:24:01.0841 5776 [ 67B90070FF48F794AF19F9FCF0080D75 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
12:24:01.0852 5776 adpu320 - ok
12:24:01.0880 5776 [ AB34A3211A1D2AB977DE00CD7BC5A464 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:24:01.0909 5776 AeLookupSvc - ok
12:24:01.0947 5776 [ 9E975BDC89C83900B2C534C4E1B018F8 ] AFD C:\Windows\system32\drivers\afd.sys
12:24:01.0965 5776 AFD - ok
12:24:01.0978 5776 [ 01590377A5AB19E792528C628A2A68F9 ] agp440 C:\Windows\system32\drivers\agp440.sys
12:24:01.0986 5776 agp440 - ok
12:24:01.0997 5776 [ D1BE8E6E5B3AF23A4393AF1BF867977A ] ALG C:\Windows\System32\alg.exe
12:24:02.0008 5776 ALG - ok
12:24:02.0039 5776 [ 025E8C755BE293E50854D26D1BBE5133 ] AllUserInstallAgent C:\Windows\system32\AUInstallAgent.dll
12:24:02.0060 5776 AllUserInstallAgent - ok
12:24:02.0090 5776 [ FB88D16B55F788EEB7590584FE2D8F1A ] AmdK8 C:\Windows\System32\drivers\amdk8.sys
12:24:02.0112 5776 AmdK8 - ok
12:24:02.0137 5776 [ 81402FF3373CE4DF77D5C874E369A985 ] AmdPPM C:\Windows\System32\drivers\amdppm.sys
12:24:02.0157 5776 AmdPPM - ok
12:24:02.0175 5776 [ 35A0EB5AECB0FA3C41A2FB514A562304 ] amdsata C:\Windows\system32\drivers\amdsata.sys
12:24:02.0184 5776 amdsata - ok
12:24:02.0212 5776 [ 00452671904F5EE94B50BF0219C97164 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
12:24:02.0226 5776 amdsbs - ok
12:24:02.0237 5776 [ EA3FFE53E92E59C87E3ECA9BEB20D9B7 ] amdxata C:\Windows\system32\drivers\amdxata.sys
12:24:02.0245 5776 amdxata - ok
12:24:02.0258 5776 [ 83B3682CE922FB0F415734B26D9D6233 ] AppID C:\Windows\system32\drivers\appid.sys
12:24:02.0283 5776 AppID - ok
12:24:02.0295 5776 [ CE2BEAD7F31816FF0AC490D048C969F9 ] AppIDSvc C:\Windows\System32\appidsvc.dll
12:24:02.0320 5776 AppIDSvc - ok
12:24:02.0333 5776 [ D64C4AFEE8277F35EF729A2B924666B0 ] Appinfo C:\Windows\System32\appinfo.dll
12:24:02.0359 5776 Appinfo - ok
12:24:02.0378 5776 [ 2D14788C5D0836292BEB27BBE109BE56 ] AppMgmt C:\Windows\System32\appmgmts.dll
12:24:02.0403 5776 AppMgmt - ok
12:24:02.0419 5776 [ E933401B392387F4BE34DE8BAF1722A7 ] arc C:\Windows\system32\drivers\arc.sys
12:24:02.0430 5776 arc - ok
12:24:02.0434 5776 [ 07CA323EF2E8247A568AB0F3662AD644 ] arcsas C:\Windows\system32\drivers\arcsas.sys
12:24:02.0448 5776 arcsas - ok
12:24:02.0565 5776 [ 31E2470E61D5A390405BA41C279D8446 ] asComSvc C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
12:24:02.0608 5776 asComSvc - ok
12:24:02.0640 5776 [ 0466B91EE5767A769E9F8EDB8EF94DDB ] asHmComSvc C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
12:24:02.0686 5776 asHmComSvc - ok
12:24:02.0719 5776 [ 798DE15F187C1F013095BBBEB6FB6197 ] AsIO C:\Windows\syswow64\drivers\AsIO.sys
12:24:02.0725 5776 AsIO - ok
12:24:02.0815 5776 [ 108FB6DDB69E537A2EA53F425363FAE5 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
12:24:02.0825 5776 aspnet_state - ok
12:24:02.0856 5776 [ AD8947D621FDCA48F1F39F4624B60AA1 ] AsSysCtrlService C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
12:24:02.0864 5776 AsSysCtrlService - ok
12:24:02.0879 5776 [ 1392B92179B07B672720763D9B1028A5 ] AsUpIO C:\Windows\syswow64\drivers\AsUpIO.sys
12:24:02.0890 5776 AsUpIO - ok
12:24:02.0951 5776 [ AB031AF4C788E671C84CD6A58CFF934B ] AsusFanControlService C:\Program Files (x86)\ASUS\AsusFanControlService\1.01.06\AsusFanControlService.exe
12:24:03.0005 5776 AsusFanControlService - ok
12:24:03.0047 5776 [ A5E4CDB420540095D1293C874B5F89AA ] ASUSFILTER C:\Windows\syswow64\drivers\ASUSFILTER.sys
12:24:03.0053 5776 ASUSFILTER - ok
12:24:03.0072 5776 [ 74DBAEC35366C4EE7670428808715A6A ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:24:03.0093 5776 AsyncMac - ok
12:24:03.0109 5776 [ A721FF570C2387E383BDDEA9632863C9 ] atapi C:\Windows\system32\drivers\atapi.sys
12:24:03.0117 5776 atapi - ok
12:24:03.0176 5776 [ 788914C42AD8318F1DD7A565EAFFB049 ] athrusb C:\Windows\system32\DRIVERS\athrxusb.sys
12:24:03.0246 5776 athrusb - ok
12:24:03.0277 5776 [ 81C712A88D62B7B30AE961BBE2B88547 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
12:24:03.0304 5776 AudioEndpointBuilder - ok
12:24:03.0341 5776 [ 19F399667D97F9C144AC1FA74D2D881B ] Audiosrv C:\Windows\System32\Audiosrv.dll
12:24:03.0389 5776 Audiosrv - ok
12:24:03.0427 5776 [ 58D7FAF5C81ECEFFD2EDEDA9C2619D82 ] Avgboota C:\Windows\system32\DRIVERS\avgboota.sys
12:24:03.0436 5776 Avgboota - ok
12:24:03.0478 5776 [ 3D1FFAA3358CA0D8A298DEA8BECFC468 ] Avgfwfd C:\Windows\system32\DRIVERS\avgfwd6a.sys
12:24:03.0484 5776 Avgfwfd - ok
12:24:03.0566 5776 [ DC4739DD82EAFD85299B4E87B5F63207 ] avgfws C:\Program Files (x86)\AVG\AVG2013\avgfws.exe
12:24:03.0615 5776 avgfws - ok
12:24:03.0752 5776 [ 0D8244A9DB70BC6C36E2FB56F6039AB6 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
12:24:03.0903 5776 AVGIDSAgent - ok
12:24:03.0923 5776 [ AC6CB348F67B6B1B75C0EFB8927A8B03 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
12:24:03.0933 5776 AVGIDSDriver - ok
12:24:03.0950 5776 [ 2940FACB6EF92BD1936E4A1E2502468E ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
12:24:03.0957 5776 AVGIDSHA - ok
12:24:03.0975 5776 [ 54B66C4AEEC6C4F742F3569EBA03EBB8 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
12:24:03.0984 5776 Avgldx64 - ok
12:24:03.0998 5776 [ 13667B5D6310228A9FEF2BA5FCD9081F ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys
12:24:04.0010 5776 Avgloga - ok
12:24:04.0047 5776 [ BE82F9A1F2CCF4CE746D0C645D94079E ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
12:24:04.0055 5776 Avgmfx64 - ok
12:24:04.0094 5776 [ 5D11620DEF66F9DC9468FEE385A8429B ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
12:24:04.0100 5776 Avgrkx64 - ok
12:24:04.0143 5776 [ DC98337F0D2A9F6C0B6FB682297ECE3B ] avgwd C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
12:24:04.0154 5776 avgwd - ok
12:24:04.0175 5776 [ 569A44615CD4933EFF11360AF40F5B9A ] Avgwfpa C:\Windows\system32\DRIVERS\avgwfpa.sys
12:24:04.0185 5776 Avgwfpa - ok
12:24:04.0204 5776 [ 89491EF71D5EA011127832C588002853 ] AxInstSV C:\Windows\System32\AxInstSV.dll
12:24:04.0226 5776 AxInstSV - ok
12:24:04.0265 5776 [ 45C6EC94DE3D466B4B452EA0E3870321 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
12:24:04.0303 5776 b06bdrv - ok
12:24:04.0326 5776 [ 81703BC5D68DEDBB086C2368FBE7B334 ] BasicDisplay C:\Windows\System32\drivers\BasicDisplay.sys
12:24:04.0343 5776 BasicDisplay - ok
12:24:04.0347 5776 [ 5EC68164E14D25675C98BBB5F09E8606 ] BasicRender C:\Windows\System32\drivers\BasicRender.sys
12:24:04.0365 5776 BasicRender - ok
12:24:04.0393 5776 [ 5BEC02F0A82187227E7457F4600DDFDA ] BDESVC C:\Windows\System32\bdesvc.dll
12:24:04.0415 5776 BDESVC - ok
12:24:04.0427 5776 [ 9E7AEA59776D904607985AFFE7E5E183 ] Beep C:\Windows\system32\drivers\Beep.sys
12:24:04.0448 5776 Beep - ok
12:24:04.0491 5776 [ D598C44A7072D3108D8D8102EC5E07F7 ] BITS C:\Windows\System32\qmgr.dll
12:24:04.0546 5776 BITS - ok
12:24:04.0553 5776 [ B17AC10B47C7FCB44D22A1F06415840E ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:24:04.0575 5776 bowser - ok
12:24:04.0603 5776 [ 88F6F0E54F37F99FE7D5513B7623E444 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
12:24:04.0631 5776 BrokerInfrastructure - ok
12:24:04.0648 5776 [ 310068BDA80B1D55C36580FD8A873FAF ] Browser C:\Windows\System32\browser.dll
12:24:04.0659 5776 Browser - ok
12:24:04.0673 5776 [ 351075A2ADDF86F5C4BA10CA27E8973D ] BthAvrcpTg C:\Windows\System32\drivers\BthAvrcpTg.sys
12:24:04.0718 5776 BthAvrcpTg - ok
12:24:04.0744 5776 [ 616EB8748C988AEE98D93DA141C3D3B4 ] BthHFEnum C:\Windows\System32\drivers\bthhfenum.sys
12:24:04.0760 5776 BthHFEnum - ok
12:24:04.0764 5776 [ 531D83EA26C5FFAA79F0A1DC3B0698CF ] bthhfhid C:\Windows\System32\drivers\BthHFHid.sys
12:24:04.0780 5776 bthhfhid - ok
12:24:04.0788 5776 [ 033916CE8784A848B9A3D686B7F66D97 ] BTHMODEM C:\Windows\System32\drivers\bthmodem.sys
12:24:04.0821 5776 BTHMODEM - ok
12:24:04.0861 5776 [ A4387C3D271959313E2577DB7BE8BA7A ] bthserv C:\Windows\system32\bthserv.dll
12:24:04.0870 5776 bthserv - ok
12:24:04.0888 5776 [ 990B1BABE6E81FB18E65A87EBEFB1772 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:24:04.0913 5776 cdfs - ok
12:24:04.0946 5776 [ 339BFF85D788268752DA8C9644B188EE ] cdrom C:\Windows\System32\drivers\cdrom.sys
12:24:04.0957 5776 cdrom - ok
12:24:04.0979 5776 [ BAF8F0F55BC300E5F882E521F054E345 ] CertPropSvc C:\Windows\System32\certprop.dll
12:24:05.0003 5776 CertPropSvc - ok
12:24:05.0018 5776 [ F64B7D1A37CC1D5F421D5359EEC81E2E ] circlass C:\Windows\System32\drivers\circlass.sys
12:24:05.0035 5776 circlass - ok
12:24:05.0089 5776 [ 9905168708DB68849B879B5548F68AB3 ] CLFS C:\Windows\system32\drivers\CLFS.sys
12:24:05.0111 5776 CLFS - ok
12:24:05.0145 5776 [ 2DC8538A2260647484A6C921CA837313 ] CmBatt C:\Windows\System32\drivers\CmBatt.sys
12:24:05.0163 5776 CmBatt - ok
12:24:05.0188 5776 [ 1894FD2D5966A81D3B07A7C4D8724D59 ] CNG C:\Windows\system32\Drivers\cng.sys
12:24:05.0219 5776 CNG - ok
12:24:05.0228 5776 [ 0E5B1E9E7122EDAAF1F6CE047965CA92 ] CompositeBus C:\Windows\System32\drivers\CompositeBus.sys
12:24:05.0244 5776 CompositeBus - ok
12:24:05.0248 5776 COMSysApp - ok
12:24:05.0251 5776 [ D9CB0782AF819548072AA45B70F8B22D ] condrv C:\Windows\system32\drivers\condrv.sys
12:24:05.0260 5776 condrv - ok
12:24:05.0303 5776 [ 22420CB6EA7D5AF8208FBA09274EB122 ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe
12:24:05.0317 5776 cphs - ok
12:24:05.0338 5776 [ F0E78B119D12BA81F163D48C0FF30B9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:24:05.0369 5776 CryptSvc - ok
12:24:05.0406 5776 [ FFDF18821C031B39E15F35BAB0185840 ] CSC C:\Windows\system32\drivers\csc.sys
12:24:05.0444 5776 CSC - ok
12:24:05.0481 5776 [ 22CCB6AFF617AAC6121DF6CDA5ABF3F4 ] CscService C:\Windows\System32\cscsvc.dll
12:24:05.0527 5776 CscService - ok
12:24:05.0546 5776 [ E8A676D196E9A4DED7A6C74DEA90FA4E ] dam C:\Windows\system32\drivers\dam.sys
12:24:05.0556 5776 dam - ok
12:24:05.0591 5776 [ 1EC6E533C954BDDF2A37E7851A7E58FD ] DcomLaunch C:\Windows\system32\rpcss.dll
12:24:05.0642 5776 DcomLaunch - ok
12:24:05.0675 5776 [ C8650D1F61149AA546BDBC99172EBBC1 ] defragsvc C:\Windows\System32\defragsvc.dll
12:24:05.0710 5776 defragsvc - ok
12:24:05.0778 5776 [ 5EAEF67AE2AF4D2DC664B649DB7B2E16 ] DeviceAssociationService C:\Windows\system32\das.dll
12:24:05.0832 5776 DeviceAssociationService - ok
12:24:05.0873 5776 [ D7A3877D9E126E21925DA873677C1D65 ] DeviceInstall C:\Windows\system32\umpnpmgr.dll
12:24:05.0903 5776 DeviceInstall - ok
12:24:05.0925 5776 [ 09D9EB9E7898F8E6561473A20CC808B9 ] Dfsc C:\Windows\system32\Drivers\dfsc.sys
12:24:05.0972 5776 Dfsc - ok
12:24:06.0007 5776 [ 6DBE7FE196F8E9D212DCC34EDDF7C3C1 ] Dhcp C:\Windows\system32\dhcpcore.dll
12:24:06.0033 5776 Dhcp - ok
12:24:06.0053 5776 [ 3C736FAE17BA6F91BA37594AAB139CD0 ] discache C:\Windows\system32\drivers\discache.sys
12:24:06.0067 5776 discache - ok
12:24:06.0072 5776 [ 560495FF4CA22E1D9B1972FA18F43B6F ] disk C:\Windows\system32\drivers\disk.sys
12:24:06.0082 5776 disk - ok
12:24:06.0086 5776 [ 82A7C72593793FE1EADA7A305BD1567A ] dmvsc C:\Windows\System32\drivers\dmvsc.sys
12:24:06.0095 5776 dmvsc - ok
12:24:06.0108 5776 [ 9ACE7E657107EB51E5E89FD883F2FD2D ] Dnscache C:\Windows\System32\dnsrslvr.dll
12:24:06.0120 5776 Dnscache - ok
12:24:06.0142 5776 [ 9949AD2ABA168A618D46C799D6CC898C ] dot3svc C:\Windows\System32\dot3svc.dll
12:24:06.0173 5776 dot3svc - ok
12:24:06.0193 5776 [ 109FC3F80BF4F4DC5A071058074F13C1 ] DPS C:\Windows\system32\dps.dll
12:24:06.0210 5776 DPS - ok
12:24:06.0229 5776 [ 013C53A30F896F00C563FD53E695AEF4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
12:24:06.0255 5776 drmkaud - ok
12:24:06.0280 5776 [ BF48F32EE248C3D371DA5DC93BBEADA7 ] DsmSvc C:\Windows\System32\DeviceSetupManager.dll
12:24:06.0301 5776 DsmSvc - ok
12:24:06.0338 5776 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\System32\drivers\dtsoftbus01.sys
12:24:06.0349 5776 dtsoftbus01 - ok
12:24:06.0393 5776 [ C58425E4F1E115BB271FBF3FC348AB11 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
12:24:06.0449 5776 DXGKrnl - ok
12:24:06.0477 5776 [ 58BA473DD88F5FC1932282BA683AA03E ] Eaphost C:\Windows\System32\eapsvc.dll
12:24:06.0489 5776 Eaphost - ok
12:24:06.0579 5776 [ C815C4FAE6A816DFB58975F3D0396692 ] ebdrv C:\Windows\system32\drivers\evbda.sys
12:24:06.0694 5776 ebdrv - ok
12:24:06.0716 5776 [ 6E0E63801FBEF27995107B8269BCFAAD ] EFS C:\Windows\System32\lsass.exe
12:24:06.0736 5776 EFS - ok
12:24:06.0765 5776 [ 66D60BD9A4C05616ABECA2A901475098 ] EhStorClass C:\Windows\system32\drivers\EhStorClass.sys
12:24:06.0774 5776 EhStorClass - ok
12:24:06.0787 5776 [ A61D0F543024E458C0FE32352E1978E2 ] EhStorTcgDrv C:\Windows\system32\drivers\EhStorTcgDrv.sys
12:24:06.0797 5776 EhStorTcgDrv - ok
12:24:06.0820 5776 [ D790D058D67582DB9C84C2D33695FE6B ] ErrDev C:\Windows\System32\drivers\errdev.sys
12:24:06.0828 5776 ErrDev - ok
12:24:06.0875 5776 [ F9E01C2D9F8BC049E04CF5DC24A5F638 ] EventSystem C:\Windows\system32\es.dll
12:24:06.0911 5776 EventSystem - ok
12:24:06.0937 5776 [ 7A4D6FEB8C52B3FE855E4DCDF9107E03 ] exfat C:\Windows\system32\drivers\exfat.sys
12:24:06.0961 5776 exfat - ok
12:24:07.0012 5776 FairplayKD - ok
12:24:07.0029 5776 [ 60996602A7111FD2D086E803F33E4282 ] fastfat C:\Windows\system32\drivers\fastfat.sys
12:24:07.0042 5776 fastfat - ok
12:24:07.0080 5776 [ F0E7F8382ED5E138B0DFA4CB5058BCFE ] Fax C:\Windows\system32\fxssvc.exe
12:24:07.0106 5776 Fax - ok
12:24:07.0125 5776 [ 73B2D11DF0B6E03A0CB0323218ACB3E4 ] fdc C:\Windows\System32\drivers\fdc.sys
12:24:07.0133 5776 fdc - ok
12:24:07.0161 5776 [ 0828E3E7BD77C89149EAD3232BFD38DB ] fdPHost C:\Windows\system32\fdPHost.dll
12:24:07.0188 5776 fdPHost - ok
12:24:07.0204 5776 [ 872506AAB591E8908DF4461475AF92DF ] FDResPub C:\Windows\system32\fdrespub.dll
12:24:07.0231 5776 FDResPub - ok
12:24:07.0245 5776 [ DFC2156EEC9E0CBC4F8311983567E3AA ] fhsvc C:\Windows\system32\fhsvc.dll
12:24:07.0269 5776 fhsvc - ok
12:24:07.0274 5776 [ 88A9EBACD1058ABB237A6B4E96E7F397 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
12:24:07.0282 5776 FileInfo - ok
12:24:07.0298 5776 [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
12:24:07.0312 5776 Filetrace - ok
12:24:07.0315 5776 [ B1D4C168FF7B8579E3745888658FFB1D ] flpydisk C:\Windows\System32\drivers\flpydisk.sys
12:24:07.0333 5776 flpydisk - ok
12:24:07.0360 5776 [ B33EC133AE4E6C1881D2302D93D2467D ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
12:24:07.0385 5776 FltMgr - ok
