Prosím o preventivku

Zpráva

boss382 · #1 Příspěvek od **boss382** » 30 zář 2013 18:53

zdravím, notebook je nejak spomalený neviem či som mimo tak by som chcel poprosiť o kontrolu:

Logfile of random's system information tool 1.09 (written by random/random)
Run by Tibor at 2013-09-30 19:49:32
Microsoft Windows 8 Pro
System drive C: has 351 GB (76%) free of 464 GB
Total RAM: 2551 MB (38% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:49:51, on 30.9.2013
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16537)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhostex.exe
C:\Windows\Explorer.EXE
C:\Program Files\Garena Plus\ggdllhost.exe
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x86__8wekyb3d8bbwe\LiveComm.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\Opera Next\17.0.1241.28\opera.exe
C:\Program Files\Opera Next\17.0.1241.28\opera_crashreporter.exe
C:\Program Files\GIGABYTE\GHOST\GHOSTOPEN.exe
C:\Program Files\GIGABYTE\GHOST\Tilt.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Opera Next\17.0.1241.28\opera.exe
C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files\Opera Next\17.0.1241.28\opera.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Opera Next\17.0.1241.28\opera.exe
C:\Program Files\Opera Next\17.0.1241.28\opera.exe
C:\Program Files\Opera Next\17.0.1241.28\opera.exe
C:\Program Files\Opera Next\17.0.1241.28\opera.exe
C:\Program Files\Garena Plus\GarenaMessenger.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\Opera Next\17.0.1241.28\opera.exe
C:\Program Files\Opera Next\17.0.1241.28\opera.exe
C:\Program Files\Steam\Steam.exe
C:\Windows\System32\Taskmgr.exe
C:\Program Files\Steam\steamapps\common\Half-Life\hl.exe
C:\Program Files\Steam\GameOverlayUI.exe
C:\Program Files\Opera Next\17.0.1241.28\opera.exe
C:\Program Files\Opera Next\17.0.1241.28\opera.exe
C:\Windows\system32\calc.exe
C:\Program Files\Opera Next\17.0.1241.28\opera.exe
C:\Program Files\Opera Next\17.0.1241.28\opera.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Tibor\Desktop\RSIT.exe
C:\Program Files\trend micro\Tibor.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www2.delta-search.com/?babsrc=HP ... 2&tsp=5012
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files\PDF Architect\PDFIEHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [ghost] C:\Program Files\GIGABYTE\GHOST\ghostopen.exe
O4 - HKLM\..\Run: [Tilt] C:\Program Files\GIGABYTE\GHOST\Tilt.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [Nvtmru] "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [GarenaPlus] "C:\Program Files\Garena Plus\GarenaMessenger.exe" -autolaunch
O4 - Startup: Sidebar.lnk = C:\Program Files\Windows Sidebar\sidebar.exe
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Overwolf Updater Service (OverwolfUpdaterService) - Overwolf Ltd - C:\Program Files\Overwolf\OverwolfUpdater.exe
O23 - Service: PDF Architect Helper Service - pdfforge GbR - C:\Program Files\PDF Architect\HelperService.exe
O23 - Service: PDF Architect Service - pdfforge GbR - C:\Program Files\PDF Architect\ConversionService.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

--
End of file - 6093 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\Driver Booster Startup.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3A2D5EBA-F86D-4BD3-A177-019765996711}]
PDF Architect Helper - C:\Program Files\PDF Architect\PDFIEHelper.dll [2013-01-09 92232]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-08-02 463272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-08-30 201784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-08-02 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-08-30 201784]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ghost"=C:\Program Files\GIGABYTE\GHOST\ghostopen.exe [2010-02-08 192000]
"Tilt"=C:\Program Files\GIGABYTE\GHOST\Tilt.exe [2011-04-20 729088]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-05-11 958576]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2012-06-20 74752]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-08-30 4858968]
"Nvtmru"=C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [2013-08-27 1028896]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files\Steam\steam.exe [2013-09-21 1814440]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2013-02-28 18642024]
"GarenaPlus"=C:\Program Files\Garena Plus\GarenaMessenger.exe [2013-09-27 9866032]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
c:\program files\common files\adobe\oobe\pdapp\uwa\updaterstartuputility.exe [2009-12-19 500208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OBERON Center]
c:\oberon\share\system\oberon center.exe [2012-08-01 1125888]

C:\Users\Tibor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Sidebar.lnk - C:\Program Files\Windows Sidebar\sidebar.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Base]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicDisplay.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicRender.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot file system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BrokerInfrastructure]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CryptSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DcomLaunch]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DeviceInstall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dxgkrnl.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventLog]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\FsDepends.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HelpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\LSM]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Netlogon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PCI Configuration]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PlugPlay]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PNP Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Primary disk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcSs]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SCSI Class]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sermouse.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\System Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{36FC9E60-C465-11CF-8056-444553540000}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E965-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E969-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E977-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E980-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Base]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicDisplay.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicRender.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot file system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BrokerInfrastructure]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Browser]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CryptSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DcomLaunch]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DeviceInstall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dhcp]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DnsCache]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dxgkrnl.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EventLog]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\File system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\FsDepends.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HelpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ipnat.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanServer]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanWorkstation]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LmHosts]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LSM]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Messenger]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS Wrapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ndisuio]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOSGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetDDEGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Netlogon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetMan]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Network]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetworkProvider]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PCI Configuration]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PlugPlay]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP_TDI]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Primary disk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdsessmgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcSs]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCSI Class]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sermouse.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SharedAccess]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SmartcardSimulator]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Streams Drivers]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\System Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Tcpip]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TDI]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VirtualSmartcardReader]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wcmsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{36FC9E60-C465-11CF-8056-444553540000}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E965-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E967-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E969-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96A-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96F-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E972-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E973-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E974-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E975-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E977-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97D-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E980-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"ConsentPromptBehaviorUser"=3
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"vidc.cvid"=iccvid.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-09-30 19:49:32 ----D---- C:\rsit
2013-09-27 22:37:52 ----A---- C:\Windows\avastSS.scr
2013-09-21 21:55:18 ----D---- C:\ProgramData\DSearchLink
2013-09-21 21:54:32 ----D---- C:\Users\Tibor\AppData\Roaming\SimpleFiles
2013-09-21 13:39:38 ----D---- C:\Program Files\Counter-Strike 1.6 HD
2013-09-21 11:31:43 ----D---- C:\Program Files\Counter-Strike 1.6 LH 2013
2013-09-21 10:49:39 ----D---- C:\Program Files\AMX Mod X
2013-09-21 09:41:16 ----D---- C:\Program Files\Overwolf
2013-09-21 09:41:16 ----D---- C:\Program Files\Common Files\Overwolf
2013-09-17 16:59:39 ----D---- C:\Users\Tibor\AppData\Roaming\Topckit
2013-09-17 16:22:17 ----D---- C:\Program Files\Topckit
2013-09-14 21:44:08 ----D---- C:\Windows\system32\%LOCALAPPDATA%
2013-09-14 19:53:27 ----D---- C:\Users\Tibor\AppData\Roaming\Win8StartMenuCustomizer
2013-09-14 19:53:25 ----D---- C:\Program Files\Windows 8 Start Screen Customizer
2013-09-14 19:32:48 ----D---- C:\Program Files\UltraUXThemePatcher
2013-09-14 09:28:20 ----D---- C:\Users\Tibor\AppData\Roaming\Garena
2013-09-14 09:28:20 ----D---- C:\ProgramData\Garena
2013-09-03 15:18:48 ----D---- C:\Users\Tibor\AppData\Roaming\skyz
2013-08-31 10:36:17 ----N---- C:\Windows\Setup1.exe
2013-08-31 10:36:08 ----A---- C:\Windows\ST6UNST.EXE
2013-08-31 10:34:47 ----D---- C:\Windows\LastGood
2013-08-31 10:33:57 ----A---- C:\Windows\system32\nvvsvc.exe
2013-08-31 10:33:57 ----A---- C:\Windows\system32\nvsvcr.dll
2013-08-31 10:33:57 ----A---- C:\Windows\system32\nvshext.dll
2013-08-31 10:33:56 ----A---- C:\Windows\system32\nvsvc.dll
2013-08-31 10:33:55 ----A---- C:\Windows\system32\nvmctray.dll
2013-08-31 10:33:55 ----A---- C:\Windows\system32\nvcpl.dll
2013-08-31 10:26:59 ----A---- C:\Windows\system32\nvhdap32.dll
2013-08-31 10:26:59 ----A---- C:\Windows\system32\nvhdagenco3220103.dll
2013-08-31 10:26:59 ----A---- C:\Windows\system32\drivers\nvhda32v.sys
2013-08-31 10:26:58 ----A---- C:\Windows\system32\nvwgf2um.dll
2013-08-31 10:26:56 ----A---- C:\Windows\system32\nvopencl.dll
2013-08-31 10:26:56 ----A---- C:\Windows\system32\nvoglv32.dll
2013-08-31 10:26:55 ----A---- C:\Windows\system32\NvIFR.dll
2013-08-31 10:26:55 ----A---- C:\Windows\system32\NvFBC.dll
2013-08-31 10:26:55 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2013-08-31 10:26:54 ----A---- C:\Windows\system32\nvdispgenco3232049.dll
2013-08-31 10:26:54 ----A---- C:\Windows\system32\nvdispco3232049.dll
2013-08-31 10:26:53 ----A---- C:\Windows\system32\nvd3dum.dll
2013-08-31 10:26:53 ----A---- C:\Windows\system32\nvcuvid.dll
2013-08-31 10:26:52 ----A---- C:\Windows\system32\nvcuvenc.dll
2013-08-31 10:26:52 ----A---- C:\Windows\system32\nvcuda.dll
2013-08-31 10:26:50 ----A---- C:\Windows\system32\nvcompiler.dll
2013-08-31 10:26:50 ----A---- C:\Windows\system32\nvapi.dll

======List of files/folders modified in the last 1 month======

2013-09-30 19:49:38 ----D---- C:\Program Files\trend micro
2013-09-30 19:49:30 ----D---- C:\Windows\Prefetch
2013-09-30 19:34:53 ----D---- C:\Users\Tibor\AppData\Roaming\Skype
2013-09-30 19:20:15 ----D---- C:\Program Files\Steam
2013-09-30 19:00:04 ----D---- C:\Windows\system32\sru
2013-09-30 18:25:51 ----HD---- C:\Program Files\WindowsApps
2013-09-30 18:25:50 ----D---- C:\Windows\AUInstallAgent
2013-09-30 18:01:23 ----D---- C:\Users\Tibor\AppData\Roaming\GarenaPlus
2013-09-30 18:01:23 ----D---- C:\ProgramData\GarenaMessenger
2013-09-30 17:57:10 ----D---- C:\Windows\system32\Tasks
2013-09-29 21:05:15 ----D---- C:\Windows\Temp
2013-09-29 19:49:44 ----D---- C:\Users\Tibor\AppData\Roaming\TS3Client
2013-09-29 06:40:36 ----D---- C:\Windows\Microsoft.NET
2013-09-28 10:40:30 ----D---- C:\Program Files\Garena Plus
2013-09-28 10:33:55 ----D---- C:\ProgramData\NVIDIA
2013-09-27 22:37:52 ----D---- C:\Windows
2013-09-26 18:31:03 ----D---- C:\Program Files\Opera Next
2013-09-26 08:25:09 ----SHD---- C:\Windows\Installer
2013-09-26 08:24:39 ----D---- C:\ProgramData\Skype
2013-09-25 07:27:50 ----D---- C:\Program Files\Common Files\Steam
2013-09-22 08:31:54 ----RSD---- C:\Windows\Fonts
2013-09-22 07:42:27 ----HD---- C:\ProgramData
2013-09-21 22:03:52 ----RD---- C:\Program Files
2013-09-21 13:16:40 ----SHD---- C:\Config.Msi
2013-09-21 13:16:03 ----SHD---- C:\System Volume Information
2013-09-21 09:41:16 ----D---- C:\Program Files\Common Files
2013-09-21 09:37:33 ----D---- C:\Program Files\TeamSpeak 3 Client
2013-09-20 17:27:13 ----D---- C:\Program Files\JDownloader
2013-09-18 17:59:06 ----RD---- C:\Windows\System32
2013-09-18 17:59:06 ----D---- C:\Windows\inf
2013-09-18 17:59:06 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-09-14 21:48:39 ----D---- C:\Program Files\Thread Manager
2013-09-14 21:48:04 ----D---- C:\Windows\Tasks
2013-09-14 21:01:16 ----D---- C:\Users\Tibor\AppData\Roaming\vlc
2013-09-14 15:18:18 ----D---- C:\Users\Tibor\AppData\Roaming\Winamp
2013-09-14 10:00:24 ----D---- C:\Windows\system32\config
2013-09-14 09:55:20 ----D---- C:\Windows\system32\Drivers
2013-09-11 16:15:00 ----D---- C:\Windows\system32\catroot2
2013-09-08 11:38:23 ----D---- C:\Windows\SoftwareDistribution
2013-09-08 10:28:38 ----D---- C:\Users\Tibor\AppData\Roaming\uTorrent
2013-09-08 10:27:29 ----SHD---- C:\Windows\system32\AI_RecycleBin
2013-09-08 09:57:23 ----D---- C:\Users\Tibor\AppData\Roaming\DAEMON Tools Lite
2013-09-08 09:57:20 ----D---- C:\Windows\Minidump
2013-09-08 09:57:20 ----D---- C:\Windows\Logs
2013-09-08 09:54:59 ----D---- C:\Program Files\Opera
2013-09-08 09:54:43 ----D---- C:\Users\Tibor\AppData\Roaming\Opera
2013-09-08 09:54:08 ----D---- C:\Users\Tibor\AppData\Roaming\HoolappForAndroid
2013-09-08 09:53:07 ----D---- C:\Windows\system32\DriverStore
2013-09-08 09:52:33 ----D---- C:\Program Files\Avto K
2013-09-08 09:52:19 ----SHD---- C:\Program Files\Windows Sidebar
2013-09-08 09:49:39 ----D---- C:\Program Files\Samsung
2013-09-08 09:49:31 ----D---- C:\ProgramData\Samsung
2013-09-08 09:49:30 ----HD---- C:\Program Files\InstallShield Installation Information
2013-09-02 13:35:16 ----D---- C:\Windows\865537E164904193A4B6669C62711852.TMP
2013-09-01 18:59:14 ----D---- C:\Windows\system32\catroot
2013-09-01 17:10:11 ----RSD---- C:\Windows\assembly
2013-08-31 10:35:14 ----D---- C:\Program Files\NVIDIA Corporation
2013-08-31 10:33:47 ----D---- C:\Windows\Help
2013-08-31 10:32:42 ----D---- C:\ProgramData\NVIDIA Corporation

