Zdravím, na čerstvou instalaci se nám dostaly z backupu viry, ale snad se mi je podařilo eliminovat. Prosím pro jistotu o kontrolu logu RSIT díky.
Logfile of random's system information tool 1.09 (written by random/random)
Run by administrator at 2013-06-28 15:07:43
Microsoft Windows® Small Business Server 2011 Standard
System drive C: has 90 GB (64%) free of 140 GB
Total RAM: 6134 MB (13% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:07:50, on 2013-06-28
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\AVG\AVG2013\avgui.exe
C:\Program Files\trend micro\administrator.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = res://iesetup.dll/SoftAdmin.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = res://iesetup.dll/SoftAdmin.htm
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY
O15 - Trusted Zone: http://blogs.technet.com
O15 - ESC Trusted Zone: http://blogs.technet.com
O15 - ESC Trusted Zone: http://runonce.msn.com (HKLM)
O15 - ESC Trusted Zone: http://*.windowsupdate.com (HKLM)
O16 - DPF: iLO 2 Remote Console Applet - https://192.168.0.29/dvc.cab
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = gphpl2.local
O17 - HKLM\System\CCS\Services\Tcpip\..\{1902FDE6-3819-428D-94C3-C67B4123C9AB}: NameServer = 127.0.0.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = gphpl2.local
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = gphpl2.local
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
O23 - Service: @%systemroot%\system32\certocm.dll,-347 (CertSvc) - Unknown owner - C:\Windows\system32\certsrv.exe (file missing)
O23 - Service: @%systemroot%\system32\dfssvc.exe,-101 (Dfs) - Unknown owner - C:\Windows\system32\dfssvc.exe (file missing)
O23 - Service: @dfsrress.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSRs.exe (file missing)
O23 - Service: @%systemroot%\system32\dns.exe,-49157 (DNS) - Unknown owner - C:\Windows\system32\dns.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30007 (IISADMIN) - Unknown owner - C:\Windows\system32\inetsrv\inetinfo.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ismserv.exe,-1 (IsmServ) - Unknown owner - C:\Windows\System32\ismserv.exe (file missing)
O23 - Service: @%SystemRoot%\System32\kdcsvc.dll,-1 (kdc) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\Windows\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ntdsmsg.dll,-1 (NTDS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Usługa replikacji plików (NtFrs) - Unknown owner - C:\Windows\system32\ntfrs.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Replikator - inSolutions - C:\Program Files (x86)\inSolutions\inKontrahent\Replikator.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%Systemroot%\system32\rqs.exe,-200 (rqs) - Unknown owner - C:\Windows\system32\rqs.exe (file missing)
O23 - Service: @gpapi.dll,-114 (RSoPProv) - Unknown owner - C:\Windows\system32\RSoPProv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%windir%\system32\srm.dll,-3022 (SrmReports) - Unknown owner - C:\Windows\system32\srmhost.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-20001 (WMSVC) - Unknown owner - C:\Windows\system32\inetsrv\wmsvc.exe (file missing)
O23 - Service: Ywusek igucmumk (Wshsdd nieoxohr) - Unknown owner - C:\Program Files (x86)\Microsoft Pouhzh\Kchyvug.exe (file missing)
--
End of file - 6498 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
C:\PROGRA~2\AVG\AVG2013\avgrsa.exe /boot
C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe /pipeName=2af6a625-9526-4673-8ea0-787fe81cc554 /coreSdkOptions=4382 /logConfFile="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2013\temp\0941e910-bc96-4370-947d-af796c7c0e21-17c-oopp.tmp" /loggerName=AVG.RS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2013\" /registryPath="SYSTEM\CurrentControlSet\Services\Avg\Avg2013" /tempPath="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2013\temp\"
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\spoolsv.exe
C:\Windows\ADWS\Microsoft.ActiveDirectory.WebServices.exe
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe"
"C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe"
C:\Windows\system32\certsrv.exe
C:\Windows\system32\DFSRs.exe
C:\Windows\system32\dns.exe
C:\Windows\system32\inetsrv\inetinfo.exe
C:\Windows\System32\ismserv.exe
C:\Windows\system32\mqsvc.exe
"C:\Program Files\Microsoft SQL Server\MSSQL10_50.INSERTGT\MSSQL\Binn\sqlservr.exe" -sINSERTGT
C:\Windows\SYSMSI\SSEE\MSSQL.2005\MSSQL\Binn\sqlservr.exe -sMICROSOFT##SSEE
"C:\Program Files\Microsoft SQL Server\MSSQL10_50.SBSMONITORING\MSSQL\Binn\sqlservr.exe" -sSBSMONITORING
"C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe"
"C:\Program Files (x86)\AVG\AVG2013\avgemca.exe"
"C:\Program Files\Microsoft SQL Server\MSSQL10_50.SHAREPOINT\MSSQL\Binn\sqlservr.exe" -sSHAREPOINT
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
C:\Windows\system32\ntfrs.exe
C:\Windows\system32\svchost.exe -k regsvc
C:\Windows\system32\silsvc.exe
"C:\Program Files\Common Files\Microsoft Shared\Web Server Extensions\14\BIN\WSSADMIN.EXE"
"C:\Program Files\Common Files\Microsoft Shared\Web Server Extensions\14\BIN\OWSTIMER.EXE"
"C:\Program Files\Common Files\Microsoft Shared\Web Server Extensions\14\BIN\wsstracing.exe"
"C:\Program Files\Common Files\Microsoft Shared\Web Server Extensions\14\BIN\SPWRITER.EXE"
"C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe"
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\system32\svchost -k srmsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k iissvcs
"C:\Program Files\Update Services\Service\bin\WsusService.exe"
"C:\Program Files\Windows Small Business Server\Bin\DataCollectorSvc.exe"
C:\Windows\system32\dfssvc.exe
"C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
"C:\Program Files\Microsoft SQL Server\MSSQL10_50.SHAREPOINT\MSSQL\Binn\fdlauncher.exe" -s MSSQL10_50.SHAREPOINT
"C:\Program Files\Microsoft SQL Server\MSSQL10_50.SBSMONITORING\MSSQL\Binn\fdlauncher.exe" -s MSSQL10_50.SBSMONITORING
C:\Windows\System32\vds.exe
C:\Windows\System32\svchost.exe -k termsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Microsoft SQL Server\MSSQL10_50.SHAREPOINT\MSSQL\Binn\fdhost.exe" "MSSQL10_50.SHAREPOINTAd1c92024fc00ef43a1fa50df236b671d177166a0" "MSSQL10_50.SHAREPOINT" "MSSQL10_50.SHAREPOINT" "16" "" "8192" "M" "0" "" "" ""
\??\C:\Windows\system32\conhost.exe "-119503654515846531682017993638-18836560431355603836-2059727491271175913-1367627501
"C:\Program Files\Microsoft SQL Server\MSSQL10_50.SBSMONITORING\MSSQL\Binn\fdhost.exe" "MSSQL10_50.SBSMONITORINGF2c116328faea7f4a0cf8c3ff4a51e0b0081261kk" "MSSQL10_50.SBSMONITORING" "MSSQL10_50.SBSMONITORING" "16" "" "8192" "M" "0" "" "" ""
\??\C:\Windows\system32\conhost.exe "738841059-2109847382-377580497-9792304851714935151-15391315041298570093-471200910
c:\windows\system32\inetsrv\w3wp.exe -ap "SBS Web Applications application pool" -v "v4.0" -l "webengine4.dll" -a \\.\pipe\iisipm9172c56c-b29e-4028-9d93-ce74d25b4e18 -h "C:\inetpub\temp\apppools\SBS Web Applications application pool.config" -w "" -m 0 -t 20
c:\windows\system32\inetsrv\w3wp.exe -ap "WsusPool" -v "v2.0" -l "webengine4.dll" -a \\.\pipe\iisipm115cbcbd-12d0-4d3d-adc0-de5518291d48 -h "C:\inetpub\temp\apppools\WsusPool.config" -w "" -m 0 -t 20
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\srmhost.exe
C:\Windows\system32\iashost.exe {48DA6741-1BF0-4A44-8325-293086C79077} -Embedding
C:\Windows\System32\msdtc.exe
C:\Windows\system32\svchost.exe -k RPCHTTPLBS
C:\Windows\system32\svchost.exe -k tsgateway
"C:\Program Files\Common Files\Microsoft Shared\Web Server Extensions\14\BIN\mssearch.exe"
"C:\Program Files\Common Files\Microsoft Shared\Web Server Extensions\14\bin\mssdmn.exe" 7096 sGthrFltPipeSPSearch41_ sGthrCtrlFltPipeSPSearch41 128 -2147483646 "Software\Microsoft\Shared Tools\Web Server Extensions\14.0\Search" "Mozilla/4.0 (compatible; MSIE 4.01; Windows NT; MS Search 6.0 Robot)" "C:\Users\spsearch\AppData\Local\Temp\gthrsvc_SPSearch4" "DownLevelDaemon" 838860800 "" "{C1579474-AAC3-4411-A4BC-DAC07331A78F}"
c:\windows\system32\inetsrv\w3wp.exe -ap "SharePoint Central Administration v4" -v "v2.0" -l "webengine4.dll" -a \\.\pipe\iisipma9c24835-c0d0-4bb3-b2c6-f1257ba3d9f8 -h "C:\inetpub\temp\apppools\SharePoint Central Administration v4.config" -w "" -m 0
c:\windows\system32\inetsrv\w3wp.exe -ap "SBS Sharepoint AppPool" -v "v2.0" -l "webengine4.dll" -a \\.\pipe\iisipmf8b1a7b3-58e2-48c4-ae9f-4e47a1cfcfe6 -h "C:\inetpub\temp\apppools\SBS Sharepoint AppPool.config" -w "" -m 0
c:\windows\system32\inetsrv\w3wp.exe -ap "MSExchangePowerShellAppPool" -v "v2.0" -l "webengine4.dll" -a \\.\pipe\iisipm121723fa-2e57-4c34-845a-19556449632c -h "C:\inetpub\temp\apppools\MSExchangePowerShellAppPool.config" -w "" -m 0
C:\Windows\system32\dllhost.exe /Processid:{EDB25E5F-50D2-4258-9E0D-542E64C1F0C3}
C:\Windows\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
c:\windows\system32\inetsrv\w3wp.exe -ap "SecurityTokenServiceApplicationPool" -v "v2.0" -l "webengine4.dll" -a \\.\pipe\iisipmbbc2c378-025c-4ceb-943c-06c191635c6c -h "C:\inetpub\temp\apppools\SecurityTokenServiceApplicationPool.config" -w "" -m 0
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
"taskhost.exe"
rdpclip
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY
"C:\Windows\system32\mmc.exe" "C:\Windows\system32\WF.msc"
"C:\Windows\system32\mmc.exe" "C:\Windows\system32\services.msc"
"C:\Windows\system32\cmd.exe"
\??\C:\Windows\system32\conhost.exe "-752564043687986641-1876276131-1759184255-11720339456892880402689693991348438220
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
"LogonUI.exe" /flags:0x0
"C:\Windows\system32\wuauclt.exe"
"C:\Windows\system32\wbengine.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe15_ Global\UsGthrCtrlFltPipeMssGthrPipe15 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 564 568 576 65536 572
"C:\Users\Administrator\Documents\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Harmonogram archiwizacji podmiotu 'GPH_sp__z_o_o_'.job
C:\Windows\tasks\Harmonogram kopiowania w tle dla stacji dysków C.job
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"DWPersistentQueuedReporting"=C:\PROGRA~1\COMMON~1\MICROS~1\DW\DWTRIG20.EXE [2010-02-28 629664]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AVG_UI"=C:\Program Files (x86)\AVG\AVG2013\avgui.exe [2013-04-29 4408368]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
rassfm