12:24:07.0432 5776 [ 305CB1E16576F436BC8797E629A3D46D ] FontCache C:\Windows\system32\FntCache.dll
12:24:07.0498 5776 FontCache - ok
12:24:07.0585 5776 [ 0B56259F5611787222A04A8F254E51D4 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:24:07.0593 5776 FontCache3.0.0.0 - ok
12:24:07.0602 5776 [ A5F7873A39E4E9FAAAE59B7E9E36B705 ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
12:24:07.0611 5776 FsDepends - ok
12:24:07.0622 5776 [ A6DD7D491F587F4BC13FB972977DC8E8 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
12:24:07.0629 5776 Fs_Rec - ok
12:24:07.0750 5776 [ 895BA1CFF25E867CE5A52073E905C93B ] fussvc C:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe
12:24:07.0771 5776 fussvc ( UnsignedFile.Multi.Generic ) - warning
12:24:07.0771 5776 fussvc - detected UnsignedFile.Multi.Generic (1)
12:24:07.0804 5776 [ 79E687A2829B9EBDF488F78260651094 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
12:24:07.0834 5776 fvevol - ok
12:24:07.0853 5776 [ 3EF3FCCC0E70EEC5C2AD996F32BBA642 ] FxPPM C:\Windows\System32\drivers\fxppm.sys
12:24:07.0861 5776 FxPPM - ok
12:24:07.0865 5776 [ 52BC441E07A827EBAB70CDC7EAEDB28D ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
12:24:07.0874 5776 gagp30kx - ok
12:24:07.0896 5776 [ 721F8EEF5E9747F32670DEFF7FB92541 ] gencounter C:\Windows\System32\drivers\vmgencounter.sys
12:24:07.0905 5776 gencounter - ok
12:24:07.0923 5776 [ A1F17108F3ED752D2614D767792327C5 ] GPIOClx0101 C:\Windows\system32\Drivers\msgpioclx.sys
12:24:07.0934 5776 GPIOClx0101 - ok
12:24:07.0992 5776 [ 5358678C6370F2ADC5291849F6503262 ] gpsvc C:\Windows\System32\gpsvc.dll
12:24:08.0055 5776 gpsvc - ok
12:24:08.0097 5776 [ 9FC1F11D4D19F61DFE5CC878B4557D3A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:24:08.0138 5776 HdAudAddService - ok
12:24:08.0160 5776 [ 8D6810577E9C4F56DCB8E9BACAC7287B ] HDAudBus C:\Windows\System32\drivers\HDAudBus.sys
12:24:08.0176 5776 HDAudBus - ok
12:24:08.0198 5776 [ 3F76BBA53D65E85A7F53E7A71082082C ] HidBatt C:\Windows\System32\drivers\HidBatt.sys
12:24:08.0206 5776 HidBatt - ok
12:24:08.0215 5776 [ A25BAE8C1F2830C8E5625EC7E4E968BE ] HidBth C:\Windows\System32\drivers\hidbth.sys
12:24:08.0232 5776 HidBth - ok
12:24:08.0235 5776 [ AC0526C4E3A7954F750B8F8D95EFB340 ] hidi2c C:\Windows\System32\drivers\hidi2c.sys
12:24:08.0266 5776 hidi2c - ok
12:24:08.0270 5776 [ DC96F7DACB777CDEAEF9958A50BFDA06 ] HidIr C:\Windows\System32\drivers\hidir.sys
12:24:08.0297 5776 HidIr - ok
12:24:08.0317 5776 [ FAC37D7B3D6354A5A5E19A45B50B4008 ] hidserv C:\Windows\system32\hidserv.dll
12:24:08.0325 5776 hidserv - ok
12:24:08.0335 5776 [ 590B6F71BCDA4368B4BF7D8DF22B60F7 ] HidUsb C:\Windows\System32\drivers\hidusb.sys
12:24:08.0354 5776 HidUsb - ok
12:24:08.0383 5776 [ 43F884B61A24377567CD0FEB35236334 ] hkmsvc C:\Windows\system32\kmsvc.dll
12:24:08.0406 5776 hkmsvc - ok
12:24:08.0436 5776 [ 6CC1AD7B0E071C317B7FB8FC6AEF0EDA ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:24:08.0460 5776 HomeGroupListener - ok
12:24:08.0497 5776 [ E0D9F6FE18FA7F53ADD29AF719CE2B7E ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:24:08.0520 5776 HomeGroupProvider - ok
12:24:08.0530 5776 [ 64DB7A8D97CA53DCCF93D0A1E08342CF ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
12:24:08.0539 5776 HpSAMD - ok
12:24:08.0569 5776 [ 47DBBF38E00C3F7404B71F6509241EF1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
12:24:08.0621 5776 HTTP - ok
12:24:08.0625 5776 [ 2A98301068801700906C06649860FE94 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
12:24:08.0633 5776 hwpolicy - ok
12:24:08.0651 5776 [ DC76901D82097C9E297F20C287CB9A27 ] hyperkbd C:\Windows\System32\drivers\hyperkbd.sys
12:24:08.0659 5776 hyperkbd - ok
12:24:08.0662 5776 [ 716413AB3CA12DE0A7222D28C1C9352C ] HyperVideo C:\Windows\system32\DRIVERS\HyperVideo.sys
12:24:08.0670 5776 HyperVideo - ok
12:24:08.0688 5776 [ C9E9CBF73AFFBFE3E801EFB516787BA3 ] i8042prt C:\Windows\System32\drivers\i8042prt.sys
12:24:08.0707 5776 i8042prt - ok
12:24:08.0735 5776 [ 5E394EBD26FD68AA9300332C46BEDD62 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
12:24:08.0771 5776 iaStorV - ok
12:24:08.0830 5776 [ 83FF82FE209E7997067B375DAD6CF23D ] ICCS C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
12:24:08.0842 5776 ICCS - ok
12:24:09.0002 5776 [ 7209139C75C6765DFA42912B98672F0B ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
12:24:09.0126 5776 igfx - ok
12:24:09.0137 5776 [ 24847A06B84339FEEDE5CABF3D27D320 ] iirsp C:\Windows\system32\drivers\iirsp.sys
12:24:09.0145 5776 iirsp - ok
12:24:09.0191 5776 [ 45EACE8D94B9CEC746A85154892C4FDC ] IKEEXT C:\Windows\System32\ikeext.dll
12:24:09.0246 5776 IKEEXT - ok
12:24:09.0250 5776 [ 4F37726CF764CA18A8A84F85EF3A7F24 ] intelide C:\Windows\system32\drivers\intelide.sys
12:24:09.0258 5776 intelide - ok
12:24:09.0276 5776 [ F9E126AA767E2E6E3128434A43C9F713 ] intelppm C:\Windows\System32\drivers\intelppm.sys
12:24:09.0284 5776 intelppm - ok
12:24:09.0301 5776 [ 8FCA66234A0933D796BB780B7953BAB9 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:24:09.0325 5776 IpFilterDriver - ok
12:24:09.0339 5776 [ 6E98A046A12AA113F8898AA5D612BD6E ] IPMIDRV C:\Windows\System32\drivers\IPMIDrv.sys
12:24:09.0367 5776 IPMIDRV - ok
12:24:09.0390 5776 [ 3969B9C218DD3FAA9F4ED2FFC3651C02 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
12:24:09.0402 5776 IPNAT - ok
12:24:09.0415 5776 [ 25CD7C4BB2863FFC2B0B311F0AEBF77C ] IRENUM C:\Windows\system32\drivers\irenum.sys
12:24:09.0424 5776 IRENUM - ok
12:24:09.0448 5776 [ D940C5BB9DC92E588533C19ABCC3D2C2 ] isapnp C:\Windows\system32\drivers\isapnp.sys
12:24:09.0455 5776 isapnp - ok
12:24:09.0489 5776 [ F5F0DE1B7F256997501EECECE9648108 ] iScsiPrt C:\Windows\System32\drivers\msiscsi.sys
12:24:09.0503 5776 iScsiPrt - ok
12:24:09.0518 5776 [ 8FBD94B69D6423E20ABCD59D86368B21 ] kbdclass C:\Windows\System32\drivers\kbdclass.sys
12:24:09.0527 5776 kbdclass - ok
12:24:09.0530 5776 [ E88C932ABDF8185A62C8F2FC7B051FB6 ] kbdhid C:\Windows\System32\drivers\kbdhid.sys
12:24:09.0539 5776 kbdhid - ok
12:24:09.0549 5776 [ FB6C185092E18011EF49989425C2AA87 ] kdnic C:\Windows\system32\DRIVERS\kdnic.sys
12:24:09.0566 5776 kdnic - ok
12:24:09.0587 5776 [ 6E0E63801FBEF27995107B8269BCFAAD ] KeyIso C:\Windows\system32\lsass.exe
12:24:09.0595 5776 KeyIso - ok
12:24:09.0599 5776 [ A4751040DB14E30E61A4E47481C77274 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
12:24:09.0609 5776 KSecDD - ok
12:24:09.0626 5776 [ E427D299CFE267A2465D3AAF81440ED9 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
12:24:09.0637 5776 KSecPkg - ok
12:24:09.0641 5776 [ 81492FEEBF2F26455B00EE8DBAE8A1B0 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
12:24:09.0666 5776 ksthunk - ok
12:24:09.0706 5776 [ 5825DBACEDC3812B5CF8D40B997BF210 ] KtmRm C:\Windows\system32\msdtckrm.dll
12:24:09.0740 5776 KtmRm - ok
12:24:09.0773 5776 [ 256EE31588257E8A555DBFAA13F1908E ] LanmanServer C:\Windows\system32\srvsvc.dll
12:24:09.0818 5776 LanmanServer - ok
12:24:09.0858 5776 [ 16650912BE5A94B40E0B3B4C39652B56 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:24:09.0886 5776 LanmanWorkstation - ok
12:24:09.0891 5776 [ CEEFD29FC551F289810B0B9381B321DC ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
12:24:09.0905 5776 lltdio - ok
12:24:09.0935 5776 [ BCF53485E0A94722CDE3C4A93CD8EB8C ] lltdsvc C:\Windows\System32\lltdsvc.dll
12:24:09.0959 5776 lltdsvc - ok
12:24:09.0987 5776 [ 5A2F7F1CBC2E631A497DAD16164E06D2 ] lmhosts C:\Windows\System32\lmhsvc.dll
12:24:09.0995 5776 lmhosts - ok
12:24:10.0019 5776 [ 022CDD12161B063D7852B1075BF3FFF2 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
12:24:10.0029 5776 LSI_SAS - ok
12:24:10.0038 5776 [ 07AD59D669B996F29F91817F0ECFA34F ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
12:24:10.0048 5776 LSI_SAS2 - ok
12:24:10.0062 5776 [ 216FB796AA4E252ACCE93B1BCB80B5EC ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
12:24:10.0072 5776 LSI_SCSI - ok
12:24:10.0076 5776 [ 5E80530AF37102488EE980B4A92AF99F ] LSI_SSS C:\Windows\system32\drivers\lsi_sss.sys
12:24:10.0086 5776 LSI_SSS - ok
12:24:10.0109 5776 [ 8FEFDCEE40B75FD23B4BC60DA6576113 ] LSM C:\Windows\System32\lsm.dll
12:24:10.0145 5776 LSM - ok
12:24:10.0160 5776 [ 2BDC5D711FA61307CE6190D47C956368 ] luafv C:\Windows\system32\drivers\luafv.sys
12:24:10.0192 5776 luafv - ok
12:24:10.0208 5776 [ 9B0D829C3BE4E7472DB9DD2B79908E3C ] megasas C:\Windows\system32\drivers\megasas.sys
12:24:10.0217 5776 megasas - ok
12:24:10.0247 5776 [ ECC3F54C7AFC318271C4F0B4606D8DB0 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
12:24:10.0272 5776 MegaSR - ok
12:24:10.0294 5776 [ 2BB3EAE2EA641515D4B205CAB29E1624 ] MEIx64 C:\Windows\System32\drivers\HECIx64.sys
12:24:10.0301 5776 MEIx64 - ok
12:24:10.0327 5776 [ DBD28A7997CF7303E610989C565C9B29 ] MMCSS C:\Windows\system32\mmcss.dll
12:24:10.0347 5776 MMCSS - ok
12:24:10.0350 5776 [ 780098AD5DA8A4822E2563984C85EF7B ] Modem C:\Windows\system32\drivers\modem.sys
12:24:10.0367 5776 Modem - ok
12:24:10.0371 5776 [ 83EB0BF7E6EBD5B1AAC97F9DBD5EB935 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
12:24:10.0397 5776 monitor - ok
12:24:10.0417 5776 [ 618446B98C79776654340CE27C73485E ] mouclass C:\Windows\System32\drivers\mouclass.sys
12:24:10.0425 5776 mouclass - ok
12:24:10.0429 5776 [ CB2527B8B87D83E56FBF3944BBB6F606 ] mouhid C:\Windows\System32\drivers\mouhid.sys
12:24:10.0457 5776 mouhid - ok
12:24:10.0477 5776 [ 89D263DBF08119CE16273991C120D6DD ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
12:24:10.0486 5776 mountmgr - ok
12:24:10.0520 5776 [ 7EDBBB9351A38C6BB0FE98CFD44DB430 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:24:10.0528 5776 MozillaMaintenance - ok
12:24:10.0542 5776 [ 36BF4D86F166ACBC14F0B8B8F90CBCEA ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
12:24:10.0552 5776 mpsdrv - ok
12:24:10.0572 5776 [ 3D70147F55F1EC84EB9139ED7FFE48BC ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
12:24:10.0594 5776 MRxDAV - ok
12:24:10.0621 5776 [ 1EEAA5A62E8C49DDF58798F06F78BFFA ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
12:24:10.0656 5776 mrxsmb - ok
12:24:10.0675 5776 [ 06D5F2FA3C61E8EA91648EA8E9F99FD3 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:24:10.0688 5776 mrxsmb10 - ok
12:24:10.0698 5776 [ BFBE1EA55ECC15733933D429E384BCA4 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:24:10.0710 5776 mrxsmb20 - ok
12:24:10.0735 5776 [ 98487487D6B3797CA927E9D7B030AE13 ] MsBridge C:\Windows\system32\DRIVERS\bridge.sys
12:24:10.0747 5776 MsBridge - ok
12:24:10.0780 5776 [ 4A07458EB4F17573BD39F22029A991C1 ] MSDTC C:\Windows\System32\msdtc.exe
12:24:10.0807 5776 MSDTC - ok
12:24:10.0814 5776 [ 3886F1F2A4D2900ABAA7E4486BEEE6A2 ] Msfs C:\Windows\system32\drivers\Msfs.sys
12:24:10.0824 5776 Msfs - ok
12:24:10.0841 5776 [ 62435ABF8D6199659D451DFBC94E773C ] msgpiowin32 C:\Windows\System32\drivers\msgpiowin32.sys
12:24:10.0849 5776 msgpiowin32 - ok
12:24:10.0861 5776 [ D3857A767B91A061B408CCAB02DA4F40 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
12:24:10.0885 5776 mshidkmdf - ok
12:24:10.0904 5776 [ 839B48910FB1E887635C48F3EC11A05E ] mshidumdf C:\Windows\System32\drivers\mshidumdf.sys
12:24:10.0912 5776 mshidumdf - ok
12:24:10.0929 5776 [ 55C0DB741E3AB7463242B185B1C2997C ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
12:24:10.0937 5776 msisadrv - ok
12:24:10.0964 5776 [ 216C6B035A4BA5560E1255BD8E5BB89F ] MSiSCSI C:\Windows\system32\iscsiexe.dll
12:24:10.0976 5776 MSiSCSI - ok
12:24:10.0979 5776 msiserver - ok
12:24:10.0995 5776 [ 509809566E49F4411055864EA8D437CD ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
12:24:11.0003 5776 MSKSSRV - ok
12:24:11.0014 5776 [ 63145201D6458E4958E572E7D6FC2604 ] MsLldp C:\Windows\system32\DRIVERS\mslldp.sys
12:24:11.0031 5776 MsLldp - ok
12:24:11.0035 5776 [ 99D526E803DB6D7FF290FD98B6204641 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
12:24:11.0045 5776 MSPCLOCK - ok
12:24:11.0048 5776 [ 06FA77C3E2A491ADCD704C5E73006269 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
12:24:11.0056 5776 MSPQM - ok
12:24:11.0103 5776 [ E134EC4DE11CF78CB01432D180710D84 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
12:24:11.0128 5776 MsRPC - ok
12:24:11.0144 5776 [ B5AECF12F09DEE97C9FCAA5BA016CE1E ] mssmbios C:\Windows\System32\drivers\mssmbios.sys
12:24:11.0153 5776 mssmbios - ok
12:24:11.0262 5776 MSSQL$SQLEXPRESS - ok
12:24:11.0334 5776 [ 7A2A8C975356858EB38466A6B1592E8D ] MSSQLServerADHelper100 C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
12:24:11.0341 5776 MSSQLServerADHelper100 - ok
12:24:11.0360 5776 [ 72D66A05E0F99F2528F6C6204FD22AA1 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
12:24:11.0384 5776 MSTEE - ok
12:24:11.0401 5776 [ 8AAAE399FC255FA105D4158CBA289001 ] MTConfig C:\Windows\System32\drivers\MTConfig.sys
12:24:11.0419 5776 MTConfig - ok
12:24:11.0434 5776 [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A ] Mup C:\Windows\system32\Drivers\mup.sys
12:24:11.0444 5776 Mup - ok
12:24:11.0462 5776 [ 3A1E095277BBD406CEA8EA6B76950664 ] mvumis C:\Windows\system32\drivers\mvumis.sys
12:24:11.0471 5776 mvumis - ok
12:24:11.0500 5776 [ 4B18840511D720BA118D3017E8165875 ] napagent C:\Windows\system32\qagentRT.dll
12:24:11.0545 5776 napagent - ok
12:24:11.0568 5776 [ 43D7388A90A4C6EA346A4D6FF0377479 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
12:24:11.0622 5776 NativeWifiP - ok
12:24:11.0644 5776 [ 6A0C3996DA7DAE6D6939676D786EEEC4 ] NcaSvc C:\Windows\System32\ncasvc.dll
12:24:11.0687 5776 NcaSvc - ok
12:24:11.0706 5776 [ C982FE4CC91DECE2259F494FCEB4030F ] NcdAutoSetup C:\Windows\System32\NcdAutoSetup.dll
12:24:11.0718 5776 NcdAutoSetup - ok
12:24:11.0762 5776 [ EAB473DFB958489D3145FE4DD5F5E77B ] NDIS C:\Windows\system32\drivers\ndis.sys
12:24:11.0806 5776 NDIS - ok
12:24:11.0824 5776 [ 39C8A1D9D46F5E83A016BCAB72455284 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
12:24:11.0835 5776 NdisCap - ok
12:24:11.0847 5776 [ 762941932B7E4C588E48A577BA9D6440 ] NdisImPlatform C:\Windows\system32\DRIVERS\NdisImPlatform.sys
12:24:11.0868 5776 NdisImPlatform - ok
12:24:11.0905 5776 [ 270B10B8BD822DD4673781E0A1935DFB ] ndisrd C:\Windows\system32\DRIVERS\ndisrd.sys
12:24:11.0911 5776 ndisrd - ok
12:24:11.0925 5776 [ 8757D4A9701F9F4B59978839F46C32A7 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
12:24:11.0940 5776 NdisTapi - ok