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 ACPI;@acpi.inf,%ACPI.SvcDesc%;Microsoft ACPI Driver; C:\Windows\System32\drivers\ACPI.sys [2013-03-02 338152]
R0 acpiex;Microsoft ACPIEx Driver; C:\Windows\System32\Drivers\acpiex.sys [2012-07-26 58608]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-08-30 49376]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-08-30 177864]
R0 CLFS;@%SystemRoot%\system32\drivers\clfs.sys,-100; C:\Windows\System32\drivers\CLFS.sys [2012-07-26 256240]
R0 CNG;CNG; C:\Windows\System32\Drivers\cng.sys [2013-03-02 493136]
R0 disk;@disk.inf,%disk_ServiceDesc%;Disk Driver; C:\Windows\System32\drivers\disk.sys [2012-07-26 84208]
R0 EhStorClass;@%SystemRoot%\system32\drivers\EhStorClass.sys,-100; C:\Windows\System32\drivers\EhStorClass.sys [2012-07-26 70384]
R0 FileInfo;@%SystemRoot%\system32\drivers\fileinfo.sys,-100; C:\Windows\System32\drivers\fileinfo.sys [2012-07-26 59632]
R0 FltMgr;@%SystemRoot%\system32\drivers\fltmgr.sys,-10001; C:\Windows\system32\drivers\fltmgr.sys [2012-07-26 293104]
R0 fvevol;@%SystemRoot%\system32\drivers\fvevol.sys,-100; C:\Windows\System32\DRIVERS\fvevol.sys [2013-03-02 407272]
R0 KSecDD;KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [2013-03-02 81128]
R0 KSecPkg;KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [2013-03-02 155880]
R0 mountmgr;@%SystemRoot%\system32\drivers\mountmgr.sys,-100; C:\Windows\System32\drivers\mountmgr.sys [2012-07-26 78064]
R0 msisadrv;msisadrv; C:\Windows\System32\drivers\msisadrv.sys [2012-07-26 15088]
R0 Mup;@%systemroot%\system32\drivers\mup.sys,-101; C:\Windows\System32\Drivers\mup.sys [2012-07-26 57584]
R0 NDIS;@%SystemRoot%\system32\drivers\ndis.sys,-200; C:\Windows\system32\drivers\ndis.sys [2013-07-29 816896]
R0 partmgr;@%SystemRoot%\system32\drivers\partmgr.sys,-100; C:\Windows\System32\drivers\partmgr.sys [2013-02-16 74984]
R0 pci;@machine.inf,%pci_svcdesc%;PCI Bus Driver; C:\Windows\System32\drivers\pci.sys [2012-07-26 191216]
R0 pcw;Performance Counters for Windows Driver; C:\Windows\System32\drivers\pcw.sys [2012-07-26 43760]
R0 pdc;@%SystemRoot%\system32\drivers\pdc.sys,-100; C:\Windows\system32\drivers\pdc.sys [2013-06-05 57576]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2012-07-26 173296]
R0 spaceport;@spaceport.inf,%Spaceport_ServiceDesc%;Storage Spaces Driver; C:\Windows\System32\drivers\spaceport.sys [2013-06-23 238336]
R0 storahci;@mshdc.inf,%storahci_ServiceDescription%;Microsoft Standard SATA AHCI Driver; C:\Windows\System32\drivers\storahci.sys [2013-06-05 66280]
R0 Tcpip;@%SystemRoot%\system32\tcpipcfg.dll,-50003; C:\Windows\System32\drivers\tcpip.sys [2013-07-29 1800960]
R0 vdrvroot;@vdrvroot.inf,%vdrvroot_svcdesc%;Microsoft Virtual Drive Enumerator; C:\Windows\System32\drivers\vdrvroot.sys [2012-07-26 32496]
R0 volmgr;@volmgr.inf,%volmgr_svcdesc%;Volume Manager Driver; C:\Windows\System32\drivers\volmgr.sys [2012-07-26 66288]
R0 volmgrx;@%SystemRoot%\system32\drivers\volmgrx.sys,-100; C:\Windows\System32\drivers\volmgrx.sys [2012-07-26 313072]
R0 volsnap;@volume.inf,%VolumeClassName%;Storage volumes; C:\Windows\System32\drivers\volsnap.sys [2013-07-29 281344]
R0 Wdf01000;@%SystemRoot%\system32\drivers\Wdf01000.sys,-1000; C:\Windows\system32\drivers\Wdf01000.sys [2013-02-16 526960]
R0 WFPLWFS;@%SystemRoot%\System32\drivers\wfplwfs.sys,-6000; C:\Windows\system32\DRIVERS\wfplwfs.sys [2012-07-26 38640]
R1 AFD;@%systemroot%\system32\drivers\afd.sys,-1000; C:\Windows\system32\drivers\afd.sys [2013-03-02 438272]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-08-30 61680]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-08-30 770344]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-08-30 369584]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-08-30 56080]
R1 BasicDisplay;BasicDisplay; C:\Windows\System32\drivers\BasicDisplay.sys [2012-07-26 42496]
R1 BasicRender;BasicRender; C:\Windows\System32\drivers\BasicRender.sys [2012-07-26 24576]
R1 Beep;Beep; C:\Windows\system32\drivers\Beep.sys [2012-07-26 6144]
R1 cdrom;@cdrom.inf,%cdrom_ServiceDesc%;CD-ROM Driver; C:\Windows\System32\drivers\cdrom.sys [2012-07-26 135680]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2013-03-02 436736]
R1 Dfsc;@%systemroot%\system32\wkssvc.dll,-1008; C:\Windows\System32\Drivers\dfsc.sys [2012-07-26 92160]
R1 discache;@%systemroot%\system32\drivers\discache.sys,-102; C:\Windows\System32\drivers\discache.sys [2012-07-26 41472]
R1 Msfs;Msfs; C:\Windows\system32\drivers\Msfs.sys [2012-07-26 21504]
R1 mssmbios;@mssmbios.inf,%mssmbios_svcdesc%;Microsoft System Management BIOS Driver; C:\Windows\System32\drivers\mssmbios.sys [2012-07-26 33008]
R1 NetBIOS;@netnb.inf,%NetBIOS_Desc%;NetBIOS Interface; C:\Windows\system32\DRIVERS\netbios.sys [2012-07-26 36864]
R1 NetBT;@%SystemRoot%\system32\drivers\netbt.sys,-2; C:\Windows\System32\DRIVERS\netbt.sys [2012-07-26 254464]
R1 Npfs;Npfs; C:\Windows\system32\drivers\Npfs.sys [2012-07-26 38912]
R1 npsvctrig;@npsvctrig.inf,%NPSVCTRIG.SvcDisplayName%;Named pipe service trigger provider; C:\Windows\System32\drivers\npsvctrig.sys [2012-07-26 17920]
R1 nsiproxy;@%SystemRoot%\system32\drivers\nsiproxy.sys,-2; C:\Windows\system32\drivers\nsiproxy.sys [2012-07-26 23552]
R1 Null;Null; C:\Windows\system32\drivers\Null.sys [2012-07-26 5120]
R1 Psched;@%SystemRoot%\System32\drivers\pacer.sys,-101; C:\Windows\system32\DRIVERS\pacer.sys [2012-07-26 131584]
R1 rdbss;@%systemroot%\system32\wkssvc.dll,-1000; C:\Windows\system32\DRIVERS\rdbss.sys [2013-06-23 320512]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2012-12-09 113168]
R1 tdx;@%SystemRoot%\system32\tcpipcfg.dll,-50004; C:\Windows\system32\DRIVERS\tdx.sys [2012-07-26 97792]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2012-07-26 52224]
R1 Wanarpv6;@%systemroot%\system32\rascfg.dll,-32012; C:\Windows\system32\DRIVERS\wanarp.sys [2013-06-05 70656]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-08-30 29816]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-08-30 66336]
R2 lltdio;@%SystemRoot%\system32\lltdres.dll,-6; C:\Windows\system32\DRIVERS\lltdio.sys [2012-07-26 48128]
R2 luafv;@%systemroot%\system32\drivers\luafv.sys,-100; C:\Windows\system32\drivers\luafv.sys [2012-07-26 102400]
R2 NativeWifiP;@%SystemRoot%\System32\drivers\nwifi.sys,-101; C:\Windows\system32\DRIVERS\nwifi.sys [2012-07-26 355328]
R2 Ndu;@%SystemRoot%\system32\drivers\Ndu.sys,-10001; C:\Windows\system32\drivers\Ndu.sys [2012-07-26 84480]
R2 PEAUTH;PEAUTH; C:\Windows\system32\drivers\peauth.sys [2013-06-05 709632]
R2 rspndr;@%SystemRoot%\system32\lltdres.dll,-5; C:\Windows\system32\DRIVERS\rspndr.sys [2012-07-26 62976]
R2 secdrv;Security Driver; C:\Windows\system32\drivers\secdrv.sys [2012-07-26 20480]
R2 tcpipreg;TCP/IP Registry Compatibility; C:\Windows\System32\drivers\tcpipreg.sys [2012-07-26 36352]
R3 athr;@netathr.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2012-06-02 2273280]
R3 bowser;@%systemroot%\system32\browser.dll,-102; C:\Windows\system32\DRIVERS\bowser.sys [2012-07-26 84992]
R3 CmBatt;@cmbatt.inf,%CmBatt.SvcDesc%;Microsoft ACPI Control Method Battery Driver; C:\Windows\System32\drivers\CmBatt.sys [2012-07-26 20480]
R3 CompositeBus;@CompositeBus.inf,%CompositeBus.SVCDESC%;Composite Bus Enumerator Driver; C:\Windows\System32\drivers\CompositeBus.sys [2012-07-26 30720]
R3 condrv;Console Driver; C:\Windows\System32\drivers\condrv.sys [2012-07-26 25600]
R3 DXGKrnl;LDDM Graphics Subsystem; C:\Windows\System32\drivers\dxgkrnl.sys [2013-06-05 1229576]
R3 HdAudAddService;@hdaudio.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2013-02-16 277504]
R3 HDAudBus;@hdaudbus.inf,%HDAudBus.SVCDESC%;Microsoft UAA Bus Driver for High Definition Audio; C:\Windows\System32\drivers\HDAudBus.sys [2013-03-02 62464]
R3 HECI;@oem1.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface; C:\Windows\System32\drivers\HECI.sys [2009-09-17 41088]
R3 HidUsb;@input.inf,%HID.SvcDesc%;Microsoft HID Class Driver; C:\Windows\System32\drivers\hidusb.sys [2013-06-05 19456]
R3 HTTP;@%SystemRoot%\system32\drivers\http.sys,-1; C:\Windows\system32\drivers\HTTP.sys [2013-06-05 640000]
R3 i8042prt;@msmouse.inf,%i8042prt.SvcDesc%;PS/2 Keyboard and Mouse Port Driver; C:\Windows\System32\drivers\i8042prt.sys [2012-07-26 89600]
R3 intelppm;@cpu.inf,%IntelPPM.SvcDesc%;Intel Processor Driver; C:\Windows\System32\drivers\intelppm.sys [2013-03-02 78848]
R3 IPNAT;IP Network Address Translator; C:\Windows\System32\drivers\ipnat.sys [2012-07-26 126976]
R3 k57nd60x;@netk57x.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60x.sys [2013-08-24 385848]
R3 kbdclass;@keyboard.inf,%kbdclass.SvcDesc%;Keyboard Class Driver; C:\Windows\System32\drivers\kbdclass.sys [2012-07-26 39664]
R3 kbdhid;@keyboard.inf,%KBDHID.SvcDesc%;Keyboard HID Driver; C:\Windows\System32\drivers\kbdhid.sys [2012-07-26 23040]
R3 kdnic;@kdnic.inf,%KdNic.Service.DispName%;Microsoft Kernel Debug Network Miniport (NDIS 6.20); C:\Windows\system32\DRIVERS\kdnic.sys [2012-07-26 15360]
R3 monitor;@monitor.inf,%Monitor.SVCDESC%;Microsoft Monitor Class Function Driver Service; C:\Windows\System32\drivers\monitor.sys [2013-06-05 24064]
R3 mouclass;@msmouse.inf,%mouclass.SvcDesc%;Mouse Class Driver; C:\Windows\System32\drivers\mouclass.sys [2012-07-26 39152]
R3 mouhid;@msmouse.inf,%MOUHID.SvcDesc%;Mouse HID Driver; C:\Windows\System32\drivers\mouhid.sys [2013-06-05 20992]
R3 mpsdrv;@%SystemRoot%\system32\FirewallAPI.dll,-23092; C:\Windows\System32\drivers\mpsdrv.sys [2013-03-02 56832]
R3 mrxsmb;@%systemroot%\system32\wkssvc.dll,-1002; C:\Windows\system32\DRIVERS\mrxsmb.sys [2013-03-02 308736]
R3 mrxsmb10;@%systemroot%\system32\wkssvc.dll,-1004; C:\Windows\system32\DRIVERS\mrxsmb10.sys [2012-07-26 244736]
R3 mrxsmb20;@%systemroot%\system32\wkssvc.dll,-1006; C:\Windows\system32\DRIVERS\mrxsmb20.sys [2013-03-02 168448]
R3 NdisTapi;@%systemroot%\system32\rascfg.dll,-32001; C:\Windows\system32\DRIVERS\ndistapi.sys [2013-03-02 20480]
R3 Ndisuio;@ndisuio.inf,%NDISUIO_Desc%;NDIS Usermode I/O Protocol; C:\Windows\system32\DRIVERS\ndisuio.sys [2012-07-26 47104]
R3 NdisWan;@%systemroot%\system32\rascfg.dll,-32002; C:\Windows\system32\DRIVERS\ndiswan.sys [2012-07-26 140288]
R3 NDProxy;NDIS Proxy; C:\Windows\system32\drivers\NDProxy.sys [2013-06-05 48640]
R3 Ntfs;Ntfs; C:\Windows\system32\drivers\Ntfs.sys [2013-02-16 1614568]
R3 NVHDA;@oem79.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2013-02-25 154400]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2013-06-21 9069344]
R3 nvvad_WaveExtensible;@oem78.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad32v.sys [2013-08-20 33568]
R3 PptpMiniport;@%systemroot%\system32\rascfg.dll,-32006; C:\Windows\system32\DRIVERS\raspptp.sys [2012-07-26 82944]
R3 RasAcd;Remote Access Auto Connection Driver; C:\Windows\System32\DRIVERS\rasacd.sys [2012-07-26 11776]
R3 RasAgileVpn;@netavpna.inf,%Svc-Mp-AgileVpn-DispName%;WAN Miniport (IKEv2); C:\Windows\system32\DRIVERS\AgileVpn.sys [2012-07-26 53760]
R3 Rasl2tp;@%systemroot%\system32\rascfg.dll,-32005; C:\Windows\system32\DRIVERS\rasl2tp.sys [2012-07-26 88064]
R3 RasPppoe;@%systemroot%\system32\rascfg.dll,-32007; C:\Windows\system32\DRIVERS\raspppoe.sys [2012-07-26 66560]
R3 RasSstp;@%systemroot%\system32\sstpsvc.dll,-202; C:\Windows\system32\DRIVERS\rassstp.sys [2012-07-26 74752]
R3 rdpbus;@rdpbus.inf,%rdpbus_svcdesc%;Remote Desktop Device Redirector Bus Driver; C:\Windows\System32\drivers\rdpbus.sys [2012-07-26 16896]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2013-03-02 23272]
R3 srv;@%systemroot%\system32\srvsvc.dll,-102; C:\Windows\System32\DRIVERS\srv.sys [2012-07-26 338432]
R3 srv2;@%systemroot%\system32\srvsvc.dll,-104; C:\Windows\System32\DRIVERS\srv2.sys [2013-06-05 494592]
R3 srvnet;srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [2013-06-05 196096]
R3 swenum;@swenum.inf,%SWENUM.SVCDESC%;Software Bus Driver; C:\Windows\System32\drivers\swenum.sys [2012-07-26 13296]
R3 TPM;@tpm.inf,%TPM%;TPM; C:\Windows\system32\drivers\tpm.sys [2013-06-05 121576]
R3 tunnel;@nettun.inf,%TUNNEL.Service.DisplayName%;Microsoft Tunnel Miniport Adapter Driver; C:\Windows\system32\DRIVERS\tunnel.sys [2012-07-26 118784]
R3 umbus;@umbus.inf,%umbus.SVCDESC%;UMBus Enumerator Driver; C:\Windows\System32\drivers\umbus.sys [2012-07-26 39424]
R3 usbccgp;@usb.inf,%GenericParent.SvcDesc%;Microsoft USB Generic Parent Driver; C:\Windows\System32\drivers\usbccgp.sys [2012-07-26 84992]
R3 usbehci;@usbport.inf,%EHCIMP.SvcDesc%;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\Windows\System32\drivers\usbehci.sys [2013-03-02 64232]
R3 usbhub;@usbport.inf,%ROOTHUB.SvcDesc%;Microsoft USB Standard Hub Driver; C:\Windows\System32\drivers\usbhub.sys [2013-03-02 332520]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-03-02 175488]
R3 vwifibus;@%SystemRoot%\System32\drivers\vwifibus.sys,-257; C:\Windows\System32\drivers\vwifibus.sys [2012-07-26 18944]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys [2012-07-26 13824]
R3 WmiAcpi;@wmiacpi.inf,%WMIMAP.SvcDesc%;Microsoft Windows Management Interface for ACPI; C:\Windows\System32\drivers\wmiacpi.sys [2012-07-26 11264]
S0 3ware;3ware; C:\Windows\System32\drivers\3ware.sys [2012-07-26 85232]
S0 adp94xx;adp94xx; C:\Windows\System32\drivers\adp94xx.sys [2012-07-26 424176]
S0 adpahci;adpahci; C:\Windows\System32\drivers\adpahci.sys [2012-07-26 298736]
S0 adpu320;adpu320; C:\Windows\System32\drivers\adpu320.sys [2012-07-26 147696]
S0 agp440;@machine.inf,%agp440_svcdesc%;Intel AGP Bus Filter; C:\Windows\System32\drivers\agp440.sys [2012-07-26 55536]
S0 amdagp;@machine.inf,%amdagp_svcdesc%;AMD AGP Bus Filter Driver; C:\Windows\System32\drivers\amdagp.sys [2012-07-26 56048]
S0 amdsata;amdsata; C:\Windows\System32\drivers\amdsata.sys [2012-07-26 67312]
S0 amdsbs;amdsbs; C:\Windows\System32\drivers\amdsbs.sys [2012-07-26 213744]
S0 amdxata;amdxata; C:\Windows\System32\drivers\amdxata.sys [2012-07-26 22256]
S0 arc;arc; C:\Windows\System32\drivers\arc.sys [2012-07-26 91888]
S0 arcsas;@arcsas.inf,%arcsas_ServiceName%;Adaptec SAS/SATA-II RAID Windows Inbox Miniport Driver; C:\Windows\System32\drivers\arcsas.sys [2012-07-26 94448]
S0 atapi;@mshdc.inf,%idechannel.DeviceDesc%;IDE Channel; C:\Windows\System32\drivers\atapi.sys [2012-07-26 22768]
S0 EhStorTcgDrv;@ehstortcgdrv.inf,%EhStorTcgDrv.Desc%;Microsoft driver for storage devices supporting IEEE 1667 and TCG protocols; C:\Windows\System32\drivers\EhStorTcgDrv.sys [2012-07-26 99056]
S0 gagp30kx;@machine.inf,%gagp30kx_svcdesc%;Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms; C:\Windows\System32\drivers\gagp30kx.sys [2012-07-26 59120]
S0 HpSAMD;HpSAMD; C:\Windows\System32\drivers\HpSAMD.sys [2012-07-26 56048]
S0 hwpolicy;@%systemroot%\system32\drivers\hwpolicy.sys,-101; C:\Windows\System32\drivers\hwpolicy.sys [2012-07-26 24304]
S0 iaStorV;@iastorv.inf,%*PNP0600.DeviceDesc%;Intel RAID Controller Windows 7; C:\Windows\System32\drivers\iaStorV.sys [2012-07-26 333552]
S0 iirsp;iirsp; C:\Windows\System32\drivers\iirsp.sys [2012-07-26 42224]
S0 intelide;intelide; C:\Windows\System32\drivers\intelide.sys [2012-07-26 16624]