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll, pwdssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Base]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot file system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CryptSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DcomLaunch]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventLog]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HelpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Netlogon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PCI Configuration]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PlugPlay]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PNP Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Primary disk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcSs]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SCSI Class]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sermouse.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\silsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\System Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vga.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vgasave.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{36FC9E60-C465-11CF-8056-444553540000}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E965-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E969-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E977-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E980-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Base]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot file system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Browser]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CryptSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DcomLaunch]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dhcp]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DnsCache]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EventLog]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\File system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HelpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ipnat.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanServer]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanWorkstation]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LmHosts]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Messenger]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS Wrapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ndisuio]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOSGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBT]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetDDEGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Netlogon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetMan]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Network]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetworkProvider]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PCI Configuration]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PlugPlay]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP_TDI]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Primary disk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdsessmgr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcSs]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCSI Class]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sermouse.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SharedAccess]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\silsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Streams Drivers]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\System Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Tcpip]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TDI]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vga.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vgasave.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{36FC9E60-C465-11CF-8056-444553540000}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E965-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E967-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E969-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96A-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96F-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E972-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E973-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E974-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E975-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E977-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97D-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E980-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"disablecad"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=0
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"ShowSuperHidden"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-06-28 15:07:43 ----D---- C:\rsit
2013-06-28 15:07:43 ----D---- C:\Program Files\trend micro
2013-06-28 11:19:36 ----A---- C:\Windows\system32\xp8127.exe
2013-06-28 05:36:20 ----A---- C:\Windows\system32\xpInstall.exe
2013-06-28 00:55:37 ----A---- C:\Windows\system32\xphk.exe
2013-06-28 00:52:03 ----A---- C:\Windows\system32\xp2.exe
2013-06-27 20:05:39 ----A---- C:\Windows\system32\xpshangy.exe
2013-06-27 19:37:08 ----A---- C:\Windows\system32\xpvipm3.exe
2013-06-27 16:51:30 ----A---- C:\Windows\system32\xp1433.exe
2013-06-27 16:25:19 ----A---- C:\Windows\system32\xpSVETIUP.EXE
2013-06-27 16:07:42 ----A---- C:\Windows\system32\xpserver.exe
2013-06-27 15:10:42 ----A---- C:\Windows\system32\ondown_s_66_46375.exe
2013-06-27 14:23:07 ----D---- C:\Program Files (x86)\Microsoft Pouhzh
2013-06-27 14:22:15 ----A---- C:\Windows\system32\xp1.exe
2013-06-27 13:59:15 ----A---- C:\Windows\system32\xpACE.exe
2013-06-27 13:28:13 ----A---- C:\Windows\system32\xp361.exe
2013-06-27 13:11:14 ----A---- C:\Windows\system32\p.exe
2013-06-27 09:43:30 ----D---- C:\ProgramData\inSolutions
2013-06-27 07:41:22 ----A---- C:\Windows\system32\drivers\partmgr.sys
2013-06-27 07:40:45 ----A---- C:\Windows\system32\spoolsv.exe
2013-06-27 07:40:13 ----A---- C:\Windows\SYSWOW64\packager.dll
2013-06-27 07:40:13 ----A---- C:\Windows\system32\packager.dll
2013-06-27 07:38:53 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2013-06-27 07:38:53 ----A---- C:\Windows\system32\d3d10_1core.dll
2013-06-27 07:38:53 ----A---- C:\Windows\system32\d2d1.dll
2013-06-27 07:38:52 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2013-06-27 07:38:52 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2013-06-27 07:38:52 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2013-06-27 07:38:52 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2013-06-27 07:38:52 ----A---- C:\Windows\system32\DWrite.dll
2013-06-27 07:38:52 ----A---- C:\Windows\system32\d3d10warp.dll
2013-06-27 07:38:52 ----A---- C:\Windows\system32\d3d10_1.dll
2013-06-27 07:38:00 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2013-06-27 07:37:58 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-06-27 07:37:58 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-06-27 07:37:58 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-06-27 07:37:58 ----A---- C:\Windows\system32\csrsrv.dll
2013-06-27 07:37:57 ----A---- C:\Windows\system32\smss.exe
2013-06-27 07:28:23 ----A---- C:\Windows\system32\drivers\usb8023.sys
2013-06-27 07:26:44 ----A---- C:\Windows\SYSWOW64\msasn1.dll
2013-06-27 07:26:44 ----A---- C:\Windows\system32\msasn1.dll
2013-06-27 07:25:27 ----A---- C:\Windows\system32\tsgqec.dll
2013-06-27 07:25:27 ----A---- C:\Windows\system32\aaclient.dll
2013-06-27 07:25:26 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-06-27 07:25:26 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-06-27 07:25:24 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-06-27 07:25:24 ----A---- C:\Windows\system32\mstscax.dll
2013-06-27 07:23:52 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2013-06-27 07:23:52 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2013-06-27 07:23:52 ----A---- C:\Windows\system32\msxml3.dll
2013-06-27 07:23:51 ----A---- C:\Windows\system32\msxml6.dll
2013-06-27 07:23:19 ----A---- C:\Windows\system32\kdcsvc.dll
2013-06-27 07:22:46 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2013-06-27 07:22:46 ----A---- C:\Windows\system32\kerberos.dll
2013-06-27 07:21:19 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2013-06-27 07:21:19 ----A---- C:\Windows\system32\comctl32.dll
2013-06-27 07:20:46 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-06-27 07:20:46 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-06-27 07:20:46 ----A---- C:\Windows\system32\jscript.dll
2013-06-27 07:20:45 ----A---- C:\Windows\system32\vbscript.dll
2013-06-27 07:20:07 ----A---- C:\Windows\system32\drivers\dfsc.sys
2013-06-27 07:18:52 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-06-27 07:18:52 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-06-27 07:18:52 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-06-27 07:18:52 ----A---- C:\Windows\system32\schannel.dll
2013-06-27 07:18:52 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-06-27 07:18:52 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2013-06-27 07:18:51 ----A---- C:\Windows\system32\drivers\cng.sys
2013-06-27 07:18:04 ----A---- C:\Windows\SYSWOW64\odbc32.dll
2013-06-27 07:18:04 ----A---- C:\Windows\system32\odbc32.dll
2013-06-27 07:17:26 ----A---- C:\Windows\SYSWOW64\netlogon.dll
2013-06-27 07:17:26 ----A---- C:\Windows\system32\netlogon.dll
2013-06-27 07:16:35 ----A---- C:\Windows\system32\drivers\srvnet.sys
2013-06-27 07:16:35 ----A---- C:\Windows\system32\drivers\srv2.sys
2013-06-27 07:16:35 ----A---- C:\Windows\system32\drivers\srv.sys
2013-06-27 07:12:14 ----A---- C:\Windows\SYSWOW64\colorui.dll
2013-06-27 07:12:14 ----A---- C:\Windows\system32\colorui.dll
2013-06-27 07:11:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-06-27 07:11:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-06-27 07:11:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-06-27 07:11:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-06-27 07:11:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-06-27 07:11:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-06-27 07:11:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-06-27 07:11:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-06-27 07:11:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-06-27 07:11:03 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-06-27 07:11:03 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-06-27 07:11:03 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-06-27 07:11:03 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-06-27 07:11:03 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-06-27 07:11:03 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-06-27 07:11:03 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-06-27 07:11:03 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-06-27 07:11:03 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-06-27 07:11:02 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-06-27 07:11:02 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-06-27 07:11:02 ----A---- C:\Windows\SYSWOW64\user.exe