12:24:11.0946 5776 [ 79AB68BB3FFF974AD4F41FA559F4EC67 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
12:24:11.0959 5776 Ndisuio - ok
12:24:11.0991 5776 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
12:24:12.0003 5776 NdisWan - ok
12:24:12.0008 5776 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NDISWANLEGACY C:\Windows\system32\DRIVERS\ndiswan.sys
12:24:12.0018 5776 NDISWANLEGACY - ok
12:24:12.0024 5776 [ FC891984160AAD8D3F047888C6BF1467 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
12:24:12.0059 5776 NDProxy - ok
12:24:12.0076 5776 [ D3F60A4345FCA9C1BE68AD7D0D6DE770 ] Ndu C:\Windows\system32\drivers\Ndu.sys
12:24:12.0104 5776 Ndu - ok
12:24:12.0108 5776 [ 7C203A76394F9AE68F69EEE5F9612C4A ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
12:24:12.0118 5776 NetBIOS - ok
12:24:12.0155 5776 [ 7CEC25C682D319D484630B3952C31A11 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
12:24:12.0170 5776 NetBT - ok
12:24:12.0183 5776 [ 6E0E63801FBEF27995107B8269BCFAAD ] Netlogon C:\Windows\system32\lsass.exe
12:24:12.0191 5776 Netlogon - ok
12:24:12.0211 5776 [ 89519D29CBEC2121CA65CC29C4D345E0 ] Netman C:\Windows\System32\netman.dll
12:24:12.0236 5776 Netman - ok
12:24:12.0266 5776 [ 20F6FD63E6D456114BC8056D62792786 ] netprofm C:\Windows\System32\netprofmsvc.dll
12:24:12.0294 5776 netprofm - ok
12:24:12.0333 5776 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:24:12.0344 5776 NetTcpPortSharing - ok
12:24:12.0361 5776 [ 12DD2800E4EEA37DC9AE256AD62423B4 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
12:24:12.0369 5776 nfrd960 - ok
12:24:12.0387 5776 [ 05B42A91867DA3FF71C59747DC785996 ] NlaSvc C:\Windows\System32\nlasvc.dll
12:24:12.0421 5776 NlaSvc - ok
12:24:12.0424 5776 [ 17E19A742FB30C002F8B43575451DBE1 ] Npfs C:\Windows\system32\drivers\Npfs.sys
12:24:12.0433 5776 Npfs - ok
12:24:12.0436 5776 [ 8ED299C30792544264E558BEA79F0947 ] npsvctrig C:\Windows\System32\drivers\npsvctrig.sys
12:24:12.0469 5776 npsvctrig - ok
12:24:12.0499 5776 [ 832B5FDF0B5577713FD7F2465FCD0ACE ] nsi C:\Windows\system32\nsisvc.dll
12:24:12.0520 5776 nsi - ok
12:24:12.0523 5776 [ 689B3B1E95C70ABF7AFF29F9406EF1E0 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
12:24:12.0532 5776 nsiproxy - ok
12:24:12.0612 5776 [ 4A7EEA9C4AD5CBFDA3C0E5B821C99CAD ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
12:24:12.0685 5776 Ntfs - ok
12:24:12.0706 5776 [ 4163ADE07DB51843AE31F65B94F5398D ] Null C:\Windows\system32\drivers\Null.sys
12:24:12.0727 5776 Null - ok
12:24:12.0751 5776 [ D6D34118263412D3AAA8348A9572B7F2 ] nvraid C:\Windows\system32\drivers\nvraid.sys
12:24:12.0762 5776 nvraid - ok
12:24:12.0790 5776 [ 27AFC428D1D32ABD04A86763A4EDDEA9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
12:24:12.0801 5776 nvstor - ok
12:24:12.0810 5776 [ 051CFB5107BAAE510419BDC41F8C4036 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
12:24:12.0820 5776 nv_agp - ok
12:24:12.0851 5776 [ AB76700D764A342D7475FB8F47CAB18C ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
12:24:12.0875 5776 p2pimsvc - ok
12:24:12.0897 5776 [ 4319FD931DCD796435ECB5DB4A04FBA5 ] p2psvc C:\Windows\system32\p2psvc.dll
12:24:12.0922 5776 p2psvc - ok
12:24:12.0940 5776 [ 4563DAF8C6A740AD7F501E219BD10766 ] Parport C:\Windows\System32\drivers\parport.sys
12:24:12.0961 5776 Parport - ok
12:24:12.0967 5776 [ C1D7BA7F0DE487DFEEB51BF8D3EC5562 ] partmgr C:\Windows\system32\drivers\partmgr.sys
12:24:12.0978 5776 partmgr - ok
12:24:13.0013 5776 [ 19E41F140A6ADBD38943710DA7FF0E38 ] PcaSvc C:\Windows\System32\pcasvc.dll
12:24:13.0039 5776 PcaSvc - ok
12:24:13.0118 5776 [ 4A003E8F718C1E6A2050CA98CD53E3E2 ] pci C:\Windows\system32\drivers\pci.sys
12:24:13.0131 5776 pci - ok
12:24:13.0143 5776 [ F9908D274D458220F91E89B54D78D837 ] pciide C:\Windows\system32\drivers\pciide.sys
12:24:13.0151 5776 pciide - ok
12:24:13.0173 5776 [ 84D19CB6102627932DCB5DFDF89FE269 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
12:24:13.0186 5776 pcmcia - ok
12:24:13.0203 5776 [ CEBBAD5391C2644560C55628A40BFD27 ] pcw C:\Windows\system32\drivers\pcw.sys
12:24:13.0211 5776 pcw - ok
12:24:13.0220 5776 [ 674B0AAFB88A04D313B032C623F6AC9A ] pdc C:\Windows\system32\drivers\pdc.sys
12:24:13.0229 5776 pdc - ok
12:24:13.0256 5776 [ 70DBB6A8B52B3830922F1C5789E1BEEB ] PEAUTH C:\Windows\system32\drivers\peauth.sys
12:24:13.0309 5776 PEAUTH - ok
12:24:13.0379 5776 [ DF0D9BDCB600913F40FF125BF8CE1979 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
12:24:13.0454 5776 PeerDistSvc - ok
12:24:13.0556 5776 [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A ] PerfHost C:\Windows\SysWow64\perfhost.exe
12:24:13.0580 5776 PerfHost - ok
12:24:13.0642 5776 [ 6E84BFF58F7643499277F29DFA2F8C8D ] pla C:\Windows\system32\pla.dll
12:24:13.0692 5776 pla - ok
12:24:13.0737 5776 [ D7A3877D9E126E21925DA873677C1D65 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
12:24:13.0751 5776 PlugPlay - ok
12:24:13.0769 5776 [ A010F13D27C1033A8BE09D5FA9BF348B ] pneteth C:\Windows\system32\DRIVERS\pneteth.sys
12:24:13.0790 5776 pneteth - ok
12:24:13.0817 5776 [ 8E2414E818C26C4A9C70CB2B8567F04F ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
12:24:13.0827 5776 PNRPAutoReg - ok
12:24:13.0841 5776 [ AB76700D764A342D7475FB8F47CAB18C ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
12:24:13.0854 5776 PNRPsvc - ok
12:24:13.0894 5776 [ 0108C8E5176D590F242701EF5A62CC26 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
12:24:13.0921 5776 PolicyAgent - ok
12:24:13.0933 5776 [ AAD0C7235F804728373026EEFFDBCA6C ] Power C:\Windows\system32\umpo.dll
12:24:13.0943 5776 Power - ok
12:24:13.0955 5776 [ 362D47E5B4D67270DE4B8606036F4ADD ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
12:24:13.0981 5776 PptpMiniport - ok
12:24:14.0084 5776 [ 9D59831262CAD44E709D695FC9D5E7AB ] PrintNotify C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
12:24:14.0168 5776 PrintNotify - ok
12:24:14.0205 5776 [ 8DA167F8967AB35A2487095CB1B879A0 ] Processor C:\Windows\System32\drivers\processr.sys
12:24:14.0213 5776 Processor - ok
12:24:14.0237 5776 [ 429E8502AD2227CF88F8840FC5BD590D ] ProfSvc C:\Windows\system32\profsvc.dll
12:24:14.0249 5776 ProfSvc - ok
12:24:14.0268 5776 [ EB8034147D4820CD31BFCB11A2A652DF ] Psched C:\Windows\system32\DRIVERS\pacer.sys
12:24:14.0284 5776 Psched - ok
12:24:14.0317 5776 [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
12:24:14.0324 5776 PxHlpa64 - ok
12:24:14.0353 5776 [ 0AFBF333B6F87A2F598EAB379AF100B8 ] QWAVE C:\Windows\system32\qwave.dll
12:24:14.0383 5776 QWAVE - ok
12:24:14.0399 5776 [ 13D47BB0CCA2FC51BD15F8E85C6A078E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
12:24:14.0425 5776 QWAVEdrv - ok
12:24:14.0442 5776 [ 873C60F8178100557740A832FCE10B5F ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
12:24:14.0453 5776 RasAcd - ok
12:24:14.0477 5776 [ 69B93F623B130976243ECA3D84CC99CA ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
12:24:14.0488 5776 RasAgileVpn - ok
12:24:14.0502 5776 [ 005F6E54C4A2DA4EBF68FB0392CE8BB0 ] RasAuto C:\Windows\System32\rasauto.dll
12:24:14.0540 5776 RasAuto - ok
12:24:14.0559 5776 [ A14D625C5AEE5FFE0F47D1A1D419FAAE ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
12:24:14.0581 5776 Rasl2tp - ok
12:24:14.0602 5776 [ C923C785A2DE0B396AD6D13ACAFF2DE9 ] RasMan C:\Windows\System32\rasmans.dll
12:24:14.0643 5776 RasMan - ok
12:24:14.0660 5776 [ 00695B9C2DB6111064499C529E90C042 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
12:24:14.0687 5776 RasPppoe - ok
12:24:14.0705 5776 [ A7F24D8CD1956B0A1FDCB86CC5114DE4 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
12:24:14.0720 5776 RasSstp - ok
12:24:14.0735 5776 [ B72C33DBD5326B3864CF2091AF8B906B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
12:24:14.0760 5776 rdbss - ok
12:24:14.0773 5776 [ CA7DF5EC95D8DE0DD24BE7FF97369F68 ] rdpbus C:\Windows\System32\drivers\rdpbus.sys
12:24:14.0807 5776 rdpbus - ok
12:24:14.0840 5776 [ B2A3AD74FF2E2FFA73AF2567108231B3 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
12:24:14.0863 5776 RDPDR - ok
12:24:14.0886 5776 [ 3B4F32CA8B37584ECF98BCE136E38B96 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
12:24:14.0894 5776 RdpVideoMiniport - ok
12:24:14.0910 5776 [ B3CB0721E81E30419CE7D837EF4EA151 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
12:24:14.0922 5776 RDPWD - ok
12:24:14.0937 5776 [ 62C1F8A0685FE07E998AA296C4F697C4 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
12:24:14.0948 5776 rdyboost - ok
12:24:14.0969 5776 [ 3663CCF243EE0C04E9F6F91ED1737273 ] RemoteAccess C:\Windows\System32\mprdim.dll
12:24:14.0996 5776 RemoteAccess - ok
12:24:15.0054 5776 [ E80DD61E52EDFFF9DA1ED7260A68855B ] RemoteRegistry C:\Windows\system32\regsvc.dll
12:24:15.0117 5776 RemoteRegistry - ok
12:24:15.0152 5776 [ 381E606B90F32E501D1E2C852D211AB9 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
12:24:15.0163 5776 RpcEptMapper - ok
12:24:15.0177 5776 [ 10B21284B3D964AB3DC45490E57D422E ] RpcLocator C:\Windows\system32\locator.exe
12:24:15.0186 5776 RpcLocator - ok
12:24:15.0219 5776 [ 1EC6E533C954BDDF2A37E7851A7E58FD ] RpcSs C:\Windows\system32\rpcss.dll
12:24:15.0235 5776 RpcSs - ok
12:24:15.0322 5776 [ CD553B8633466A6D1C115812F2619F1F ] RsFx0103 C:\Windows\system32\DRIVERS\RsFx0103.sys
12:24:15.0333 5776 RsFx0103 - ok
12:24:15.0356 5776 [ E04E770DD198B9399640717145E79EBF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
12:24:15.0379 5776 rspndr - ok
12:24:15.0429 5776 [ 15923AA360F7675D3D43C9669316A0BA ] RTL8168 C:\Windows\system32\DRIVERS\Rt630x64.sys
12:24:15.0461 5776 RTL8168 - ok
12:24:15.0493 5776 [ 752EC7DCD2F96871A3857EEE6AFE965A ] s3cap C:\Windows\System32\drivers\vms3cap.sys
12:24:15.0501 5776 s3cap - ok
12:24:15.0645 5776 [ 6E0E63801FBEF27995107B8269BCFAAD ] SamSs C:\Windows\system32\lsass.exe
12:24:15.0653 5776 SamSs - ok
12:24:15.0684 5776 [ 9C7B28CE0D136DB226E24DB3BC817F92 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
12:24:15.0694 5776 sbp2port - ok
12:24:15.0723 5776 [ 14316954FCE79C9DE5A0AFF9D42C83AA ] SCardSvr C:\Windows\System32\SCardSvr.dll
12:24:15.0747 5776 SCardSvr - ok
12:24:15.0765 5776 [ 5D7733A12756B267FCA021672B26BC9E ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
12:24:15.0793 5776 scfilter - ok
12:24:15.0845 5776 [ EDCDF4DB82EF825B94B190D544C8C58B ] Schedule C:\Windows\system32\schedsvc.dll
12:24:15.0891 5776 Schedule - ok
12:24:15.0922 5776 [ BAF8F0F55BC300E5F882E521F054E345 ] SCPolicySvc C:\Windows\System32\certprop.dll
12:24:15.0933 5776 SCPolicySvc - ok
12:24:15.0953 5776 [ 6D3A4C1E3E809C02476B32ACB68C1707 ] sdbus C:\Windows\System32\drivers\sdbus.sys
12:24:15.0965 5776 sdbus - ok
12:24:15.0982 5776 [ 92968277ED491E4B3DDA361E3952361E ] SDRSVC C:\Windows\System32\SDRSVC.dll
12:24:15.0993 5776 SDRSVC - ok
12:24:15.0997 5776 [ 6BF842A03DAA25CBBA9A585E25731E06 ] sdstor C:\Windows\System32\drivers\sdstor.sys
12:24:16.0007 5776 sdstor - ok
12:24:16.0021 5776 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
12:24:16.0043 5776 secdrv - ok
12:24:16.0060 5776 [ CD282626738B6BC92B6E7CD0AAE95B63 ] seclogon C:\Windows\system32\seclogon.dll
12:24:16.0072 5776 seclogon - ok
12:24:16.0076 5776 [ 9C51620998F0763039DFA6BF68E475ED ] SENS C:\Windows\System32\sens.dll
12:24:16.0090 5776 SENS - ok
12:24:16.0110 5776 [ DDA4CAF29D8C0A297F886BFE561E6659 ] SensorsSimulatorDriver C:\Windows\system32\DRIVERS\WUDFRd.sys
12:24:16.0121 5776 SensorsSimulatorDriver - ok
12:24:16.0132 5776 [ 0D50B4B860DAB65241628D04CD33ACAE ] SensrSvc C:\Windows\system32\sensrsvc.dll
12:24:16.0144 5776 SensrSvc - ok
12:24:16.0161 5776 [ 87C46B239A7EEF30FDFDD5E9BD46130C ] SerCx C:\Windows\system32\drivers\SerCx.sys
12:24:16.0170 5776 SerCx - ok
12:24:16.0185 5776 [ 7A1F9347C85FD55E39B8A76B3A25C5AD ] Serenum C:\Windows\System32\drivers\serenum.sys
12:24:16.0193 5776 Serenum - ok
12:24:16.0211 5776 [ F640A0A218BBF857F1D04A15D7D939F6 ] Serial C:\Windows\System32\drivers\serial.sys
12:24:16.0237 5776 Serial - ok
12:24:16.0250 5776 [ F1A5F56B2620B862CC28FF96A0A6DAAB ] sermouse C:\Windows\System32\drivers\sermouse.sys
12:24:16.0259 5776 sermouse - ok
12:24:16.0283 5776 [ CB60A60340788C8D6DE2A269D28086AB ] SessionEnv C:\Windows\system32\sessenv.dll
12:24:16.0306 5776 SessionEnv - ok
12:24:16.0316 5776 [ 7EE65419B29302C795714FF8073969A1 ] sfloppy C:\Windows\System32\drivers\sfloppy.sys
12:24:16.0336 5776 sfloppy - ok
12:24:16.0394 5776 [ A77F3ABE13FCC698511E5DEC7ACEBD5F ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:24:16.0448 5776 ShellHWDetection - ok
12:24:16.0468 5776 [ 2560721D6F16D5B611C36A3A9D28C1B2 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
12:24:16.0478 5776 SiSRaid2 - ok
12:24:16.0486 5776 [ 3AA8FDE1DBF65BB8B88B053529554A0D ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
12:24:16.0496 5776 SiSRaid4 - ok
12:24:16.0534 5776 [ 3467821FD04A66C9786DF0C8C0219A73 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
12:24:16.0541 5776 SkypeUpdate - ok
12:24:16.0556 5776 [ E660156A4588A84305CB772FD2C0DB21 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
12:24:16.0582 5776 SNMPTRAP - ok
12:24:16.0612 5776 [ 465F3C355CE5ED2779B8F460F14C5A78 ] spaceport C:\Windows\system32\drivers\spaceport.sys
12:24:16.0626 5776 spaceport - ok
12:24:16.0638 5776 [ 3D8679C8DF52EB26EB7583A4E0A29202 ] SpbCx C:\Windows\system32\drivers\SpbCx.sys
12:24:16.0647 5776 SpbCx - ok
12:24:16.0671 5776 [ 3F215BF2D4D8D6756298B25B579772C2 ] Spooler C:\Windows\System32\spoolsv.exe
12:24:16.0708 5776 Spooler - ok
12:24:16.0837 5776 [ EC84D961501054F87A6878EC5D53388F ] sppsvc C:\Windows\system32\sppsvc.exe
12:24:16.0974 5776 sppsvc - ok
12:24:17.0099 5776 [ 12E6D95CDE974B131DEFAA44BAB8B056 ] SQLAgent$SQLEXPRESS C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
12:24:17.0124 5776 SQLAgent$SQLEXPRESS - ok
12:24:17.0197 5776 [ B54B48F6D92423440C264E91225C5FF1 ] SQLBrowser C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
12:24:17.0207 5776 SQLBrowser - ok
12:24:17.0263 5776 [ EAD5300C93946B0250A309E2BF2BE4CF ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
12:24:17.0273 5776 SQLWriter - ok
12:24:17.0308 5776 [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6 ] srv C:\Windows\system32\DRIVERS\srv.sys
12:24:17.0341 5776 srv - ok
12:24:17.0365 5776 [ 0DE224F7B8041B17AA53D00327A86396 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
12:24:17.0417 5776 srv2 - ok
12:24:17.0448 5776 [ 9400C71F5A1A380B494B6922F007D485 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