S0 isapnp;isapnp; C:\Windows\System32\drivers\isapnp.sys [2012-07-26 47856]
S0 LSI_SAS;LSI_SAS; C:\Windows\System32\drivers\lsi_sas.sys [2012-07-26 93424]
S0 LSI_SAS2;LSI_SAS2; C:\Windows\System32\drivers\lsi_sas2.sys [2012-07-26 78576]
S0 LSI_SCSI;LSI_SCSI; C:\Windows\System32\drivers\lsi_scsi.sys [2012-07-26 100592]
S0 LSI_SSS;LSI_SSS; C:\Windows\System32\drivers\lsi_sss.sys [2012-07-26 68848]
S0 megasas;megasas; C:\Windows\System32\drivers\megasas.sys [2012-07-26 45296]
S0 MegaSR;MegaSR; C:\Windows\System32\drivers\MegaSR.sys [2012-07-26 283888]
S0 mvumis;mvumis; C:\Windows\System32\drivers\mvumis.sys [2012-07-26 59120]
S0 nfrd960;nfrd960; C:\Windows\System32\drivers\nfrd960.sys [2012-07-26 45808]
S0 nv_agp;@machine.inf,%agpnvidia_svcdesc%;NVIDIA nForce AGP Bus Filter; C:\Windows\System32\drivers\nv_agp.sys [2012-07-26 106736]
S0 nvraid;nvraid; C:\Windows\System32\drivers\nvraid.sys [2012-07-26 120048]
S0 nvstor;nvstor; C:\Windows\System32\drivers\nvstor.sys [2012-07-26 141552]
S0 pciide;pciide; C:\Windows\System32\drivers\pciide.sys [2012-07-26 13552]
S0 pcmcia;pcmcia; C:\Windows\System32\drivers\pcmcia.sys [2012-07-26 194288]
S0 sbp2port;@sbp2.inf,%sbp2_ServiceDesc%;SBP-2 Transport/Protocol Bus Driver; C:\Windows\System32\drivers\sbp2port.sys [2012-07-26 89840]
S0 sisagp;@machine.inf,%sisagp_svcdesc%;SIS AGP Bus Filter; C:\Windows\System32\drivers\sisagp.sys [2012-07-26 53488]
S0 SiSRaid2;SiSRaid2; C:\Windows\System32\drivers\SiSRaid2.sys [2012-07-26 41200]
S0 SiSRaid4;SiSRaid4; C:\Windows\System32\drivers\sisraid4.sys [2012-07-26 79088]
S0 stexstor;stexstor; C:\Windows\System32\drivers\stexstor.sys [2012-07-26 26352]
S0 storflt;@%SystemRoot%\system32\vmstorfltres.dll,-1000; C:\Windows\system32\DRIVERS\vmstorfl.sys [2012-07-26 42344]
S0 storvsc;storvsc; C:\Windows\System32\drivers\storvsc.sys [2012-07-26 32872]
S0 uagp35;@machine.inf,%uagp35_svcdesc%;Microsoft AGPv3.5 Filter; C:\Windows\System32\drivers\uagp35.sys [2012-07-26 58096]
S0 uliagpkx;@machine.inf,%uliagpkx_svcdesc%;Uli AGP Bus Filter; C:\Windows\System32\drivers\uliagpkx.sys [2012-07-26 58608]
S0 viaagp;@machine.inf,%agpvia_svcdesc%;VIA AGP Bus Filter; C:\Windows\System32\drivers\viaagp.sys [2012-07-26 55536]
S0 viaide;viaide; C:\Windows\System32\drivers\viaide.sys [2012-07-26 18160]
S0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\System32\drivers\vmbus.sys [2012-07-26 130024]
S0 vsmraid;vsmraid; C:\Windows\System32\drivers\vsmraid.sys [2012-07-26 155376]
S0 VSTXRAID;@vstxraid.inf,%Driver.DeviceDesc%;VIA StorX Storage Controller Windows Driver; C:\Windows\System32\drivers\vstxraid.sys [2012-07-26 285424]
S0 Wd;@wd.inf,%WdServiceDisplayName%;Microsoft Watchdog Timer Driver; C:\Windows\System32\drivers\wd.sys [2012-07-26 20720]
S1 dam;@%SystemRoot%\system32\drivers\dam.sys,-100; C:\Windows\system32\drivers\dam.sys [2013-03-02 50920]
S2 Parvdm;Parvdm; C:\Windows\System32\drivers\parvdm.sys [2012-07-26 8704]
S3 1394ohci;@1394.inf,%PCI\CC_0C0010.DeviceDesc%;1394 OHCI Compliant Host Controller; C:\Windows\System32\drivers\1394ohci.sys [2012-07-26 173056]
S3 acpipagr;@acpipagr.inf,%SvcDesc%;ACPI Processor Aggregator Driver; C:\Windows\System32\drivers\acpipagr.sys [2012-07-26 8704]
S3 AcpiPmi;@acpipmi.inf,%AcpiPmi.SvcDesc%;ACPI Power Meter Driver; C:\Windows\System32\drivers\acpipmi.sys [2012-07-26 9216]
S3 acpitime;@acpitime.inf,%AcpiTime.SvcDesc%;ACPI Wake Alarm Driver; C:\Windows\System32\drivers\acpitime.sys [2012-07-26 8704]
S3 AmdK8;@cpu.inf,%AmdK8.SvcDesc%;AMD K8 Processor Driver; C:\Windows\System32\drivers\amdk8.sys [2013-03-02 80384]
S3 AmdPPM;@cpu.inf,%AmdPPM.SvcDesc%;AMD Processor Driver; C:\Windows\System32\drivers\amdppm.sys [2013-03-02 78336]
S3 AppID;@%systemroot%\system32\appidsvc.dll,-102; C:\Windows\system32\drivers\appid.sys [2012-07-26 67072]
S3 AsyncMac;@%systemroot%\system32\rascfg.dll,-32000; C:\Windows\system32\DRIVERS\asyncmac.sys [2012-07-26 21504]
S3 BthAvrcpTg;@bthaudhid.inf,%BthAvrcpTg_SvcDesc%;Bluetooth Audio/Video Remote Control HID; C:\Windows\System32\drivers\BthAvrcpTg.sys [2013-07-29 30208]
S3 BthHFEnum;@bthhfenum.inf,%BthHFEnum.SVCDESC%;Bluetooth Hands-Free Audio and Call Control HID Enumerator; C:\Windows\System32\drivers\bthhfenum.sys [2012-07-26 44032]
S3 bthhfhid;@bthaudhid.inf,%BthAudioHFHid.SVCDESC%;Bluetooth Hands-Free Call Control HID; C:\Windows\System32\drivers\BthHFHid.sys [2013-03-02 22528]
S3 BTHMODEM;@bthspp.inf,%BthSerial.DisplayName%;Bluetooth Serial Communications Driver; C:\Windows\System32\drivers\bthmodem.sys [2012-07-26 50176]
S3 circlass;@circlass.inf,%circlass.SVCDESC%;Consumer IR Devices; C:\Windows\System32\drivers\circlass.sys [2012-07-26 38400]
S3 dmvsc;dmvsc; C:\Windows\System32\drivers\dmvsc.sys [2012-07-26 28672]
S3 dot4;@oem11.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2012-10-19 137632]
S3 Dot4Print;@oem12.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\Windows\System32\drivers\Dot4Prt.sys [2012-10-19 22432]
S3 dot4usb;@oem11.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2012-10-19 42912]
S3 drmkaud;@wdmaudio.inf,%drmkaud.SvcDesc%;Microsoft Trusted Audio Drivers; C:\Windows\system32\drivers\drmkaud.sys [2013-03-02 5120]
S3 ErrDev;@errdev.inf,%ERRDEV.SvcDesc%;Microsoft Hardware Error Device Driver; C:\Windows\System32\drivers\errdev.sys [2012-07-26 7168]
S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys []
S3 exfat;exFAT File System Driver; C:\Windows\system32\drivers\exfat.sys [2012-07-26 155648]
S3 fastfat;FAT12/16/32 File System Driver; C:\Windows\system32\drivers\fastfat.sys [2012-07-26 168688]
S3 fdc;@fdc.inf,%fdc_ServiceDesc%;Floppy Disk Controller Driver; C:\Windows\System32\drivers\fdc.sys [2012-07-26 25600]
S3 Filetrace;@%SystemRoot%\system32\drivers\filetrace.sys,-10001; C:\Windows\system32\drivers\filetrace.sys [2012-07-26 29696]
S3 flpydisk;@flpydisk.inf,%floppy_ServiceDesc%;Floppy Disk Driver; C:\Windows\System32\drivers\flpydisk.sys [2012-07-26 19968]
S3 FsDepends;@%SystemRoot%\system32\drivers\fsdepends.sys,-10001; C:\Windows\System32\drivers\FsDepends.sys [2012-07-26 49392]
S3 FTDIBUS;@oem80.inf,%SvcDesc%;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2013-07-25 65896]
S3 FTSER2K;@oem81.inf,%SvcDesc%;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2013-07-25 74088]
S3 FxPPM;@cpu.inf,%FxPPM.SvcDesc%;Power Framework Processor Driver; C:\Windows\System32\drivers\fxppm.sys [2013-03-02 17920]
S3 gencounter;@wgencounter.inf,%GenCounter.SVCDESC%;Microsoft Hyper-V Generation Counter; C:\Windows\System32\drivers\vmgencounter.sys [2012-07-26 9856]
S3 GGSAFERDriver;GGSAFER Driver; \??\C:\Program Files\Garena Plus\Room\safedrv.sys []
S3 GPIOClx0101;Microsoft GPIO Class Extension Driver; C:\Windows\System32\Drivers\msgpioclx.sys [2013-03-02 97000]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
S3 HidBatt;@hidbatt.inf,%HidBatt.SvcDesc%;HID UPS Battery Driver; C:\Windows\System32\drivers\HidBatt.sys [2012-07-26 20992]
S3 HidBth;@hidbth.inf,%HIDBTH.SvcDesc%;Microsoft Bluetooth HID Miniport; C:\Windows\System32\drivers\hidbth.sys [2013-06-05 81920]
S3 hidi2c;@hidi2c.inf,%hidi2c.SVCDESC%;Microsoft I2C HID Miniport Driver; C:\Windows\System32\drivers\hidi2c.sys [2013-06-05 30208]
S3 HidIr;@hidir.inf,%HIDIR.SvcDesc%;Microsoft Infrared HID Driver; C:\Windows\System32\drivers\hidir.sys [2012-07-26 38400]
S3 hyperkbd;hyperkbd; C:\Windows\System32\drivers\hyperkbd.sys [2012-07-26 10496]
S3 HyperVideo;HyperVideo; C:\Windows\system32\DRIVERS\HyperVideo.sys [2012-07-26 19456]
S3 IpFilterDriver;@%systemroot%\system32\rascfg.dll,-32013; C:\Windows\system32\DRIVERS\ipfltdrv.sys [2012-07-26 65024]
S3 IPMIDRV;IPMIDRV; C:\Windows\System32\drivers\IPMIDrv.sys [2012-07-26 65536]
S3 IRENUM;@%SystemRoot%\system32\drivers\irenum.sys,-100; C:\Windows\system32\drivers\irenum.sys [2012-07-26 13312]
S3 iScsiPrt;@iscsi.inf,%iScsiPortName%;iScsiPort Driver; C:\Windows\System32\drivers\msiscsi.sys [2013-03-02 237800]
S3 Modem;Modem; C:\Windows\system32\drivers\modem.sys [2012-07-26 31744]
S3 modulev;modulev; \??\C:\modulev.sys []
S3 MRxDAV;@%systemroot%\system32\webclnt.dll,-104; C:\Windows\system32\drivers\mrxdav.sys [2012-07-26 122368]
S3 MsBridge;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2012-07-26 102912]
S3 msgpiowin32;@msgpiowin32.inf,%GPIO.SvcDesc%;GPIO Buttons Driver; C:\Windows\System32\drivers\msgpiowin32.sys [2013-02-16 24808]
S3 mshidkmdf;@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100; C:\Windows\System32\drivers\mshidkmdf.sys [2012-07-26 6656]
S3 mshidumdf;@%SystemRoot%\system32\drivers\mshidumdf.sys,-100; C:\Windows\System32\drivers\mshidumdf.sys [2012-07-26 7680]
S3 MSKSSRV;@ksfilter.inf,%MSKSSRV.DeviceDesc%;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2012-07-26 8192]
S3 MsLldp;@C:\Windows\system32\DRIVERS\mslldp.sys,-200; C:\Windows\system32\DRIVERS\mslldp.sys [2012-07-26 57344]
S3 MSPCLOCK;@ksfilter.inf,%MSPCLOCK.DeviceDesc%;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2012-07-26 6144]
S3 MSPQM;@ksfilter.inf,%MSPQM.DeviceDesc%;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2012-07-26 5888]
S3 MsRPC;MsRPC; C:\Windows\system32\drivers\MsRPC.sys [2012-07-26 211696]
S3 MSTEE;@ksfilter.inf,%MSTEE.DeviceDesc%;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2012-07-26 6272]
S3 MTConfig;@mtconfig.inf,%MTConfig.SVCDESC%;Microsoft Input Configuration Driver; C:\Windows\System32\drivers\MTConfig.sys [2012-07-26 11264]
S3 NdisCap;@%SystemRoot%\System32\drivers\ndiscap.sys,-5000; C:\Windows\system32\DRIVERS\ndiscap.sys [2012-07-26 30720]
S3 NdisImPlatform;@%SystemRoot%\System32\drivers\ndisimplatform.sys,-501; C:\Windows\system32\DRIVERS\NdisImPlatform.sys [2012-07-26 110592]
S3 NDISWANLEGACY;@%systemroot%\system32\rascfg.dll,-32014; C:\Windows\system32\DRIVERS\ndiswan.sys [2012-07-26 140288]
S3 Parport;@msports.inf,%Parport.SVCDESC%;Parallel port driver; C:\Windows\System32\drivers\parport.sys [2012-07-26 90624]
S3 Processor;@cpu.inf,%Processor.SvcDesc%;Processor Driver; C:\Windows\System32\drivers\processr.sys [2013-03-02 77312]
S3 QWAVEdrv;@%SystemRoot%\system32\drivers\qwavedrv.sys,-1; C:\Windows\system32\drivers\qwavedrv.sys [2012-07-26 31744]
S3 RDPDR;@%SystemRoot%\System32\DRIVERS\rdpdr.sys,-100; C:\Windows\System32\drivers\rdpdr.sys [2012-07-26 156160]
S3 RDPWD;RDP Winstation Driver; C:\Windows\system32\drivers\RDPWD.sys [2012-07-26 179200]
S3 s3cap;s3cap; C:\Windows\System32\drivers\vms3cap.sys [2012-07-26 6528]
S3 scfilter;@%SystemRoot%\System32\drivers\scfilter.sys,-11; C:\Windows\System32\DRIVERS\scfilter.sys [2012-07-26 32768]
S3 sdbus;sdbus; C:\Windows\System32\drivers\sdbus.sys [2013-07-29 158976]
S3 sdstor;@sdstor.inf,%sdstor_ServiceDesc%;SD Storage Port Driver; C:\Windows\System32\drivers\sdstor.sys [2013-03-02 46824]
S3 SerCx;Serial UART Support Library; C:\Windows\system32\drivers\SerCx.sys [2012-07-26 51200]
S3 Serenum;@oem81.inf,%SerEnum.SvcDesc%;Serenum Filter Driver; C:\Windows\System32\drivers\serenum.sys [2012-07-26 17920]
S3 Serial;@msports.inf,%Serial.SVCDESC%;Serial port driver; C:\Windows\System32\drivers\serial.sys [2012-07-26 86528]
S3 sermouse;@msmouse.inf,%sermouse.SvcDesc%;Serial Mouse Driver; C:\Windows\System32\drivers\sermouse.sys [2012-07-26 19968]
S3 sfloppy;@flpydisk.inf,%sfloppy_devdesc%;High-Capacity Floppy Disk Drive; C:\Windows\System32\drivers\sfloppy.sys [2012-07-26 13312]
S3 SpbCx;Simple Peripheral Bus Support Library; C:\Windows\system32\drivers\SpbCx.sys [2012-07-26 46080]
S3 tap0901;@oem13.inf,%DeviceDescription%;avast! SecureLine TAP Adapter; C:\Windows\system32\DRIVERS\tap0901.sys [2013-04-30 35088]
S3 TCPIP6;@netip6.inf,%MS_TCPIP6.TCPIP6.ServiceDescription%;Microsoft IPv6 Protocol Driver; C:\Windows\system32\DRIVERS\tcpip.sys [2013-07-29 1800960]
S3 terminpt;@termmou.inf,%TermInpt.SVCDESC%;Microsoft Remote Desktop Input Driver; C:\Windows\System32\drivers\terminpt.sys [2012-07-26 29936]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-07-26 49152]
S3 TsUsbGD;@tsgenericusbdriver.inf,%TsUsbGD.DeviceDesc.Generic%;Remote Desktop Generic USB Device; C:\Windows\System32\drivers\TsUsbGD.sys [2012-07-26 27264]
S3 UASPStor;@uaspstor.inf,%UASPortName%;USB Attached SCSI (UAS) Driver; C:\Windows\System32\drivers\uaspstor.sys [2012-07-26 76016]
S3 UCX01000;USB Controller Extension; C:\Windows\System32\drivers\ucx01000.sys [2013-07-29 180480]
S3 UmPass;@umpass.inf,%UmPass.SVCDESC%;Microsoft UMPass Driver; C:\Windows\System32\drivers\umpass.sys [2012-07-26 8704]
S3 usbcir;@usbcir.inf,%usbcir.SVCDESC%;eHome Infrared Receiver (USBCIR); C:\Windows\System32\drivers\usbcir.sys [2012-07-26 87040]
S3 USBHUB3;@usbhub3.inf,%UsbHub3.SVCDESC%;SuperSpeed Hub; C:\Windows\System32\drivers\UsbHub3.sys [2013-06-23 362240]
S3 usbohci;@usbport.inf,%OHCIMP.SvcDesc%;Microsoft USB Open Host Controller Miniport Driver; C:\Windows\System32\drivers\usbohci.sys [2013-03-02 22016]
S3 usbprint;@usbprint.inf,%USBPRINT.SvcDesc%;Microsoft USB PRINTER Class; C:\Windows\System32\drivers\usbprint.sys [2012-07-26 18944]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2013-03-02 36864]
S3 USBSTOR;@usbstor.inf,%USBSTOR.SvcDesc%;USB Mass Storage Driver; C:\Windows\System32\drivers\USBSTOR.SYS [2012-07-26 97008]
S3 usbuhci;@usbport.inf,%UHCIMP.SvcDesc%;Microsoft USB Universal Host Controller Miniport Driver; C:\Windows\System32\drivers\usbuhci.sys [2013-03-02 24576]
S3 USBXHCI;@usbxhci.inf,%PCI\CC_0C0330.DeviceDesc%;USB xHCI Compliant Host Controller; C:\Windows\System32\drivers\USBXHCI.SYS [2013-07-29 268032]
S3 VerifierExt;@%SystemRoot%\system32\drivers\VerifierExt.sys,-1000; C:\Windows\system32\drivers\VerifierExt.sys [2012-07-26 80112]
S3 vhdmp;vhdmp; C:\Windows\System32\drivers\vhdmp.sys [2013-06-05 368360]
S3 ViaC7;@cpu.inf,%ViaC7.SvcDesc%;VIA C7 Processor Driver; C:\Windows\System32\drivers\viac7.sys [2013-03-02 77824]
S3 VMBusHID;VMBusHID; C:\Windows\System32\drivers\VMBusHID.sys [2012-07-26 18304]
S3 WacomPen;@hiddigi.inf,%WacomPen.SVCDESC%;Wacom Serial Pen HID Driver; C:\Windows\System32\drivers\wacompen.sys [2012-07-26 20608]
S3 Wanarp;@%systemroot%\system32\rascfg.dll,-32011; C:\Windows\system32\DRIVERS\wanarp.sys [2013-06-05 70656]
S3 WdBoot;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-390; C:\Windows\system32\drivers\WdBoot.sys [2013-03-16 29088]
S3 WdFilter;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-330; C:\Windows\system32\drivers\WdFilter.sys [2013-03-16 193936]
S3 WIMMount;WIMMount; C:\Windows\system32\drivers\wimmount.sys [2012-07-26 27376]
S3 wpcfltr;Family Safety Filter Driver; C:\Windows\system32\DRIVERS\wpcfltr.sys [2012-07-26 35328]
S3 WpdUpFltr;@%systemroot%\System32\drivers\WpdUpFltr.sys,-100; C:\Windows\System32\drivers\WpdUpFltr.sys [2012-07-26 15360]
S4 cdfs;CD/DVD File System Reader; C:\Windows\system32\DRIVERS\cdfs.sys [2012-07-26 89088]
S4 cnghwassist;@%SystemRoot%\system32\drivers\cnghwassist.sys,-100; C:\Windows\System32\DRIVERS\cnghwassist.sys [2013-03-02 31464]
S4 udfs;udfs; C:\Windows\system32\DRIVERS\udfs.sys [2012-07-26 260608]
S4 ws2ifsl;@%systemroot%\System32\drivers\ws2ifsl.sys,-1000; C:\Windows\system32\drivers\ws2ifsl.sys [2013-03-02 16384]