2013-06-27 07:11:02 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-06-27 07:11:02 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-06-27 07:11:02 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-06-27 07:11:02 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-06-27 07:11:02 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-06-27 07:11:02 ----A---- C:\Windows\system32\wow64win.dll
2013-06-27 07:11:02 ----A---- C:\Windows\system32\wow64cpu.dll
2013-06-27 07:11:02 ----A---- C:\Windows\system32\wow64.dll
2013-06-27 07:11:02 ----A---- C:\Windows\system32\winsrv.dll
2013-06-27 07:11:02 ----A---- C:\Windows\system32\ntvdm64.dll
2013-06-27 07:11:02 ----A---- C:\Windows\system32\KernelBase.dll
2013-06-27 07:11:02 ----A---- C:\Windows\system32\conhost.exe
2013-06-27 07:11:01 ----A---- C:\Windows\system32\kernel32.dll
2013-06-27 07:10:25 ----A---- C:\Windows\system32\drivers\ntfs.sys
2013-06-27 07:09:42 ----D---- C:\Program Files (x86)\MSXML 4.0
2013-06-27 07:04:35 ----A---- C:\Windows\SYSWOW64\iisrstap.dll
2013-06-27 07:04:35 ----A---- C:\Windows\SYSWOW64\iisreset.exe
2013-06-27 07:04:35 ----A---- C:\Windows\system32\wamregps.dll
2013-06-27 07:04:35 ----A---- C:\Windows\system32\iisrstap.dll
2013-06-27 07:04:35 ----A---- C:\Windows\system32\iisreset.exe
2013-06-27 07:04:34 ----A---- C:\Windows\SYSWOW64\wamregps.dll
2013-06-27 07:04:34 ----A---- C:\Windows\SYSWOW64\iisRtl.dll
2013-06-27 07:04:34 ----A---- C:\Windows\SYSWOW64\ahadmin.dll
2013-06-27 07:04:34 ----A---- C:\Windows\SYSWOW64\admwprox.dll
2013-06-27 07:04:34 ----A---- C:\Windows\system32\iisRtl.dll
2013-06-27 07:04:34 ----A---- C:\Windows\system32\ahadmin.dll
2013-06-27 07:04:34 ----A---- C:\Windows\system32\admwprox.dll
2013-06-27 07:04:06 ----A---- C:\Windows\system32\cdd.dll
2013-06-27 07:04:05 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-06-27 07:03:37 ----A---- C:\Windows\system32\dns.exe
2013-06-27 07:03:07 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2013-06-27 07:03:07 ----A---- C:\Windows\system32\dpnet.dll
2013-06-27 07:02:42 ----A---- C:\Windows\system32\drivers\afd.sys
2013-06-27 07:02:16 ----A---- C:\Windows\SYSWOW64\mfc40.dll
2013-06-27 07:02:15 ----A---- C:\Windows\SYSWOW64\mfc40u.dll
2013-06-27 07:01:25 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2013-06-27 07:01:25 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2013-06-27 07:01:25 ----A---- C:\Windows\SYSWOW64\odbccu32.dll
2013-06-27 07:01:25 ----A---- C:\Windows\SYSWOW64\odbccr32.dll
2013-06-27 07:01:25 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2013-06-27 07:01:25 ----A---- C:\Windows\system32\odbctrac.dll
2013-06-27 07:01:25 ----A---- C:\Windows\system32\odbccu32.dll
2013-06-27 07:01:25 ----A---- C:\Windows\system32\odbccr32.dll
2013-06-27 07:01:25 ----A---- C:\Windows\system32\odbccp32.dll
2013-06-27 07:00:39 ----A---- C:\Windows\SYSWOW64\browcli.dll
2013-06-27 07:00:38 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2013-06-27 07:00:38 ----A---- C:\Windows\system32\netapi32.dll
2013-06-27 07:00:38 ----A---- C:\Windows\system32\browser.dll
2013-06-27 07:00:38 ----A---- C:\Windows\system32\browcli.dll
2013-06-27 06:59:49 ----A---- C:\Windows\system32\consent.exe
2013-06-27 06:59:25 ----A---- C:\Windows\SYSWOW64\ole32.dll
2013-06-27 06:59:25 ----A---- C:\Windows\system32\ole32.dll
2013-06-27 06:56:41 ----A---- C:\Windows\SYSWOW64\taskschd.dll
2013-06-27 06:56:41 ----A---- C:\Windows\SYSWOW64\taskeng.exe
2013-06-27 06:56:41 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2013-06-27 06:56:41 ----A---- C:\Windows\SYSWOW64\schtasks.exe
2013-06-27 06:56:41 ----A---- C:\Windows\system32\wmicmiplugin.dll
2013-06-27 06:56:41 ----A---- C:\Windows\system32\taskschd.dll
2013-06-27 06:56:41 ----A---- C:\Windows\system32\taskeng.exe
2013-06-27 06:56:41 ----A---- C:\Windows\system32\taskcomp.dll
2013-06-27 06:56:41 ----A---- C:\Windows\system32\schtasks.exe
2013-06-27 06:56:41 ----A---- C:\Windows\system32\schedsvc.dll
2013-06-27 06:55:59 ----A---- C:\Windows\system32\ntdsai.dll
2013-06-27 06:55:25 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-06-27 06:55:23 ----A---- C:\Windows\system32\shell32.dll
2013-06-27 06:55:07 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2013-06-27 06:55:07 ----A---- C:\Windows\system32\ncrypt.dll
2013-06-27 06:54:37 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2013-06-27 06:54:37 ----A---- C:\Windows\system32\inetcomm.dll
2013-06-27 06:53:15 ----A---- C:\Windows\system32\localspl.dll
2013-06-27 06:48:04 ----A---- C:\Windows\SYSWOW64\quartz.dll
2013-06-27 06:48:04 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2013-06-27 06:48:04 ----A---- C:\Windows\system32\quartz.dll
2013-06-27 06:48:04 ----A---- C:\Windows\system32\qdvd.dll
2013-06-27 06:47:50 ----A---- C:\Windows\system32\mfc42u.dll
2013-06-27 06:47:50 ----A---- C:\Windows\system32\mfc42.dll
2013-06-27 06:47:49 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2013-06-27 06:47:49 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2013-06-27 06:47:22 ----A---- C:\Windows\SYSWOW64\rtutils.dll
2013-06-27 06:47:22 ----A---- C:\Windows\system32\rtutils.dll
2013-06-27 06:47:06 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2013-06-27 06:47:06 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2013-06-27 06:47:06 ----A---- C:\Windows\system32\oleaut32.dll
2013-06-27 06:47:06 ----A---- C:\Windows\system32\oleacc.dll
2013-06-27 06:46:56 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2013-06-27 06:46:56 ----A---- C:\Windows\system32\StructuredQuery.dll
2013-06-27 06:46:35 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-06-27 06:46:35 ----A---- C:\Windows\system32\mstsc.exe
2013-06-27 06:43:36 ----A---- C:\Windows\system32\lsass.exe
2013-06-27 06:43:35 ----A---- C:\Windows\SYSWOW64\webio.dll
2013-06-27 06:43:35 ----A---- C:\Windows\system32\webio.dll
2013-06-27 06:43:35 ----A---- C:\Windows\system32\sspisrv.dll
2013-06-27 06:43:35 ----A---- C:\Windows\system32\sspicli.dll
2013-06-27 06:43:35 ----A---- C:\Windows\system32\secur32.dll
2013-06-27 06:43:35 ----A---- C:\Windows\system32\lsasrv.dll
2013-06-27 06:43:27 ----D---- C:\Windows\system32\%LOCALAPPDATA%
2013-06-27 06:42:41 ----A---- C:\Windows\system32\iphlpsvc.dll
2013-06-27 06:41:32 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2013-06-27 06:41:32 ----A---- C:\Windows\system32\msv1_0.dll
2013-06-27 06:41:17 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-06-27 06:41:17 ----A---- C:\Windows\system32\ntdll.dll
2013-06-26 16:42:01 ----D---- C:\Program Files (x86)\inSolutions
2013-06-26 16:13:06 ----D---- C:\tmp
2013-06-26 15:47:07 ----D---- C:\Users\Administrator\AppData\Roaming\IsolatedStorage
2013-06-26 14:28:39 ----D---- C:\ProgramData\InsERT
2013-06-26 14:28:39 ----D---- C:\Program Files (x86)\InsERT
2013-06-26 14:27:19 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2013-06-26 14:24:33 ----A---- C:\Windows\SYSWOW64\perf-MSSQL10_50.INSERTGT-sqlagtctr.dll
2013-06-26 14:24:32 ----A---- C:\Windows\system32\perf-MSSQL10_50.INSERTGT-sqlagtctr.dll
2013-06-26 14:24:15 ----A---- C:\Windows\SYSWOW64\perf-MSSQL$INSERTGT-sqlctr10.51.2500.0.dll
2013-06-26 14:24:15 ----A---- C:\Windows\system32\perf-MSSQL$INSERTGT-sqlctr10.51.2500.0.dll
2013-06-26 14:22:15 ----D---- C:\Program Files\Microsoft.NET
2013-06-26 14:11:23 ----D---- C:\Instalki
2013-06-26 13:14:21 ----D---- C:\Users\Administrator\AppData\Roaming\AVG2013
2013-06-26 13:13:20 ----HD---- C:\$AVG
2013-06-26 13:13:19 ----D---- C:\ProgramData\AVG2013
2013-06-26 13:13:08 ----D---- C:\Program Files (x86)\AVG
2013-06-26 13:05:36 ----HD---- C:\ProgramData\Common Files
2013-06-26 13:05:36 ----D---- C:\ProgramData\MFAData
2013-06-26 12:17:45 ----D---- C:\StorageReports
2013-06-26 12:17:35 ----D---- C:\ProgramData\IsolatedStorage
2013-06-26 12:07:58 ----A---- C:\Windows\system32\wups2.dll
2013-06-26 12:07:58 ----A---- C:\Windows\system32\wuauclt.exe
2013-06-26 12:07:57 ----A---- C:\Windows\system32\wucltux.dll
2013-06-26 12:07:57 ----A---- C:\Windows\system32\wuaueng.dll
2013-06-26 12:07:46 ----A---- C:\Windows\system32\wups.dll
2013-06-26 12:07:46 ----A---- C:\Windows\system32\wudriver.dll
2013-06-26 12:07:46 ----A---- C:\Windows\system32\wuapi.dll
2013-06-26 12:07:23 ----A---- C:\Windows\system32\wuwebv.dll
2013-06-26 12:07:23 ----A---- C:\Windows\system32\wuapp.exe
2013-06-26 11:51:39 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2013-06-26 11:51:39 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2013-06-26 11:51:39 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2013-06-26 11:51:39 ----A---- C:\Windows\system32\fontsub.dll
2013-06-26 11:51:39 ----A---- C:\Windows\system32\atmlib.dll
2013-06-26 11:51:39 ----A---- C:\Windows\system32\atmfd.dll
2013-06-26 11:10:24 ----A---- C:\Windows\SYSWOW64\wmi.dll
2013-06-26 11:10:24 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2013-06-26 11:10:24 ----A---- C:\Windows\system32\wmi.dll
2013-06-26 11:10:24 ----A---- C:\Windows\system32\imagehlp.dll
2013-06-26 11:10:24 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2013-06-26 11:05:16 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2013-06-26 11:05:16 ----A---- C:\Windows\system32\win32spl.dll
2013-06-26 11:04:03 ----A---- C:\Windows\system32\drivers\volsnap.sys
2013-06-26 10:58:32 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-06-26 10:58:32 ----A---- C:\Windows\system32\crypt32.dll
2013-06-26 10:58:31 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2013-06-26 10:58:31 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2013-06-26 10:58:31 ----A---- C:\Windows\system32\cryptsvc.dll
2013-06-26 10:58:31 ----A---- C:\Windows\system32\cryptnet.dll
2013-06-26 10:57:59 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2013-06-26 10:57:59 ----A---- C:\Windows\system32\wintrust.dll
2013-06-26 10:57:52 ----A---- C:\Windows\system32\rdrmemptylst.exe
2013-06-26 10:57:52 ----A---- C:\Windows\system32\rdpwsx.dll
2013-06-26 10:57:52 ----A---- C:\Windows\system32\rdpcorekmts.dll
2013-06-26 10:56:43 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2013-06-26 10:56:33 ----A---- C:\Windows\system32\win32k.sys
2013-06-26 10:53:52 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2013-06-26 10:53:52 ----A---- C:\Windows\system32\rdpcore.dll
2013-06-26 10:53:52 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2013-06-26 10:53:41 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2013-06-26 10:53:41 ----A---- C:\Windows\system32\msvcrt.dll
2013-06-26 10:52:52 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2013-06-26 10:52:52 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2013-06-26 10:52:52 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2013-06-26 10:52:44 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2013-06-26 10:52:44 ----A---- C:\Windows\SYSWOW64\devrtl.dll
2013-06-26 10:52:44 ----A---- C:\Windows\SYSWOW64\devobj.dll
2013-06-26 10:52:44 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2013-06-26 10:52:44 ----A---- C:\Windows\system32\umpnpmgr.dll
2013-06-26 10:52:35 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2013-06-26 10:52:35 ----A---- C:\Windows\system32\poqexec.exe