12:24:17.0462 5776 srvnet - ok
12:24:17.0490 5776 [ 7A20882D76D4A78240A5AC9F2C2EBA21 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
12:24:17.0505 5776 SSDPSRV - ok
12:24:17.0518 5776 [ D233B16999A8E626F6004BD7814C57EC ] SstpSvc C:\Windows\system32\sstpsvc.dll
12:24:17.0531 5776 SstpSvc - ok
12:24:17.0557 5776 Steam Client Service - ok
12:24:17.0580 5776 [ 4E85355B94CFCB67C135F6521A4895A7 ] stexstor C:\Windows\system32\drivers\stexstor.sys
12:24:17.0588 5776 stexstor - ok
12:24:17.0629 5776 [ BAC8A721736AECC55A4F71523AEAB65F ] stisvc C:\Windows\System32\wiaservc.dll
12:24:17.0672 5776 stisvc - ok
12:24:17.0700 5776 [ C588BBD37B432CE3204E5765B459E6B2 ] storahci C:\Windows\system32\drivers\storahci.sys
12:24:17.0709 5776 storahci - ok
12:24:17.0720 5776 [ F74DBC95A57B1EE866D3732EB5F79BE2 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
12:24:17.0728 5776 storflt - ok
12:24:17.0738 5776 [ 5337E138B49ED1F44CCBA4073BC35C20 ] StorSvc C:\Windows\system32\storsvc.dll
12:24:17.0747 5776 StorSvc - ok
12:24:17.0751 5776 [ 543CD3CC0E05B8D8815E0D4F040B6F59 ] storvsc C:\Windows\system32\drivers\storvsc.sys
12:24:17.0759 5776 storvsc - ok
12:24:17.0772 5776 [ 1A36AC469140F87CDE62D7F8524E270C ] storvsp C:\Windows\System32\drivers\storvsp.sys
12:24:17.0781 5776 storvsp - ok
12:24:17.0796 5776 [ 8BC1C1ED6EF9C985A3FAA6A72F41679A ] svsvc C:\Windows\system32\svsvc.dll
12:24:17.0810 5776 svsvc - ok
12:24:17.0823 5776 [ 4AFD66AAE74FFB5986BC240744DC5FC9 ] swenum C:\Windows\System32\drivers\swenum.sys
12:24:17.0831 5776 swenum - ok
12:24:17.0938 5776 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
12:24:17.0960 5776 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
12:24:17.0960 5776 SwitchBoard - detected UnsignedFile.Multi.Generic (1)
12:24:17.0998 5776 [ 502F9488540051F3E6C39889ECFA76BB ] swprv C:\Windows\System32\swprv.dll
12:24:18.0039 5776 swprv - ok
12:24:18.0090 5776 [ DC21E1F06343773D7E24362DCEF7944B ] SysMain C:\Windows\system32\sysmain.dll
12:24:18.0139 5776 SysMain - ok
12:24:18.0150 5776 [ F1DA8D3C4395E4B1D58D308A4B062B24 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
12:24:18.0163 5776 SystemEventsBroker - ok
12:24:18.0167 5776 [ A6C06C45C44AD06C70AF8899AEC15BDC ] TabletInputService C:\Windows\System32\TabSvc.dll
12:24:18.0188 5776 TabletInputService - ok
12:24:18.0210 5776 [ 88B7721AB551C4325036B25A34A2BF7B ] TapiSrv C:\Windows\System32\tapisrv.dll
12:24:18.0243 5776 TapiSrv - ok
12:24:18.0312 5776 [ AF6A8D27FCABFF85DDC1D4599582B4FE ] Tcpip C:\Windows\system32\drivers\tcpip.sys
12:24:18.0391 5776 Tcpip - ok
12:24:18.0442 5776 [ AF6A8D27FCABFF85DDC1D4599582B4FE ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
12:24:18.0481 5776 TCPIP6 - ok
12:24:18.0505 5776 [ 8F2A13A5DF99D72FDDE87F502A66F989 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
12:24:18.0516 5776 tcpipreg - ok
12:24:18.0540 5776 [ 73DC722CE5DF26D7638CE2446F2655C7 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
12:24:18.0550 5776 tdx - ok
12:24:18.0686 5776 [ BB676D2C7AD5E7131D12417E4691F9B9 ] Te.Service C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe
12:24:18.0700 5776 Te.Service ( UnsignedFile.Multi.Generic ) - warning
12:24:18.0700 5776 Te.Service - detected UnsignedFile.Multi.Generic (1)
12:24:18.0720 5776 [ F7C8AB5D8AFFAA318D6A21093D139BF4 ] terminpt C:\Windows\System32\drivers\terminpt.sys
12:24:18.0728 5776 terminpt - ok
12:24:18.0755 5776 [ 541EE228D0DEF392F7B2DFD885DD021B ] TermService C:\Windows\System32\termsrv.dll
12:24:18.0807 5776 TermService - ok
12:24:18.0835 5776 [ 519A6F672FFF56B7D8EE8C730CEC8ECD ] Themes C:\Windows\system32\themeservice.dll
12:24:18.0867 5776 Themes - ok
12:24:18.0899 5776 [ DBD28A7997CF7303E610989C565C9B29 ] THREADORDER C:\Windows\system32\mmcss.dll
12:24:18.0907 5776 THREADORDER - ok
12:24:18.0925 5776 [ 2A8B087AE47AC8486859CF479BB704C8 ] TimeBroker C:\Windows\System32\TimeBrokerServer.dll
12:24:18.0953 5776 TimeBroker - ok
12:24:18.0970 5776 [ 151BD0387B1B320CC9AACE6DB071803B ] TPM C:\Windows\system32\drivers\tpm.sys
12:24:18.0982 5776 TPM - ok
12:24:18.0996 5776 [ 8C8CF3041B27E7657ADD0EE17F6DBFCA ] TrkWks C:\Windows\System32\trkwks.dll
12:24:19.0007 5776 TrkWks - ok
12:24:19.0058 5776 [ 8D516AEF3C1DF980664CF17BB1FF6093 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:24:19.0078 5776 TrustedInstaller - ok
12:24:19.0096 5776 [ 4E7C5FB10A50435523DE0CAA37DE2BD3 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
12:24:19.0106 5776 TsUsbFlt - ok
12:24:19.0111 5776 [ 16D684A820872EE54F6370703AC0B513 ] TsUsbGD C:\Windows\System32\drivers\TsUsbGD.sys
12:24:19.0119 5776 TsUsbGD - ok
12:24:19.0139 5776 [ 78C9EE193AC2B4CBDBC48B620314D740 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
12:24:19.0164 5776 tunnel - ok
12:24:19.0186 5776 [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A ] uagp35 C:\Windows\system32\drivers\uagp35.sys
12:24:19.0194 5776 uagp35 - ok
12:24:19.0220 5776 [ 6FD6D03B7752C78712E5CFF29A305026 ] UASPStor C:\Windows\System32\drivers\uaspstor.sys
12:24:19.0229 5776 UASPStor - ok
12:24:19.0241 5776 [ AA48AEC5CEB2AA8ED1B1A5758B017F72 ] UCX01000 C:\Windows\System32\drivers\ucx01000.sys
12:24:19.0254 5776 UCX01000 - ok
12:24:19.0278 5776 [ DC5A461591C71AF7F19DC048A81E3F88 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
12:24:19.0297 5776 udfs - ok
12:24:19.0333 5776 [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D ] UI0Detect C:\Windows\system32\UI0Detect.exe
12:24:19.0358 5776 UI0Detect - ok
12:24:19.0362 5776 [ 07FEBCDF24FABA0D47B635D85A0FFB7A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
12:24:19.0371 5776 uliagpkx - ok
12:24:19.0376 5776 [ 02CEB3FE6152668A7BA420B93B664860 ] umbus C:\Windows\System32\drivers\umbus.sys
12:24:19.0385 5776 umbus - ok
12:24:19.0398 5776 [ 991EE6B5FC41EAEF99C8AF5B92F2CA09 ] UmPass C:\Windows\System32\drivers\umpass.sys
12:24:19.0407 5776 UmPass - ok
12:24:19.0427 5776 [ 43FEFB040A0CC30F795FBF544169594D ] UmRdpService C:\Windows\System32\umrdp.dll
12:24:19.0441 5776 UmRdpService - ok
12:24:19.0464 5776 [ 14D22C411854AA2560AFC94CD2D5E61F ] upnphost C:\Windows\System32\upnphost.dll
12:24:19.0493 5776 upnphost - ok
12:24:19.0525 5776 [ 3FBE0784E42E7BA93FCC5201D2BAFE23 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
12:24:19.0544 5776 usbaudio - ok
12:24:19.0558 5776 [ 2AF9F0E16D75B8F783A1ACE74EF51C9B ] usbccgp C:\Windows\System32\drivers\usbccgp.sys
12:24:19.0568 5776 usbccgp - ok
12:24:19.0583 5776 [ B395B62B62F28106218FA6FB17F4C797 ] usbcir C:\Windows\System32\drivers\usbcir.sys
12:24:19.0609 5776 usbcir - ok
12:24:19.0628 5776 [ 742BAFBB51C5B7811098ADE8C7EF5534 ] usbehci C:\Windows\System32\drivers\usbehci.sys
12:24:19.0638 5776 usbehci - ok
12:24:19.0658 5776 [ 566A32B2054C8E5360DB7839F64D0F58 ] usbhub C:\Windows\System32\drivers\usbhub.sys
12:24:19.0685 5776 usbhub - ok
12:24:19.0704 5776 [ 12EAB6FB15B572D9C6D9FFC33F87EC3F ] USBHUB3 C:\Windows\System32\drivers\UsbHub3.sys
12:24:19.0732 5776 USBHUB3 - ok
12:24:19.0741 5776 [ F656F5D696A921DA67E98CF9C2BEDA20 ] usbohci C:\Windows\System32\drivers\usbohci.sys
12:24:19.0751 5776 usbohci - ok
12:24:19.0754 5776 [ BA3ABE0CD1C14B3295BAD0F076B84CAC ] usbprint C:\Windows\System32\drivers\usbprint.sys
12:24:19.0764 5776 usbprint - ok
12:24:19.0797 5776 [ F77177F6C95B2116EE7AD23B5EF57007 ] USBSTOR C:\Windows\System32\drivers\USBSTOR.SYS
12:24:19.0807 5776 USBSTOR - ok
12:24:19.0818 5776 [ 1BBB5F562E80CF9E2F1587150FE3216E ] usbuhci C:\Windows\System32\drivers\usbuhci.sys
12:24:19.0837 5776 usbuhci - ok
12:24:19.0855 5776 [ 8ABF3C3ED6BF5ED15DC947795FF6ACAC ] USBXHCI C:\Windows\System32\drivers\USBXHCI.SYS
12:24:19.0871 5776 USBXHCI - ok
12:24:19.0890 5776 [ 6E0E63801FBEF27995107B8269BCFAAD ] VaultSvc C:\Windows\system32\lsass.exe
12:24:19.0897 5776 VaultSvc - ok
12:24:19.0913 5776 [ BACECBFF9C97F7627A60B0E0F1FE7EE8 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
12:24:19.0923 5776 vdrvroot - ok
12:24:19.0955 5776 [ 728C2DEEE875D6968632638922D6A1D7 ] vds C:\Windows\System32\vds.exe
12:24:19.0996 5776 vds - ok
12:24:20.0000 5776 [ 74FA2D4368DE6F6CE14393EDF1F342BE ] VerifierExt C:\Windows\system32\drivers\VerifierExt.sys
12:24:20.0010 5776 VerifierExt - ok
12:24:20.0033 5776 [ 8628FA679F0EC4B709CCD1F6B6A3233B ] vhdmp C:\Windows\System32\drivers\vhdmp.sys
12:24:20.0061 5776 vhdmp - ok
12:24:20.0136 5776 [ ECFF1FACB0554F10C57426B216254011 ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
12:24:20.0205 5776 VIAHdAudAddService - ok
12:24:20.0208 5776 [ F5B4A14B00E89250C50982AC762DDD1D ] viaide C:\Windows\system32\drivers\viaide.sys
12:24:20.0219 5776 viaide - ok
12:24:20.0235 5776 [ CFCD3C58029F2C43CE0E5E5EABC8607A ] VIAKaraokeService C:\Windows\system32\viakaraokesrv.exe
12:24:20.0242 5776 VIAKaraokeService - ok
12:24:20.0259 5776 [ 0E43886F01C85B47BA0A3157274BCF59 ] Vid C:\Windows\System32\drivers\Vid.sys
12:24:20.0270 5776 Vid - ok
12:24:20.0283 5776 [ 78DB50F7329F6D1311658DABFFFC8BE0 ] vmbus C:\Windows\system32\drivers\vmbus.sys
12:24:20.0294 5776 vmbus - ok
12:24:20.0303 5776 [ ECFEE2F2BA3932C7880D1A8F67D68F91 ] VMBusHID C:\Windows\System32\drivers\VMBusHID.sys
12:24:20.0311 5776 VMBusHID - ok
12:24:20.0320 5776 [ B4F432A51826FFC66F4DF72A83E8E4B1 ] vmbusr C:\Windows\System32\drivers\vmbusr.sys
12:24:20.0330 5776 vmbusr - ok
12:24:20.0360 5776 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicheartbeat C:\Windows\System32\ICSvc.dll
12:24:20.0375 5776 vmicheartbeat - ok
12:24:20.0381 5776 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmickvpexchange C:\Windows\System32\ICSvc.dll
12:24:20.0393 5776 vmickvpexchange - ok
12:24:20.0399 5776 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicrdv C:\Windows\System32\ICSvc.dll
12:24:20.0410 5776 vmicrdv - ok
12:24:20.0417 5776 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicshutdown C:\Windows\System32\ICSvc.dll
12:24:20.0428 5776 vmicshutdown - ok
12:24:20.0435 5776 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmictimesync C:\Windows\System32\ICSvc.dll
12:24:20.0446 5776 vmictimesync - ok
12:24:20.0453 5776 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicvss C:\Windows\System32\ICSvc.dll
12:24:20.0464 5776 vmicvss - ok
12:24:20.0479 5776 [ CB60FAAED8B49B812EBBF77EB87D9B18 ] volmgr C:\Windows\system32\drivers\volmgr.sys
12:24:20.0488 5776 volmgr - ok
12:24:20.0522 5776 [ A74101DA9809251BCD0E5A26BAE0F824 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
12:24:20.0548 5776 volmgrx - ok
12:24:20.0563 5776 [ 2FB3CDFD5EAF4CD9D4AFAF96877D13AE ] volsnap C:\Windows\system32\drivers\volsnap.sys
12:24:20.0580 5776 volsnap - ok
12:24:20.0592 5776 [ A8DA1C1B52ECEA3726DEBED4FF1B700D ] vpci C:\Windows\System32\drivers\vpci.sys
12:24:20.0601 5776 vpci - ok
12:24:20.0610 5776 [ 0190AFFF28F600461C0164353CC7EE27 ] vpcivsp C:\Windows\System32\drivers\vpcivsp.sys
12:24:20.0631 5776 vpcivsp - ok
12:24:20.0651 5776 [ 38A60CD9C009C55C6D3B5586F8E6A353 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
12:24:20.0663 5776 vsmraid - ok
12:24:20.0793 5776 [ 1928B9CA20F51BFBBAD54D2C2C447B13 ] VSPerfDrv100 C:\Program Files (x86)\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\x64\VSPerfDrv100.sys
12:24:20.0799 5776 VSPerfDrv100 - ok
12:24:21.0257 5776 [ F972436B5ED08069A1E7D623B77C226A ] VSPerfDrv110 E:\Program Files (x86)\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\x64\VSPerfDrv110.sys
12:24:21.0264 5776 VSPerfDrv110 - ok
12:24:21.0323 5776 [ EA658570314042C914964FC72AB50E6B ] VSS C:\Windows\system32\vssvc.exe
12:24:21.0375 5776 VSS - ok
12:24:21.0401 5776 [ A0F6FE0FC2F647C22BBFD6BD4249DBCC ] VSTXRAID C:\Windows\system32\drivers\vstxraid.sys
12:24:21.0426 5776 VSTXRAID - ok
12:24:21.0440 5776 [ 62460A45435A26A334907E3F2EA45611 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
12:24:21.0448 5776 vwifibus - ok
12:24:21.0481 5776 [ F690B6EEAA94576727B24376D7ED3601 ] W32Time C:\Windows\system32\w32time.dll
12:24:21.0517 5776 W32Time - ok
12:24:21.0521 5776 [ 6B806E893714019969E2B50D7EF6A4D9 ] WacomPen C:\Windows\System32\drivers\wacompen.sys
12:24:21.0529 5776 WacomPen - ok
12:24:21.0533 5776 [ B69492CBD928534160594A7B33602575 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
12:24:21.0544 5776 Wanarp - ok
12:24:21.0548 5776 [ B69492CBD928534160594A7B33602575 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
12:24:21.0558 5776 Wanarpv6 - ok
12:24:21.0610 5776 [ 42DF22F8C448E7CD219F6D63743505E2 ] wbengine C:\Windows\system32\wbengine.exe
12:24:21.0663 5776 wbengine - ok
12:24:21.0683 5776 [ 31D37B2F6069C631EF0557D322924812 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
12:24:21.0718 5776 WbioSrvc - ok
12:24:21.0736 5776 [ D9C1E82651BF19C6FF69CEC6FD400124 ] Wcmsvc C:\Windows\System32\wcmsvc.dll
12:24:21.0760 5776 Wcmsvc - ok
12:24:21.0791 5776 [ 68C2831A05A339DA8462C6F45BFCB84C ] wcncsvc C:\Windows\System32\wcncsvc.dll
12:24:21.0810 5776 wcncsvc - ok
12:24:21.0827 5776 [ E19556D414332E2BEBA1F368229006B4 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:24:21.0848 5776 WcsPlugInService - ok
12:24:21.0875 5776 [ B3A4D918DAB90505B6BC7B70632913CB ] Wd C:\Windows\system32\drivers\wd.sys
12:24:21.0882 5776 Wd - ok
12:24:21.0898 5776 [ 260F8DFC4D5748F4CCB9B19CFB0E58EA ] WdBoot C:\Windows\system32\drivers\WdBoot.sys
12:24:21.0906 5776 WdBoot - ok
12:24:21.0937 5776 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
12:24:21.0982 5776 Wdf01000 - ok
12:24:22.0001 5776 [ 880FFFC4D5BBBB4187B6B04AB2E8C32A ] WdFilter C:\Windows\system32\drivers\WdFilter.sys
12:24:22.0016 5776 WdFilter - ok
12:24:22.0038 5776 [ 240FC332484572227CD1DF82407F33E5 ] WdiServiceHost C:\Windows\system32\wdi.dll
12:24:22.0067 5776 WdiServiceHost - ok
12:24:22.0070 5776 [ 240FC332484572227CD1DF82407F33E5 ] WdiSystemHost C:\Windows\system32\wdi.dll
12:24:22.0086 5776 WdiSystemHost - ok
12:24:22.0102 5776 [ F2002DA5E6B78C15B2CD48CFF8F0FBB6 ] WebClient C:\Windows\System32\webclnt.dll
12:24:22.0115 5776 WebClient - ok
12:24:22.0142 5776 [ 35FD720943D4FCD75C3275BF062FF140 ] Wecsvc C:\Windows\system32\wecsvc.dll
12:24:22.0173 5776 Wecsvc - ok
12:24:22.0193 5776 [ 4D2612E3C462B68F499D840B1133263E ] wercplsupport C:\Windows\System32\wercplsupport.dll
12:24:22.0213 5776 wercplsupport - ok
12:24:22.0229 5776 [ 8E2426162ED6749A127B35D235F21E11 ] WerSvc C:\Windows\System32\WerSvc.dll
12:24:22.0247 5776 WerSvc - ok
12:24:22.0263 5776 [ FE762D3498719C3A23471BBA62F747B4 ] WFPLWFS C:\Windows\system32\DRIVERS\wfplwfs.sys