boss382 · #2 Příspěvek od **boss382** » 30 zář 2013 18:54

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640]
R2 AudioEndpointBuilder;@%SystemRoot%\system32\AudioEndpointBuilder.dll,-204; C:\Windows\System32\svchost.exe [2013-03-02 23040]
R2 Audiosrv;@%SystemRoot%\system32\audiosrv.dll,-200; C:\Windows\System32\svchost.exe [2013-03-02 23040]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-08-30 46808]
R2 BFE;@%SystemRoot%\system32\bfe.dll,-1001; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 BrokerInfrastructure;@%windir%\system32\bisrv.dll,-100; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 CryptSvc;@%SystemRoot%\system32\cryptsvc.dll,-1001; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 DcomLaunch;@combase.dll,-5012; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 DeviceAssociationService;@%SystemRoot%\system32\das.dll,-100; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 Dhcp;@%SystemRoot%\system32\dhcpcore.dll,-100; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 Dnscache;@%SystemRoot%\System32\dnsapi.dll,-101; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 DPS;@%systemroot%\system32\dps.dll,-500; C:\Windows\System32\svchost.exe [2013-03-02 23040]
R2 EventLog;@%SystemRoot%\system32\wevtsvc.dll,-200; C:\Windows\System32\svchost.exe [2013-03-02 23040]
R2 EventSystem;@comres.dll,-2450; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 IKEEXT;@%SystemRoot%\system32\ikeext.dll,-501; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 LanmanServer;@%systemroot%\system32\srvsvc.dll,-100; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 LanmanWorkstation;@%systemroot%\system32\wkssvc.dll,-100; C:\Windows\System32\svchost.exe [2013-03-02 23040]
R2 lmhosts;@%SystemRoot%\system32\lmhsvc.dll,-101; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 LSM;@%windir%\system32\lsm.dll,-1001; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 MMCSS;@%systemroot%\system32\mmcss.dll,-100; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 MpsSvc;@%SystemRoot%\system32\FirewallAPI.dll,-23090; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 NlaSvc;@%SystemRoot%\System32\nlasvc.dll,-1; C:\Windows\System32\svchost.exe [2013-03-02 23040]
R2 nsi;@%SystemRoot%\system32\nsisvc.dll,-200; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-08-27 14573856]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-06-21 640288]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-08-27 2155296]
R2 PDF Architect Helper Service;PDF Architect Helper Service; C:\Program Files\PDF Architect\HelperService.exe [2013-01-09 1324104]
R2 Power;@%SystemRoot%\system32\umpo.dll,-100; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 ProfSvc;@%systemroot%\system32\profsvc.dll,-300; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 RpcEptMapper;@%windir%\system32\RpcEpMap.dll,-1001; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 RpcSs;@combase.dll,-5010; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 SamSs;@%SystemRoot%\system32\samsrv.dll,-1; C:\Windows\system32\lsass.exe [2013-03-02 23040]
R2 SENS;@%SystemRoot%\system32\Sens.dll,-200; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 SharedAccess;@%SystemRoot%\system32\ipnathlp.dll,-106; C:\Windows\System32\svchost.exe [2013-03-02 23040]
R2 ShellHWDetection;@%SystemRoot%\System32\shsvcs.dll,-12288; C:\Windows\System32\svchost.exe [2013-03-02 23040]
R2 Schedule;@%SystemRoot%\system32\schedsvc.dll,-100; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 Spooler;@%systemroot%\system32\spoolsv.exe,-1; C:\Windows\System32\spoolsv.exe [2012-07-26 496640]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-04-20 104848]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-06-21 413472]
R2 StiSvc;@%SystemRoot%\system32\wiaservc.dll,-9; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 SysMain;@%SystemRoot%\system32\sysmain.dll,-1000; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 Themes;@%SystemRoot%\System32\themeservice.dll,-8192; C:\Windows\System32\svchost.exe [2013-03-02 23040]
R2 TrkWks;@%SystemRoot%\system32\trkwks.dll,-1; C:\Windows\System32\svchost.exe [2013-03-02 23040]
R2 Wcmsvc;@%SystemRoot%\System32\wcmsvc.dll,-4097; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 winmgmt;@%Systemroot%\system32\wbem\wmisvc.dll,-205; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 WlanSvc;@%SystemRoot%\System32\wlansvc.dll,-257; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R2 wscsvc;@%SystemRoot%\System32\wscsvc.dll,-200; C:\Windows\System32\svchost.exe [2013-03-02 23040]
R2 WSearch;@%systemroot%\system32\SearchIndexer.exe,-103; C:\Windows\system32\SearchIndexer.exe [2013-06-05 670208]
R3 AeLookupSvc;@%SystemRoot%\system32\aelupsvc.dll,-1; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R3 ALG;@%SystemRoot%\system32\Alg.exe,-112; C:\Windows\System32\alg.exe [2012-07-26 71168]
R3 Appinfo;@%systemroot%\system32\appinfo.dll,-100; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R3 BITS;@%SystemRoot%\system32\qmgr.dll,-1000; C:\Windows\System32\svchost.exe [2013-03-02 23040]
R3 Browser;@%systemroot%\system32\browser.dll,-100; C:\Windows\System32\svchost.exe [2013-03-02 23040]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2012-07-06 43616]
R3 hidserv;@%SystemRoot%\System32\hidserv.dll,-101; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R3 NcdAutoSetup;@%SystemRoot%\system32\NcdAutoSetup.dll,-100; C:\Windows\System32\svchost.exe [2013-03-02 23040]
R3 Netman;@%SystemRoot%\system32\netman.dll,-109; C:\Windows\System32\svchost.exe [2013-03-02 23040]
R3 netprofm;@%SystemRoot%\system32\netprofmsvc.dll,-202; C:\Windows\System32\svchost.exe [2013-03-02 23040]
R3 PcaSvc;@%SystemRoot%\system32\pcasvc.dll,-1; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R3 PlugPlay;@%SystemRoot%\system32\umpnpmgr.dll,-200; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R3 PolicyAgent;@%SystemRoot%\System32\polstore.dll,-5010; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R3 RasAuto;@%Systemroot%\system32\rasauto.dll,-200; C:\Windows\System32\svchost.exe [2013-03-02 23040]
R3 RasMan;@%Systemroot%\system32\rasmans.dll,-200; C:\Windows\System32\svchost.exe [2013-03-02 23040]
R3 SSDPSRV;@%systemroot%\system32\ssdpsrv.dll,-100; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R3 SstpSvc;@%SystemRoot%\system32\sstpsvc.dll,-200; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2013-09-21 565672]
R3 SystemEventsBroker;@%windir%\system32\SystemEventsBrokerServer.dll,-1001; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R3 TapiSrv;@%SystemRoot%\system32\tapisrv.dll,-10100; C:\Windows\System32\svchost.exe [2013-03-02 23040]
R3 TimeBroker;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R3 upnphost;@%systemroot%\system32\upnphost.dll,-213; C:\Windows\system32\svchost.exe [2013-03-02 23040]
R3 VaultSvc;@%SystemRoot%\system32\vaultsvc.dll,-1003; C:\Windows\system32\lsass.exe [2013-03-02 23040]
R3 WdiServiceHost;@%systemroot%\system32\wdi.dll,-502; C:\Windows\System32\svchost.exe [2013-03-02 23040]
R3 WdiSystemHost;@%systemroot%\system32\wdi.dll,-500; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S2 gpsvc;@gpapi.dll,-112; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-01-19 116648]
S2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S2 PDF Architect Service;PDF Architect Service; C:\Program Files\PDF Architect\ConversionService.exe [2013-01-09 795208]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-02-28 161384]
S2 sppsvc;@%SystemRoot%\system32\sppsvc.exe,-101; C:\Windows\system32\sppsvc.exe [2012-07-26 3802624]
S3 AllUserInstallAgent;@%SystemRoot%\System32\AUInstallAgent.dll,-101; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S3 AppIDSvc;@%systemroot%\system32\appidsvc.dll,-100; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 BDESVC;@%SystemRoot%\system32\bdesvc.dll,-100; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S3 bthserv;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 COMSysApp;@comres.dll,-947; C:\Windows\system32\dllhost.exe [2012-07-26 8704]
S3 defragsvc;@%SystemRoot%\system32\defragsvc.dll,-101; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 DeviceInstall;@%SystemRoot%\system32\umpnpmgr.dll,-100; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 dot3svc;@%systemroot%\system32\dot3svc.dll,-1102; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 DsmSvc;@%SystemRoot%\system32\DeviceSetupManager.dll,-1000; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 EapHost;@%systemroot%\system32\eapsvc.dll,-1; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S3 EFS;@%SystemRoot%\system32\efssvc.dll,-100; C:\Windows\System32\lsass.exe [2013-03-02 23040]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe [2012-07-26 529920]
S3 fhsvc;@%systemroot%\system32\fhsvc.dll,-101; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-01-19 116648]
S3 hkmsvc;@%SystemRoot%\system32\kmsvc.dll,-6; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S3 HomeGroupListener;@%SystemRoot%\System32\ListSvc.dll,-100; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S3 HomeGroupProvider;@%SystemRoot%\System32\provsvc.dll,-100; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S3 KeyIso;@keyiso.dll,-100; C:\Windows\system32\lsass.exe [2013-03-02 23040]
S3 KtmRm;@comres.dll,-2946; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S3 lltdsvc;@%SystemRoot%\system32\lltdres.dll,-1; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S3 MSDTC;@comres.dll,-2797; C:\Windows\System32\msdtc.exe [2012-07-26 136192]
S3 msiserver;@%SystemRoot%\system32\msimsg.dll,-27; C:\Windows\system32\msiexec.exe [2012-07-26 62976]
S3 NcaSvc;@%SystemRoot%\system32\ncasvc.dll,-3009; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 OverwolfUpdaterService;Overwolf Updater Service; C:\Program Files\Overwolf\OverwolfUpdater.exe [2013-08-22 18360]
S3 pla;@%systemroot%\system32\pla.dll,-500; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S3 PNRPAutoReg;@%SystemRoot%\system32\pnrpauto.dll,-8002; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S3 PrintNotify;@C:\Windows\system32\spool\DRIVERS\W32X86\3\PrintConfig.dll,-1; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 QWAVE;@%SystemRoot%\system32\qwave.dll,-1; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 RpcLocator;@%systemroot%\system32\Locator.exe,-2; C:\Windows\system32\locator.exe [2012-07-26 9728]
S3 SDRSVC;@%SystemRoot%\system32\sdrsvc.dll,-107; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 seclogon;@%SystemRoot%\system32\seclogon.dll,-7001; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 SensrSvc;@%SystemRoot%\System32\sensrsvc.dll,-1000; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 SessionEnv;@%SystemRoot%\System32\SessEnv.dll,-1026; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S3 svsvc;@%SystemRoot%\system32\svsvc.dll,-101; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 swprv;@%SystemRoot%\System32\swprv.dll,-103; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S3 TabletInputService;@%SystemRoot%\system32\TabSvc.dll,-100; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S3 TermService;@%SystemRoot%\System32\termsrv.dll,-268; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S3 THREADORDER;@%systemroot%\system32\mmcss.dll,-102; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 TrustedInstaller;@%SystemRoot%\servicing\TrustedInstaller.exe,-100; C:\Windows\servicing\TrustedInstaller.exe [2013-06-23 85504]
S3 UI0Detect;@%SystemRoot%\system32\ui0detect.exe,-101; C:\Windows\system32\UI0Detect.exe [2012-07-26 35840]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S3 vds;@%SystemRoot%\system32\vds.exe,-100; C:\Windows\System32\vds.exe [2013-07-29 581120]
S3 vmickvpexchange;@%systemroot%\system32\vmicres.dll,-201; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 vmicrdv;@%systemroot%\system32\vmicres.dll,-601; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 vmicshutdown;@%systemroot%\system32\vmicres.dll,-301; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 vmictimesync;@%systemroot%\system32\vmicres.dll,-401; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 vmicvss;@%systemroot%\system32\vmicres.dll,-501; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 vmicheartbeat;@%systemroot%\system32\vmicres.dll,-101; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 VSS;@%systemroot%\system32\vssvc.exe,-102; C:\Windows\system32\vssvc.exe [2013-06-23 1150976]
S3 W32Time;@%SystemRoot%\system32\w32time.dll,-200; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe [2012-07-26 1350144]
S3 WbioSrvc;@%systemroot%\system32\wbiosrvc.dll,-100; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 wcncsvc;@%SystemRoot%\system32\wcncsvc.dll,-3; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S3 WcsPlugInService;@%SystemRoot%\system32\WcsPlugInService.dll,-200; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 Wecsvc;@%SystemRoot%\system32\wecsvc.dll,-200; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 wercplsupport;@%SystemRoot%\System32\wercplsupport.dll,-101; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S3 WiaRpc;@%SystemRoot%\system32\wiarpc.dll,-2; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 WinDefend;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310; C:\Program Files\Windows Defender\MsMpEng.exe [2013-03-16 13344]
S3 wlidsvc;@%SystemRoot%\system32\wlidsvc.dll,-100; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 wmiApSrv;@%Systemroot%\system32\wbem\wmiapsrv.exe,-110; C:\Windows\system32\wbem\WmiApSrv.exe [2012-07-26 142336]
S3 WPCSvc;@%SystemRoot%\system32\wpcsvc.dll,-100; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S3 WPDBusEnum;@%SystemRoot%\system32\wpdbusenum.dll,-100; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-26 251248]
S4 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S4 AxInstSV;@%SystemRoot%\system32\AxInstSV.dll,-103; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S4 CertPropSvc;@%SystemRoot%\System32\certprop.dll,-11; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S4 fdPHost;@%systemroot%\system32\fdPHost.dll,-100; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S4 FDResPub;@%systemroot%\system32\fdrespub.dll,-100; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S4 IpHlpSvc;@%SystemRoot%\system32\iphlpsvc.dll,-500; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S4 MSiSCSI;@%SystemRoot%\system32\iscsidsc.dll,-5000; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S4 napagent;@%SystemRoot%\system32\qagentrt.dll,-6; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S4 Netlogon;@%SystemRoot%\System32\netlogon.dll,-102; C:\Windows\system32\lsass.exe [2013-03-02 23040]
S4 NetTcpPortSharing;@%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8201; C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2012-07-06 129608]
S4 p2pimsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8004; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S4 p2psvc;@%SystemRoot%\system32\p2psvc.dll,-8006; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S4 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S4 PNRPsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8000; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S4 RemoteAccess;@%Systemroot%\system32\mprdim.dll,-200; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S4 RemoteRegistry;@regsvc.dll,-1; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S4 SCardSvr;@%SystemRoot%\System32\SCardSvr.dll,-1; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S4 SCPolicySvc;@%SystemRoot%\System32\certprop.dll,-13; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S4 SNMPTRAP;@%SystemRoot%\system32\snmptrap.exe,-3; C:\Windows\System32\snmptrap.exe [2012-07-26 13312]
S4 TeamViewer8;TeamViewer 8; C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe [2012-12-14 3467768]
S4 WebClient;@%systemroot%\system32\webclnt.dll,-100; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S4 WerSvc;@%SystemRoot%\System32\wersvc.dll,-100; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S4 WinHttpAutoProxySvc;@%SystemRoot%\system32\winhttp.dll,-100; C:\Windows\system32\svchost.exe [2013-03-02 23040]
S4 WinRM;@%Systemroot%\system32\wsmsvc.dll,-101; C:\Windows\System32\svchost.exe [2013-03-02 23040]
S4 WMPNetworkSvc;@%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101; C:\Program Files\Windows Media Player\wmpnetwk.exe [2013-03-02 1025536]