2013-06-26 10:52:27 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2013-06-26 10:52:27 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2013-06-26 10:52:27 ----A---- C:\Windows\system32\dnsrslvr.dll
2013-06-26 10:52:27 ----A---- C:\Windows\system32\dnscacheugc.exe
2013-06-26 10:52:27 ----A---- C:\Windows\system32\dnsapi.dll
2013-06-26 10:52:20 ----A---- C:\Windows\system32\drivers\bowser.sys
2013-06-26 10:52:12 ----A---- C:\Windows\system32\winload.exe
2013-06-26 10:52:11 ----A---- C:\Windows\system32\winresume.exe
2013-06-26 10:52:11 ----A---- C:\Windows\system32\kdusb.dll
2013-06-26 10:52:11 ----A---- C:\Windows\system32\kdcom.dll
2013-06-26 10:52:11 ----A---- C:\Windows\system32\kd1394.dll
2013-06-26 10:52:02 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2013-06-26 10:52:02 ----A---- C:\Windows\system32\t2embed.dll
2013-06-26 10:51:56 ----A---- C:\Windows\SYSWOW64\sscore.dll
2013-06-26 10:51:56 ----A---- C:\Windows\system32\srvsvc.dll
2013-06-26 10:10:16 ----D---- C:\Program Files\Microsoft
2013-06-26 10:02:23 ----D---- C:\ExchangeSetupLogs
2013-06-26 10:01:22 ----D---- C:\Windows\system32\CertSrv
2013-06-26 10:01:22 ----D---- C:\Windows\system32\CertLog
2013-06-26 09:54:01 ----D---- C:\Windows\ntfrs
2013-06-26 09:53:53 ----D---- C:\Windows\sysvol
2013-06-26 09:53:53 ----D---- C:\Windows\ntds
2013-06-26 09:53:24 ----A---- C:\Windows\SYSWOW64\propshts.dll
2013-06-26 09:53:24 ----A---- C:\Windows\SYSWOW64\gpregistrybrowser.dll
2013-06-26 09:53:24 ----A---- C:\Windows\SYSWOW64\gpprefcn.dll
2013-06-26 09:53:24 ----A---- C:\Windows\SYSWOW64\gpprefbr.dll
2013-06-26 09:53:24 ----A---- C:\Windows\SYSWOW64\gppref.dll
2013-06-26 09:53:23 ----A---- C:\Windows\system32\propshts.dll
2013-06-26 09:53:23 ----A---- C:\Windows\system32\gpregistrybrowser.dll
2013-06-26 09:53:23 ----A---- C:\Windows\system32\gpprefcn.dll
2013-06-26 09:53:23 ----A---- C:\Windows\system32\gpprefbr.dll
2013-06-26 09:53:23 ----A---- C:\Windows\system32\gppref.dll
2013-06-26 09:53:06 ----D---- C:\Windows\system32\dns
2013-06-25 21:58:58 ----D---- C:\Windows\Panther
2013-06-25 21:09:30 ----SD---- C:\Users\Administrator\AppData\Roaming\Microsoft
2013-06-25 21:04:49 ----D---- C:\Windows\SoftwareDistribution
2013-06-25 21:01:48 ----SHD---- C:\System Volume Information
2013-06-25 21:01:48 ----ASH---- C:\pagefile.sys
======List of files/folders modified in the last 1 month======
2013-06-28 15:07:43 ----RD---- C:\Program Files
2013-06-28 14:59:12 ----D---- C:\Windows\Temp
2013-06-28 14:58:42 ----D---- C:\Windows\System32
2013-06-28 14:58:42 ----D---- C:\Windows\inf
2013-06-28 14:58:42 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-06-28 14:44:00 ----D---- C:\Windows
2013-06-28 14:38:36 ----D---- C:\Windows\Downloaded Program Files
2013-06-28 14:35:06 ----D---- C:\Windows\system32\config
2013-06-28 14:25:57 ----RD---- C:\Users
2013-06-28 13:30:28 ----D---- C:\Windows\Registration
2013-06-28 13:15:44 ----D---- C:\Windows\system32\inetsrv
2013-06-28 13:14:08 ----D---- C:\Windows\debug
2013-06-28 13:13:52 ----D---- C:\Windows\system32\dhcp
2013-06-27 14:23:07 ----RD---- C:\Program Files (x86)
2013-06-27 09:43:30 ----HD---- C:\ProgramData
2013-06-27 09:43:18 ----SHD---- C:\Windows\Installer
2013-06-27 08:50:16 ----RSD---- C:\Windows\assembly
2013-06-27 08:50:16 ----D---- C:\Windows\Microsoft.NET
2013-06-27 08:43:57 ----D---- C:\Windows\rescache
2013-06-27 07:51:58 ----D---- C:\Windows\winsxs
2013-06-27 07:43:44 ----D---- C:\Windows\system32\drivers
2013-06-27 07:43:43 ----D---- C:\Windows\SysWOW64
2013-06-27 07:43:34 ----D---- C:\Windows\SYSWOW64\inetsrv
2013-06-27 07:43:11 ----D---- C:\Windows\AppPatch
2013-06-27 07:43:09 ----D---- C:\Windows\SYSWOW64\migration
2013-06-27 07:43:07 ----D---- C:\Windows\system32\migration
2013-06-27 07:42:48 ----D---- C:\Windows\system32\pl-PL
2013-06-27 07:42:46 ----D---- C:\Program Files\Windows Mail
2013-06-27 07:42:45 ----D---- C:\Program Files (x86)\Windows Mail
2013-06-27 07:42:25 ----D---- C:\Windows\SYSWOW64\wbem
2013-06-27 07:42:25 ----D---- C:\Windows\system32\wbem
2013-06-27 07:42:18 ----D---- C:\Program Files\Common Files\System
2013-06-27 07:42:01 ----D---- C:\Windows\system32\DriverStore
2013-06-27 07:41:37 ----D---- C:\Windows\system32\catroot
2013-06-27 07:39:46 ----D---- C:\Windows\system32\catroot2
2013-06-27 07:37:44 ----D---- C:\ProgramData\Microsoft Help
2013-06-27 07:36:24 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-06-26 17:36:23 ----D---- C:\Windows\system32\Tasks
2013-06-26 17:34:28 ----D---- C:\Windows\Tasks
2013-06-26 14:29:02 ----RSD---- C:\Windows\Fonts
2013-06-26 14:24:32 ----D---- C:\Windows\security
2013-06-26 14:23:32 ----D---- C:\Program Files\Microsoft SQL Server
2013-06-26 14:20:55 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2013-06-26 12:43:16 ----SHD---- C:\$Recycle.Bin
2013-06-26 12:22:42 ----D---- C:\Windows\system32\ServerManager
2013-06-26 12:17:42 ----D---- C:\Windows\Logs
2013-06-26 11:53:18 ----D---- C:\Windows\SYSWOW64\pl-PL
2013-06-26 11:52:56 ----D---- C:\Windows\system32\Boot
2013-06-26 11:15:37 ----D---- C:\Program Files\Update Services
2013-06-26 10:45:24 ----D---- C:\Windows\system32\tsgateway
2013-06-26 10:39:28 ----SD---- C:\ProgramData\Microsoft
2013-06-26 10:34:56 ----D---- C:\Windows\system32\ias
2013-06-26 10:01:12 ----D---- C:\Windows\system32\en-US
2013-06-26 09:53:23 ----D---- C:\Windows\system32\pl
2013-06-25 21:10:52 ----D---- C:\Windows\silsvcs
2013-06-25 21:08:44 ----SHD---- C:\Recovery
2013-06-25 21:03:22 ----D---- C:\Windows\system32\wfp
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ACPI;Sterownik Microsoft ACPI; C:\Windows\system32\DRIVERS\ACPI.sys [2009-07-14 334416]
R0 amdxata;amdxata; C:\Windows\system32\DRIVERS\amdxata.sys [2010-05-12 27016]
R0 atapi;Kanał IDE; C:\Windows\system32\DRIVERS\atapi.sys [2009-07-14 24128]
R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2013-02-08 71480]
R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2013-02-08 311096]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2013-02-08 116536]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2013-02-08 45880]
R0 CLFS;@%SystemRoot%\system32\clfs.sys,-100; C:\Windows\System32\CLFS.sys [2009-07-14 367696]
R0 CNG;CNG; C:\Windows\System32\Drivers\cng.sys [2012-06-02 459216]
R0 Datascrn;Datascrn; C:\Windows\system32\drivers\datascrn.sys [2009-07-14 79936]
R0 DfsrRo;@dfsrress.dll,-124; C:\Windows\system32\drivers\dfsrro.sys [2009-07-14 67136]
R0 Disk;Sterownik dysku; C:\Windows\system32\DRIVERS\disk.sys [2009-07-14 73280]
R0 FltMgr;@%SystemRoot%\system32\drivers\fltmgr.sys,-10001; C:\Windows\system32\drivers\fltmgr.sys [2009-07-14 290368]
R0 HpSAMD;HpSAMD; C:\Windows\system32\DRIVERS\HpSAMD.sys [2010-07-28 78720]
R0 hwpolicy;@%systemroot%\system32\drivers\hwpolicy.sys,-101; C:\Windows\System32\drivers\hwpolicy.sys [2009-07-14 14416]
R0 KSecDD;KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [2012-06-02 95088]
R0 KSecPkg;KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [2012-06-02 152432]
R0 mountmgr;@%SystemRoot%\system32\drivers\mountmgr.sys,-100; C:\Windows\System32\drivers\mountmgr.sys [2009-07-14 94784]
R0 msisadrv;msisadrv; C:\Windows\system32\DRIVERS\msisadrv.sys [2009-07-14 15424]
R0 Mup;@%systemroot%\system32\drivers\mup.sys,-101; C:\Windows\System32\Drivers\mup.sys [2009-07-14 60496]
R0 NDIS;@%SystemRoot%\system32\drivers\ndis.sys,-200; C:\Windows\system32\drivers\ndis.sys [2009-07-14 947776]
R0 partmgr;@%SystemRoot%\system32\drivers\partmgr.sys,-100; C:\Windows\System32\drivers\partmgr.sys [2012-03-17 75632]
R0 pci;Sterownik magistrali PCI; C:\Windows\system32\DRIVERS\pci.sys [2009-07-14 183872]
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
R0 pcw;Performance Counters for Windows Driver; C:\Windows\System32\drivers\pcw.sys [2009-07-14 50768]
R0 Quota;Quota; C:\Windows\system32\drivers\quota.sys [2009-07-14 168016]
R0 spldr;Security Processor Loader Driver; C:\Windows\system32\drivers\spldr.sys [2009-07-14 19008]
R1 AFD;@%systemroot%\system32\drivers\afd.sys,-1000; C:\Windows\system32\drivers\afd.sys [2011-12-28 499200]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2013-03-29 246072]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2013-02-08 206136]
R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2013-03-21 240952]
R1 blbdrive;blbdrive; C:\Windows\system32\DRIVERS\blbdrive.sys [2009-07-14 45056]
R1 cdrom;Sterownik stacji dysków CD-ROM; C:\Windows\system32\DRIVERS\cdrom.sys [2009-07-14 147456]
R1 DfsC;@%systemroot%\system32\drivers\dfsc.sys,-101; C:\Windows\System32\Drivers\dfsc.sys [2011-04-27 102400]
R1 DfsDriver;@%systemroot%\system32\drivers\dfs.sys,-101; C:\Windows\system32\drivers\dfs.sys [2009-07-14 51776]
R1 discache;@%systemroot%\system32\drivers\discache.sys,-102; C:\Windows\System32\drivers\discache.sys [2009-07-14 40448]
R1 Msfs;Msfs; C:\Windows\system32\drivers\Msfs.sys [2009-07-14 26112]
R1 mssmbios;Sterownik BIOS zarządzania systemem firmy Microsoft; C:\Windows\system32\DRIVERS\mssmbios.sys [2009-07-14 32320]
R1 NetBIOS;NetBIOS Interface; C:\Windows\system32\DRIVERS\netbios.sys [2009-07-14 44544]
R1 NetBT;@%SystemRoot%\system32\drivers\netbt.sys,-2; C:\Windows\System32\DRIVERS\netbt.sys [2009-07-14 259072]
R1 Npfs;Npfs; C:\Windows\system32\drivers\Npfs.sys [2009-07-14 44032]
R1 nsiproxy;@%SystemRoot%\system32\drivers\nsiproxy.sys,-2; C:\Windows\system32\drivers\nsiproxy.sys [2009-07-14 24576]
R1 Null;Null; C:\Windows\system32\drivers\Null.sys [2009-07-14 6144]
R1 Psched;@%SystemRoot%\System32\drivers\pacer.sys,-101; C:\Windows\system32\DRIVERS\pacer.sys [2009-07-14 131584]
R1 rdbss;@%systemroot%\system32\wkssvc.dll,-1000; C:\Windows\system32\DRIVERS\rdbss.sys [2009-07-14 309248]
R1 RDPCDD;@%systemroot%\system32\DRIVERS\RDPCDD.sys,-100; C:\Windows\System32\DRIVERS\RDPCDD.sys [2009-07-14 7680]
R1 RDPENCDD;@%systemroot%\system32\drivers\RDPENCDD.sys,-101; C:\Windows\system32\drivers\rdpencdd.sys [2009-07-14 7680]
R1 RDPREFMP;@%systemroot%\system32\drivers\RdpRefMp.sys,-101; C:\Windows\system32\drivers\rdprefmp.sys [2009-07-14 8192]
R1 Serial;Sterownik portu szeregowego; C:\Windows\system32\DRIVERS\serial.sys [2009-07-14 94208]
R2 lltdio;Link-Layer Topology Discovery Mapper I/O Driver; C:\Windows\system32\DRIVERS\lltdio.sys [2009-07-14 60928]
R2 luafv;@%systemroot%\system32\drivers\luafv.sys,-100; C:\Windows\system32\drivers\luafv.sys [2009-07-14 113152]
R2 PEAUTH;PEAUTH; C:\Windows\system32\drivers\peauth.sys [2009-07-14 651264]
R2 rspndr;Link-Layer Topology Discovery Responder; C:\Windows\system32\DRIVERS\rspndr.sys [2009-07-14 76800]
R2 secdrv;Security Driver; C:\Windows\system32\drivers\secdrv.sys [2009-06-10 23040]
R3 AcpiPmi;Sterownik miernika energii ACPI; C:\Windows\system32\DRIVERS\acpipmi.sys [2009-07-14 12288]
R3 AsyncMac;@%systemroot%\system32\rascfg.dll,-32000; C:\Windows\system32\DRIVERS\asyncmac.sys [2009-07-14 23040]
R3 b57nd60a;Broadcom NetXtreme Gigabit Ethernet — NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60a.sys [2009-06-10 270848]