12:24:22.0272 5776 WFPLWFS - ok
12:24:22.0285 5776 [ 60E0C220593DA4F7C289CB909D2DBAE0 ] WiaRpc C:\Windows\System32\wiarpc.dll
12:24:22.0310 5776 WiaRpc - ok
12:24:22.0327 5776 [ A3C7624A42A3447EF5EDD1ED37FE4E60 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
12:24:22.0335 5776 WIMMount - ok
12:24:22.0354 5776 WinDefend - ok
12:24:22.0395 5776 [ 1369928779943B5C7AABA263E6E2BBC1 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
12:24:22.0442 5776 WinHttpAutoProxySvc - ok
12:24:22.0488 5776 [ 3D6B518B71C75C8FA4115A33615C107A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
12:24:22.0501 5776 Winmgmt - ok
12:24:22.0587 5776 [ 8E212A627F33F6FC3B5F3BB47212F66E ] WinRM C:\Windows\system32\WsmSvc.dll
12:24:22.0672 5776 WinRM - ok
12:24:22.0710 5776 [ BB20956C424531003F7FA6CD36F11D5D ] WinUSB C:\Windows\system32\DRIVERS\WinUSB.sys
12:24:22.0734 5776 WinUSB - ok
12:24:22.0782 5776 [ CAC452B32656A0A51356912F4A9943CA ] WlanSvc C:\Windows\System32\wlansvc.dll
12:24:22.0828 5776 WlanSvc - ok
12:24:22.0879 5776 [ 08EFA13A2234C8C3B8A99E4B88BE7E9B ] wlidsvc C:\Windows\system32\wlidsvc.dll
12:24:22.0942 5776 wlidsvc - ok
12:24:22.0952 5776 [ E2A596CACFC6504306CDB7B593B90084 ] WmiAcpi C:\Windows\System32\drivers\wmiacpi.sys
12:24:22.0960 5776 WmiAcpi - ok
12:24:22.0979 5776 [ D113499052C5E541906B727779F0F959 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
12:24:23.0004 5776 wmiApSrv - ok
12:24:23.0019 5776 WMPNetworkSvc - ok
12:24:23.0046 5776 [ C6FF953D5D6F2EAE3B8883474D5076B3 ] wpcfltr C:\Windows\system32\DRIVERS\wpcfltr.sys
12:24:23.0054 5776 wpcfltr - ok
12:24:23.0075 5776 [ A6ED163169876BFD2437E872FE2F1509 ] WPCSvc C:\Windows\System32\wpcsvc.dll
12:24:23.0095 5776 WPCSvc - ok
12:24:23.0113 5776 [ 94AA5150E35B3ABB7191FE641E3C2473 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
12:24:23.0125 5776 WPDBusEnum - ok
12:24:23.0140 5776 [ 0346CAFC181C91C6E2330332EB332ED6 ] WpdUpFltr C:\Windows\system32\drivers\WpdUpFltr.sys
12:24:23.0148 5776 WpdUpFltr - ok
12:24:23.0157 5776 [ 58D492F986EC519ECDD54D93618758F8 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
12:24:23.0183 5776 ws2ifsl - ok
12:24:23.0186 5776 WSearch - ok
12:24:23.0255 5776 [ FEC16FE5EAC2D8CD4628B69667B90DE6 ] WSService C:\Windows\System32\WSService.dll
12:24:23.0348 5776 WSService - ok
12:24:23.0441 5776 [ C80DB258C195ACBF86ED42B53554EB28 ] wuauserv C:\Windows\system32\wuaueng.dll
12:24:23.0538 5776 wuauserv - ok
12:24:23.0555 5776 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
12:24:23.0577 5776 WudfPf - ok
12:24:23.0599 5776 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\System32\drivers\WUDFRd.sys
12:24:23.0611 5776 WUDFRd - ok
12:24:23.0632 5776 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFSensorLP C:\Windows\system32\DRIVERS\WUDFRd.sys
12:24:23.0641 5776 WUDFSensorLP - ok
12:24:23.0657 5776 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
12:24:23.0669 5776 wudfsvc - ok
12:24:23.0674 5776 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdFs C:\Windows\system32\DRIVERS\WUDFRd.sys
12:24:23.0683 5776 WUDFWpdFs - ok
12:24:23.0760 5776 [ 9FE55B90B1778C4FE351ECD1AEFD8AAF ] WwanSvc C:\Windows\System32\wwansvc.dll
12:24:23.0803 5776 WwanSvc - ok
12:24:23.0858 5776 [ 788914C42AD8318F1DD7A565EAFFB049 ] XG762_VS C:\Windows\system32\DRIVERS\WlanGZG.sys
12:24:23.0900 5776 XG762_VS - ok
12:24:23.0933 5776 [ 1195CD5F5740F4E0459FF2F12C3B1688 ] ZDCNDIS6a64 C:\Windows\system32\ZDCNDIS6a64.sys
12:24:23.0940 5776 ZDCNDIS6a64 - ok
12:24:23.0984 5776 [ BDCE85CCAAE18051CB6D1A8748B471C9 ] ZG760_64 C:\Windows\system32\DRIVERS\WlanGZ64.SYS
12:24:24.0015 5776 ZG760_64 ( UnsignedFile.Multi.Generic ) - warning
12:24:24.0015 5776 ZG760_64 - detected UnsignedFile.Multi.Generic (1)
12:24:24.0026 5776 ================ Scan global ===============================
12:24:24.0078 5776 [ DDC1AFBF9DDF880CE9BD3896114D8DED ] C:\Windows\system32\basesrv.dll
12:24:24.0104 5776 [ B36597EF454D4FEA2F11429A9A1424BD ] C:\Windows\system32\winsrv.dll
12:24:24.0132 5776 [ BD7C6949984D19AAA609896B675E7357 ] C:\Windows\system32\sxssrv.dll
12:24:24.0159 5776 [ 754A2CC1F32107EA87CBD305ABE3E618 ] C:\Windows\system32\services.exe
12:24:24.0177 5776 [Global] - ok
12:24:24.0178 5776 ================ Scan MBR ==================================
12:24:24.0226 5776 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
12:24:24.0478 5776 \Device\Harddisk0\DR0 - ok
12:24:24.0496 5776 [ E93D266998C64F903D6E2758CA2F8EFB ] \Device\Harddisk1\DR1
12:24:24.0596 5776 \Device\Harddisk1\DR1 - ok
12:24:24.0596 5776 ================ Scan VBR ==================================
12:24:24.0598 5776 [ 8BDDB4787BC85AE15B192F52E2FC9AD1 ] \Device\Harddisk0\DR0\Partition1
12:24:24.0599 5776 \Device\Harddisk0\DR0\Partition1 - ok
12:24:24.0629 5776 [ D1398F01EB9516F71DA7C37831A74C0F ] \Device\Harddisk0\DR0\Partition2
12:24:24.0631 5776 \Device\Harddisk0\DR0\Partition2 - ok
12:24:24.0654 5776 [ 3E7589249CEE46156FFFFD1C3DE193C8 ] \Device\Harddisk1\DR1\Partition1
12:24:24.0655 5776 \Device\Harddisk1\DR1\Partition1 - ok
12:24:24.0655 5776 ============================================================
12:24:24.0655 5776 Scan finished
12:24:24.0655 5776 ============================================================
12:24:24.0662 1108 Detected object count: 4
12:24:24.0662 1108 Actual detected object count: 4
12:24:41.0045 1108 fussvc ( UnsignedFile.Multi.Generic ) - skipped by user
12:24:41.0045 1108 fussvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:24:41.0046 1108 SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
12:24:41.0046 1108 SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:24:41.0047 1108 Te.Service ( UnsignedFile.Multi.Generic ) - skipped by user
12:24:41.0047 1108 Te.Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:24:41.0048 1108 ZG760_64 ( UnsignedFile.Multi.Generic ) - skipped by user
12:24:41.0048 1108 ZG760_64 ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:24:46.0310 5704 Deinitialize success
- Přílohy
-
- viry.rar
- OTL a PC Hunter
- (189.23 KiB) Staženo 43 x
-
GAMELASTER
- Návštěvník
- Příspěvky: 107
- Registrován: 13 led 2012 16:53
Re: Virus Generic29.AJGE nejede smazat[+2 Posti, dlhy log]
MBR Skusky:
MBR:
//EDIT: AVGcku sa zahodou podarilo ten virus vymazat. Takze som zmeteni..
//EDIT2: Po druhom odstraneni vsetkych sa nevymazal ani jeden, takze to asi nebolo prave...
P.S. Podla AVG sa virus nachadza v svchost.exe a explorer.exe
Kód: Vybrat vše
https://www.virustotal.com/sk/file/644dad1a7f0a49a310937354b0a4fae8c366289ed3dfac5ac7617f43342221f1/analysis/1367747106/
https://www.virustotal.com/sk/file/cb3775a69393a93f166f6af948dffb10cd0a8d41ac603af98643ea0af2932e7a/analysis/1367747203/Kód: Vybrat vše
MBRScan v1.1.1
OS : Windows 8 (64 bit)
PROCESSOR : Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
BOOT : Normal Boot
DATE : 2013/05/05 (ISO 8601) at 11:44:06
________________________________________________________________________________
DISK : Device\Harddisk0\DR0 __TOSHIBA MK2552GSX (LV011C)
BUS_TYPE : (0x03) P-ATA
USE_PIO : NO
MAX_TRANSFER : 128 Kb
ALIGNMENT_MASK : word aligned
________________________________________________________________________________
DISK : Device\Harddisk1\DR1 __WDC WD800JD-60JRA0 (05.01C05)
BUS_TYPE : (0x03) P-ATA
USE_PIO : NO
MAX_TRANSFER : 128 Kb
ALIGNMENT_MASK : word aligned
________________________________________________________________________________
Device\Harddisk0\DR0 232.9 Go [Fixed] ==> 7 MBR Code
MBR_MD5 : D7317F5FFA39213990C678EB551AF34F
MBR_SHA1 : DBC46FAA2B6E30B5FA946F292FF934B62982B837
Device\Harddisk0\Partition1 70.00 Go 0x07 NTFS / HPFS __ BOOTABLE __
Device\Harddisk0\Partition2 162.9 Go 0x07 NTFS / HPFS
________________________________________________________________________________
Device\Harddisk1\DR1 74.53 Go [Fixed] ==> Linux MBR Code
MBR_MD5 : 1313EB586217CBA7B6FB17C544815DE4
MBR_SHA1 : 9FDCA42EE303FDC209E6411DE296DD2078F11247
Device\Harddisk1\Partition1 74.53 Go 0x07 NTFS / HPFS
________________________________________________________________________________
############################### Additional scan ################################
DRIVER : C:\Windows\system32\ntoskrnl.exe => Invisible on the disk
ADDRESS : 0x85818000
SIZE : 7.28 Mo
DRIVER : C:\Windows\system32\hal.dll => Invisible on the disk
ADDRESS : 0x85F60000
SIZE : 432.0 Ko
DRIVER : C:\Windows\system32\kd.dll => Invisible on the disk
ADDRESS : 0x84C47000
SIZE : 36.0 Ko
DRIVER : C:\Windows\system32\mcupdate_GenuineIntel.dll => Invisible on the disk
ADDRESS : 0x00C87000
SIZE : 380.0 Ko
DRIVER : C:\Windows\System32\drivers\CLFS.SYS => Invisible on the disk
ADDRESS : 0x00CE6000
SIZE : 368.0 Ko
DRIVER : C:\Windows\System32\drivers\tm.sys => Invisible on the disk
ADDRESS : 0x00D42000
SIZE : 140.0 Ko
DRIVER : C:\Windows\system32\CI.dll => Invisible on the disk
ADDRESS : 0x0106C000
SIZE : 508.0 Ko
DRIVER : C:\Windows\System32\drivers\msrpc.sys => Invisible on the disk
ADDRESS : 0x010EB000
SIZE : 396.0 Ko
DRIVER : C:\Windows\system32\drivers\Wdf01000.sys => Invisible on the disk
ADDRESS : 0x012EE000
SIZE : 776.0 Ko
DRIVER : C:\Windows\system32\drivers\WDFLDR.SYS => Invisible on the disk
ADDRESS : 0x013B0000
SIZE : 64.0 Ko
DRIVER : C:\Windows\System32\Drivers\acpiex.sys => Invisible on the disk
ADDRESS : 0x013C0000
SIZE : 92.0 Ko
DRIVER : C:\Windows\System32\Drivers\WppRecorder.sys => Invisible on the disk
ADDRESS : 0x013D7000
SIZE : 44.0 Ko
DRIVER : C:\Windows\System32\drivers\ACPI.sys => Invisible on the disk
ADDRESS : 0x01200000
SIZE : 436.0 Ko
DRIVER : C:\Windows\System32\drivers\WMILIB.SYS => Invisible on the disk
ADDRESS : 0x0126D000
SIZE : 40.0 Ko
DRIVER : C:\Windows\System32\drivers\msisadrv.sys => Invisible on the disk
ADDRESS : 0x01277000
SIZE : 40.0 Ko
DRIVER : C:\Windows\System32\drivers\pci.sys => Invisible on the disk
ADDRESS : 0x01281000
SIZE : 244.0 Ko
DRIVER : C:\Windows\System32\Drivers\cng.sys => Invisible on the disk
ADDRESS : 0x0114E000
SIZE : 560.0 Ko
DRIVER : C:\Windows\system32\drivers\tpm.sys => Invisible on the disk
ADDRESS : 0x012BE000
SIZE : 160.0 Ko
DRIVER : C:\Windows\System32\drivers\vdrvroot.sys => Invisible on the disk
ADDRESS : 0x013EB000
SIZE : 52.0 Ko
DRIVER : C:\Windows\system32\drivers\pdc.sys => Invisible on the disk
ADDRESS : 0x011DA000
SIZE : 92.0 Ko
DRIVER : C:\Windows\System32\drivers\partmgr.sys => Invisible on the disk
ADDRESS : 0x01000000
SIZE : 104.0 Ko
DRIVER : C:\Windows\System32\drivers\spaceport.sys => Invisible on the disk
ADDRESS : 0x0101A000
SIZE : 292.0 Ko
DRIVER : C:\Windows\System32\drivers\volmgr.sys => Invisible on the disk
ADDRESS : 0x00D84000
SIZE : 96.0 Ko
DRIVER : C:\Windows\System32\drivers\volmgrx.sys => Invisible on the disk
ADDRESS : 0x00D9C000
SIZE : 384.0 Ko
DRIVER : C:\Windows\System32\drivers\pciide.sys => Invisible on the disk
ADDRESS : 0x013F8000
SIZE : 32.0 Ko
DRIVER : C:\Windows\System32\drivers\PCIIDEX.SYS => Invisible on the disk
ADDRESS : 0x011F1000
SIZE : 60.0 Ko
DRIVER : C:\Windows\System32\drivers\mountmgr.sys => Invisible on the disk
ADDRESS : 0x00C00000
SIZE : 104.0 Ko
DRIVER : C:\Windows\System32\drivers\atapi.sys => Invisible on the disk
ADDRESS : 0x00C1A000
SIZE : 40.0 Ko
DRIVER : C:\Windows\System32\drivers\ataport.SYS => Invisible on the disk
ADDRESS : 0x00C24000
SIZE : 208.0 Ko
DRIVER : C:\Windows\System32\drivers\EhStorClass.sys => Invisible on the disk
ADDRESS : 0x00C58000
SIZE : 104.0 Ko
DRIVER : C:\Windows\system32\drivers\fltmgr.sys => Invisible on the disk
ADDRESS : 0x014C3000
SIZE : 384.0 Ko
DRIVER : C:\Windows\System32\drivers\fileinfo.sys => Invisible on the disk
ADDRESS : 0x01523000
SIZE : 80.0 Ko
DRIVER : C:\Windows\System32\Drivers\PxHlpa64.sys => Invisible on the disk
ADDRESS : 0x01537000
SIZE : 48.0 Ko
DRIVER : C:\Windows\System32\Drivers\Ntfs.sys => Invisible on the disk
ADDRESS : 0x0167F000
SIZE : 1.89 Mo
DRIVER : C:\Windows\System32\Drivers\ksecdd.sys => Invisible on the disk
ADDRESS : 0x01862000
SIZE : 108.0 Ko
DRIVER : C:\Windows\System32\drivers\pcw.sys => Invisible on the disk
ADDRESS : 0x0187D000
SIZE : 68.0 Ko
DRIVER : C:\Windows\System32\Drivers\Fs_Rec.sys => Invisible on the disk
ADDRESS : 0x0188E000
SIZE : 40.0 Ko
DRIVER : C:\Windows\system32\drivers\ndis.sys => Invisible on the disk
ADDRESS : 0x01898000
SIZE : 1004.0 Ko
DRIVER : C:\Windows\system32\drivers\NETIO.SYS => Invisible on the disk
ADDRESS : 0x01600000
SIZE : 448.0 Ko
DRIVER : C:\Windows\System32\Drivers\ksecpkg.sys => Invisible on the disk
ADDRESS : 0x01993000
SIZE : 188.0 Ko
DRIVER : C:\Windows\System32\drivers\tcpip.sys => Invisible on the disk
ADDRESS : 0x01A3B000
SIZE : 2.21 Mo
DRIVER : C:\Windows\System32\drivers\fwpkclnt.sys => Invisible on the disk
ADDRESS : 0x01C71000
SIZE : 416.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\wfplwfs.sys => Invisible on the disk
ADDRESS : 0x01CD9000
SIZE : 108.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\avgloga.sys => Invisible on the disk
ADDRESS : 0x01CF4000
SIZE : 316.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\avgmfx64.sys => Invisible on the disk
ADDRESS : 0x01D43000
SIZE : 124.0 Ko
DRIVER : C:\Windows\System32\DRIVERS\fvevol.sys => Invisible on the disk
ADDRESS : 0x01D62000
SIZE : 472.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\avgidsha.sys => Invisible on the disk
ADDRESS : 0x01DD8000
SIZE : 84.0 Ko
DRIVER : C:\Windows\System32\drivers\volsnap.sys => Invisible on the disk
ADDRESS : 0x01543000
SIZE : 340.0 Ko
DRIVER : C:\Windows\System32\drivers\rdyboost.sys => Invisible on the disk
ADDRESS : 0x01A00000
SIZE : 236.0 Ko
DRIVER : C:\Windows\System32\Drivers\mup.sys => Invisible on the disk
ADDRESS : 0x019C2000
SIZE : 92.0 Ko
DRIVER : C:\Windows\System32\drivers\disk.sys => Invisible on the disk
ADDRESS : 0x019D9000
SIZE : 112.0 Ko
DRIVER : C:\Windows\System32\drivers\CLASSPNP.SYS => Invisible on the disk
ADDRESS : 0x01598000
SIZE : 344.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\avgrkx64.sys => Invisible on the disk
ADDRESS : 0x01670000
SIZE : 52.0 Ko
DRIVER : C:\Windows\System32\Drivers\crashdmp.sys => Invisible on the disk
ADDRESS : 0x01400000
SIZE : 80.0 Ko
DRIVER : C:\Windows\System32\drivers\dtsoftbus01.sys => Invisible on the disk
ADDRESS : 0x01428000
SIZE : 292.0 Ko
DRIVER : C:\Windows\System32\Drivers\Null.SYS => Invisible on the disk
ADDRESS : 0x014A2000
SIZE : 36.0 Ko
DRIVER : C:\Windows\System32\Drivers\Beep.SYS => Invisible on the disk