-----------------EOF-----------------

#3 Příspěvek od **vyosek** » 30 zář 2013 19:06

Zdravim

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

Ulozte nejlepe na plochu
Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
Probehne vytvoreni zalohy a nasledne prohledavani
Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

Ulozte nejlepe na plochu
Ukoncete vsechny programy
Kliknete na Scan a nasledne Clean
Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

boss382 · #4 Příspěvek od **boss382** » 30 zář 2013 19:14

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.3 (09.27.2013:1)
OS: Windows 8 Pro x86
Ran by Tibor on po 30.09.2013 at 20:07:50,35
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-1663960766-3618707702-2185633917-1001\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL

~~~ Registry Keys

Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\babsolution
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\bi
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\delta
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\yourfiledownloader
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1663960766-3618707702-2185633917-1001\Software\SweetIM
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\delta
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\tarma installer
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\yourfiledownloader
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\driverscanner
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\prod.cap
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\backupstack_rasapi32
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\backupstack_rasmancs
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\webcakedesktop_rasapi32
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\webcakedesktop_rasmancs
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A1E28287-1A31-4B0F-8D05-AA8C465D3C5A}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0DE3BAFD-D003-4EDE-B2E9-27428B374102}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{1FE97A37-0AA0-4ED1-B0AA-38A3E7287768}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{FFEBBF0A-C22C-4172-89FF-45215A135AC8}

~~~ Files

Successfully deleted: [File] "C:\Users\Tibor\appdata\local\google\chrome\user data\default\local storage\http_www1.delta-search.com_0.localstorage"
Successfully deleted: [File] "C:\Users\Tibor\appdata\local\google\chrome\user data\default\local storage\http_www1.delta-search.com_0.localstorage-journal"

~~~ Folders

Failed to delete: [Folder] "C:\ProgramData\babylon"
Failed to delete: [Folder] "C:\ProgramData\starapp"
Failed to delete: [Folder] "C:\ProgramData\tarma installer"
Failed to delete: [Folder] "C:\ProgramData\application data\babylon"
Failed to delete: [Folder] "C:\ProgramData\application data\starapp"
Failed to delete: [Folder] "C:\ProgramData\application data\tarma installer"
Successfully deleted: [Folder] "C:\Users\Tibor\AppData\Roaming\babylon"
Successfully deleted: [Folder] "C:\Users\Tibor\AppData\Roaming\goforfiles"
Successfully deleted: [Folder] "C:\Users\Tibor\AppData\Roaming\software informer"
Successfully deleted: [Folder] "C:\Users\Tibor\AppData\Roaming\systweak"
Successfully deleted: [Folder] "C:\Users\Tibor\AppData\Roaming\yourfiledownloader"
Successfully deleted: [Folder] "C:\Users\Tibor\appdata\locallow\delta"
Failed to delete: [Folder] "C:\Program Files\myfree codec"
Successfully deleted: [Folder] "C:\Program Files\mypc backup"
Successfully deleted: [Folder] "C:\Program Files\yourfiledownloader"
Failed to delete: [Folder] "C:\Windows\system32\ai_recyclebin"

~~~ Chrome

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\bicnnkjibmphdeigoodpjlcklcnaobdj

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on po 30.09.2013 at 20:13:44,06
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

boss382 · #5 Příspěvek od **boss382** » 30 zář 2013 19:26

# AdwCleaner v3.005 - Report created 30/09/2013 at 20:19:30
# Updated 22/09/2013 by Xplode
# Operating System : Windows 8 Pro (32 bits)
# Username : Tibor - TIBOR
# Running from : C:\Users\Tibor\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\DSearchLink
Folder Deleted : C:\ProgramData\StarApp
Folder Deleted : C:\ProgramData\Tarma Installer
File Deleted : C:\Users\Tibor\AppData\Local\Temp\Uninstall.exe
File Deleted : C:\Users\Tibor\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Deleted : HKLM\SOFTWARE\Classes\driverscanner
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS
Key Deleted : HKCU\Software\d578dd8e06ded49
Key Deleted : HKLM\SOFTWARE\d578dd8e06ded49
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AF6B0594-6008-4327-93E5-608AD710A6FA}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4B71-B0A3-3D82E62A6909}
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\Software\Uniblue\DriverScanner
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16537

-\\ Mozilla Firefox v

-\\ Google Chrome v28.0.1500.95

[ File : C:\Users\Tibor\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted : homepage
Deleted : icon_url
Deleted : search_url
Deleted : keyword
Deleted : urls_to_restore_on_startup

*************************

AdwCleaner[R0].txt - [2374 octets] - [30/09/2013 20:16:31]
AdwCleaner[S0].txt - [2273 octets] - [30/09/2013 20:19:30]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2333 octets] ##########

#6 Příspěvek od **vyosek** » 30 zář 2013 19:33

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
Zaskrtnete okenko Pro vsechny uzivatele
Zaskrtnete okenko Kontrola na havet "LOP"
Zaskrtnete okenko Kontrola na havet "Purity"
Stari souboru zmente z 30 dnu na 7 dnu
Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
services.exe
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5

%SystemDrive%\PhysicalMBR.bin /md5 

*crack* /s
*keygen* /s
*loader* /s

Kliknete na tlacitko Prohledat
Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
Pokud budou logy dlouhe (forum bude kricet o prekroceni maximalniho poctu znaku), tak je rozdelte do vice prispevku

boss382 · #7 Příspěvek od **boss382** » 30 zář 2013 20:45

mam to po anglicky všetko som spravil ako bolo napisane ale dal som:
"run scan" a trvá to už hodinu no už to skončilo:

OTL Extras logfile created on: 30.9.2013 20:37:27 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Tibor\Desktop
Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16635)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d.M.yyyy

2,49 Gb Total Physical Memory | 1,20 Gb Available Physical Memory | 48,04% Memory free
4,49 Gb Paging File | 2,65 Gb Available in Paging File | 58,99% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 452,66 Gb Total Space | 342,58 Gb Free Space | 75,68% Space Free | Partition Type: NTFS

Computer Name: TIBOR | User Name: Tibor | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-1663960766-3618707702-2185633917-1001\SOFTWARE\Classes\<extension>]
.html [@ = Max3.Association.HTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htafile [open] -- "%1" %*
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 0