R3 bowser;@%systemroot%\system32\browser.dll,-102; C:\Windows\system32\DRIVERS\bowser.sys [2011-02-23 90624]
R3 CompositeBus;Sterownik modułu wyliczającego magistrali kompozytowej; C:\Windows\system32\DRIVERS\CompositeBus.sys [2009-07-14 38912]
R3 HidUsb;Sterownik Microsoft klasy HID; C:\Windows\system32\DRIVERS\hidusb.sys [2009-07-14 30208]
R3 HTTP;@%SystemRoot%\system32\drivers\http.sys,-1; C:\Windows\system32\drivers\HTTP.sys [2009-07-14 751616]
R3 intelppm;Sterownik procesora Intel; C:\Windows\system32\DRIVERS\intelppm.sys [2009-07-14 62464]
R3 IPMIDRV;IPMIDRV; C:\Windows\system32\DRIVERS\IPMIDrv.sys [2009-07-14 78848]
R3 kbdclass;Sterownik klasy klawiatury; C:\Windows\system32\DRIVERS\kbdclass.sys [2009-07-14 50768]
R3 kbdhid;Sterownik klawiatury HID; C:\Windows\system32\DRIVERS\kbdhid.sys [2009-07-14 33280]
R3 monitor;Usługa sterownika funkcji klas monitorów firmy Microsoft; C:\Windows\system32\DRIVERS\monitor.sys [2009-07-14 30208]
R3 mouclass;Sterownik klasy myszy; C:\Windows\system32\DRIVERS\mouclass.sys [2009-07-14 49216]
R3 mouhid;Sterownik myszy HID; C:\Windows\system32\DRIVERS\mouhid.sys [2009-07-14 31232]
R3 mpsdrv;@%SystemRoot%\system32\FirewallAPI.dll,-23092; C:\Windows\System32\drivers\mpsdrv.sys [2009-07-14 77312]
R3 MQAC;@mqutil.dll,-6101; C:\Windows\system32\drivers\mqac.sys [2009-07-14 189440]
R3 mrxsmb;@%systemroot%\system32\wkssvc.dll,-1002; C:\Windows\system32\DRIVERS\mrxsmb.sys [2011-05-04 157696]
R3 mrxsmb10;@%systemroot%\system32\wkssvc.dll,-1004; C:\Windows\system32\DRIVERS\mrxsmb10.sys [2011-07-09 287744]
R3 mrxsmb20;@%systemroot%\system32\wkssvc.dll,-1006; C:\Windows\system32\DRIVERS\mrxsmb20.sys [2011-05-04 126464]
R3 NdisTapi;@%systemroot%\system32\rascfg.dll,-32001; C:\Windows\system32\DRIVERS\ndistapi.sys [2009-07-14 24064]
R3 NdisWan;@%systemroot%\system32\rascfg.dll,-32002; C:\Windows\system32\DRIVERS\ndiswan.sys [2009-07-14 164352]
R3 NDProxy;NDIS Proxy; C:\Windows\system32\drivers\NDProxy.sys [2009-07-14 57856]
R3 Ntfs;Ntfs; C:\Windows\system32\drivers\Ntfs.sys [2013-04-12 1653096]
R3 PptpMiniport;@%systemroot%\system32\rascfg.dll,-32006; C:\Windows\system32\DRIVERS\raspptp.sys [2009-07-14 111616]
R3 RasAgileVpn;WAN Miniport (IKEv2); C:\Windows\system32\DRIVERS\AgileVpn.sys [2009-07-14 60416]
R3 Rasl2tp;@%systemroot%\system32\rascfg.dll,-32005; C:\Windows\system32\DRIVERS\rasl2tp.sys [2009-07-14 130048]
R3 RasPppoe;@%systemroot%\system32\rascfg.dll,-32007; C:\Windows\system32\DRIVERS\raspppoe.sys [2009-07-14 92672]
R3 RasSstp;@%systemroot%\system32\sstpsvc.dll,-202; C:\Windows\system32\DRIVERS\rassstp.sys [2009-07-14 83968]
R3 rdpbus;Remote Desktop Device Redirector Bus Driver; C:\Windows\system32\DRIVERS\rdpbus.sys [2009-07-14 24064]
R3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 165376]
R3 RDPWD;RDP Winstation Driver; C:\Windows\system32\drivers\RDPWD.sys [2012-04-28 204800]
R3 Serenum;Sterownik filtru Serenum; C:\Windows\system32\DRIVERS\serenum.sys [2009-07-14 23552]
S0 sacdrv;sacdrv; C:\Windows\system32\DRIVERS\sacdrv.sys [2009-07-14 96320]
S3 1394ohci;Kontroler hosta 1394 zgodny z OHCI; C:\Windows\system32\DRIVERS\1394ohci.sys [2009-07-14 227840]
S3 adp94xx;adp94xx; C:\Windows\system32\DRIVERS\adp94xx.sys [2009-07-14 491088]
S3 adpahci;adpahci; C:\Windows\system32\DRIVERS\adpahci.sys [2009-07-14 339536]
S3 adpu320;adpu320; C:\Windows\system32\DRIVERS\adpu320.sys [2009-07-14 182864]
S3 agp440;Filtr magistrali AGP Intel; C:\Windows\system32\DRIVERS\agp440.sys [2009-07-14 61008]
S3 aliide;aliide; C:\Windows\system32\DRIVERS\aliide.sys [2009-07-14 15440]
S3 amdide;amdide; C:\Windows\system32\DRIVERS\amdide.sys [2009-07-14 15440]
S3 AmdK8;Sterownik procesora AMD K8; C:\Windows\system32\DRIVERS\amdk8.sys [2009-07-14 64512]
S3 AmdPPM;Sterownik procesora AMD; C:\Windows\system32\DRIVERS\amdppm.sys [2009-07-14 60928]
S3 amdsata;amdsata; C:\Windows\system32\DRIVERS\amdsata.sys [2010-05-12 107912]
S3 amdsbs;amdsbs; C:\Windows\system32\DRIVERS\amdsbs.sys [2009-07-14 194128]
S3 AppID;@%systemroot%\system32\appidsvc.dll,-102; C:\Windows\system32\drivers\appid.sys [2009-07-14 61440]
S3 arc;arc; C:\Windows\system32\DRIVERS\arc.sys [2009-07-14 87632]
S3 arcsas;arcsas; C:\Windows\system32\DRIVERS\arcsas.sys [2009-07-14 97856]
S3 b06bdrv;Broadcom NetXtreme II VBD; C:\Windows\system32\DRIVERS\bxvbda.sys [2009-06-10 468480]
S3 Beep;Beep; C:\Windows\system32\drivers\Beep.sys [2009-07-14 6656]
S3 BrFiltLo;Sterownik filtru podrzędnego pamięci masowej USB Brother; C:\Windows\system32\DRIVERS\BrFiltLo.sys [2009-06-10 18432]
S3 BrFiltUp;Sterownik filtru nadrzędnego pamięci masowej USB Brother; C:\Windows\system32\DRIVERS\BrFiltUp.sys [2009-06-10 8704]
S3 Brserid;Sterownik interfejsu portu szeregowego (WDM) MFC firmy Brother; C:\Windows\System32\Drivers\Brserid.sys [2009-07-14 286720]
S3 BrSerWdm;Sterownik szeregowy WDM firmy Brother; C:\Windows\System32\Drivers\BrSerWdm.sys [2009-06-10 47104]
S3 BrUsbMdm;Brother MFC USB Fax Only Modem; C:\Windows\System32\Drivers\BrUsbMdm.sys [2009-06-10 14976]
S3 BrUsbSer;Sterownik szeregowy WDM USB MFC firmy Brother; C:\Windows\System32\Drivers\BrUsbSer.sys [2009-06-10 14720]
S3 CmBatt;Sterownik baterii Microsoft o metodzie kontroli ACPI; C:\Windows\system32\DRIVERS\CmBatt.sys [2009-07-14 17664]
S3 cmdide;cmdide; C:\Windows\system32\DRIVERS\cmdide.sys [2009-07-14 17488]
S3 Compbatt;Compbatt; C:\Windows\system32\DRIVERS\compbatt.sys [2009-07-14 21584]
S3 DXGKrnl;LDDM Graphics Subsystem; C:\Windows\System32\drivers\dxgkrnl.sys [2009-10-02 982600]
S3 ebdrv;Broadcom NetXtreme II 10 GigE VBD; C:\Windows\system32\DRIVERS\evbda.sys [2009-06-10 3286016]
S3 elxstor;elxstor; C:\Windows\system32\DRIVERS\elxstor.sys [2009-07-14 530496]
S3 ErrDev;Błąd sprzętowy — sterownik urządzenia (Microsoft); C:\Windows\system32\DRIVERS\errdev.sys [2009-07-14 9728]
S3 exfat;exFAT File System Driver; C:\Windows\system32\drivers\exfat.sys [2009-07-14 195072]
S3 fastfat;FAT12/16/32 File System Driver; C:\Windows\system32\drivers\fastfat.sys [2009-07-14 204800]
S3 fdc;Sterownik kontrolera stacji dyskietek; C:\Windows\system32\DRIVERS\fdc.sys [2009-07-14 29696]
S3 FileInfo;@%SystemRoot%\system32\drivers\fileinfo.sys,-100; C:\Windows\system32\drivers\fileinfo.sys [2009-07-14 70224]
S3 Filetrace;@%SystemRoot%\system32\drivers\filetrace.sys,-10001; C:\Windows\system32\drivers\filetrace.sys [2009-07-14 34304]
S3 flpydisk;Sterownik stacji dyskietek; C:\Windows\system32\DRIVERS\flpydisk.sys [2009-07-14 24576]
S3 FsDepends;@%SystemRoot%\system32\drivers\fsdepends.sys,-10001; C:\Windows\System32\drivers\FsDepends.sys [2009-07-14 55376]
S3 gagp30kx;Filtr rodzajowy AGPv3.0 firmy Microsoft dla platform procesora K8; C:\Windows\system32\DRIVERS\gagp30kx.sys [2009-07-14 65088]
S3 HDAudBus;Sterownik magistrali UAA firmy Microsoft dla standardu High Definition Audio; C:\Windows\system32\DRIVERS\HDAudBus.sys [2009-07-14 122368]
S3 HidBatt;Sterownik baterii UPS HID; C:\Windows\system32\DRIVERS\HidBatt.sys [2009-07-14 26624]
S3 i8042prt;Sterownik portu klawiatury i8042 i myszy PS/2; C:\Windows\system32\DRIVERS\i8042prt.sys [2009-07-14 105472]
S3 iaStorV;iaStorV; C:\Windows\system32\DRIVERS\iaStorV.sys [2010-05-12 410504]
S3 iirsp;iirsp; C:\Windows\system32\DRIVERS\iirsp.sys [2009-07-14 44112]
S3 intelide;intelide; C:\Windows\system32\DRIVERS\intelide.sys [2009-07-14 16960]
S3 ioatdma;Urządzenie Intel(R) QuickData Technology; C:\Windows\System32\Drivers\qd260x64.sys [2009-06-10 35328]
S3 IpFilterDriver;@%systemroot%\system32\rascfg.dll,-32013; C:\Windows\system32\DRIVERS\ipfltdrv.sys [2009-07-14 82944]
S3 IPNAT;IP Network Address Translator; C:\Windows\System32\drivers\ipnat.sys [2009-07-14 116224]
S3 isapnp;isapnp; C:\Windows\system32\DRIVERS\isapnp.sys [2009-07-14 20544]
S3 iScsiPrt;Sterownik portu iSCSI; C:\Windows\system32\DRIVERS\msiscsi.sys [2009-07-14 224832]
S3 ksthunk;Kernel Streaming Thunks; C:\Windows\system32\drivers\ksthunk.sys [2009-07-14 20992]
S3 LSI_FC;LSI_FC; C:\Windows\system32\DRIVERS\lsi_fc.sys [2009-07-14 114752]
S3 LSI_SAS;LSI_SAS; C:\Windows\system32\DRIVERS\lsi_sas.sys [2009-07-14 106560]
S3 LSI_SAS2;LSI_SAS2; C:\Windows\system32\DRIVERS\lsi_sas2.sys [2009-07-14 65600]
S3 LSI_SCSI;LSI_SCSI; C:\Windows\system32\DRIVERS\lsi_scsi.sys [2009-07-14 115776]
S3 megasas;megasas; C:\Windows\system32\DRIVERS\megasas.sys [2009-07-14 35392]
S3 MegaSR;MegaSR; C:\Windows\system32\DRIVERS\MegaSR.sys [2009-07-14 284736]
S3 Modem;Modem; C:\Windows\system32\drivers\modem.sys [2009-07-14 40448]
S3 mpio;mpio; C:\Windows\system32\DRIVERS\mpio.sys [2009-07-14 155216]
S3 msahci;msahci; C:\Windows\system32\DRIVERS\msahci.sys [2009-07-14 30272]
S3 msdsm;msdsm; C:\Windows\system32\DRIVERS\msdsm.sys [2009-07-14 140352]
S3 mshidkmdf;@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100; C:\Windows\System32\drivers\mshidkmdf.sys [2009-07-14 8192]
S3 MsRPC;MsRPC; C:\Windows\system32\drivers\MsRPC.sys [2009-07-14 367168]
S3 MTConfig;Microsoft Input Configuration Driver; C:\Windows\system32\DRIVERS\MTConfig.sys [2009-07-14 15360]
S3 NdisCap;NDIS Capture LightWeight Filter; C:\Windows\system32\DRIVERS\ndiscap.sys [2009-07-14 35328]
S3 Ndisuio;NDIS Usermode I/O Protocol; C:\Windows\system32\DRIVERS\ndisuio.sys [2009-07-14 56320]
S3 nfrd960;nfrd960; C:\Windows\system32\DRIVERS\nfrd960.sys [2009-07-14 51264]
S3 nv_agp;Filtr magistrali AGP NVIDIA nForce; C:\Windows\system32\DRIVERS\nv_agp.sys [2009-07-14 122960]
S3 nvraid;nvraid; C:\Windows\system32\DRIVERS\nvraid.sys [2010-05-12 148352]
S3 nvstor;nvstor; C:\Windows\system32\DRIVERS\nvstor.sys [2010-05-12 166280]
S3 ohci1394;Kontroler hosta 1394 zgodny z OHCI (starszy); C:\Windows\system32\DRIVERS\ohci1394.sys [2009-07-14 72832]
S3 Parport;Sterownik portu równoległego; C:\Windows\system32\DRIVERS\parport.sys [2009-07-14 97280]
S3 pcmcia;pcmcia; C:\Windows\system32\DRIVERS\pcmcia.sys [2009-07-14 220752]
S3 Processor;Sterownik procesora; C:\Windows\system32\DRIVERS\processr.sys [2009-07-14 60416]
S3 ql2300;ql2300; C:\Windows\system32\DRIVERS\ql2300.sys [2009-07-14 1524816]
S3 ql40xx;ql40xx; C:\Windows\system32\DRIVERS\ql40xx.sys [2009-07-14 128592]
S3 RasAcd;Remote Access Auto Connection Driver; C:\Windows\System32\DRIVERS\rasacd.sys [2009-07-14 14848]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 6656]
S3 sbp2port;sbp2port; C:\Windows\system32\DRIVERS\sbp2port.sys [2009-07-14 104016]
S3 scfilter;@%SystemRoot%\System32\drivers\scfilter.sys,-11; C:\Windows\System32\DRIVERS\scfilter.sys [2009-07-14 29696]
S3 sermouse;Sterownik myszy szeregowej; C:\Windows\system32\DRIVERS\sermouse.sys [2009-07-14 26624]
S3 sffdisk;Sterownik SFF Storage Class Driver; C:\Windows\system32\DRIVERS\sffdisk.sys [2009-07-14 14336]
S3 sffp_mmc;SFF Storage Protocol Driver dla MMC; C:\Windows\system32\DRIVERS\sffp_mmc.sys [2009-07-14 13824]
S3 sffp_sd;Sterownik SFF Storage Protocol Driver dla SDBus; C:\Windows\system32\DRIVERS\sffp_sd.sys [2009-07-14 14336]