ADDRESS : 0x014AB000
SIZE : 32.0 Ko
DRIVER : C:\Windows\System32\drivers\BasicRender.sys => Invisible on the disk
ADDRESS : 0x014B3000
SIZE : 52.0 Ko
DRIVER : C:\Windows\System32\drivers\dxgkrnl.sys => Invisible on the disk
ADDRESS : 0x05AA2000
SIZE : 1.40 Mo
DRIVER : C:\Windows\System32\drivers\watchdog.sys => Invisible on the disk
ADDRESS : 0x05C09000
SIZE : 68.0 Ko
DRIVER : C:\Windows\System32\drivers\dxgmms1.sys => Invisible on the disk
ADDRESS : 0x05C1A000
SIZE : 312.0 Ko
DRIVER : C:\Windows\System32\drivers\BasicDisplay.sys => Invisible on the disk
ADDRESS : 0x05C68000
SIZE : 68.0 Ko
DRIVER : C:\Windows\System32\Drivers\Npfs.SYS => Invisible on the disk
ADDRESS : 0x05C79000
SIZE : 72.0 Ko
DRIVER : C:\Windows\System32\Drivers\Msfs.SYS => Invisible on the disk
ADDRESS : 0x05C8B000
SIZE : 48.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\avgwfpa.sys => Invisible on the disk
ADDRESS : 0x05C97000
SIZE : 256.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\avgfwd6a.sys => Invisible on the disk
ADDRESS : 0x05CD7000
SIZE : 60.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\tdx.sys => Invisible on the disk
ADDRESS : 0x05CE6000
SIZE : 136.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\TDI.SYS => Invisible on the disk
ADDRESS : 0x05D08000
SIZE : 56.0 Ko
DRIVER : C:\Windows\System32\DRIVERS\netbt.sys => Invisible on the disk
ADDRESS : 0x05D16000
SIZE : 352.0 Ko
DRIVER : C:\Windows\system32\drivers\afd.sys => Invisible on the disk
ADDRESS : 0x05D6E000
SIZE : 584.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\pacer.sys => Invisible on the disk
ADDRESS : 0x05A00000
SIZE : 168.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\ndisrd.sys => Invisible on the disk
ADDRESS : 0x05A2A000
SIZE : 40.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\netbios.sys => Invisible on the disk
ADDRESS : 0x05A34000
SIZE : 64.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\avgldx64.sys => Invisible on the disk
ADDRESS : 0x05A44000
SIZE : 220.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\rdbss.sys => Invisible on the disk
ADDRESS : 0x0342D000
SIZE : 456.0 Ko
DRIVER : C:\Windows\system32\drivers\csc.sys => Invisible on the disk
ADDRESS : 0x0349F000
SIZE : 580.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\wanarp.sys => Invisible on the disk
ADDRESS : 0x03530000
SIZE : 104.0 Ko
DRIVER : C:\Windows\system32\drivers\nsiproxy.sys => Invisible on the disk
ADDRESS : 0x0354A000
SIZE : 56.0 Ko
DRIVER : C:\Windows\System32\drivers\npsvctrig.sys => Invisible on the disk
ADDRESS : 0x03558000
SIZE : 48.0 Ko
DRIVER : C:\Windows\System32\drivers\mssmbios.sys => Invisible on the disk
ADDRESS : 0x03564000
SIZE : 48.0 Ko
DRIVER : C:\Windows\System32\drivers\discache.sys => Invisible on the disk
ADDRESS : 0x03570000
SIZE : 68.0 Ko
DRIVER : C:\Windows\System32\Drivers\dfsc.sys => Invisible on the disk
ADDRESS : 0x03581000
SIZE : 132.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\avgidsdrivera.sys => Invisible on the disk
ADDRESS : 0x035B2000
SIZE : 268.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\ndistapi.sys => Invisible on the disk
ADDRESS : 0x03406000
SIZE : 48.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\ndiswan.sys => Invisible on the disk
ADDRESS : 0x01471000
SIZE : 188.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\rassstp.sys => Invisible on the disk
ADDRESS : 0x05A7B000
SIZE : 120.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\AgileVpn.sys => Invisible on the disk
ADDRESS : 0x03412000
SIZE : 96.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\tunnel.sys => Invisible on the disk
ADDRESS : 0x06046000
SIZE : 176.0 Ko
DRIVER : C:\Windows\System32\drivers\CompositeBus.sys => Invisible on the disk
ADDRESS : 0x06072000
SIZE : 60.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\kdnic.sys => Invisible on the disk
ADDRESS : 0x06081000
SIZE : 44.0 Ko
DRIVER : C:\Windows\System32\drivers\umbus.sys => Invisible on the disk
ADDRESS : 0x0608C000
SIZE : 72.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\igdkmd64.sys => Invisible on the disk
ADDRESS : 0x06227000
SIZE : 4.33 Mo
DRIVER : C:\Windows\System32\drivers\USBXHCI.SYS => Invisible on the disk
ADDRESS : 0x0667B000
SIZE : 348.0 Ko
DRIVER : C:\Windows\System32\drivers\ucx01000.sys => Invisible on the disk
ADDRESS : 0x066D2000
SIZE : 224.0 Ko
DRIVER : C:\Windows\System32\drivers\HECIx64.sys => Invisible on the disk
ADDRESS : 0x0670A000
SIZE : 76.0 Ko
DRIVER : C:\Windows\System32\drivers\usbehci.sys => Invisible on the disk
ADDRESS : 0x0671D000
SIZE : 88.0 Ko
DRIVER : C:\Windows\System32\drivers\USBPORT.SYS => Invisible on the disk
ADDRESS : 0x06733000
SIZE : 492.0 Ko
DRIVER : C:\Windows\System32\drivers\HDAudBus.sys => Invisible on the disk
ADDRESS : 0x067AE000
SIZE : 88.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\Rt630x64.sys => Invisible on the disk
ADDRESS : 0x0609E000
SIZE : 592.0 Ko
DRIVER : C:\Windows\System32\drivers\parport.sys => Invisible on the disk
ADDRESS : 0x067C4000
SIZE : 120.0 Ko
DRIVER : C:\Windows\System32\drivers\serial.sys => Invisible on the disk
ADDRESS : 0x067E2000
SIZE : 96.0 Ko
DRIVER : C:\Windows\System32\drivers\serenum.sys => Invisible on the disk
ADDRESS : 0x06200000
SIZE : 52.0 Ko
DRIVER : C:\Windows\System32\drivers\intelppm.sys => Invisible on the disk
ADDRESS : 0x06132000
SIZE : 112.0 Ko
DRIVER : C:\Windows\System32\drivers\wmiacpi.sys => Invisible on the disk
ADDRESS : 0x0620D000
SIZE : 40.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\raspptp.sys => Invisible on the disk
ADDRESS : 0x0614E000
SIZE : 132.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\rasl2tp.sys => Invisible on the disk
ADDRESS : 0x061A5000
SIZE : 148.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\raspppoe.sys => Invisible on the disk
ADDRESS : 0x061CA000
SIZE : 104.0 Ko
DRIVER : C:\Windows\System32\drivers\swenum.sys => Invisible on the disk
ADDRESS : 0x06217000
SIZE : 8.0 Ko
DRIVER : C:\Windows\System32\drivers\ks.sys => Invisible on the disk
ADDRESS : 0x05E5C000
SIZE : 316.0 Ko
DRIVER : C:\Windows\System32\drivers\rdpbus.sys => Invisible on the disk
ADDRESS : 0x05EAB000
SIZE : 44.0 Ko
DRIVER : C:\Windows\System32\Drivers\NDProxy.SYS => Invisible on the disk
ADDRESS : 0x05EB6000
SIZE : 80.0 Ko
DRIVER : C:\Windows\System32\drivers\usbhub.sys => Invisible on the disk
ADDRESS : 0x05ECA000
SIZE : 500.0 Ko
DRIVER : C:\Windows\System32\drivers\USBD.SYS => Invisible on the disk
ADDRESS : 0x05F47000
SIZE : 44.0 Ko
DRIVER : C:\Windows\System32\drivers\cdrom.sys => Invisible on the disk
ADDRESS : 0x05F52000
SIZE : 196.0 Ko
DRIVER : C:\Windows\System32\drivers\UsbHub3.sys => Invisible on the disk
ADDRESS : 0x05F83000
SIZE : 460.0 Ko
DRIVER : C:\Windows\system32\drivers\viahduaa.sys => Invisible on the disk
ADDRESS : 0x06CC4000
SIZE : 2.15 Mo
DRIVER : C:\Windows\system32\drivers\portcls.sys => Invisible on the disk
ADDRESS : 0x06EEA000
SIZE : 300.0 Ko
DRIVER : C:\Windows\system32\drivers\drmk.sys => Invisible on the disk
ADDRESS : 0x06F35000
SIZE : 136.0 Ko
DRIVER : C:\Windows\system32\drivers\ksthunk.sys => Invisible on the disk
ADDRESS : 0x06F57000
SIZE : 24.0 Ko
DRIVER : C:\Windows\System32\drivers\usbccgp.sys => Invisible on the disk
ADDRESS : 0x06F5D000
SIZE : 140.0 Ko
DRIVER : C:\Windows\System32\drivers\hidusb.sys => Invisible on the disk
ADDRESS : 0x06F80000
SIZE : 52.0 Ko
DRIVER : C:\Windows\System32\drivers\HIDCLASS.SYS => Invisible on the disk
ADDRESS : 0x06F8D000
SIZE : 108.0 Ko
DRIVER : C:\Windows\System32\drivers\HIDPARSE.SYS => Invisible on the disk
ADDRESS : 0x06FA8000
SIZE : 32.0 Ko
DRIVER : C:\Windows\System32\drivers\kbdhid.sys => Invisible on the disk
ADDRESS : 0x06FB0000
SIZE : 52.0 Ko
DRIVER : C:\Windows\System32\drivers\kbdclass.sys => Invisible on the disk
ADDRESS : 0x06FBD000
SIZE : 60.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\WlanGZG.sys => Invisible on the disk
ADDRESS : 0x07036000
SIZE : 1.05 Mo
DRIVER : C:\Windows\System32\drivers\mouhid.sys => Invisible on the disk
ADDRESS : 0x07143000
SIZE : 48.0 Ko
DRIVER : C:\Windows\System32\drivers\mouclass.sys => Invisible on the disk
ADDRESS : 0x0714F000
SIZE : 60.0 Ko
DRIVER : C:\Windows\system32\drivers\usbaudio.sys => Invisible on the disk
ADDRESS : 0x0715E000
SIZE : 120.0 Ko
DRIVER : C:\Windows\System32\Drivers\dump_dumpata.sys => Invisible on the disk
ADDRESS : 0x0717C000
SIZE : 52.0 Ko
DRIVER : C:\Windows\System32\win32k.sys => Invisible on the disk
ADDRESS : 0x001D8000
SIZE : 3.96 Mo
DRIVER : C:\Windows\system32\DRIVERS\monitor.sys => Invisible on the disk
ADDRESS : 0x071A7000
SIZE : 56.0 Ko
DRIVER : C:\Windows\System32\TSDDD.dll => Invisible on the disk
ADDRESS : 0x006D8000
SIZE : 36.0 Ko
DRIVER : C:\Windows\System32\cdd.dll => Invisible on the disk
ADDRESS : 0x00816000
SIZE : 216.0 Ko
DRIVER : C:\Windows\system32\drivers\luafv.sys => Invisible on the disk
ADDRESS : 0x071B5000
SIZE : 160.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\lltdio.sys => Invisible on the disk
ADDRESS : 0x071DD000
SIZE : 80.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\nwifi.sys => Invisible on the disk
ADDRESS : 0x06C00000
SIZE : 440.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\ndisuio.sys => Invisible on the disk
ADDRESS : 0x07000000
SIZE : 80.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\rspndr.sys => Invisible on the disk
ADDRESS : 0x07014000
SIZE : 96.0 Ko
DRIVER : C:\Windows\system32\drivers\HTTP.sys => Invisible on the disk
ADDRESS : 0x18047000
SIZE : 880.0 Ko
DRIVER : C:\Windows\System32\DRIVERS\srvnet.sys => Invisible on the disk
ADDRESS : 0x18123000
SIZE : 272.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\bowser.sys => Invisible on the disk
ADDRESS : 0x18167000
SIZE : 128.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\mrxsmb.sys => Invisible on the disk
ADDRESS : 0x18187000
SIZE : 392.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\mrxsmb10.sys => Invisible on the disk
ADDRESS : 0x06C6E000
SIZE : 300.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\mrxsmb20.sys => Invisible on the disk
ADDRESS : 0x18000000
SIZE : 232.0 Ko
DRIVER : C:\Windows\System32\DRIVERS\srv2.sys => Invisible on the disk
ADDRESS : 0x1826A000
SIZE : 640.0 Ko
DRIVER : C:\Windows\System32\DRIVERS\srv.sys => Invisible on the disk
ADDRESS : 0x1830A000
SIZE : 564.0 Ko
DRIVER : C:\Windows\system32\drivers\Ndu.sys => Invisible on the disk
ADDRESS : 0x18397000
SIZE : 112.0 Ko
DRIVER : C:\Windows\system32\drivers\peauth.sys => Invisible on the disk
ADDRESS : 0x186C2000
SIZE : 812.0 Ko
DRIVER : C:\Windows\System32\Drivers\secdrv.SYS => Invisible on the disk
ADDRESS : 0x1878D000
SIZE : 44.0 Ko
DRIVER : C:\Windows\System32\drivers\tcpipreg.sys => Invisible on the disk
ADDRESS : 0x18798000
SIZE : 72.0 Ko
DRIVER : C:\Windows\system32\drivers\WudfPf.sys => Invisible on the disk
ADDRESS : 0x187AA000
SIZE : 100.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\WUDFRd.sys => Invisible on the disk
ADDRESS : 0x187C3000
SIZE : 216.0 Ko
DRIVER : C:\Windows\System32\drivers\rdpvideominiport.sys => Invisible on the disk
ADDRESS : 0x18600000
SIZE : 44.0 Ko
DRIVER : C:\Windows\System32\drivers\rdpdr.sys => Invisible on the disk
ADDRESS : 0x1860B000
SIZE : 196.0 Ko
DRIVER : C:\Windows\System32\drivers\condrv.sys => Invisible on the disk
ADDRESS : 0x1863C000
SIZE : 52.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\cdfs.sys => Invisible on the disk
ADDRESS : 0x18649000
SIZE : 128.0 Ko
DRIVER : C:\Users\GAMELA~1\AppData\Local\Temp\Rar$EXa0.017\PCHunter_free\PCHunter64aa.sys => Invisible on the disk
ADDRESS : 0x1B0D1000
SIZE : 724.0 Ko
DRIVER : C:\Users\GAMELA~1\AppData\Local\Temp\pwtoquoc.sys => Invisible on the disk
ADDRESS : 0x1B186000
SIZE : 64.0 Ko
Device\Harddisk0\DR0 => XP MBR Code found in sector 40
Device\Harddisk0\DR0 => XP MBR Code found in sector 42
Device\Harddisk0\DR0 => XP MBR Code found in sector 43
Device\Harddisk0\DR0 => XP MBR Code found in sector 45
SystemStartOptions : NOEXECUTE=OPTIN
________________________________________________________________________________
_______MBR \Device\Harddisk0\DR0
0x00000000 33 C0 8E D0 BC 00 7C 8E C0 8E D8 BE 00 7C BF 00 3À.м.|.À.ؾ.|¿.
0x00000010 06 B9 00 02 FC F3 A4 50 68 1C 06 CB FB B9 04 00 .¹..üó¤Ph..Ëû¹..
0x00000020 BD BE 07 80 7E 00 00 7C 0B 0F 85 0E 01 83 C5 10 ½¾..~..|......Å.
0x00000030 E2 F1 CD 18 88 56 00 55 C6 46 11 05 C6 46 10 00 âñÍ..V.UÆF..ÆF..
0x00000040 B4 41 BB AA 55 CD 13 5D 72 0F 81 FB 55 AA 75 09 ´A»ªUÍ.]r..ûUªu.
0x00000050 F7 C1 01 00 74 03 FE 46 10 66 60 80 7E 10 00 74 ÷Á..t.þF.f`.~..t
0x00000060 26 66 68 00 00 00 00 66 FF 76 08 68 00 00 68 00 &fh....f.v.h..h.
0x00000070 7C 68 01 00 68 10 00 B4 42 8A 56 00 8B F4 CD 13 |h..h..´B.V..ôÍ.
0x00000080 9F 83 C4 10 9E EB 14 B8 01 02 BB 00 7C 8A 56 00 ..Ä..ë.¸..».|.V.
0x00000090 8A 76 01 8A 4E 02 8A 6E 03 CD 13 66 61 73 1C FE .v..N..n.Í.fas.þ
0x000000A0 4E 11 75 0C 80 7E 00 80 0F 84 8A 00 B2 80 EB 84 N.u..~......².ë.
0x000000B0 55 32 E4 8A 56 00 CD 13 5D EB 9E 81 3E FE 7D 55 U2ä.V.Í.]ë..>þ}U
0x000000C0 AA 75 6E FF 76 00 E8 8D 00 75 17 FA B0 D1 E6 64 ªun.v.è..u.ú°Ñæd
0x000000D0 E8 83 00 B0 DF E6 60 E8 7C 00 B0 FF E6 64 E8 75 è..°ßæ`è|.°.ædèu
0x000000E0 00 FB B8 00 BB CD 1A 66 23 C0 75 3B 66 81 FB 54 .û¸.»Í.f#Àu;f.ûT
0x000000F0 43 50 41 75 32 81 F9 02 01 72 2C 66 68 07 BB 00 CPAu2.ù..r,fh.».
0x00000100 00 66 68 00 02 00 00 66 68 08 00 00 00 66 53 66 .fh....fh....fSf
0x00000110 53 66 55 66 68 00 00 00 00 66 68 00 7C 00 00 66 SfUfh....fh.|..f
0x00000120 61 68 00 00 07 CD 1A 5A 32 F6 EA 00 7C 00 00 CD ah...Í.Z2öê.|..Í
0x00000130 18 A0 B7 07 EB 08 A0 B6 07 EB 03 A0 B5 07 32 E4 ..·.ë..¶.ë..µ.2ä
0x00000140 05 00 07 8B F0 AC 3C 00 74 09 BB 07 00 B4 0E CD ....ð¬<.t.»..´.Í
0x00000150 10 EB F2 F4 EB FD 2B C9 E4 64 EB 00 24 02 E0 F8 .ëòôëý+Éädë.$.àø
0x00000160 24 02 C3 49 6E 76 61 6C 69 64 20 70 61 72 74 69 $.ÃInvalid parti
0x00000170 74 69 6F 6E 20 74 61 62 6C 65 00 45 72 72 6F 72 tion table.Error
0x00000180 20 6C 6F 61 64 69 6E 67 20 6F 70 65 72 61 74 69 loading operati
0x00000190 6E 67 20 73 79 73 74 65 6D 00 4D 69 73 73 69 6E ng system.Missin
0x000001A0 67 20 6F 70 65 72 61 74 69 6E 67 20 73 79 73 74 g operating syst
0x000001B0 65 6D 00 00 00 63 7B 9A FE 6B 80 23 00 00 80 01 em...c{.þk.#....
0x000001C0 01 00 07 FE FF FF 3F 00 00 00 F3 04 C0 08 00 FE ...þ..?...ó.À..þ
0x000001D0 FF FF 0F FE FF FF EE 43 C0 08 93 01 5C 14 00 00 ...þ..îCÀ...\...