========== Authorized Applications List ==========

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{26775CBA-E00A-4E95-ADB7-055188785978}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{3C34DA3F-0D4A-4E41-B4AF-ECD4BE0B3389}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{626A9935-3424-4EFA-8478-7AEAAF6FF21A}" = lport=2869 | protocol=6 | dir=in | app=system |
"{809D55EE-FD23-42B5-8526-2E16BA2B0BC0}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{912E30E1-9B6E-486C-BE54-895FEBA0741B}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{B7C5985C-D14C-4914-B458-1B88708AC9C2}" = lport=547 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{C69E1EF9-5BEE-48D6-9B33-725794AF75F9}" = lport=53 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{CB867328-015F-4225-9747-61443C62CF3C}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{D929ED07-0F5B-4604-8A80-654AAA2C3F07}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{E63E79AF-7939-4EED-A69F-6B6419B7739D}" = rport=2869 | protocol=6 | dir=out | app=system |
"{EDB9BE99-309C-46B1-925F-AE5AB215B720}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{F2800A68-266F-4336-B85D-E28DF11E6BAC}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0B272E52-3DC1-4ACE-8EA4-A8C7FF4CB1F9}" = dir=out | name=icq |
"{22971516-1989-4357-86EF-56406D092372}" = protocol=6 | dir=in | app=c:\program files\simplefiles\downloader.exe |
"{2471B7CB-1177-45A3-A536-87C2CA2600B3}" = protocol=6 | dir=in | app=c:\program files\yourfiledownloader\yourfile.exe |
"{2D171120-4F34-4804-9385-D513581779EB}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version8\teamviewer.exe |
"{474D4CC1-E668-48CD-BE4E-F791C88955FB}" = protocol=17 | dir=in | app=c:\program files\simplefiles\simplefiles.exe |
"{66AB2F3F-C5D5-438D-A8DC-DE3D18217859}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version8\teamviewer.exe |
"{681787B8-9781-4AAC-9502-E65351B3F78C}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe |
"{6EC03D0F-0207-4D6A-9720-070C435050F7}" = protocol=6 | dir=in | app=c:\users\tibor\appdata\roaming\.minecraft\minecraft.exe |
"{6EC2BBA7-1646-4C5E-B93A-056666E3DBC2}" = protocol=17 | dir=in | app=c:\users\tibor\appdata\roaming\.minecraft\minecraft.exe |
"{6F559680-9A81-4F95-BFA2-2D4FDA082C6F}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{7EC4167C-30B1-4B98-9CA3-59AF31E2B411}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version8\teamviewer_service.exe |
"{7F7768B9-12F8-4783-8821-86010A455F4C}" = dir=in | app=c:\program files\garena plus\ggdllhost.exe |
"{84FFE9A1-5659-47AA-998A-91544F89EC5D}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version8\teamviewer_service.exe |
"{897DFFEA-F9BE-401B-9722-448932835C6B}" = protocol=58 | dir=in | name=zdieľanie internetového pripojenia (vyžiadanie smerovača – prichádzajúce prenosy) |
"{94F58BB0-44E6-480A-B2B3-4A9D1010F813}" = dir=in | name=icq |
"{965A6E91-99B8-4010-9D21-594D26D024E5}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe |
"{9A2E60A5-41BC-4F3D-B8A4-B25F2C65352F}" = dir=in | app=c:\program files\garena plus\room\garena_room.exe |
"{9CCA6725-BB9C-4F1B-887D-5DD17273E30E}" = protocol=17 | dir=in | app=c:\program files\yourfiledownloader\downloader.exe |
"{A7D99E96-7355-44D8-83D0-EDDD4087718B}" = protocol=6 | dir=in | app=c:\program files\yourfiledownloader\downloader.exe |
"{A821C995-1FDD-4579-BDB8-99BD713C64E9}" = protocol=17 | dir=in | app=c:\windows\system32\muzapp.exe |
"{BA9B7287-7271-48F5-AD04-5F957EB98EA4}" = protocol=6 | dir=in | app=c:\program files\simplefiles\simplefiles.exe |
"{C254AF51-FFD8-479E-AEA3-8CE77C9F5EDF}" = protocol=17 | dir=in | app=c:\program files\simplefiles\downloader.exe |
"{D7DC4CFF-AAEC-4149-9C5A-60395C99B494}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\half-life\hl.exe |
"{E6AD2EFD-9444-4785-A335-3560DCC4A221}" = protocol=6 | dir=in | app=c:\windows\system32\muzapp.exe |
"{EA415B78-2ADB-4486-AC56-B1EADD1ADD2A}" = protocol=17 | dir=in | app=c:\program files\yourfiledownloader\yourfile.exe |
"{EE3F296F-41B5-4003-A8CD-852F3B115AD7}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\half-life\hl.exe |
"{FF442FA8-7726-4DD9-AD3B-700F3D70A387}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"TCP Query User{277C5BA7-8426-4795-B2B4-FE6676509F1E}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"TCP Query User{289EA8DF-6025-4E7E-8F1B-2A5121584F9C}C:\users\tibor\desktop\spustanie\utorrent.exe" = protocol=6 | dir=in | app=c:\users\tibor\desktop\spustanie\utorrent.exe |
"TCP Query User{296E081C-9F2D-41DD-8FF5-3D16F75B6622}C:\program files\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files\skype\phone\skype.exe |
"TCP Query User{416AED5D-4EC2-4809-87DE-D4A84986216A}C:\program files\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files\skype\phone\skype.exe |
"TCP Query User{41DA2863-204E-4B6A-9521-9660988A4E80}C:\users\tibor\desktop\spustanie\totalcmd.exe" = protocol=6 | dir=in | app=c:\users\tibor\desktop\spustanie\totalcmd.exe |
"TCP Query User{7876E58E-530F-4BF1-9EB6-D0EC4D39422F}C:\users\tibor\desktop\spustanie\utorrent.exe" = protocol=6 | dir=in | app=c:\users\tibor\desktop\spustanie\utorrent.exe |
"TCP Query User{8CC470CF-7EF6-48AD-AB55-19B5F292F7E3}C:\program files\garena plus\room\garena_room.exe" = protocol=6 | dir=in | app=c:\program files\garena plus\room\garena_room.exe |
"TCP Query User{95331CA3-C507-460A-9D73-7FB5579AA0E1}C:\users\tibor\desktop\tibor\warcraft iii\gproxy.exe" = protocol=6 | dir=in | app=c:\users\tibor\desktop\tibor\warcraft iii\gproxy.exe |
"TCP Query User{BF705A78-9CFD-4389-8E10-E0AB7A45A56B}C:\totalcmd\totalcmd.exe" = protocol=6 | dir=in | app=c:\totalcmd\totalcmd.exe |
"TCP Query User{C45855A3-48D5-4714-B63C-5A5213369E44}C:\users\tibor\desktop\tibor\warcraft iii\war3.exe" = protocol=6 | dir=in | app=c:\users\tibor\desktop\tibor\warcraft iii\war3.exe |
"TCP Query User{D9A6ACE0-5F25-4F26-ACE8-4996A7BDABB9}C:\program files\winamp\winamp.exe" = protocol=6 | dir=in | app=c:\program files\winamp\winamp.exe |
"UDP Query User{4C1673DA-BAF2-442A-B3F0-A4172260B97B}C:\program files\winamp\winamp.exe" = protocol=17 | dir=in | app=c:\program files\winamp\winamp.exe |
"UDP Query User{4E80D818-C2F4-40DD-A759-DD46DEAD8D0D}C:\program files\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files\skype\phone\skype.exe |
"UDP Query User{6311AD7A-EE06-409C-8918-00FFE349E7BB}C:\users\tibor\desktop\tibor\warcraft iii\gproxy.exe" = protocol=17 | dir=in | app=c:\users\tibor\desktop\tibor\warcraft iii\gproxy.exe |
"UDP Query User{64B0CC68-DC38-418B-B843-2D6CDC79873B}C:\users\tibor\desktop\spustanie\utorrent.exe" = protocol=17 | dir=in | app=c:\users\tibor\desktop\spustanie\utorrent.exe |
"UDP Query User{6BF7DC88-6936-4538-8096-F2D65961E27B}C:\users\tibor\desktop\spustanie\totalcmd.exe" = protocol=17 | dir=in | app=c:\users\tibor\desktop\spustanie\totalcmd.exe |
"UDP Query User{792D4C6C-C92A-4AEE-99AB-AC766D3BE1BC}C:\totalcmd\totalcmd.exe" = protocol=17 | dir=in | app=c:\totalcmd\totalcmd.exe |
"UDP Query User{A9733810-98BC-44D3-9050-9D86C4AB54F3}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{CA711D34-AA64-477C-9AB5-2B98502FDE18}C:\program files\garena plus\room\garena_room.exe" = protocol=17 | dir=in | app=c:\program files\garena plus\room\garena_room.exe |
"UDP Query User{CC0A1FC5-604A-4EA5-A982-84F59A113081}C:\users\tibor\desktop\tibor\warcraft iii\war3.exe" = protocol=17 | dir=in | app=c:\users\tibor\desktop\tibor\warcraft iii\war3.exe |
"UDP Query User{DB43D78A-88FA-4845-9C81-8833355BBDBC}C:\users\tibor\desktop\spustanie\utorrent.exe" = protocol=17 | dir=in | app=c:\users\tibor\desktop\spustanie\utorrent.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{02C87E0C-B721-4F29-BBD4-981BF8E1A755}" = Windows Azure Libraries for .NET – v2.1
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{05457187-4506-4F58-92F2-A11C9E01DE5A}" = GHOST
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0A1A1D48-DB23-443A-BC7B-49255D138020}" = Entity Framework Designer for Visual Studio 2012 - enu
"{0A53AC6C-9E9D-451D-AB28-F5D1427C4D56}_is1" = Incomedia WebSite X5 v10 - Evolution
"{0A5B39D2-7ED6-4779-BCC9-37F381139DB3}" = Adobe AIR
"{1690CE56-2231-4E59-9006-A0876D949EA8}" = Tools for .Net 3.5
"{1948E039-EC79-4591-951D-9867A8C14C90}" = Microsoft .NET Framework 4.5 SDK
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1B9BBB23-65CB-3AEE-BFC6-633E7CA299FD}" = Microsoft Visual Studio Team Foundation Server 2012 Team Explorer Language Pack - ENU
"{1C163D33-33B3-33EB-A617-0D4D852BE8E1}" = Microsoft Visual C++ 2012 x86 Debug Runtime - 11.0.50727
"{1D3F5D17-BAD3-4D33-9F4E-AFCC44238626}" = Microsoft Visual Studio 2012 Preparation
"{1E25A554-0153-45A7-B342-49003A36367C}" = PDFtk Server
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{23A3E3F8-91B4-4C5A-9E69-6747CF6D426B}" = Microsoft SQL Server Data Tools - enu (11.1.20905.0)
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 25
"{2A01368B-231F-3FF9-9CCB-03A99223E1CC}" = Microsoft Visual Studio Team Foundation Server 2012 Object Model
"{2A7A2979-C796-464A-AA19-9A84FBA01134}" = Windows Azure Shared Components for Microsoft Visual Studio 2012 - v1.0
"{2C0CC01A-DDBC-3AED-AF18-E741242FD727}" = Microsoft Visual Studio Ultimate 2012 XAML UI Designer enu Resources
"{2CD61A2A-E947-4253-906C-789A6F52F416}" = OBERON
"{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727
"{3282FBE1-35FC-48D8-98CA-115A5EF1F9B4}" = NVIDIA PhysX
"{33EC9643-9410-4BAA-B04B-44C44A4A43AD}" = Windows Azure Tools for Microsoft Visual Studio 2012 - v2.1
"{38FC6E9A-F719-431A-A83D-4C86D5FD6555}" = Microsoft Visual Studio 2012 Shell (Minimum) Resources
"{417A3FEE-BDB8-3CAA-819C-766E79CD2E0F}" = Microsoft Visual Studio Express 2012 for Web - ENU
"{45A8F8FF-ED9B-40B2-B923-94F46FCF6135}" = Microsoft SQL Server 2012 Command Line Utilities
"{46561F4C-8C4B-3B79-81FA-074CD2E14584}" = Microsoft Visual Studio Team Foundation Server 2012 Object Model Language Pack - ENU
"{468D22C0-8080-11E2-B86E-B8AC6F98CCE3}" = Google Earth
"{485DE620-A598-4481-ACDC-61734504DB74}" = Microsoft SQL Server 2012 Express LocalDB
"{48615A7B-F026-4F62-A3F1-49001B8E21CB}" = Overwolf
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4bd1cdab-bf82-42c1-af37-e4918141913f}" = Microsoft Visual Studio Express 2012 for Web - ENU
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.3
"{503336C5-965C-415B-B535-CD42C0FD013E}" = Microsoft ASP.NET MVC 4 - Visual Studio Express 2012 for Web - ENU
"{5CBFF3F3-2D40-34EE-BCA5-A95BC19E400D}" = Microsoft .NET Framework 4.5 Multi-Targeting Pack
"{623ABB38-F593-3706-B799-EEEC72ED96F4}" = Microsoft Visual Studio Express 2012 for Web - ENU
"{62BC36B2-F9FB-405F-94B4-F2D3A71C402D}" = Microsoft ASP.NET Web Pages 2 - Visual Studio Express 2012 for Web - ENU
"{62E050BD-446C-4A4D-A8BD-A56507BC302E}" = Windows Azure Emulator - v2.1
"{631471BE-DEAB-454B-A9AC-CE3EB42C28B3}" = Microsoft ASP.NET Web Pages
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{67ED4F6B-BE85-410B-A60E-793CEB7D7DAD}" = Microsoft SQL Server 2012 Data-Tier App Framework
"{68755A70-3A1B-4E70-A5EF-6F2452B77A5A}" = OBERON
"{6D6D43E5-218C-4B05-92D3-2240810F4760}" = Microsoft SQL Server 2012 T-SQL Language Service
"{6DAB46E3-D017-3E2B-85D8-F57A230384C0}" = Microsoft Visual Studio Team Foundation Server 2012 Team Explorer
"{71a40c60-27c2-443a-b7c7-6e4f3aad1d5a}" = Microsoft ASP.NET and Web Frameworks 2012.2
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{773AC1E4-5F27-4DF6-A932-7FDDE35C069D}" = Microsoft SQL Server Compact 4.0 SP1 ENU
"{79B49428-E9B0-4479-A0FA-3EFF8AFA9F07}" = Microsoft SQL Server 2012 Transact-SQL Compiler Service
"{7FF0ACFE-4346-4D9D-B822-C69B99AAE1FC}" = Microsoft_VC80_MFCLOC_x86
"{800F484E-9D69-492D-B656-7BAA32586142}" = Microsoft Visual Studio 2012 Shell (Minimum)
"{8040aebb-c735-4cbe-a6ce-827e359b268b}" = Windows Azure Tools for Microsoft Visual Studio 2012 - v2.1
"{80A07844-CA64-4DE4-AB61-D37DDBE8074F}" = PDF Architect
"{81D24F21-54A9-49EB-9656-119E60BE4C04}" = Uninstall Finalizer
"{820C677A-41B2-48C3-8136-FEE35A052E73}" = Microsoft Visual Studio 2012 Shell (Minimum) Interop Assemblies
"{83C7F964-AC58-4104-B613-B4D0F61DA8CD}" = Microsoft SQL Server 2012 Native Client
"{8AE28FB8-B8AE-4B58-A5FE-77F45E462BAE}" = Microsoft_VC80_MFC_x86
"{90120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007
"{90120000-0015-041B-0000-0000000FF1CE}" = Microsoft Office Access MUI (Slovak) 2007
"{90120000-0016-041B-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Slovak) 2007
"{90120000-0018-041B-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Slovak) 2007
"{90120000-0019-041B-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Slovak) 2007
"{90120000-001A-041B-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Slovak) 2007
"{90120000-001B-041B-0000-0000000FF1CE}" = Microsoft Office Word MUI (Slovak) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040E-0000-0000000FF1CE}" = Microsoft Office Proof (Hungarian) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-041B-0000-0000000FF1CE}" = Microsoft Office Proofing (Slovak) 2007
"{90120000-0044-041B-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Slovak) 2007
"{90120000-006E-041B-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Slovak) 2007
"{901C0409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Access 2003 Runtime
"{9169C939-ED01-446A-BD0C-29873BAF4E48}" = Prerequisites for SSDT
"{942CC691-5B98-42A3-8BC5-A246BA69D983}" = Microsoft ASP.NET MVC 4 Runtime
"{952D88D2-3E6F-4E40-8553-8070FEFCE5CD}" = Adobe Creative Suite 5 Master Collection
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A456DFB-5404-471D-8C7B-0E2A155E999B}" = Microsoft ASP.NET Visual Studio 2012 Uninstall Finalizer
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9F6B0216-DBDC-4D64-BD6C-3BABD6BA295C}" = Windows Azure Tools for Microsoft Visual Studio 2012 Core
"{A036EDBB-F729-4EE7-A820-854FC5FF71D0}" = Install Finalizer
"{A47FD1BF-A815-4A76-BE65-53A15BD5D25D}" = Microsoft SQL Server System CLR Types
"{A5FBB5D4-D95A-436E-8499-D186A9BCE6A0}_is1" = Counter-Strike 1.6 HD verze 1.0
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{AC76BA86-7AD7-1033-7B44-AB0000000001}" = Adobe Reader XI (11.0.04)
"{AF890091-2603-C1C6-DCD6-B8799D4FB464}" = Adobe Community Help
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovládač 3D Vision 320.49
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 320.49
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafický ovládač 320.49
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 1.6.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Softvér systému s podporou technológie PhysX 9.13.0604
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizácie NVIDIA 8.3.14
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamC" = GeForce Experience NvStream Client Components
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Ovládač zvuku HD 1.3.24.2
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.5
"{B8FFB7D6-6ABD-47C3-8BAD-86FF5D8F3EDC}" = IIS 8.0 Express
"{BCEBC40A-16A1-4CCD-A917-887749706088}" = Microsoft ASP.NET MVC 3 - Visual Studio Express 2012 for Web
"{BE807574-C0BE-4DAC-A121-0A87BF5B46B6}" = Microsoft Web Developer Tools 2012.2.1 - Visual Studio Express 2012 for Web
"{BFE16218-BBA6-4FE3-BE07-505AA7C418C7}" = Microsoft NuGet - Visual Studio Express 2012 for Web
"{C0770F76-6923-4EC4-A062-E688B99DCE40}" = Microsoft ASP.NET Visual Studio 2012 Finalizer
"{C1BE4600-7D15-3D1E-8AA2-B3241DB1D063}" = Microsoft Visual Studio Ultimate 2012 XAML UI Designer Core
"{C75EF0A9-F228-40E9-AA20-B832F8350A4C}" = Microsoft ASP.NET Web Pages - Visual Studio Express 2012 for Web
"{C8491840-1B85-40CF-8FF4-1CCA8078C00F}" = Microsoft Web Platform Installer 4.6
"{C91B24F6-1629-11E2-B696-21676188709B}" = PDF Split And Merge Basic
"{C949C178-9F63-458F-A76C-C0AA14B92C5F}_is1" = Windows 8 Start Screen Customizer version 1.3.6
"{CB07E706-5DD7-4093-83A1-1430D5B6FA75}" = Microsoft_VC80_ATL_x86
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CD920828-2B95-49A4-8BFD-1D34BCBF5A27}" = Microsoft SQL Server 2012 Transact-SQL ScriptDom
"{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}" = Microsoft .NET Framework 4 Multi-Targeting Pack
"{D2964C0D-477B-4914-B791-1D80E61E85E6}" = Microsoft SQL Server Data Tools Build Utilities - enu (11.1.20905.0)
"{D7BF3B76-EEF9-4868-9B2B-42ABF60B279A}" = Microsoft_VC80_CRT_x86
"{DA1C1761-5F4F-4332-AB9D-29EDF3F8EA0A}" = Microsoft SQL Server 2012 Management Objects
"{DCDEC776-BADD-48B9-8F9A-DFF513C3D7FA}" = Microsoft ASP.NET MVC 3
"{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player
"{E2082604-4BA5-44BB-BBFB-AF0F3CB8C6AB}" = Microsoft System CLR Types for SQL Server 2012
"{E43AC95E-66B0-4CEC-AADD-C9BFEF5A4C0A}" = Microsoft Web Deploy 3.0
"{E4C33F5B-1B2F-466E-957E-B274F08151A0}" = Microsoft Web Deploy dbSqlPackage Provider - enu
"{E818AE7C-244B-4A50-9C86-C0E4A8B69159}" = Microsoft Visual Studio 2012 Tools for SQL Server Compact 4.0 SP1 ENU
"{EA63C5C1-EBBC-477C-9CC7-41454DDFAFF2}" = Microsoft ASP.NET Web Pages 2 Runtime
"{EDABC076-B762-4CB9-8FFC-9F82A950D542}" = Windows Azure Authoring Tools - v2.1
"{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727
"{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb" = IIS Express Application Compatibility Database for x86
"{FEB375AB-6EEC-3929-8FAF-188ED81DD8B5}" = Microsoft Help Viewer 2.0
"5513-1208-7298-9440" = JDownloader 0.9
"Adobe AIR" = Adobe AIR
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"AMX Mod X Installer" = AMX Mod X Installer 1.8.2
"avast" = avast! Free Antivirus
"CCleaner" = CCleaner
"Cok Free Auto Clicker_is1" = Cok Free Auto Clicker 2.0
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"Eurobattle.net1.26a" = Eurobattle.net
"Free PDF to Word Converter_is1" = Free PDF to Word Converter 1.5
"Google Chrome" = Google Chrome
"GotClip" = GotClip Downloader
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"Jed's Half-Life Model Viewer" = Jed's Half-Life Model Viewer 1.3.6
"Microsoft Help Viewer 2.0" = Microsoft Help Viewer 2.0
"Migration System Updater RBP" = Migration System Updater RBP
"Notepad++" = Notepad++
"novaPDF SDK 7_is1" = novaPDF SDK 7.7
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Opera 17.0.1241.28" = Opera Next 17.0.1241.28
"PDFTools_is1" = PDFTools Version 1.3 (08/26/2007)
"PowerISO" = PowerISO
"PROPLUS" = Microsoft Office Professional Plus 2007
"Steam App 10" = Counter-Strike
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"TeamViewer 8" = TeamViewer 8
"Totalcmd" = Total Commander (Remove or Repair)
"UltraUXThemePatcher" = UltraUXThemePatcher
"VLC media player" = VLC media player 2.0.2
"Winamp" = Winamp
"Windows Azure Emulator - v2.1" = Windows Azure Emulator - v2.1
"WinRAR archiver" = WinRAR 4.20 (32-bit)
"WordToPDF_is1" = WordToPDF v.3

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1663960766-3618707702-2185633917-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"c1cf4c0f01c31177" = eDANE – aplikácia sekcie daňovej FR SR pre podávanie daňových dokumentov
"MyFreeCodec" = MyFreeCodec
"UnityWebPlayer" = Unity Web Player
"Winamp Detect" = Winamp Detector Plug-in