S3 sfloppy;Stacja dyskietek dużej pojemności; C:\Windows\system32\DRIVERS\sfloppy.sys [2009-07-14 16896]
S3 SiSRaid2;SiSRaid2; C:\Windows\system32\DRIVERS\SiSRaid2.sys [2009-07-14 43584]
S3 SiSRaid4;SiSRaid4; C:\Windows\system32\DRIVERS\sisraid4.sys [2009-07-14 80464]
S3 Smb;@%SystemRoot%\system32\tcpipcfg.dll,-50005; C:\Windows\system32\DRIVERS\smb.sys [2009-07-14 93184]
S4 cdfs;CD/DVD File System Reader; C:\Windows\system32\DRIVERS\cdfs.sys [2009-07-14 92160]
S4 crcdisk;Sterownik filtru Crcdisk; C:\Windows\system32\DRIVERS\crcdisk.sys [2009-07-14 24144]
S4 RsFx0150;RsFx0150 Driver; C:\Windows\system32\DRIVERS\RsFx0150.sys [2010-04-03 313696]
S4 RsFx0151;RsFx0151 Driver; C:\Windows\system32\DRIVERS\RsFx0151.sys [2011-06-17 313696]
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Kontrola RSIT po odvirování
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Kontrola RSIT po odvirování
doplněk :
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ADWS;@%SystemRoot%\ADWS\adwsres.dll,-1; C:\Windows\ADWS\Microsoft.ActiveDirectory.WebServices.exe [2009-07-14 479232]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [2013-05-14 4937264]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [2013-04-18 283136]
R2 BFE;@%SystemRoot%\system32\bfe.dll,-1001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 CertSvc;@%systemroot%\system32\certocm.dll,-347; C:\Windows\system32\certsrv.exe [2009-07-14 746496]
R2 CryptSvc;@%SystemRoot%\system32\cryptsvc.dll,-1001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 DataCollectorSvc;Windows SBS Manager; C:\Program Files\Windows Small Business Server\Bin\DataCollectorSvc.exe [2010-11-08 72096]
R2 DcomLaunch;@oleres.dll,-5012; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 Dfs;@%systemroot%\system32\dfssvc.exe,-101; C:\Windows\system32\dfssvc.exe [2009-07-14 377344]
R2 DFSR;@dfsrress.dll,-101; C:\Windows\system32\DFSRs.exe [2009-07-14 4502528]
R2 Dhcp;@%SystemRoot%\system32\dhcpcore.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 DNS;@%systemroot%\system32\dns.exe,-49157; C:\Windows\system32\dns.exe [2011-12-27 696320]
R2 Dnscache;@%SystemRoot%\System32\dnsapi.dll,-101; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 DPS;@%systemroot%\system32\dps.dll,-500; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 eventlog;@%SystemRoot%\system32\wevtsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 EventSystem;@comres.dll,-2450; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 gpsvc;@gpapi.dll,-112; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 IAS;@%SystemRoot%\system32\ias.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 IISADMIN;@%windir%\system32\inetsrv\iisres.dll,-30007; C:\Windows\system32\inetsrv\inetinfo.exe [2009-07-14 15360]
R2 IKEEXT;@%SystemRoot%\system32\ikeext.dll,-501; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 iphlpsvc;@%SystemRoot%\system32\iphlpsvc.dll,-500; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 IsmServ;@%SystemRoot%\System32\ismserv.exe,-1; C:\Windows\System32\ismserv.exe [2009-07-14 59392]
R2 kdc;@%SystemRoot%\System32\kdcsvc.dll,-1; C:\Windows\System32\lsass.exe [2011-11-17 31232]
R2 LanmanServer;@%systemroot%\system32\srvsvc.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 LanmanWorkstation;@%systemroot%\system32\wkssvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 lmhosts;@%SystemRoot%\system32\lmhsvc.dll,-101; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 MpsSvc;Zapora systemu Windows; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 MSDTC;@comres.dll,-2797; C:\Windows\System32\msdtc.exe [2009-07-14 141824]
R2 MSMQ;@mqutil.dll,-6102; C:\Windows\system32\mqsvc.exe [2009-07-14 9216]
R2 MSSQL$INSERTGT;SQL Server (INSERTGT); C:\Program Files\Microsoft SQL Server\MSSQL10_50.INSERTGT\MSSQL\Binn\sqlservr.exe [2011-06-17 62111072]
R2 MSSQL$MICROSOFT##SSEE;Windows Internal Database (MICROSOFT##SSEE); C:\Windows\SYSMSI\SSEE\MSSQL.2005\MSSQL\Binn\sqlservr.exe [2008-11-25 39626592]
R2 MSSQL$SBSMONITORING;SQL Server (SBSMONITORING); C:\Program Files\Microsoft SQL Server\MSSQL10_50.SBSMONITORING\MSSQL\Binn\sqlservr.exe [2010-04-03 61913952]
R2 MSSQL$SHAREPOINT;SQL Server (SHAREPOINT); C:\Program Files\Microsoft SQL Server\MSSQL10_50.SHAREPOINT\MSSQL\Binn\sqlservr.exe [2010-04-03 61913952]
R2 Netlogon;@%SystemRoot%\System32\netlogon.dll,-102; C:\Windows\system32\lsass.exe [2011-11-17 31232]
R2 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
R2 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
R2 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
R2 NetTcpPortSharing;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8201; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
R2 NlaSvc;@%SystemRoot%\System32\nlasvc.dll,-1; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 nsi;@%SystemRoot%\system32\nsisvc.dll,-200; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 NTDS;@%SystemRoot%\System32\ntdsmsg.dll,-1; C:\Windows\System32\lsass.exe [2011-11-17 31232]
R2 NtFrs;Usługa replikacji plików; C:\Windows\system32\ntfrs.exe [2009-07-14 1020416]
R2 PlugPlay;@%SystemRoot%\system32\umpnpmgr.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 Power;@%SystemRoot%\system32\umpo.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 ProfSvc;@%systemroot%\system32\profsvc.dll,-300; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 RemoteRegistry;@regsvc.dll,-1; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 RpcEptMapper;@%windir%\system32\RpcEpMap.dll,-1001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 RpcSs;@oleres.dll,-5010; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 SamSs;@%SystemRoot%\system32\samsrv.dll,-1; C:\Windows\system32\lsass.exe [2011-11-17 31232]
R2 Schedule;@%SystemRoot%\system32\schedsvc.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 SENS;@%SystemRoot%\system32\Sens.dll,-200; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 ShellHWDetection;@%SystemRoot%\System32\shsvcs.dll,-12288; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 SPAdminV4;SharePoint 2010 Administration; C:\Program Files\Common Files\Microsoft Shared\Web Server Extensions\14\BIN\WSSADMIN.EXE [2010-03-26 15792]
R2 Spooler;@%systemroot%\system32\spoolsv.exe,-1; C:\Windows\System32\spoolsv.exe [2010-08-21 558592]
R3 AeLookupSvc;@%SystemRoot%\system32\aelupsvc.dll,-1; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 BITS;@%SystemRoot%\system32\qmgr.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R3 CertPropSvc;@%SystemRoot%\System32\certprop.dll,-11; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 COMSysApp;@comres.dll,-947; C:\Windows\system32\dllhost.exe [2009-07-14 9728]
R3 MSSQLFDLauncher$SBSMONITORING;SQL Full-text Filter Daemon Launcher (SBSMONITORING); C:\Program Files\Microsoft SQL Server\MSSQL10_50.SBSMONITORING\MSSQL\Binn\fdlauncher.exe [2010-04-03 32096]
R3 MSSQLFDLauncher$SHAREPOINT;SQL Full-text Filter Daemon Launcher (SHAREPOINT); C:\Program Files\Microsoft SQL Server\MSSQL10_50.SHAREPOINT\MSSQL\Binn\fdlauncher.exe [2010-04-03 32096]
R3 Netman;@%SystemRoot%\system32\netman.dll,-109; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R3 netprofm;@%SystemRoot%\system32\netprofm.dll,-202; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R3 PolicyAgent;@%SystemRoot%\System32\polstore.dll,-5010; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 ProtectedStorage;@%systemroot%\system32\psbase.dll,-300; C:\Windows\system32\lsass.exe [2011-11-17 31232]
R3 RPCHTTPLBS;@%systemroot%\system32\RpcProxy\RpcProxy.dll,-2; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 SessionEnv;@%SystemRoot%\System32\SessEnv.dll,-1026; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 DHCPServer;@%SystemRoot%\system32\dhcpssvc.dll,-200; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 sppsvc;@%SystemRoot%\system32\sppsvc.exe,-101; C:\Windows\system32\sppsvc.exe [2010-07-09 3524608]
S3 ALG;@%SystemRoot%\system32\Alg.exe,-112; C:\Windows\System32\alg.exe [2009-07-14 79360]
S3 AppIDSvc;@%systemroot%\system32\appidsvc.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 Appinfo;@%systemroot%\system32\appinfo.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;„Usługa stanu ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 AudioEndpointBuilder;@%SystemRoot%\system32\audiosrv.dll,-204; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 AudioSrv;@%SystemRoot%\system32\audiosrv.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 defragsvc;@%SystemRoot%\system32\defragsvc.dll,-101; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 dot3svc;@%systemroot%\system32\dot3svc.dll,-1102; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 EapHost;@%systemroot%\system32\eapsvc.dll,-1; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 EFS;@%SystemRoot%\system32\efssvc.dll,-100; C:\Windows\System32\lsass.exe [2011-11-17 31232]
S3 FCRegSvc;@%SystemRoot%\system32\FCRegSvc.dll,-5000; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 fdPHost;@%systemroot%\system32\fdPHost.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 FDResPub;@%systemroot%\system32\fdrespub.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2009-06-10 42840]
S3 hidserv;@%SystemRoot%\System32\hidserv.dll,-101; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 hkmsvc;@%SystemRoot%\system32\kmsvc.dll,-6; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 idsvc;@%systemroot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8193; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe [2009-06-10 856384]
S3 KeyIso;@keyiso.dll,-100; C:\Windows\system32\lsass.exe [2011-11-17 31232]
S3 KtmRm;@comres.dll,-2946; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 lltdsvc;@%SystemRoot%\system32\lltdres.dll,-1; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 MMCSS;@%systemroot%\system32\mmcss.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 msftesql-Exchange;Microsoft Search (Exchange); C:\Program Files\Microsoft\Exchange Server\V14\Bin\msftesql.exe [2010-07-31 183728]
S3 MSiSCSI;@%SystemRoot%\system32\iscsidsc.dll,-5000; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 msiserver;@%SystemRoot%\system32\msimsg.dll,-27; C:\Windows\system32\msiexec.exe [2009-07-14 127488]
S3 napagent;@%SystemRoot%\system32\qagentrt.dll,-6; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 PerfHost;@%systemroot%\sysWow64\perfhost.exe,-2; C:\Windows\SysWow64\perfhost.exe [2009-07-14 20992]
S3 pla;@%systemroot%\system32\pla.dll,-500; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 RasAuto;@%Systemroot%\system32\rasauto.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 RasMan;@%Systemroot%\system32\rasmans.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Replikator;Replikator; C:\Program Files (x86)\inSolutions\inKontrahent\Replikator.exe [2011-08-25 471040]
S3 RpcLocator;@%systemroot%\system32\Locator.exe,-2; C:\Windows\system32\locator.exe [2009-07-14 10240]
S3 rqs;@%Systemroot%\system32\rqs.exe,-200; C:\Windows\system32\rqs.exe [2009-07-14 41472]