0x000001E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000001F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA ..............Uª
__________________________16_BIT_ASM_CODE
0x0000 33c0 XOR AX, AX
0x0002 8ed0 MOV SS, AX
0x0004 bc 007c MOV SP, 0x7c00
0x0007 8ec0 MOV ES, AX
0x0009 8ed8 MOV DS, AX
0x000B be 007c MOV SI, 0x7c00
0x000E bf 0006 MOV DI, 0x600
0x0011 b9 0002 MOV CX, 0x200
0x0014 fc CLD
0x0015 f3 a4 REP MOVSB
0x0017 50 PUSH AX
0x0018 68 1c06 PUSH 0x61c
0x001B cb RETF
0x001C fb STI
0x001D b9 0400 MOV CX, 0x4
0x0020 bd be07 MOV BP, 0x7be
0x0023 807e 00 00 CMP BYTE [BP+0x0], 0x0
0x0027 7c 0b JL 0x34
0x0029 0f85 0e01 JNZ 0x13b
0x002D 83c5 10 ADD BP, 0x10
0x0030 e2 f1 LOOP 0x23
0x0032 cd 18 INT 0x18
0x0034 8856 00 MOV [BP+0x0], DL
0x0037 55 PUSH BP
0x0038 c646 11 05 MOV BYTE [BP+0x11], 0x5
0x003C c646 10 00 MOV BYTE [BP+0x10], 0x0
0x0040 b4 41 MOV AH, 0x41
0x0042 bb aa55 MOV BX, 0x55aa
0x0045 cd 13 INT 0x13
0x0047 5d POP BP
0x0048 72 0f JB 0x59
0x004A 81fb 55aa CMP BX, 0xaa55
0x004E 75 09 JNZ 0x59
0x0050 f7c1 0100 TEST CX, 0x1
0x0054 74 03 JZ 0x59
0x0056 fe46 10 INC BYTE [BP+0x10]
0x0059 66 60 PUSHAD
0x005B 807e 10 00 CMP BYTE [BP+0x10], 0x0
0x005F 74 26 JZ 0x87
0x0061 66 68 00000000 PUSH 0x0
0x0067 66 ff76 08 PUSH DWORD [BP+0x8]
0x006B 68 0000 PUSH 0x0
0x006E 68 007c PUSH 0x7c00
0x0071 68 0100 PUSH 0x1
0x0074 68 1000 PUSH 0x10
0x0077 b4 42 MOV AH, 0x42
0x0079 8a56 00 MOV DL, [BP+0x0]
0x007C 8bf4 MOV SI, SP
0x007E cd 13 INT 0x13
0x0080 9f LAHF
0x0081 83c4 10 ADD SP, 0x10
0x0084 9e SAHF
0x0085 eb 14 JMP 0x9b
0x0087 b8 0102 MOV AX, 0x201
0x008A bb 007c MOV BX, 0x7c00
0x008D 8a56 00 MOV DL, [BP+0x0]
0x0090 8a76 01 MOV DH, [BP+0x1]
0x0093 8a4e 02 MOV CL, [BP+0x2]
0x0096 8a6e 03 MOV CH, [BP+0x3]
0x0099 cd 13 INT 0x13
0x009B 66 61 POPAD
0x009D 73 1c JAE 0xbb
0x009F fe4e 11 DEC BYTE [BP+0x11]
0x00A2 75 0c JNZ 0xb0
0x00A4 807e 00 80 CMP BYTE [BP+0x0], 0x80
0x00A8 0f84 8a00 JZ 0x136
0x00AC b2 80 MOV DL, 0x80
0x00AE eb 84 JMP 0x34
0x00B0 55 PUSH BP
0x00B1 32e4 XOR AH, AH
0x00B3 8a56 00 MOV DL, [BP+0x0]
0x00B6 cd 13 INT 0x13
0x00B8 5d POP BP
0x00B9 eb 9e JMP 0x59
0x00BB 813e fe7d 55aa CMP WORD [0x7dfe], 0xaa55
0x00C1 75 6e JNZ 0x131
0x00C3 ff76 00 PUSH WORD [BP+0x0]
0x00C6 e8 8d00 CALL 0x156
0x00C9 75 17 JNZ 0xe2
0x00CB fa CLI
0x00CC b0 d1 MOV AL, 0xd1
0x00CE e6 64 OUT 0x64, AL
0x00D0 e8 8300 CALL 0x156
0x00D3 b0 df MOV AL, 0xdf
0x00D5 e6 60 OUT 0x60, AL
0x00D7 e8 7c00 CALL 0x156
0x00DA b0 ff MOV AL, 0xff
0x00DC e6 64 OUT 0x64, AL
0x00DE e8 7500 CALL 0x156
0x00E1 fb STI
0x00E2 b8 00bb MOV AX, 0xbb00
0x00E5 cd 1a INT 0x1a
0x00E7 66 23c0 AND EAX, EAX
0x00EA 75 3b JNZ 0x127
0x00EC 66 81fb 54435041CMP EBX, 0x41504354
0x00F3 75 32 JNZ 0x127
0x00F5 81f9 0201 CMP CX, 0x102
0x00F9 72 2c JB 0x127
0x00FB 66 68 07bb0000 PUSH 0xbb07
0x0101 66 68 00020000 PUSH 0x200
0x0107 66 68 08000000 PUSH 0x8
0x010D 66 53 PUSH EBX
0x010F 66 53 PUSH EBX
0x0111 66 55 PUSH EBP
0x0113 66 68 00000000 PUSH 0x0
0x0119 66 68 007c0000 PUSH 0x7c00
0x011F 66 61 POPAD
0x0121 68 0000 PUSH 0x0
0x0124 07 POP ES
0x0125 cd 1a INT 0x1a
0x0127 5a POP DX
0x0128 32f6 XOR DH, DH
0x012A ea 007c 0000 JMP FAR 0x0:0x7c00
0x012F cd 18 INT 0x18
0x0131 a0 b707 MOV AL, [0x7b7]
0x0134 eb 08 JMP 0x13e
0x0136 a0 b607 MOV AL, [0x7b6]
0x0139 eb 03 JMP 0x13e
0x013B a0 b507 MOV AL, [0x7b5]
0x013E 32e4 XOR AH, AH
0x0140 05 0007 ADD AX, 0x700
0x0143 8bf0 MOV SI, AX
0x0145 ac LODSB
0x0146 3c 00 CMP AL, 0x0
0x0148 74 09 JZ 0x153
0x014A bb 0700 MOV BX, 0x7
0x014D b4 0e MOV AH, 0xe
0x014F cd 10 INT 0x10
0x0151 eb f2 JMP 0x145
0x0153 f4 HLT
0x0154 eb fd JMP 0x153
0x0156 2bc9 SUB CX, CX
0x0158 e4 64 IN AL, 0x64
0x015A eb 00 JMP 0x15c
0x015C 24 02 AND AL, 0x2
0x015E e0 f8 LOOPNZ 0x158
0x0160 24 02 AND AL, 0x2
0x0162 c3 RET
0x0163 49 DEC CX
0x0164 6e OUTSB
0x0165 76 61 JBE 0x1c8
0x0167 6c INSB
0x0168 6964 20 7061 IMUL SP, [SI+0x20], 0x6170
0x016D 72 74 JB 0x1e3
0x016F 6974 69 6f6e IMUL SI, [SI+0x69], 0x6e6f
0x0174 2074 61 AND [SI+0x61], DH
0x0177 626c 65 BOUND BP, [SI+0x65]
0x017A 0045 72 ADD [DI+0x72], AL
0x017D 72 6f JB 0x1ee
0x017F 72 20 JB 0x1a1
0x0181 6c INSB
0x0182 6f OUTSW
0x0183 61 POPA
0x0184 64 696e 67 206f IMUL BP, FS:[BP+0x67], 0x6f20
0x018A 70 65 JO 0x1f1
0x018C 72 61 JB 0x1ef
0x018E 74 69 JZ 0x1f9
0x0190 6e OUTSB
0x0191 67 2073 79 AND [EBX+0x79], DH
0x0195 73 74 JAE 0x20b
0x0197 65 6d INS WORD GS:[DI], DX
0x0199 004d 69 ADD [DI+0x69], CL
0x019C 73 73 JAE 0x211
0x019E 696e 67 206f IMUL BP, [BP+0x67], 0x6f20
0x01A3 70 65 JO 0x20a
0x01A5 72 61 JB 0x208
0x01A7 74 69 JZ 0x212
0x01A9 6e OUTSB
0x01AA 67 2073 79 AND [EBX+0x79], DH
0x01AE 73 74 JAE 0x224
0x01B0 65 6d INS WORD GS:[DI], DX
0x01B2 0000 ADD [BX+SI], AL
0x01B4 0063 7b ADD [BP+DI+0x7b], AH
0x01B7 9a fe6b 8023 CALL FAR 0x2380:0x6bfe
0x01BC 0000 ADD [BX+SI], AL
0x01BE 8001 01 ADD BYTE [BX+DI], 0x1
0x01C1 0007 ADD [BX], AL
0x01C3 fe DB 0xfe
0x01C4 ff DB 0xff
0x01C5 ff DB 0xff
0x01C6 3f AAS
0x01C7 0000 ADD [BX+SI], AL
0x01C9 00f3 ADD BL, DH
0x01CB 04 c0 ADD AL, 0xc0
0x01CD 0800 OR [BX+SI], AL
0x01CF fe DB 0xfe
0x01D0 ff DB 0xff
0x01D1 ff0f DEC WORD [BX]
0x01D3 fe DB 0xfe
0x01D4 ff DB 0xff
0x01D5 ff DB 0xff
0x01D6 ee OUT DX, AL
0x01D7 43 INC BX
0x01D8 c008 93 ROR BYTE [BX+SI], 0x93
0x01DB 015c 14 ADD [SI+0x14], BX
0x01DE 0000 ADD [BX+SI], AL
0x01E0 0000 ADD [BX+SI], AL
0x01E2 0000 ADD [BX+SI], AL
0x01E4 0000 ADD [BX+SI], AL
0x01E6 0000 ADD [BX+SI], AL
0x01E8 0000 ADD [BX+SI], AL
0x01EA 0000 ADD [BX+SI], AL
0x01EC 0000 ADD [BX+SI], AL
0x01EE 0000 ADD [BX+SI], AL
0x01F0 0000 ADD [BX+SI], AL
0x01F2 0000 ADD [BX+SI], AL
0x01F4 0000 ADD [BX+SI], AL
0x01F6 0000 ADD [BX+SI], AL
0x01F8 0000 ADD [BX+SI], AL
0x01FA 0000 ADD [BX+SI], AL
0x01FC 0000 ADD [BX+SI], AL
0x01FE 55 PUSH BP
0x01FF aa STOSB
_______MBR \Device\Harddisk1\DR1
0x00000000 EB 63 90 10 8E D0 BC 00 B0 B8 00 00 8E D8 8E C0 ëc...м.°¸...Ø.À
0x00000010 FB BE 00 7C BF 00 06 B9 00 02 F3 A4 EA 21 06 00 û¾.|¿..¹..ó¤ê!..
0x00000020 00 BE BE 07 38 04 75 0B 83 C6 10 81 FE FE 07 75 .¾¾.8.u..Æ..þþ.u
0x00000030 F3 EB 16 B4 02 B0 01 BB 00 7C B2 80 8A 74 01 8B óë.´.°.».|²..t..
0x00000040 4C 02 CD 13 EA 00 7C 00 00 EB FE 00 00 00 00 00 L.Í.ê.|..ëþ.....
0x00000050 00 00 00 00 00 00 00 00 00 00 00 80 01 00 00 00 ................
0x00000060 00 00 00 00 FF FA 90 90 F6 C2 80 74 05 F6 C2 70 .....ú..öÂ.t.öÂp
0x00000070 74 02 B2 80 EA 79 7C 00 00 31 C0 8E D8 8E D0 BC t.².êy|..1À.Ø.м
0x00000080 00 20 FB A0 64 7C 3C FF 74 02 88 C2 52 BE 80 7D . û.d|<.t..ÂR¾.}
0x00000090 E8 17 01 BE 05 7C B4 41 BB AA 55 CD 13 5A 52 72 è..¾.|´A»ªUÍ.ZRr
0x000000A0 3D 81 FB 55 AA 75 37 83 E1 01 74 32 31 C0 89 44 =.ûUªu7.á.t21À.D
0x000000B0 04 40 88 44 FF 89 44 02 C7 04 10 00 66 8B 1E 5C .@.D..D.Ç...f..\
0x000000C0 7C 66 89 5C 08 66 8B 1E 60 7C 66 89 5C 0C C7 44 |f.\.f..`|f.\.ÇD
0x000000D0 06 00 70 B4 42 CD 13 72 05 BB 00 70 EB 76 B4 08 ..p´BÍ.r.».pëv´.
0x000000E0 CD 13 73 0D F6 C2 80 0F 84 D8 00 BE 8B 7D E9 82 Í.s.öÂ...Ø.¾.}é.
0x000000F0 00 66 0F B6 C6 88 64 FF 40 66 89 44 04 0F B6 D1 .f.¶Æ.d.@f.D..¶Ñ
0x00000100 C1 E2 02 88 E8 88 F4 40 89 44 08 0F B6 C2 C0 E8 Áâ..è.ô@.D..¶ÂÀè
0x00000110 02 66 89 04 66 A1 60 7C 66 09 C0 75 4E 66 A1 5C .f..f¡`|f.ÀuNf¡\
0x00000120 7C 66 31 D2 66 F7 34 88 D1 31 D2 66 F7 74 04 3B |f1Òf÷4.Ñ1Òf÷t.;
0x00000130 44 08 7D 37 FE C1 88 C5 30 C0 C1 E8 02 08 C1 88 D.}7þÁ.Å0ÀÁè..Á.
0x00000140 D0 5A 88 C6 BB 00 70 8E C3 31 DB B8 01 02 CD 13 ÐZ.Æ».p.Ã1Û¸..Í.
0x00000150 72 1E 8C C3 60 1E B9 00 01 8E DB 31 F6 BF 00 80 r..Ã`.¹...Û1ö¿..
0x00000160 8E C6 FC F3 A5 1F 61 FF 26 5A 7C BE 86 7D EB 03 .Æüó¥.a.&Z|¾.}ë.
0x00000170 BE 95 7D E8 34 00 BE 9A 7D E8 2E 00 CD 18 EB FE ¾.}è4.¾.}è..Í.ëþ
0x00000180 47 52 55 42 20 00 47 65 6F 6D 00 48 61 72 64 20 GRUB .Geom.Hard
0x00000190 44 69 73 6B 00 52 65 61 64 00 20 45 72 72 6F 72 Disk.Read. Error
0x000001A0 0D 0A 00 BB 01 00 B4 0E CD 10 AC 3C 00 75 F4 C3 ...»..´.Í.¬<.uôÃ
0x000001B0 00 00 00 00 00 00 00 00 E0 5E 01 00 00 00 00 20 ........à^.....
0x000001C0 21 00 07 FE FF FF 00 08 00 00 00 E8 50 09 00 00 !..þ.......èP...
0x000001D0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000001E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000001F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA ..............Uª
__________________________16_BIT_ASM_CODE
0x0000 eb 63 JMP 0x65
0x0002 90 NOP
0x0003 108e d0bc ADC [BP-0x4330], CL
0x0007 00b0 b800 ADD [BX+SI+0xb8], DH
0x000B 008e d88e ADD [BP-0x7128], CL
0x000F c0fb be SAR BL, 0xbe
0x0012 007c bf ADD [SI-0x41], BH
0x0015 0006 b900 ADD [0xb9], AL
0x0019 02f3 ADD DH, BL
0x001B a4 MOVSB
0x001C ea 2106 0000 JMP FAR 0x0:0x621
0x0021 be be07 MOV SI, 0x7be
0x0024 3804 CMP [SI], AL
0x0026 75 0b JNZ 0x33
0x0028 83c6 10 ADD SI, 0x10
0x002B 81fe fe07 CMP SI, 0x7fe
0x002F 75 f3 JNZ 0x24
0x0031 eb 16 JMP 0x49
0x0033 b4 02 MOV AH, 0x2
0x0035 b0 01 MOV AL, 0x1
0x0037 bb 007c MOV BX, 0x7c00
0x003A b2 80 MOV DL, 0x80
0x003C 8a74 01 MOV DH, [SI+0x1]
0x003F 8b4c 02 MOV CX, [SI+0x2]
0x0042 cd 13 INT 0x13
0x0044 ea 007c 0000 JMP FAR 0x0:0x7c00
0x0049 eb fe JMP 0x49
0x004B 0000 ADD [BX+SI], AL
0x004D 0000 ADD [BX+SI], AL
0x004F 0000 ADD [BX+SI], AL
0x0051 0000 ADD [BX+SI], AL
0x0053 0000 ADD [BX+SI], AL
0x0055 0000 ADD [BX+SI], AL
0x0057 0000 ADD [BX+SI], AL
0x0059 0000 ADD [BX+SI], AL
0x005B 8001 00 ADD BYTE [BX+DI], 0x0
0x005E 0000 ADD [BX+SI], AL
0x0060 0000 ADD [BX+SI], AL
0x0062 0000 ADD [BX+SI], AL
0x0064 ff DB 0xff
0x0065 fa CLI
0x0066 90 NOP
0x0067 90 NOP
0x0068 f6c2 80 TEST DL, 0x80
0x006B 74 05 JZ 0x72
0x006D f6c2 70 TEST DL, 0x70
0x0070 74 02 JZ 0x74
0x0072 b2 80 MOV DL, 0x80
0x0074 ea 797c 0000 JMP FAR 0x0:0x7c79
0x0079 31c0 XOR AX, AX
0x007B 8ed8 MOV DS, AX
0x007D 8ed0 MOV SS, AX
0x007F bc 0020 MOV SP, 0x2000
0x0082 fb STI
0x0083 a0 647c MOV AL, [0x7c64]
0x0086 3c ff CMP AL, 0xff
0x0088 74 02 JZ 0x8c
0x008A 88c2 MOV DL, AL
0x008C 52 PUSH DX
0x008D be 807d MOV SI, 0x7d80
0x0090 e8 1701 CALL 0x1aa
0x0093 be 057c MOV SI, 0x7c05
0x0096 b4 41 MOV AH, 0x41
0x0098 bb aa55 MOV BX, 0x55aa
0x009B cd 13 INT 0x13
0x009D 5a POP DX
0x009E 52 PUSH DX
0x009F 72 3d JB 0xde
0x00A1 81fb 55aa CMP BX, 0xaa55
0x00A5 75 37 JNZ 0xde
0x00A7 83e1 01 AND CX, 0x1
0x00AA 74 32 JZ 0xde
0x00AC 31c0 XOR AX, AX
0x00AE 8944 04 MOV [SI+0x4], AX
0x00B1 40 INC AX
0x00B2 8844 ff MOV [SI-0x1], AL
0x00B5 8944 02 MOV [SI+0x2], AX
0x00B8 c704 1000 MOV WORD [SI], 0x10
0x00BC 66 8b1e 5c7c MOV EBX, [0x7c5c]
0x00C1 66 895c 08 MOV [SI+0x8], EBX
0x00C5 66 8b1e 607c MOV EBX, [0x7c60]
0x00CA 66 895c 0c MOV [SI+0xc], EBX
0x00CE c744 06 0070 MOV WORD [SI+0x6], 0x7000
0x00D3 b4 42 MOV AH, 0x42
0x00D5 cd 13 INT 0x13
0x00D7 72 05 JB 0xde
0x00D9 bb 0070 MOV BX, 0x7000
0x00DC eb 76 JMP 0x154
0x00DE b4 08 MOV AH, 0x8
0x00E0 cd 13 INT 0x13
0x00E2 73 0d JAE 0xf1
0x00E4 f6c2 80 TEST DL, 0x80
0x00E7 0f84 d800 JZ 0x1c3
0x00EB be 8b7d MOV SI, 0x7d8b
0x00EE e9 8200 JMP 0x173
0x00F1 66 0fb6c6 MOVZX EAX, DH
0x00F5 8864 ff MOV [SI-0x1], AH
0x00F8 40 INC AX
0x00F9 66 8944 04 MOV [SI+0x4], EAX
0x00FD 0fb6d1 MOVZX DX, CL
0x0100 c1e2 02 SHL DX, 0x2
0x0103 88e8 MOV AL, CH
0x0105 88f4 MOV AH, DH
0x0107 40 INC AX
0x0108 8944 08 MOV [SI+0x8], AX
0x010B 0fb6c2 MOVZX AX, DL
0x010E c0e8 02 SHR AL, 0x2
0x0111 66 8904 MOV [SI], EAX
0x0114 66 a1 607c MOV EAX, [0x7c60]
0x0118 66 09c0 OR EAX, EAX
0x011B 75 4e JNZ 0x16b
0x011D 66 a1 5c7c MOV EAX, [0x7c5c]
0x0121 66 31d2 XOR EDX, EDX
0x0124 66 f734 DIV DWORD [SI]
0x0127 88d1 MOV CL, DL
0x0129 31d2 XOR DX, DX
0x012B 66 f774 04 DIV DWORD [SI+0x4]
0x012F 3b44 08 CMP AX, [SI+0x8]
0x0132 7d 37 JGE 0x16b
0x0134 fec1 INC CL
0x0136 88c5 MOV CH, AL
0x0138 30c0 XOR AL, AL
0x013A c1e8 02 SHR AX, 0x2
0x013D 08c1 OR CL, AL
0x013F 88d0 MOV AL, DL
0x0141 5a POP DX
0x0142 88c6 MOV DH, AL
0x0144 bb 0070 MOV BX, 0x7000
0x0147 8ec3 MOV ES, BX
0x0149 31db XOR BX, BX
0x014B b8 0102 MOV AX, 0x201
0x014E cd 13 INT 0x13
0x0150 72 1e JB 0x170
0x0152 8cc3 MOV BX, ES
0x0154 60 PUSHA
0x0155 1e PUSH DS
0x0156 b9 0001 MOV CX, 0x100
0x0159 8edb MOV DS, BX
0x015B 31f6 XOR SI, SI
0x015D bf 0080 MOV DI, 0x8000
0x0160 8ec6 MOV ES, SI
0x0162 fc CLD
0x0163 f3 a5 REP MOVSW
0x0165 1f POP DS
0x0166 61 POPA
0x0167 ff26 5a7c JMP [0x7c5a]
0x016B be 867d MOV SI, 0x7d86
0x016E eb 03 JMP 0x173
0x0170 be 957d MOV SI, 0x7d95
0x0173 e8 3400 CALL 0x1aa
0x0176 be 9a7d MOV SI, 0x7d9a
0x0179 e8 2e00 CALL 0x1aa
0x017C cd 18 INT 0x18
0x017E eb fe JMP 0x17e
0x0180 47 INC DI
0x0181 52 PUSH DX
0x0182 55 PUSH BP
0x0183 42 INC DX
0x0184 2000 AND [BX+SI], AL
0x0186 47 INC DI
0x0187 65 6f OUTS DX, WORD GS:[SI]
0x0189 6d INSW
0x018A 0048 61 ADD [BX+SI+0x61], CL
0x018D 72 64 JB 0x1f3
0x018F 2044 69 AND [SI+0x69], AL
0x0192 73 6b JAE 0x1ff
0x0194 0052 65 ADD [BP+SI+0x65], DL
0x0197 61 POPA
0x0198 64 0020 ADD FS:[BX+SI], AH
0x019B 45 INC BP
0x019C 72 72 JB 0x210
0x019E 6f OUTSW
0x019F 72 0d JB 0x1ae
0x01A1 0a00 OR AL, [BX+SI]
0x01A3 bb 0100 MOV BX, 0x1
0x01A6 b4 0e MOV AH, 0xe
0x01A8 cd 10 INT 0x10
0x01AA ac LODSB
0x01AB 3c 00 CMP AL, 0x0
0x01AD 75 f4 JNZ 0x1a3
0x01AF c3 RET
0x01B0 0000 ADD [BX+SI], AL
0x01B2 0000 ADD [BX+SI], AL
0x01B4 0000 ADD [BX+SI], AL
0x01B6 0000 ADD [BX+SI], AL
0x01B8 e0 5e LOOPNZ 0x218
0x01BA 0100 ADD [BX+SI], AX
0x01BC 0000 ADD [BX+SI], AL
0x01BE 0020 ADD [BX+SI], AH
0x01C0 2100 AND [BX+SI], AX
0x01C2 07 POP ES
0x01C3 fe DB 0xfe
0x01C4 ff DB 0xff
0x01C5 ff00 INC WORD [BX+SI]
0x01C7 0800 OR [BX+SI], AL
0x01C9 0000 ADD [BX+SI], AL
0x01CB e8 5009 CALL 0xb1e
0x01CE 0000 ADD [BX+SI], AL
0x01D0 0000 ADD [BX+SI], AL
0x01D2 0000 ADD [BX+SI], AL
0x01D4 0000 ADD [BX+SI], AL
0x01D6 0000 ADD [BX+SI], AL
0x01D8 0000 ADD [BX+SI], AL
0x01DA 0000 ADD [BX+SI], AL
0x01DC 0000 ADD [BX+SI], AL
0x01DE 0000 ADD [BX+SI], AL
0x01E0 0000 ADD [BX+SI], AL
0x01E2 0000 ADD [BX+SI], AL
0x01E4 0000 ADD [BX+SI], AL
0x01E6 0000 ADD [BX+SI], AL
0x01E8 0000 ADD [BX+SI], AL
0x01EA 0000 ADD [BX+SI], AL
0x01EC 0000 ADD [BX+SI], AL
0x01EE 0000 ADD [BX+SI], AL
0x01F0 0000 ADD [BX+SI], AL
0x01F2 0000 ADD [BX+SI], AL
0x01F4 0000 ADD [BX+SI], AL
0x01F6 0000 ADD [BX+SI], AL
0x01F8 0000 ADD [BX+SI], AL
0x01FA 0000 ADD [BX+SI], AL
0x01FC 0000 ADD [BX+SI], AL
0x01FE 55 PUSH BP
0x01FF aa STOSB
//EDIT2: Po druhom odstraneni vsetkych sa nevymazal ani jeden, takze to asi nebolo prave...
P.S. Podla AVG sa virus nachadza v svchost.exe a explorer.exe
-
GAMELASTER
- Návštěvník
- Příspěvky: 107
- Registrován: 13 led 2012 16:53
Re: Virus Generic29.AJGE nejede smazat[+2 Posti, dlhy log]
Ten subor som vpohode nasiel.. V prilohe je teda ten register
- Přílohy
-
- asdf.rar
- Register
- (376 bajtů) Staženo 40 x
-
GAMELASTER
- Návštěvník
- Příspěvky: 107
- Registrován: 13 led 2012 16:53
Re: Virus Generic29.AJGE nejede smazat[+2 Posti, dlhy log]
Tedy....
Pri skenu mi zase neco identifikoval AVG:
http://prntscr.com/13j8gb
RogueKiller mi dalo neaky ZeroAccess
V procesoch my vyplo LightShot, ale to je fake, neni to virus..
V registroch 9x najdene registre z hodnotou LightShot
A v suboroch 9x najdene ten co je v Recycle bin
//EDIT: Log [tam bolo napisane Sprava a dalo mi log
]
RogueKiller V8.5.4 [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/
Operačný systém : Windows 8 (6.2.9200 ) 64 bits version
Spustené v : Normálny režim
Užívateľ : GAMELASTER [Práva Správcu]
Režim : Kontrola -- Dátum : 05/05/2013 16:02:40
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy : 1 ¤¤¤
[SUSP PATH] Lightshot.exe -- C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\3.4.0.50\LightShot.exe [7] -> ZASTAVENÉ [TermProc]
¤¤¤ Záznamy Registrov : 9 ¤¤¤
[RUN][SUSP PATH] HKCU\[...]\Run : LightShot (C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\LightShot.exe Flags: uninsdeletevalue) [7] -> NÁJDENÉ
[RUN][SUSP PATH] HKUS\S-1-5-21-3732101377-2479867636-1582925402-1001[...]\Run : LightShot (C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\LightShot.exe Flags: uninsdeletevalue) [7] -> NÁJDENÉ
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NÁJDENÉ
[HJ] HKLM\[...]\Wow6432Node\System : ConsentPromptBehaviorAdmin (0) -> NÁJDENÉ
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NÁJDENÉ
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NÁJDENÉ
[HJ INPROC][ZeroAccess] HKCR\[...]\InprocServer32 : (C:\$Recycle.Bin\S-1-5-21-3732101377-2479867636-1582925402-1001\$34a54af054d6bf6d7b66dd3fe8491ec2\n) [-] -> NÁJDENÉ
[HJ INPROC][ZeroAccess] HKCR\[...]\InprocServer32 : (C:\$Recycle.Bin\S-1-5-18\$34a54af054d6bf6d7b66dd3fe8491ec2\n.) [x] -> NÁJDENÉ
[HJ INPROC][ZeroAccess] HKLM\[...]\InprocServer32 : (C:\$Recycle.Bin\S-1-5-18\$34a54af054d6bf6d7b66dd3fe8491ec2\n.) [x] -> NÁJDENÉ
¤¤¤ Zvláštne súbory / Adresáre: ¤¤¤
[ZeroAccess][FILE] n : C:\$recycle.bin\S-1-5-21-3732101377-2479867636-1582925402-1001\$34a54af054d6bf6d7b66dd3fe8491ec2\n [-] --> NÁJDENÉ
[ZeroAccess][FILE] @ : C:\$recycle.bin\S-1-5-18\$34a54af054d6bf6d7b66dd3fe8491ec2\@ [-] --> NÁJDENÉ
[ZeroAccess][FILE] @ : C:\$recycle.bin\S-1-5-21-3732101377-2479867636-1582925402-1001\$34a54af054d6bf6d7b66dd3fe8491ec2\@ [-] --> NÁJDENÉ
[ZeroAccess][FOLDER] U : C:\$recycle.bin\S-1-5-18\$34a54af054d6bf6d7b66dd3fe8491ec2\U --> NÁJDENÉ
[ZeroAccess][FOLDER] U : C:\$recycle.bin\S-1-5-21-3732101377-2479867636-1582925402-1001\$34a54af054d6bf6d7b66dd3fe8491ec2\U --> NÁJDENÉ
[ZeroAccess][FOLDER] L : C:\$recycle.bin\S-1-5-18\$34a54af054d6bf6d7b66dd3fe8491ec2\L --> NÁJDENÉ
[ZeroAccess][FOLDER] L : C:\$recycle.bin\S-1-5-21-3732101377-2479867636-1582925402-1001\$34a54af054d6bf6d7b66dd3fe8491ec2\L --> NÁJDENÉ
[ZeroAccess][FILE] Desktop.ini : C:\Windows\Assembly\GAC_32\Desktop.ini [-] --> NÁJDENÉ
[ZeroAccess][FILE] Desktop.ini : C:\Windows\Assembly\GAC_64\Desktop.ini [-] --> NÁJDENÉ
¤¤¤ Ovládač : [NENAHRATÉ] ¤¤¤
¤¤¤ Nákaza : ZeroAccess ¤¤¤
¤¤¤ Súbor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: TOSHIBA MK2552GSX ATA Device +++++
--- User ---
[MBR] d7317f5ffa39213990c678eb551af34f
[BSP] 4dd9287315a59e55a7cb0803d78d7af1 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 71680 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 146818030 | Size: 166784 Mo
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: WDC WD800JD-60JRA0 ATA Device +++++
--- User ---
[MBR] 1313eb586217cba7b6fb17c544815de4
[BSP] 7d8eb5d287b8e837e16239edba29ed8c : Linux MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 76317 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončené : << RKreport[1]_S_05052013_02d1602.txt >>
RKreport[1]_S_05052013_02d1602.txt
Pri skenu mi zase neco identifikoval AVG:
http://prntscr.com/13j8gb
RogueKiller mi dalo neaky ZeroAccess
V procesoch my vyplo LightShot, ale to je fake, neni to virus..
V registroch 9x najdene registre z hodnotou LightShot
A v suboroch 9x najdene ten co je v Recycle bin
//EDIT: Log [tam bolo napisane Sprava a dalo mi log
]RogueKiller V8.5.4 [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/
Operačný systém : Windows 8 (6.2.9200 ) 64 bits version
Spustené v : Normálny režim
Užívateľ : GAMELASTER [Práva Správcu]
Režim : Kontrola -- Dátum : 05/05/2013 16:02:40
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy : 1 ¤¤¤
[SUSP PATH] Lightshot.exe -- C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\3.4.0.50\LightShot.exe [7] -> ZASTAVENÉ [TermProc]
¤¤¤ Záznamy Registrov : 9 ¤¤¤
[RUN][SUSP PATH] HKCU\[...]\Run : LightShot (C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\LightShot.exe Flags: uninsdeletevalue) [7] -> NÁJDENÉ
[RUN][SUSP PATH] HKUS\S-1-5-21-3732101377-2479867636-1582925402-1001[...]\Run : LightShot (C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\LightShot.exe Flags: uninsdeletevalue) [7] -> NÁJDENÉ
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NÁJDENÉ
[HJ] HKLM\[...]\Wow6432Node\System : ConsentPromptBehaviorAdmin (0) -> NÁJDENÉ
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NÁJDENÉ
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NÁJDENÉ
[HJ INPROC][ZeroAccess] HKCR\[...]\InprocServer32 : (C:\$Recycle.Bin\S-1-5-21-3732101377-2479867636-1582925402-1001\$34a54af054d6bf6d7b66dd3fe8491ec2\n) [-] -> NÁJDENÉ
[HJ INPROC][ZeroAccess] HKCR\[...]\InprocServer32 : (C:\$Recycle.Bin\S-1-5-18\$34a54af054d6bf6d7b66dd3fe8491ec2\n.) [x] -> NÁJDENÉ
[HJ INPROC][ZeroAccess] HKLM\[...]\InprocServer32 : (C:\$Recycle.Bin\S-1-5-18\$34a54af054d6bf6d7b66dd3fe8491ec2\n.) [x] -> NÁJDENÉ
¤¤¤ Zvláštne súbory / Adresáre: ¤¤¤
[ZeroAccess][FILE] n : C:\$recycle.bin\S-1-5-21-3732101377-2479867636-1582925402-1001\$34a54af054d6bf6d7b66dd3fe8491ec2\n [-] --> NÁJDENÉ
[ZeroAccess][FILE] @ : C:\$recycle.bin\S-1-5-18\$34a54af054d6bf6d7b66dd3fe8491ec2\@ [-] --> NÁJDENÉ
[ZeroAccess][FILE] @ : C:\$recycle.bin\S-1-5-21-3732101377-2479867636-1582925402-1001\$34a54af054d6bf6d7b66dd3fe8491ec2\@ [-] --> NÁJDENÉ
[ZeroAccess][FOLDER] U : C:\$recycle.bin\S-1-5-18\$34a54af054d6bf6d7b66dd3fe8491ec2\U --> NÁJDENÉ
[ZeroAccess][FOLDER] U : C:\$recycle.bin\S-1-5-21-3732101377-2479867636-1582925402-1001\$34a54af054d6bf6d7b66dd3fe8491ec2\U --> NÁJDENÉ
[ZeroAccess][FOLDER] L : C:\$recycle.bin\S-1-5-18\$34a54af054d6bf6d7b66dd3fe8491ec2\L --> NÁJDENÉ
[ZeroAccess][FOLDER] L : C:\$recycle.bin\S-1-5-21-3732101377-2479867636-1582925402-1001\$34a54af054d6bf6d7b66dd3fe8491ec2\L --> NÁJDENÉ
[ZeroAccess][FILE] Desktop.ini : C:\Windows\Assembly\GAC_32\Desktop.ini [-] --> NÁJDENÉ
[ZeroAccess][FILE] Desktop.ini : C:\Windows\Assembly\GAC_64\Desktop.ini [-] --> NÁJDENÉ
¤¤¤ Ovládač : [NENAHRATÉ] ¤¤¤
¤¤¤ Nákaza : ZeroAccess ¤¤¤
¤¤¤ Súbor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: TOSHIBA MK2552GSX ATA Device +++++
--- User ---
[MBR] d7317f5ffa39213990c678eb551af34f
[BSP] 4dd9287315a59e55a7cb0803d78d7af1 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 71680 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 146818030 | Size: 166784 Mo
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: WDC WD800JD-60JRA0 ATA Device +++++
--- User ---
[MBR] 1313eb586217cba7b6fb17c544815de4
[BSP] 7d8eb5d287b8e837e16239edba29ed8c : Linux MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 76317 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončené : << RKreport[1]_S_05052013_02d1602.txt >>
RKreport[1]_S_05052013_02d1602.txt
-
GAMELASTER
- Návštěvník
- Příspěvky: 107
- Registrován: 13 led 2012 16:53
Re: Virus Generic29.AJGE nejede smazat[+2 Posti, dlhy log]
Musel som 2 zmazavat, lebo som tie registre zabudol oznacit..
tu je posledny log kde som mazal register[virusove subory sa zmazali uspesne]
RogueKiller V8.5.4 [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/
Operačný systém : Windows 8 (6.2.9200 ) 64 bits version
Spustené v : Normálny režim
Užívateľ : GAMELASTER [Práva Správcu]
Režim : Odebrať -- Dátum : 05/05/2013 16:27:34
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy : 0 ¤¤¤
¤¤¤ Záznamy Registrov : 8 ¤¤¤
[RUN][SUSP PATH] HKCU\[...]\Run : LightShot (C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\LightShot.exe Flags: uninsdeletevalue) [7] -> NEVZVOLENÉ
[RUN][SUSP PATH] HKUS\S-1-5-21-3732101377-2479867636-1582925402-1001[...]\Run : LightShot (C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\LightShot.exe Flags: uninsdeletevalue) [7] -> NEVZVOLENÉ
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NEVZVOLENÉ
[HJ] HKLM\[...]\Wow6432Node\System : ConsentPromptBehaviorAdmin (0) -> NEVZVOLENÉ
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NEVZVOLENÉ
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NEVZVOLENÉ
[HJ INPROC][ZeroAccess] HKCR\[...]\InprocServer32 : (C:\$Recycle.Bin\S-1-5-21-3732101377-2479867636-1582925402-1001\$34a54af054d6bf6d7b66dd3fe8491ec2\n.) [x] -> NAHRADENÉ (C:\Windows\system32\shell32.dll)
[HJ INPROC][ZeroAccess] HKCR\[...]\InprocServer32 : (C:\$Recycle.Bin\S-1-5-18\$34a54af054d6bf6d7b66dd3fe8491ec2\n.) [x] -> NAHRADENÉ (C:\Windows\system32\wbem\fastprox.dll)
¤¤¤ Zvláštne súbory / Adresáre: ¤¤¤
¤¤¤ Ovládač : [NENAHRATÉ] ¤¤¤
¤¤¤ Nákaza : ZeroAccess ¤¤¤
¤¤¤ Súbor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: TOSHIBA MK2552GSX ATA Device +++++
--- User ---
[MBR] d7317f5ffa39213990c678eb551af34f
[BSP] 4dd9287315a59e55a7cb0803d78d7af1 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 71680 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 146818030 | Size: 166784 Mo
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: WDC WD800JD-60JRA0 ATA Device +++++
--- User ---
[MBR] 1313eb586217cba7b6fb17c544815de4
[BSP] 7d8eb5d287b8e837e16239edba29ed8c : Linux MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 76317 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončené : << RKreport[5]_D_05052013_02d1627.txt >>
RKreport[1]_S_05052013_02d1602.txt ; RKreport[2]_S_05052013_02d1620.txt ; RKreport[3]_D_05052013_02d1623.txt ; RKreport[4]_S_05052013_02d1626.txt ; RKreport[5]_D_05052013_02d1627.txt
tu je posledny log kde som mazal register[virusove subory sa zmazali uspesne]
RogueKiller V8.5.4 [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/
Operačný systém : Windows 8 (6.2.9200 ) 64 bits version
Spustené v : Normálny režim
Užívateľ : GAMELASTER [Práva Správcu]
Režim : Odebrať -- Dátum : 05/05/2013 16:27:34
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy : 0 ¤¤¤
¤¤¤ Záznamy Registrov : 8 ¤¤¤
[RUN][SUSP PATH] HKCU\[...]\Run : LightShot (C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\LightShot.exe Flags: uninsdeletevalue) [7] -> NEVZVOLENÉ
[RUN][SUSP PATH] HKUS\S-1-5-21-3732101377-2479867636-1582925402-1001[...]\Run : LightShot (C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\LightShot.exe Flags: uninsdeletevalue) [7] -> NEVZVOLENÉ
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NEVZVOLENÉ
[HJ] HKLM\[...]\Wow6432Node\System : ConsentPromptBehaviorAdmin (0) -> NEVZVOLENÉ
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NEVZVOLENÉ
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NEVZVOLENÉ
[HJ INPROC][ZeroAccess] HKCR\[...]\InprocServer32 : (C:\$Recycle.Bin\S-1-5-21-3732101377-2479867636-1582925402-1001\$34a54af054d6bf6d7b66dd3fe8491ec2\n.) [x] -> NAHRADENÉ (C:\Windows\system32\shell32.dll)
[HJ INPROC][ZeroAccess] HKCR\[...]\InprocServer32 : (C:\$Recycle.Bin\S-1-5-18\$34a54af054d6bf6d7b66dd3fe8491ec2\n.) [x] -> NAHRADENÉ (C:\Windows\system32\wbem\fastprox.dll)
¤¤¤ Zvláštne súbory / Adresáre: ¤¤¤
¤¤¤ Ovládač : [NENAHRATÉ] ¤¤¤
¤¤¤ Nákaza : ZeroAccess ¤¤¤
¤¤¤ Súbor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: TOSHIBA MK2552GSX ATA Device +++++
--- User ---
[MBR] d7317f5ffa39213990c678eb551af34f
[BSP] 4dd9287315a59e55a7cb0803d78d7af1 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 71680 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 146818030 | Size: 166784 Mo
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: WDC WD800JD-60JRA0 ATA Device +++++
--- User ---
[MBR] 1313eb586217cba7b6fb17c544815de4
[BSP] 7d8eb5d287b8e837e16239edba29ed8c : Linux MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 76317 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončené : << RKreport[5]_D_05052013_02d1627.txt >>
RKreport[1]_S_05052013_02d1602.txt ; RKreport[2]_S_05052013_02d1620.txt ; RKreport[3]_D_05052013_02d1623.txt ; RKreport[4]_S_05052013_02d1626.txt ; RKreport[5]_D_05052013_02d1627.txt
Naposledy upravil(a) vyosek dne 05 kvě 2013 18:13, celkem upraveno 1 x.
Důvod: Log odstranen z code
Důvod: Log odstranen z code
Přispějete na provoz fóra?