S3 RSoPProv;@gpapi.dll,-114; C:\Windows\system32\RSoPProv.exe [2009-07-14 91648]
S3 sacsvr;@%systemroot%\system32\sacsvr.dll,-500; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SCardSvr;@%SystemRoot%\System32\SCardSvr.dll,-1; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 SCPolicySvc;@%SystemRoot%\System32\certprop.dll,-13; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 seclogon;@%SystemRoot%\system32\seclogon.dll,-7001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 SNMPTRAP;@%SystemRoot%\system32\snmptrap.exe,-3; C:\Windows\System32\snmptrap.exe [2009-07-14 14336]
S3 sppuinotify;@%SystemRoot%\system32\sppuinotify.dll,-103; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S4 Browser;@%systemroot%\system32\browser.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 c2wts;@%ProgramFiles%\Windows Identity Foundation\v3.5\c2wtsres.dll,-1000; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [2010-02-03 15768]
S4 clr_optimization_v2.0.50727_32;Microsoft .NET Framework NGEN v2.0.50727_X86; C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2009-06-10 66384]
S4 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-06-10 89920]
S4 ddnsclient;Dynamiczny klient DNS; C:\Program Files\Windows Small Business Server\Bin\DDnsClient.exe [2010-11-08 48544]
S4 IPBusEnum;@%systemroot%\system32\IPBusEnum.dll,-102; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S4 MSExchangeAB;Microsoft Exchange Address Book; C:\Program Files\Microsoft\Exchange Server\V14\bin\Microsoft.Exchange.AddressBook.Service.exe [2012-11-30 151144]
S4 MSExchangeADTopology;Microsoft Exchange Active Directory Topology; C:\Program Files\Microsoft\Exchange Server\V14\Bin\MSExchangeADTopologyService.exe [2012-11-30 113720]
S4 MSExchangeAntispamUpdate;Microsoft Exchange Anti-spam Update; C:\Program Files\Microsoft\Exchange Server\V14\Bin\Microsoft.Exchange.AntispamUpdateSvc.exe [2012-11-30 44640]
S4 MSExchangeEdgeSync;Microsoft Exchange EdgeSync; C:\Program Files\Microsoft\Exchange Server\V14\Bin\Microsoft.Exchange.EdgeSyncSvc.exe [2012-11-30 114240]
S4 MSExchangeFBA;Microsoft Exchange Forms-Based Authentication service; C:\Program Files\Microsoft\Exchange Server\V14\Bin\ExFBA.exe [2012-11-30 110560]
S4 MSExchangeFDS;Microsoft Exchange File Distribution; C:\Program Files\Microsoft\Exchange Server\V14\Bin\MSExchangeFDS.exe [2012-11-30 110080]
S4 MSExchangeImap4;Microsoft Exchange IMAP4; C:\Program Files\Microsoft\Exchange Server\V14\ClientAccess\PopImap\Microsoft.Exchange.Imap4Service.exe [2012-11-30 28752]
S4 MSExchangeIS;Microsoft Exchange Information Store; C:\Program Files\Microsoft\Exchange Server\V14\bin\store.exe [2012-11-30 6906848]
S4 MSExchangeMailboxAssistants;Microsoft Exchange Mailbox Assistants; C:\Program Files\Microsoft\Exchange Server\V14\Bin\MSExchangeMailboxAssistants.exe [2012-11-30 765512]
S4 MSExchangeMailboxReplication;Microsoft Exchange Mailbox Replication; C:\Program Files\Microsoft\Exchange Server\V14\Bin\MSExchangeMailboxReplication.exe [2012-11-30 27200]
S4 MSExchangeMailSubmission;Microsoft Exchange Mail Submission; C:\Program Files\Microsoft\Exchange Server\V14\Bin\MSExchangeMailSubmission.exe [2012-11-30 118320]
S4 MSExchangeMonitoring;Microsoft Exchange Monitoring; C:\Program Files\Microsoft\Exchange Server\V14\Bin\Microsoft.Exchange.Monitoring.exe [2012-11-30 73296]
S4 MSExchangePop3;Microsoft Exchange POP3; C:\Program Files\Microsoft\Exchange Server\V14\ClientAccess\PopImap\Microsoft.Exchange.Pop3Service.exe [2012-11-30 28744]
S4 MSExchangeProtectedServiceHost;Microsoft Exchange Protected Service Host; C:\Program Files\Microsoft\Exchange Server\V14\bin\Microsoft.Exchange.ProtectedServiceHost.exe [2012-11-30 32368]
S4 MSExchangeRepl;Microsoft Exchange Replication; C:\Program Files\Microsoft\Exchange Server\V14\bin\msexchangerepl.exe [2012-11-30 69128]
S4 MSExchangeRPC;Microsoft Exchange RPC Client Access; C:\Program Files\Microsoft\Exchange Server\V14\bin\Microsoft.Exchange.RpcClientAccess.Service.exe [2012-11-30 89728]
S4 MSExchangeSA;Microsoft Exchange System Attendant; C:\Program Files\Microsoft\Exchange Server\V14\bin\mad.exe [2012-11-30 1368536]
S4 MSExchangeSearch;Microsoft Exchange Search Indexer; C:\Program Files\Microsoft\Exchange Server\V14\Bin\Microsoft.Exchange.Search.ExSearch.exe [2012-11-30 413272]
S4 MSExchangeServiceHost;Microsoft Exchange Service Host; C:\Program Files\Microsoft\Exchange Server\V14\bin\Microsoft.Exchange.ServiceHost.exe [2012-11-30 35400]
S4 MSExchangeThrottling;Microsoft Exchange Throttling; C:\Program Files\Microsoft\Exchange Server\V14\Bin\MSExchangeThrottling.exe [2012-11-30 48664]
S4 MSExchangeTransport;Microsoft Exchange Transport; C:\Program Files\Microsoft\Exchange Server\V14\Bin\MSExchangeTransport.exe [2012-11-30 81432]
S4 MSExchangeTransportLogSearch;Microsoft Exchange Transport Log Search; C:\Program Files\Microsoft\Exchange Server\V14\Bin\MSExchangeTransportLogSearch.exe [2012-11-30 212536]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service; C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2010-04-03 59744]
S4 Pop3Connector;Łącznik POP3 serwera Windows SBS; C:\Program Files\Windows Small Business Server\Bin\Pop3Connector.exe [2010-11-08 240032]
S4 RemoteAccess;@%Systemroot%\system32\mprdim.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
-----------------EOF-----------------
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ADWS;@%SystemRoot%\ADWS\adwsres.dll,-1; C:\Windows\ADWS\Microsoft.ActiveDirectory.WebServices.exe [2009-07-14 479232]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [2013-05-14 4937264]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [2013-04-18 283136]
R2 BFE;@%SystemRoot%\system32\bfe.dll,-1001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 CertSvc;@%systemroot%\system32\certocm.dll,-347; C:\Windows\system32\certsrv.exe [2009-07-14 746496]
R2 CryptSvc;@%SystemRoot%\system32\cryptsvc.dll,-1001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 DataCollectorSvc;Windows SBS Manager; C:\Program Files\Windows Small Business Server\Bin\DataCollectorSvc.exe [2010-11-08 72096]
R2 DcomLaunch;@oleres.dll,-5012; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 Dfs;@%systemroot%\system32\dfssvc.exe,-101; C:\Windows\system32\dfssvc.exe [2009-07-14 377344]
R2 DFSR;@dfsrress.dll,-101; C:\Windows\system32\DFSRs.exe [2009-07-14 4502528]
R2 Dhcp;@%SystemRoot%\system32\dhcpcore.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 DNS;@%systemroot%\system32\dns.exe,-49157; C:\Windows\system32\dns.exe [2011-12-27 696320]
R2 Dnscache;@%SystemRoot%\System32\dnsapi.dll,-101; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 DPS;@%systemroot%\system32\dps.dll,-500; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 eventlog;@%SystemRoot%\system32\wevtsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 EventSystem;@comres.dll,-2450; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 gpsvc;@gpapi.dll,-112; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 IAS;@%SystemRoot%\system32\ias.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 IISADMIN;@%windir%\system32\inetsrv\iisres.dll,-30007; C:\Windows\system32\inetsrv\inetinfo.exe [2009-07-14 15360]
R2 IKEEXT;@%SystemRoot%\system32\ikeext.dll,-501; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 iphlpsvc;@%SystemRoot%\system32\iphlpsvc.dll,-500; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 IsmServ;@%SystemRoot%\System32\ismserv.exe,-1; C:\Windows\System32\ismserv.exe [2009-07-14 59392]
R2 kdc;@%SystemRoot%\System32\kdcsvc.dll,-1; C:\Windows\System32\lsass.exe [2011-11-17 31232]
R2 LanmanServer;@%systemroot%\system32\srvsvc.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 LanmanWorkstation;@%systemroot%\system32\wkssvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 lmhosts;@%SystemRoot%\system32\lmhsvc.dll,-101; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 MpsSvc;Zapora systemu Windows; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 MSDTC;@comres.dll,-2797; C:\Windows\System32\msdtc.exe [2009-07-14 141824]
R2 MSMQ;@mqutil.dll,-6102; C:\Windows\system32\mqsvc.exe [2009-07-14 9216]
R2 MSSQL$INSERTGT;SQL Server (INSERTGT); C:\Program Files\Microsoft SQL Server\MSSQL10_50.INSERTGT\MSSQL\Binn\sqlservr.exe [2011-06-17 62111072]
R2 MSSQL$MICROSOFT##SSEE;Windows Internal Database (MICROSOFT##SSEE); C:\Windows\SYSMSI\SSEE\MSSQL.2005\MSSQL\Binn\sqlservr.exe [2008-11-25 39626592]
R2 MSSQL$SBSMONITORING;SQL Server (SBSMONITORING); C:\Program Files\Microsoft SQL Server\MSSQL10_50.SBSMONITORING\MSSQL\Binn\sqlservr.exe [2010-04-03 61913952]
R2 MSSQL$SHAREPOINT;SQL Server (SHAREPOINT); C:\Program Files\Microsoft SQL Server\MSSQL10_50.SHAREPOINT\MSSQL\Binn\sqlservr.exe [2010-04-03 61913952]
R2 Netlogon;@%SystemRoot%\System32\netlogon.dll,-102; C:\Windows\system32\lsass.exe [2011-11-17 31232]
R2 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
R2 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
R2 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
R2 NetTcpPortSharing;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8201; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
R2 NlaSvc;@%SystemRoot%\System32\nlasvc.dll,-1; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 nsi;@%SystemRoot%\system32\nsisvc.dll,-200; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 NTDS;@%SystemRoot%\System32\ntdsmsg.dll,-1; C:\Windows\System32\lsass.exe [2011-11-17 31232]
R2 NtFrs;Usługa replikacji plików; C:\Windows\system32\ntfrs.exe [2009-07-14 1020416]
R2 PlugPlay;@%SystemRoot%\system32\umpnpmgr.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 Power;@%SystemRoot%\system32\umpo.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 ProfSvc;@%systemroot%\system32\profsvc.dll,-300; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 RemoteRegistry;@regsvc.dll,-1; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 RpcEptMapper;@%windir%\system32\RpcEpMap.dll,-1001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 RpcSs;@oleres.dll,-5010; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 SamSs;@%SystemRoot%\system32\samsrv.dll,-1; C:\Windows\system32\lsass.exe [2011-11-17 31232]
R2 Schedule;@%SystemRoot%\system32\schedsvc.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 SENS;@%SystemRoot%\system32\Sens.dll,-200; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 ShellHWDetection;@%SystemRoot%\System32\shsvcs.dll,-12288; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 SPAdminV4;SharePoint 2010 Administration; C:\Program Files\Common Files\Microsoft Shared\Web Server Extensions\14\BIN\WSSADMIN.EXE [2010-03-26 15792]
R2 Spooler;@%systemroot%\system32\spoolsv.exe,-1; C:\Windows\System32\spoolsv.exe [2010-08-21 558592]
R3 AeLookupSvc;@%SystemRoot%\system32\aelupsvc.dll,-1; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 BITS;@%SystemRoot%\system32\qmgr.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R3 CertPropSvc;@%SystemRoot%\System32\certprop.dll,-11; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 COMSysApp;@comres.dll,-947; C:\Windows\system32\dllhost.exe [2009-07-14 9728]
R3 MSSQLFDLauncher$SBSMONITORING;SQL Full-text Filter Daemon Launcher (SBSMONITORING); C:\Program Files\Microsoft SQL Server\MSSQL10_50.SBSMONITORING\MSSQL\Binn\fdlauncher.exe [2010-04-03 32096]
R3 MSSQLFDLauncher$SHAREPOINT;SQL Full-text Filter Daemon Launcher (SHAREPOINT); C:\Program Files\Microsoft SQL Server\MSSQL10_50.SHAREPOINT\MSSQL\Binn\fdlauncher.exe [2010-04-03 32096]
R3 Netman;@%SystemRoot%\system32\netman.dll,-109; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R3 netprofm;@%SystemRoot%\system32\netprofm.dll,-202; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R3 PolicyAgent;@%SystemRoot%\System32\polstore.dll,-5010; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 ProtectedStorage;@%systemroot%\system32\psbase.dll,-300; C:\Windows\system32\lsass.exe [2011-11-17 31232]
R3 RPCHTTPLBS;@%systemroot%\system32\RpcProxy\RpcProxy.dll,-2; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 SessionEnv;@%SystemRoot%\System32\SessEnv.dll,-1026; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 DHCPServer;@%SystemRoot%\system32\dhcpssvc.dll,-200; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 sppsvc;@%SystemRoot%\system32\sppsvc.exe,-101; C:\Windows\system32\sppsvc.exe [2010-07-09 3524608]
S3 ALG;@%SystemRoot%\system32\Alg.exe,-112; C:\Windows\System32\alg.exe [2009-07-14 79360]
S3 AppIDSvc;@%systemroot%\system32\appidsvc.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 Appinfo;@%systemroot%\system32\appinfo.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;„Usługa stanu ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 AudioEndpointBuilder;@%SystemRoot%\system32\audiosrv.dll,-204; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 AudioSrv;@%SystemRoot%\system32\audiosrv.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 defragsvc;@%SystemRoot%\system32\defragsvc.dll,-101; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 dot3svc;@%systemroot%\system32\dot3svc.dll,-1102; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 EapHost;@%systemroot%\system32\eapsvc.dll,-1; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 EFS;@%SystemRoot%\system32\efssvc.dll,-100; C:\Windows\System32\lsass.exe [2011-11-17 31232]
S3 FCRegSvc;@%SystemRoot%\system32\FCRegSvc.dll,-5000; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 fdPHost;@%systemroot%\system32\fdPHost.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 FDResPub;@%systemroot%\system32\fdrespub.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2009-06-10 42840]
S3 hidserv;@%SystemRoot%\System32\hidserv.dll,-101; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 hkmsvc;@%SystemRoot%\system32\kmsvc.dll,-6; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 idsvc;@%systemroot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8193; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe [2009-06-10 856384]
S3 KeyIso;@keyiso.dll,-100; C:\Windows\system32\lsass.exe [2011-11-17 31232]
S3 KtmRm;@comres.dll,-2946; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 lltdsvc;@%SystemRoot%\system32\lltdres.dll,-1; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 MMCSS;@%systemroot%\system32\mmcss.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 msftesql-Exchange;Microsoft Search (Exchange); C:\Program Files\Microsoft\Exchange Server\V14\Bin\msftesql.exe [2010-07-31 183728]
S3 MSiSCSI;@%SystemRoot%\system32\iscsidsc.dll,-5000; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 msiserver;@%SystemRoot%\system32\msimsg.dll,-27; C:\Windows\system32\msiexec.exe [2009-07-14 127488]
S3 napagent;@%SystemRoot%\system32\qagentrt.dll,-6; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 PerfHost;@%systemroot%\sysWow64\perfhost.exe,-2; C:\Windows\SysWow64\perfhost.exe [2009-07-14 20992]
S3 pla;@%systemroot%\system32\pla.dll,-500; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 RasAuto;@%Systemroot%\system32\rasauto.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 RasMan;@%Systemroot%\system32\rasmans.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Replikator;Replikator; C:\Program Files (x86)\inSolutions\inKontrahent\Replikator.exe [2011-08-25 471040]
S3 RpcLocator;@%systemroot%\system32\Locator.exe,-2; C:\Windows\system32\locator.exe [2009-07-14 10240]
S3 rqs;@%Systemroot%\system32\rqs.exe,-200; C:\Windows\system32\rqs.exe [2009-07-14 41472]
S3 RSoPProv;@gpapi.dll,-114; C:\Windows\system32\RSoPProv.exe [2009-07-14 91648]
S3 sacsvr;@%systemroot%\system32\sacsvr.dll,-500; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SCardSvr;@%SystemRoot%\System32\SCardSvr.dll,-1; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 SCPolicySvc;@%SystemRoot%\System32\certprop.dll,-13; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 seclogon;@%SystemRoot%\system32\seclogon.dll,-7001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 SNMPTRAP;@%SystemRoot%\system32\snmptrap.exe,-3; C:\Windows\System32\snmptrap.exe [2009-07-14 14336]
S3 sppuinotify;@%SystemRoot%\system32\sppuinotify.dll,-103; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S4 Browser;@%systemroot%\system32\browser.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 c2wts;@%ProgramFiles%\Windows Identity Foundation\v3.5\c2wtsres.dll,-1000; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [2010-02-03 15768]
S4 clr_optimization_v2.0.50727_32;Microsoft .NET Framework NGEN v2.0.50727_X86; C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2009-06-10 66384]
S4 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-06-10 89920]
S4 ddnsclient;Dynamiczny klient DNS; C:\Program Files\Windows Small Business Server\Bin\DDnsClient.exe [2010-11-08 48544]
S4 IPBusEnum;@%systemroot%\system32\IPBusEnum.dll,-102; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S4 MSExchangeAB;Microsoft Exchange Address Book; C:\Program Files\Microsoft\Exchange Server\V14\bin\Microsoft.Exchange.AddressBook.Service.exe [2012-11-30 151144]
S4 MSExchangeADTopology;Microsoft Exchange Active Directory Topology; C:\Program Files\Microsoft\Exchange Server\V14\Bin\MSExchangeADTopologyService.exe [2012-11-30 113720]
S4 MSExchangeAntispamUpdate;Microsoft Exchange Anti-spam Update; C:\Program Files\Microsoft\Exchange Server\V14\Bin\Microsoft.Exchange.AntispamUpdateSvc.exe [2012-11-30 44640]
S4 MSExchangeEdgeSync;Microsoft Exchange EdgeSync; C:\Program Files\Microsoft\Exchange Server\V14\Bin\Microsoft.Exchange.EdgeSyncSvc.exe [2012-11-30 114240]
S4 MSExchangeFBA;Microsoft Exchange Forms-Based Authentication service; C:\Program Files\Microsoft\Exchange Server\V14\Bin\ExFBA.exe [2012-11-30 110560]
S4 MSExchangeFDS;Microsoft Exchange File Distribution; C:\Program Files\Microsoft\Exchange Server\V14\Bin\MSExchangeFDS.exe [2012-11-30 110080]
S4 MSExchangeImap4;Microsoft Exchange IMAP4; C:\Program Files\Microsoft\Exchange Server\V14\ClientAccess\PopImap\Microsoft.Exchange.Imap4Service.exe [2012-11-30 28752]
S4 MSExchangeIS;Microsoft Exchange Information Store; C:\Program Files\Microsoft\Exchange Server\V14\bin\store.exe [2012-11-30 6906848]
S4 MSExchangeMailboxAssistants;Microsoft Exchange Mailbox Assistants; C:\Program Files\Microsoft\Exchange Server\V14\Bin\MSExchangeMailboxAssistants.exe [2012-11-30 765512]
S4 MSExchangeMailboxReplication;Microsoft Exchange Mailbox Replication; C:\Program Files\Microsoft\Exchange Server\V14\Bin\MSExchangeMailboxReplication.exe [2012-11-30 27200]
S4 MSExchangeMailSubmission;Microsoft Exchange Mail Submission; C:\Program Files\Microsoft\Exchange Server\V14\Bin\MSExchangeMailSubmission.exe [2012-11-30 118320]
S4 MSExchangeMonitoring;Microsoft Exchange Monitoring; C:\Program Files\Microsoft\Exchange Server\V14\Bin\Microsoft.Exchange.Monitoring.exe [2012-11-30 73296]
S4 MSExchangePop3;Microsoft Exchange POP3; C:\Program Files\Microsoft\Exchange Server\V14\ClientAccess\PopImap\Microsoft.Exchange.Pop3Service.exe [2012-11-30 28744]
S4 MSExchangeProtectedServiceHost;Microsoft Exchange Protected Service Host; C:\Program Files\Microsoft\Exchange Server\V14\bin\Microsoft.Exchange.ProtectedServiceHost.exe [2012-11-30 32368]
S4 MSExchangeRepl;Microsoft Exchange Replication; C:\Program Files\Microsoft\Exchange Server\V14\bin\msexchangerepl.exe [2012-11-30 69128]
S4 MSExchangeRPC;Microsoft Exchange RPC Client Access; C:\Program Files\Microsoft\Exchange Server\V14\bin\Microsoft.Exchange.RpcClientAccess.Service.exe [2012-11-30 89728]
S4 MSExchangeSA;Microsoft Exchange System Attendant; C:\Program Files\Microsoft\Exchange Server\V14\bin\mad.exe [2012-11-30 1368536]
S4 MSExchangeSearch;Microsoft Exchange Search Indexer; C:\Program Files\Microsoft\Exchange Server\V14\Bin\Microsoft.Exchange.Search.ExSearch.exe [2012-11-30 413272]
S4 MSExchangeServiceHost;Microsoft Exchange Service Host; C:\Program Files\Microsoft\Exchange Server\V14\bin\Microsoft.Exchange.ServiceHost.exe [2012-11-30 35400]
S4 MSExchangeThrottling;Microsoft Exchange Throttling; C:\Program Files\Microsoft\Exchange Server\V14\Bin\MSExchangeThrottling.exe [2012-11-30 48664]
S4 MSExchangeTransport;Microsoft Exchange Transport; C:\Program Files\Microsoft\Exchange Server\V14\Bin\MSExchangeTransport.exe [2012-11-30 81432]
S4 MSExchangeTransportLogSearch;Microsoft Exchange Transport Log Search; C:\Program Files\Microsoft\Exchange Server\V14\Bin\MSExchangeTransportLogSearch.exe [2012-11-30 212536]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service; C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2010-04-03 59744]
S4 Pop3Connector;Łącznik POP3 serwera Windows SBS; C:\Program Files\Windows Small Business Server\Bin\Pop3Connector.exe [2010-11-08 240032]
S4 RemoteAccess;@%Systemroot%\system32\mprdim.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
-----------------EOF-----------------
Re: Kontrola RSIT po odvirování
Zdravim 
Predpokladam, ze se jedna o nejaky pracovni\firemni PC, je tak?
Predpokladam, ze se jedna o nejaky pracovni\firemni PC, je tak?
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: Kontrola RSIT po odvirování
No je to SBS takže samožejmě to pracovat bude je to starý server co se snažím očesat aby hostil jen moji zkušební aplikaci
je to starý server co se snažím očesat aby hostil jen moji zkušební aplikaciRe: Kontrola RSIT po odvirování
Ale SBS je vyuzivan k vydelecnym ucelum ze 
My jsme tu jen podpora pro domaci, koncove uzivatele...nebudeme nikomu delat IT servis zdarma, aby na tom pak vydelaval...
My jsme tu jen podpora pro domaci, koncove uzivatele...nebudeme nikomu delat IT servis zdarma, aby na tom pak vydelaval...
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Kontrola RSIT po odvirování
Nyni je to zkusebni stroj, ale po kompletaci aplikace se da rict, ze ano, pointu akceptuji - lock nebo smazat prosím 
Re: Kontrola RSIT po odvirování
Pravidla fora v tomto smeru hovori jasne...
Preji uspesne doreseni
Preji uspesne doreseni
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?