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 30.9.2013 15:35:18 | Computer Name = Tibor | Source = Application Error | ID = 1000
Description = Názov chybujúcej aplikácie: hlmv.exe, verzia: 1.3.6.0, časová značka:
0x473aca37 Názov chybujúceho modulu: ntdll.dll, verzia: 6.2.9200.16578, časová značka:
0x515fac9c Kód výnimky: 0xc0000005 Odstup chyby: 0x0001a475 Identifikácia chybujúceho
procesu: 0x17e8 Čas spustenia chybujúcej aplikácie: 0x01cebe1430350734 Cesta chybujúcej
aplikácie: C:\Program Files\Jed's Half-Life Model Viewer 1.3.6\hlmv.exe Cesta chybujúceho
modulu: C:\Windows\SYSTEM32\ntdll.dll Identifikácia hlásenia: 6faba735-2a07-11e3-b075-1c75081044a5
Celé
meno chybujúceho balíka: Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error - 30.9.2013 15:35:33 | Computer Name = Tibor | Source = Application Error | ID = 1000
Description = Názov chybujúcej aplikácie: hlmv.exe, verzia: 1.3.6.0, časová značka:
0x473aca37 Názov chybujúceho modulu: ntdll.dll, verzia: 6.2.9200.16578, časová značka:
0x515fac9c Kód výnimky: 0xc0000005 Odstup chyby: 0x0001a475 Identifikácia chybujúceho
procesu: 0x15f8 Čas spustenia chybujúcej aplikácie: 0x01cebe14397c8256 Cesta chybujúcej
aplikácie: C:\Program Files\Jed's Half-Life Model Viewer 1.3.6\hlmv.exe Cesta chybujúceho
modulu: C:\Windows\SYSTEM32\ntdll.dll Identifikácia hlásenia: 7894e7df-2a07-11e3-b075-1c75081044a5
Celé
meno chybujúceho balíka: Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error - 30.9.2013 15:35:43 | Computer Name = Tibor | Source = Application Error | ID = 1000
Description = Názov chybujúcej aplikácie: hlmv.exe, verzia: 1.3.6.0, časová značka:
0x473aca37 Názov chybujúceho modulu: ntdll.dll, verzia: 6.2.9200.16578, časová značka:
0x515fac9c Kód výnimky: 0xc0000005 Odstup chyby: 0x0001a475 Identifikácia chybujúceho
procesu: 0x1758 Čas spustenia chybujúcej aplikácie: 0x01cebe143f01ac56 Cesta chybujúcej
aplikácie: C:\Program Files\Jed's Half-Life Model Viewer 1.3.6\hlmv.exe Cesta chybujúceho
modulu: C:\Windows\SYSTEM32\ntdll.dll Identifikácia hlásenia: 7e4c7909-2a07-11e3-b075-1c75081044a5
Celé
meno chybujúceho balíka: Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error - 30.9.2013 15:35:56 | Computer Name = Tibor | Source = Application Error | ID = 1000
Description = Názov chybujúcej aplikácie: hlmv.exe, verzia: 1.3.6.0, časová značka:
0x473aca37 Názov chybujúceho modulu: ntdll.dll, verzia: 6.2.9200.16578, časová značka:
0x515fac9c Kód výnimky: 0xc0000005 Odstup chyby: 0x0001a475 Identifikácia chybujúceho
procesu: 0x314 Čas spustenia chybujúcej aplikácie: 0x01cebe14471606f7 Cesta chybujúcej
aplikácie: C:\Program Files\Jed's Half-Life Model Viewer 1.3.6\hlmv.exe Cesta chybujúceho
modulu: C:\Windows\SYSTEM32\ntdll.dll Identifikácia hlásenia: 86015eb1-2a07-11e3-b075-1c75081044a5
Celé
meno chybujúceho balíka: Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error - 30.9.2013 15:36:00 | Computer Name = Tibor | Source = Application Error | ID = 1000
Description = Názov chybujúcej aplikácie: hlmv.exe, verzia: 1.3.6.0, časová značka:
0x473aca37 Názov chybujúceho modulu: ntdll.dll, verzia: 6.2.9200.16578, časová značka:
0x515fac9c Kód výnimky: 0xc0000005 Odstup chyby: 0x0001a475 Identifikácia chybujúceho
procesu: 0x12fc Čas spustenia chybujúcej aplikácie: 0x01cebe14498e760e Cesta chybujúcej
aplikácie: C:\Program Files\Jed's Half-Life Model Viewer 1.3.6\hlmv.exe Cesta chybujúceho
modulu: C:\Windows\SYSTEM32\ntdll.dll Identifikácia hlásenia: 88928b9c-2a07-11e3-b075-1c75081044a5
Celé
meno chybujúceho balíka: Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error - 30.9.2013 15:36:18 | Computer Name = Tibor | Source = Application Error | ID = 1000
Description = Názov chybujúcej aplikácie: hlmv.exe, verzia: 1.3.6.0, časová značka:
0x473aca37 Názov chybujúceho modulu: ntdll.dll, verzia: 6.2.9200.16578, časová značka:
0x515fac9c Kód výnimky: 0xc0000005 Odstup chyby: 0x0001a475 Identifikácia chybujúceho
procesu: 0x968 Čas spustenia chybujúcej aplikácie: 0x01cebe14547a8cb5 Cesta chybujúcej
aplikácie: C:\Program Files\Jed's Half-Life Model Viewer 1.3.6\hlmv.exe Cesta chybujúceho
modulu: C:\Windows\SYSTEM32\ntdll.dll Identifikácia hlásenia: 9384be20-2a07-11e3-b075-1c75081044a5
Celé
meno chybujúceho balíka: Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error - 30.9.2013 15:36:44 | Computer Name = Tibor | Source = Application Error | ID = 1000
Description = Názov chybujúcej aplikácie: hlmv.exe, verzia: 1.3.6.0, časová značka:
0x473aca37 Názov chybujúceho modulu: ntdll.dll, verzia: 6.2.9200.16578, časová značka:
0x515fac9c Kód výnimky: 0xc0000005 Odstup chyby: 0x0001a475 Identifikácia chybujúceho
procesu: 0x17f8 Čas spustenia chybujúcej aplikácie: 0x01cebe1463f1a383 Cesta chybujúcej
aplikácie: C:\Program Files\Jed's Half-Life Model Viewer 1.3.6\hlmv.exe Cesta chybujúceho
modulu: C:\Windows\SYSTEM32\ntdll.dll Identifikácia hlásenia: a2f12414-2a07-11e3-b075-1c75081044a5
Celé
meno chybujúceho balíka: Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error - 30.9.2013 15:36:49 | Computer Name = Tibor | Source = Application Error | ID = 1000
Description = Názov chybujúcej aplikácie: hlmv.exe, verzia: 1.3.6.0, časová značka:
0x473aca37 Názov chybujúceho modulu: ntdll.dll, verzia: 6.2.9200.16578, časová značka:
0x515fac9c Kód výnimky: 0xc0000005 Odstup chyby: 0x0001a475 Identifikácia chybujúceho
procesu: 0x15ac Čas spustenia chybujúcej aplikácie: 0x01cebe1466af68dd Cesta chybujúcej
aplikácie: C:\Program Files\Jed's Half-Life Model Viewer 1.3.6\hlmv.exe Cesta chybujúceho
modulu: C:\Windows\SYSTEM32\ntdll.dll Identifikácia hlásenia: a5b97335-2a07-11e3-b075-1c75081044a5
Celé
meno chybujúceho balíka: Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error - 30.9.2013 15:37:10 | Computer Name = Tibor | Source = Application Error | ID = 1000
Description = Názov chybujúcej aplikácie: hlmv.exe, verzia: 1.3.6.0, časová značka:
0x473aca37 Názov chybujúceho modulu: ntdll.dll, verzia: 6.2.9200.16578, časová značka:
0x515fac9c Kód výnimky: 0xc0000005 Odstup chyby: 0x0001a475 Identifikácia chybujúceho
procesu: 0xb60 Čas spustenia chybujúcej aplikácie: 0x01cebe1471c4e2fc Cesta chybujúcej
aplikácie: C:\Program Files\Jed's Half-Life Model Viewer 1.3.6\hlmv.exe Cesta chybujúceho
modulu: C:\Windows\SYSTEM32\ntdll.dll Identifikácia hlásenia: b21faf7d-2a07-11e3-b075-1c75081044a5
Celé
meno chybujúceho balíka: Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error - 30.9.2013 15:38:23 | Computer Name = Tibor | Source = Application Error | ID = 1000
Description = Názov chybujúcej aplikácie: hlmv.exe, verzia: 1.3.6.0, časová značka:
0x473aca37 Názov chybujúceho modulu: ntdll.dll, verzia: 6.2.9200.16578, časová značka:
0x515fac9c Kód výnimky: 0xc0000005 Odstup chyby: 0x0001a475 Identifikácia chybujúceho
procesu: 0x15d4 Čas spustenia chybujúcej aplikácie: 0x01cebe149dc9160e Cesta chybujúcej
aplikácie: C:\Program Files\Jed's Half-Life Model Viewer 1.3.6\hlmv.exe Cesta chybujúceho
modulu: C:\Windows\SYSTEM32\ntdll.dll Identifikácia hlásenia: dd80510f-2a07-11e3-b075-1c75081044a5
Celé
meno chybujúceho balíka: Identifikácia chybujúcej aplikácie vzhľadom na balík:

[ System Events ]
Error - 29.9.2013 22:13:11 | Computer Name = Tibor | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Function Discovery Provider Host, od ktorej závisí
služba HomeGroup Provider, zlyhalo kvôli nasledujúcej chybe: %%1058

Error - 29.9.2013 22:15:24 | Computer Name = Tibor | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Function Discovery Provider Host, od ktorej závisí
služba HomeGroup Provider, zlyhalo kvôli nasledujúcej chybe: %%1058

Error - 30.9.2013 11:56:36 | Computer Name = Tibor | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Function Discovery Provider Host, od ktorej závisí
služba HomeGroup Provider, zlyhalo kvôli nasledujúcej chybe: %%1058

Error - 30.9.2013 11:56:53 | Computer Name = Tibor | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Function Discovery Provider Host, od ktorej závisí
služba HomeGroup Provider, zlyhalo kvôli nasledujúcej chybe: %%1058

Error - 30.9.2013 14:09:06 | Computer Name = Tibor | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Function Discovery Provider Host, od ktorej závisí
služba HomeGroup Provider, zlyhalo kvôli nasledujúcej chybe: %%1058

Error - 30.9.2013 14:20:46 | Computer Name = Tibor | Source = Microsoft-Windows-Kernel-General | ID = 6
Description =

Error - 30.9.2013 14:21:36 | Computer Name = Tibor | Source = Service Control Manager | ID = 7023
Description = Služba PDF Architect Service bola ukončená s nasledujúcou chybou:
%%2147500037

Error - 30.9.2013 14:21:53 | Computer Name = Tibor | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Function Discovery Provider Host, od ktorej závisí
služba HomeGroup Provider, zlyhalo kvôli nasledujúcej chybe: %%1058

Error - 30.9.2013 14:22:12 | Computer Name = Tibor | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Function Discovery Provider Host, od ktorej závisí
služba HomeGroup Provider, zlyhalo kvôli nasledujúcej chybe: %%1058

Error - 30.9.2013 14:23:51 | Computer Name = Tibor | Source = Service Control Manager | ID = 7023
Description = Služba HP Network Devices Support bola ukončená s nasledujúcou chybou:
%%126

< End of report >

boss382 · #8 Příspěvek od **boss382** » 30 zář 2013 20:51

OTL logfile created on: 30.9.2013 20:37:27 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Tibor\Desktop
Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16635)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d.M.yyyy

2,49 Gb Total Physical Memory | 1,20 Gb Available Physical Memory | 48,04% Memory free
4,49 Gb Paging File | 2,65 Gb Available in Paging File | 58,99% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 452,66 Gb Total Space | 342,58 Gb Free Space | 75,68% Space Free | Partition Type: NTFS

Computer Name: TIBOR | User Name: Tibor | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2013.09.30 20:34:52 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Tibor\Desktop\OTL.exe
PRC - [2013.09.27 08:22:04 | 009,866,032 | ---- | M] () -- C:\Program Files\Garena Plus\GarenaMessenger.exe
PRC - [2013.09.25 14:02:39 | 001,384,800 | ---- | M] () -- C:\Program Files\Opera Next\17.0.1241.28\opera_crashreporter.exe
PRC - [2013.09.25 14:02:38 | 042,022,752 | ---- | M] (Opera Software) -- C:\Program Files\Opera Next\17.0.1241.28\opera.exe
PRC - [2013.08.30 09:47:34 | 004,858,968 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2013.08.30 09:47:33 | 000,046,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2013.08.27 23:17:21 | 014,573,856 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
PRC - [2013.08.27 23:16:14 | 001,028,896 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
PRC - [2013.08.27 23:15:38 | 002,155,296 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2013.07.29 15:43:13 | 002,106,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2013.07.13 00:33:04 | 000,217,992 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.3.21.153\GoogleCrashHandler.exe
PRC - [2013.07.10 13:54:32 | 000,049,456 | ---- | M] () -- C:\Program Files\Garena Plus\ggdllhost.exe
PRC - [2013.06.21 11:52:52 | 000,875,296 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
PRC - [2013.06.21 11:52:51 | 001,821,984 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
PRC - [2013.06.21 05:15:56 | 000,413,472 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2013.06.05 18:43:26 | 000,300,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2013.06.05 18:29:34 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhostex.exe
PRC - [2013.05.11 12:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013.03.02 17:24:00 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2013.01.09 17:34:26 | 001,324,104 | ---- | M] (pdfforge GbR) -- C:\Program Files\PDF Architect\HelperService.exe
PRC - [2012.07.26 10:11:33 | 000,107,888 | ---- | M] (Microsoft Corporation) -- C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x86__8wekyb3d8bbwe\LiveComm.exe
PRC - [2012.07.26 05:30:19 | 000,029,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RuntimeBroker.exe
PRC - [2012.07.26 05:20:44 | 000,045,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dasHost.exe
PRC - [2012.06.20 18:13:12 | 000,074,752 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Winamp\winampa.exe
PRC - [2011.04.20 11:24:46 | 000,729,088 | ---- | M] () -- C:\Program Files\GIGABYTE\GHOST\Tilt.exe
PRC - [2010.02.08 15:48:18 | 000,192,000 | ---- | M] () -- C:\Program Files\GIGABYTE\GHOST\GHOSTOPEN.exe

========== Modules (No Company Name) ==========

MOD - [2013.09.27 08:22:37 | 000,027,952 | ---- | M] () -- C:\Program Files\Garena Plus\VersionModule.dll
MOD - [2013.09.27 08:22:04 | 009,866,032 | ---- | M] () -- C:\Program Files\Garena Plus\GarenaMessenger.exe
MOD - [2013.09.25 14:02:40 | 000,881,504 | ---- | M] () -- C:\Program Files\Opera Next\17.0.1241.28\libGLESv2.dll
MOD - [2013.09.25 14:02:40 | 000,109,408 | ---- | M] () -- C:\Program Files\Opera Next\17.0.1241.28\libEGL.dll
MOD - [2013.09.25 14:02:39 | 001,384,800 | ---- | M] () -- C:\Program Files\Opera Next\17.0.1241.28\opera_crashreporter.exe
MOD - [2013.09.25 14:02:39 | 000,868,704 | ---- | M] () -- C:\Program Files\Opera Next\17.0.1241.28\ffmpegsumo.dll
MOD - [2013.09.20 13:12:15 | 000,956,208 | ---- | M] () -- C:\Program Files\Garena Plus\lib\delay_load\GaFileTransfer.dll
MOD - [2013.09.20 13:11:58 | 000,868,656 | ---- | M] () -- C:\Program Files\Garena Plus\Plugins\ggplugin.dll
MOD - [2013.08.23 11:10:18 | 000,553,776 | ---- | M] () -- C:\Program Files\Garena Plus\ggspawn.dll
MOD - [2013.07.26 08:18:31 | 000,957,232 | ---- | M] () -- C:\Program Files\Garena Plus\lib\XLL.dll
MOD - [2013.07.15 16:29:36 | 001,545,520 | ---- | M] () -- C:\Program Files\Garena Plus\lib\delay_load\FileSender.dll
MOD - [2013.07.10 13:55:06 | 000,170,800 | ---- | M] () -- C:\Program Files\Garena Plus\lib\fs\YYFileSystem.dll
MOD - [2013.07.10 13:55:06 | 000,068,400 | ---- | M] () -- C:\Program Files\Garena Plus\lib\delay_load\UdtLib.dll
MOD - [2013.07.10 13:55:04 | 000,516,912 | ---- | M] () -- C:\Program Files\Garena Plus\lib\delay_load\RSALib.dll
MOD - [2013.07.10 13:55:04 | 000,245,040 | ---- | M] () -- C:\Program Files\Garena Plus\lib\delay_load\MediaEngine.dll
MOD - [2013.07.10 13:55:00 | 000,065,840 | ---- | M] () -- C:\Program Files\Garena Plus\lib\delay_load\AudioMixerLib.dll
MOD - [2013.07.10 13:55:00 | 000,055,088 | ---- | M] () -- C:\Program Files\Garena Plus\lib\XmlUIModule.dll
MOD - [2013.07.10 13:55:00 | 000,016,688 | ---- | M] () -- C:\Program Files\Garena Plus\lib\delay_load\ClientTcp.dll
MOD - [2013.07.10 13:54:58 | 000,219,952 | ---- | M] () -- C:\Program Files\Garena Plus\lib\TaskManagerLib.dll
MOD - [2013.07.10 13:54:58 | 000,106,288 | ---- | M] () -- C:\Program Files\Garena Plus\lib\UILayout.dll
MOD - [2013.07.10 13:54:56 | 000,374,064 | ---- | M] () -- C:\Program Files\Garena Plus\lib\Http.dll
MOD - [2013.07.10 13:54:56 | 000,184,624 | ---- | M] () -- C:\Program Files\Garena Plus\lib\MP3Module.dll
MOD - [2013.07.10 13:54:54 | 000,224,560 | ---- | M] () -- C:\Program Files\Garena Plus\Plugins\StatsPlugin.dll
MOD - [2013.07.10 13:54:44 | 000,026,416 | ---- | M] () -- C:\Program Files\Garena Plus\ServerMemAlloc.dll
MOD - [2013.07.10 13:54:44 | 000,025,392 | ---- | M] () -- C:\Program Files\Garena Plus\PluginModule.dll
MOD - [2013.07.10 13:54:42 | 000,155,440 | ---- | M] () -- C:\Program Files\Garena Plus\libmpg123.dll
MOD - [2013.07.10 13:54:42 | 000,087,344 | ---- | M] () -- C:\Program Files\Garena Plus\PluginKernel.dll
MOD - [2013.07.10 13:54:40 | 000,192,816 | ---- | M] () -- C:\Program Files\Garena Plus\ImageModule.dll
MOD - [2013.07.10 13:54:36 | 002,941,232 | ---- | M] () -- C:\Program Files\Garena Plus\ggdownloader.dll
MOD - [2013.07.10 13:54:34 | 000,051,504 | ---- | M] () -- C:\Program Files\Garena Plus\FileLoader.dll
MOD - [2013.07.10 13:54:34 | 000,033,584 | ---- | M] () -- C:\Program Files\Garena Plus\DibModule.dll
MOD - [2013.07.10 13:54:32 | 000,487,216 | ---- | M] () -- C:\Program Files\Garena Plus\CxImage.dll
MOD - [2013.07.10 13:54:32 | 000,104,752 | ---- | M] () -- C:\Program Files\Garena Plus\CommonLib.dll
MOD - [2013.07.10 13:54:32 | 000,049,456 | ---- | M] () -- C:\Program Files\Garena Plus\ggdllhost.exe
MOD - [2013.04.03 17:07:33 | 000,138,576 | ---- | M] () -- C:\Users\Tibor\AppData\Roaming\ICQM\ICQ\dll\mramenu.dll
MOD - [2013.02.26 22:41:15 | 014,718,320 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32_11_6_602_171.dll
MOD - [2013.02.01 07:42:28 | 000,153,088 | ---- | M] () -- C:\Program Files\Garena Plus\libzmq.dll
MOD - [2012.07.26 10:11:35 | 000,143,216 | ---- | M] () -- C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x86__8wekyb3d8bbwe\ModernShared\ErrorReporting\ErrorReporting.dll
MOD - [2012.06.18 17:24:30 | 000,260,096 | ---- | M] () -- C:\Program Files\Notepad++\NppShell_05.dll
MOD - [2012.02.22 10:52:18 | 000,162,304 | ---- | M] () -- C:\Program Files\Garena Plus\lame_enc.dll
MOD - [2012.02.22 10:52:16 | 000,573,100 | ---- | M] () -- C:\Program Files\Garena Plus\sqlite3.dll
MOD - [2011.04.20 11:24:46 | 000,729,088 | ---- | M] () -- C:\Program Files\GIGABYTE\GHOST\Tilt.exe
MOD - [2010.02.08 15:48:18 | 000,192,000 | ---- | M] () -- C:\Program Files\GIGABYTE\GHOST\GHOSTOPEN.exe

========== Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- C:\Users\Tibor\AppData\Local\Temp\7zS6E7A\hpslpsvc32.dll -- (HPSLPSVC)
SRV - [2013.09.21 20:35:00 | 000,565,672 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2013.08.30 09:47:33 | 000,046,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2013.08.27 23:17:21 | 014,573,856 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc)
SRV - [2013.08.27 23:15:38 | 002,155,296 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2013.08.22 15:37:02 | 000,018,360 | ---- | M] (Overwolf Ltd) [On_Demand | Stopped] -- C:\Program Files\Overwolf\OverwolfUpdater.exe -- (OverwolfUpdaterService)
SRV - [2013.07.29 15:43:11 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\DeviceSetupManager.dll -- (DsmSvc)
SRV - [2013.06.23 06:49:59 | 000,371,200 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netprofmsvc.dll -- (netprofm)
SRV - [2013.06.23 06:49:57 | 000,143,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\bisrv.dll -- (BrokerInfrastructure)
SRV - [2013.06.21 05:15:56 | 000,413,472 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2013.06.05 18:43:24 | 000,136,704 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV - [2013.06.05 18:29:32 | 000,117,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV - [2013.06.05 18:29:32 | 000,114,176 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\TimeBrokerServer.dll -- (TimeBroker)
SRV - [2013.05.11 12:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013.03.16 21:33:06 | 000,013,344 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV - [2013.03.02 17:23:56 | 002,205,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\spool\drivers\w32x86\3\PrintConfig.dll -- (PrintNotify)
SRV - [2013.03.02 17:14:01 | 002,151,128 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\WSService.dll -- (WSService)
SRV - [2013.03.02 17:13:49 | 000,095,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\fhsvc.dll -- (fhsvc)
SRV - [2013.02.28 18:45:16 | 000,161,384 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013.02.26 22:41:17 | 000,251,248 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013.02.16 23:27:40 | 000,349,696 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\lsm.dll -- (LSM)
SRV - [2013.02.16 23:27:39 | 001,532,928 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\wlidsvc.dll -- (wlidsvc)
SRV - [2013.01.09 17:36:06 | 000,795,208 | ---- | M] (pdfforge GbR) [Auto | Stopped] -- C:\Program Files\PDF Architect\ConversionService.exe -- (PDF Architect Service)
SRV - [2013.01.09 17:34:26 | 001,324,104 | ---- | M] (pdfforge GbR) [Auto | Running] -- C:\Program Files\PDF Architect\HelperService.exe -- (PDF Architect Helper Service)
SRV - [2012.12.14 11:17:04 | 003,467,768 | ---- | M] (TeamViewer GmbH) [Disabled | Stopped] -- C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe -- (TeamViewer8)
SRV - [2012.07.26 05:20:19 | 000,051,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wiarpc.dll -- (WiaRpc)
SRV - [2012.07.26 05:20:13 | 000,226,304 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wcmsvc.dll -- (Wcmsvc)
SRV - [2012.07.26 05:20:11 | 000,192,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\vaultsvc.dll -- (VaultSvc)
SRV - [2012.07.26 05:20:04 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2012.07.26 05:20:04 | 000,010,752 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\svsvc.dll -- (svsvc)
SRV - [2012.07.26 05:19:54 | 000,132,608 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2012.07.26 05:19:40 | 002,028,032 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2012.07.26 05:19:21 | 000,138,752 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\NcaSvc.dll -- (NcaSvc)
SRV - [2012.07.26 05:19:21 | 000,062,976 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV - [2012.07.26 05:18:47 | 000,043,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\keyiso.dll -- (KeyIso)
SRV - [2012.07.26 05:18:24 | 000,027,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\efssvc.dll -- (EFS)
SRV - [2012.07.26 05:18:13 | 000,261,632 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\das.dll -- (DeviceAssociationService)
SRV - [2012.07.26 05:17:58 | 000,109,568 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AUInstallAgent.dll -- (AllUserInstallAgent)
SRV - [2012.07.26 02:27:36 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicheartbeat)
SRV - [2012.07.26 02:27:36 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicvss)
SRV - [2012.07.26 02:27:36 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmictimesync)
SRV - [2012.07.26 02:27:36 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicshutdown)
SRV - [2012.07.26 02:27:36 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicrdv)
SRV - [2012.07.26 02:27:36 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmickvpexchange)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\modulev.sys -- (modulev)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Garena Plus\Room\safedrv.sys -- (GGSAFERDriver)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys -- (esgiguard)
DRV - [2013.08.30 09:48:13 | 000,369,584 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2013.08.30 09:48:13 | 000,177,864 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2013.08.30 09:48:13 | 000,056,080 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2013.08.30 09:48:12 | 000,770,344 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2013.08.30 09:48:12 | 000,061,680 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\Drivers\aswRdr2.sys -- (aswRdr)
DRV - [2013.08.30 09:48:12 | 000,049,376 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2013.08.30 09:48:11 | 000,066,336 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\Drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2013.08.30 09:48:11 | 000,029,816 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2013.08.24 10:56:09 | 000,385,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\k57nd60x.sys -- (k57nd60x)
DRV - [2013.08.20 15:33:30 | 000,033,568 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\nvvad32v.sys -- (nvvad_WaveExtensible)
DRV - [2013.07.29 15:43:10 | 000,268,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\USBXHCI.SYS -- (USBXHCI)
DRV - [2013.07.29 15:43:10 | 000,180,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\UCX01000.SYS -- (UCX01000)
DRV - [2013.07.29 15:43:10 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV - [2013.07.25 13:32:08 | 000,074,088 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\ftser2k.sys -- (FTSER2K)
DRV - [2013.07.25 13:32:08 | 000,065,896 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\ftdibus.sys -- (FTDIBUS)
DRV - [2013.06.23 06:49:56 | 000,362,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\USBHUB3.SYS -- (USBHUB3)
DRV - [2013.06.23 06:49:56 | 000,238,336 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\spaceport.sys -- (spaceport)
DRV - [2013.06.21 14:02:43 | 009,069,344 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2013.06.05 18:43:21 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\hidi2c.sys -- (hidi2c)
DRV - [2013.06.05 18:29:31 | 000,057,576 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\pdc.sys -- (pdc)
DRV - [2013.06.05 18:29:30 | 000,121,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\tpm.sys -- (TPM)
DRV - [2013.06.05 18:29:30 | 000,066,280 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\storahci.sys -- (storahci)
DRV - [2013.04.30 10:51:09 | 000,035,088 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\tap0901.sys -- (tap0901)
DRV - [2013.03.16 21:33:07 | 000,193,936 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\Drivers\WdFilter.sys -- (WdFilter)
DRV - [2013.03.16 21:33:07 | 000,029,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\WdBoot.sys -- (WdBoot)
DRV - [2013.03.02 17:26:49 | 000,023,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2013.03.02 17:26:49 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BthhfHid.sys -- (bthhfhid)
DRV - [2013.03.02 17:23:55 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\fxppm.sys -- (FxPPM)
DRV - [2013.03.02 17:19:27 | 000,050,920 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\System32\Drivers\dam.sys -- (dam)
DRV - [2013.03.02 17:19:24 | 000,046,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\sdstor.sys -- (sdstor)
DRV - [2013.03.02 17:14:00 | 000,097,000 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\msgpioclx.sys -- (GPIOClx0101)
DRV - [2013.03.02 17:13:31 | 000,031,464 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\System32\Drivers\cnghwassist.sys -- (cnghwassist)
DRV - [2013.02.25 07:27:46 | 000,154,400 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\nvhda32v.sys -- (NVHDA)
DRV - [2013.02.16 23:27:38 | 000,024,808 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\msgpiowin32.sys -- (msgpiowin32)
DRV - [2012.12.09 11:51:24 | 000,113,168 | ---- | M] (Power Software Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2012.10.19 04:52:32 | 000,022,432 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\Dot4Prt.sys -- (Dot4Print)
DRV - [2012.10.19 04:52:30 | 000,137,632 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\Dot4.sys -- (dot4)
DRV - [2012.07.26 06:17:18 | 000,025,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\condrv.sys -- (condrv)
DRV - [2012.07.26 05:48:44 | 000,058,608 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\acpiex.sys -- (acpiex)
DRV - [2012.07.26 05:42:33 | 000,068,848 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\lsi_sss.sys -- (LSI_SSS)
DRV - [2012.07.26 05:42:32 | 000,099,056 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV - [2012.07.26 05:42:32 | 000,070,384 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\EhStorClass.sys -- (EhStorClass)
DRV - [2012.07.26 05:42:31 | 000,085,232 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\3ware.sys -- (3ware)
DRV - [2012.07.26 05:42:19 | 000,285,424 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV - [2012.07.26 05:42:19 | 000,080,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\VerifierExt.sys -- (VerifierExt)
DRV - [2012.07.26 05:42:18 | 000,076,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\uaspstor.sys -- (UASPStor)
DRV - [2012.07.26 05:42:15 | 000,059,120 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\mvumis.sys -- (mvumis)
DRV - [2012.07.26 05:40:36 | 000,038,640 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\wfplwfs.sys -- (WFPLWFS)
DRV - [2012.07.26 05:40:10 | 000,256,240 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\clfs.sys -- (CLFS)
DRV - [2012.07.26 05:39:55 | 000,029,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\terminpt.sys -- (terminpt)
DRV - [2012.07.26 05:33:00 | 000,130,024 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\vmbus.sys -- (vmbus)
DRV - [2012.07.26 05:33:00 | 000,042,344 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\vmstorfl.sys -- (storflt)
DRV - [2012.07.26 05:33:00 | 000,032,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\storvsc.sys -- (storvsc)
DRV - [2012.07.26 04:36:54 | 000,042,496 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\BasicDisplay.sys -- (BasicDisplay)
DRV - [2012.07.26 04:36:49 | 000,007,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\mshidumdf.sys -- (mshidumdf)
DRV - [2012.07.26 04:36:36 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\HyperVideo.sys -- (HyperVideo)
DRV - [2012.07.26 04:36:35 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\BasicRender.sys -- (BasicRender)
DRV - [2012.07.26 04:35:30 | 000,006,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\vms3cap.sys -- (s3cap)
DRV - [2012.07.26 04:35:28 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\npsvctrig.sys -- (npsvctrig)
DRV - [2012.07.26 04:35:10 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\kdnic.sys -- (kdnic)
DRV - [2012.07.26 04:35:06 | 000,008,704 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\acpitime.sys -- (acpitime)
DRV - [2012.07.26 04:35:04 | 000,009,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\vmgencounter.sys -- (gencounter)
DRV - [2012.07.26 04:34:43 | 000,008,704 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\acpipagr.sys -- (acpipagr)
DRV - [2012.07.26 04:34:42 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV - [2012.07.26 04:34:22 | 000,018,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2012.07.26 04:34:04 | 000,010,496 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\hyperkbd.sys -- (hyperkbd)
DRV - [2012.07.26 04:33:53 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SerCx.sys -- (SerCx)
DRV - [2012.07.26 04:33:50 | 000,046,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SpbCx.sys -- (SpbCx)
DRV - [2012.07.26 04:33:50 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\vwifimp.sys -- (vwifimp)
DRV - [2012.07.26 04:33:29 | 000,027,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2012.07.26 04:33:16 | 000,044,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\bthhfenum.sys -- (BthHFEnum)
DRV - [2012.07.26 04:32:54 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2012.07.26 04:32:53 | 000,028,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\dmvsc.sys -- (dmvsc)
DRV - [2012.07.26 04:32:02 | 000,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\wpcfltr.sys -- (wpcfltr)
DRV - [2012.07.26 04:31:11 | 000,110,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV - [2012.07.26 04:30:56 | 000,057,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\mslldp.sys -- (MsLldp)
DRV - [2012.07.26 04:30:39 | 000,084,480 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\Drivers\Ndu.sys -- (Ndu)
DRV - [2012.06.02 16:31:30 | 002,273,280 | ---- | M] (Qualcomm Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\athr.sys -- (athr)
DRV - [2009.09.17 20:54:14 | 000,041,088 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\HECI.sys -- (HECI)
DRV - [2009.03.18 18:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\hamachi.sys -- (hamachi)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = http://www.google.com
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
IE - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://www.google.com
IE - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = D2 DE 2C A3 7B E3 CD 01 [binary data]
IE - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
IE - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar = http://www.google.com
IE - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://www.google.com
IE - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = http://www.google.com
IE - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = http://www.google.com
IE - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE10SR
IE - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1663960766-3618707702-2185633917-1005\..\SearchScopes,DefaultScope =

========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_171.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@t.garena.com/garenatalk: C:\Program Files\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll ( Garena)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.2: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Tibor\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\FFPDFArchitectConverter@pdfarchitect.com: C:\Program Files\PDF Architect\FFPDFArchitectExt [2013.04.02 22:38:08 | 000,000,000 | ---D | M]

[2013.08.03 10:33:48 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012.06.20 18:14:20 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll

========== Chrome ==========

CHR - default_search_provider: Delta Search (Enabled)
CHR - default_search_provider: search_url = http://www.google.com
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR - homepage: http://www.google.com
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.95\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.95\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.95\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
CHR - plugin: Garena Talk Plugin (Enabled) = C:\Program Files\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 7 U25 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll
CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files\VideoLAN\VLC\npvlc.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_171.dll
CHR - plugin: Java Deployment Toolkit 7.0.250.17 (Enabled) = C:\Windows\system32\npDeployJava1.dll
CHR - Extension: Dokumenty Google = C:\Users\Tibor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Disk Google = C:\Users\Tibor\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Tibor\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Hada v Google = C:\Users\Tibor\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Gmail = C:\Users\Tibor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012.07.26 06:17:20 | 000,000,824 | ---- | M]) - C:\Windows\System32\Drivers\etc\hosts
O2 - BHO: (PDF Architect Helper) - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files\PDF Architect\PDFIEHelper.dll (pdfforge GbR)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [ghost] C:\Program Files\GIGABYTE\GHOST\GHOSTOPEN.exe ()
O4 - HKLM..\Run: [Nvtmru] C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [Tilt] C:\Program Files\GIGABYTE\GHOST\Tilt.exe ()
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.)
O4 - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001..\Run: [GarenaPlus] C:\Program Files\Garena Plus\GarenaMessenger.exe ()
O4 - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001..\Run: [Steam] C:\Program Files\Steam\steam.exe (Valve Corporation)
O4 - Startup: C:\Users\Tibor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar.lnk = File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O13 - gopher Prefix: missing
O15 - HKU\.DEFAULT\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\S-1-5-19\..Trusted Domains: clonewarsadventures.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: freerealms.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: soe.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: sony.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: clonewarsadventures.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: freerealms.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: soe.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: sony.com ([]* in )
O15 - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-1663960766-3618707702-2185633917-1005\..Trusted Domains: clonewarsadventures.com ([]* in )
O15 - HKU\S-1-5-21-1663960766-3618707702-2185633917-1005\..Trusted Domains: freerealms.com ([]* in )
O15 - HKU\S-1-5-21-1663960766-3618707702-2185633917-1005\..Trusted Domains: soe.com ([]* in )
O15 - HKU\S-1-5-21-1663960766-3618707702-2185633917-1005\..Trusted Domains: sony.com ([]* in )
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.10 195.146.132.59 195.146.128.60
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{26512122-F656-4102-B2EB-D1B36377CD66}: DhcpNameServer = 192.168.1.10 195.146.132.59 195.146.128.60
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012.07.26 08:52:25 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
NetSvcs: wlidsvc - C:\Windows\System32\wlidsvc.dll (Microsoft Corporation)
NetSvcs: SystemEventsBroker - C:\Windows\System32\SystemEventsBrokerServer.dll (Microsoft Corporation)
NetSvcs: DsmSvc - C:\Windows\System32\DeviceSetupManager.dll (Microsoft Corporation)
NetSvcs: NcaSvc - C:\Windows\System32\NcaSvc.dll (Microsoft Corporation)

Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2013.09.30 20:34:47 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Tibor\Desktop\OTL.exe
[2013.09.30 20:12:52 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013.09.30 20:07:43 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT
[2013.09.30 20:07:17 | 001,030,305 | ---- | C] (Thisisu) -- C:\Users\Tibor\Desktop\JRT.exe
[2013.09.30 19:49:32 | 000,000,000 | ---D | C] -- C:\rsit
[2013.09.27 22:37:52 | 000,041,664 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2013.09.26 12:30:18 | 000,000,000 | ---D | C] -- C:\Users\Tibor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2013.09.24 18:22:19 | 000,000,000 | ---D | C] -- C:\Users\Tibor\Desktop\light
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2013.09.30 20:40:32 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2013.09.30 20:40:10 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013.09.30 20:34:52 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Tibor\Desktop\OTL.exe
[2013.09.30 20:20:52 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2013.09.30 20:20:49 | 2139,684,864 | -HS- | M] () -- C:\hiberfil.sys
[2013.09.30 20:12:42 | 001,042,066 | ---- | M] () -- C:\Users\Tibor\Desktop\adwcleaner.exe
[2013.09.30 20:07:24 | 001,030,305 | ---- | M] (Thisisu) -- C:\Users\Tibor\Desktop\JRT.exe
[2013.09.30 19:49:26 | 000,781,383 | ---- | M] () -- C:\Users\Tibor\Desktop\RSIT.exe
[2013.09.30 18:39:15 | 000,263,222 | ---- | M] () -- C:\Users\Tibor\Desktop\asd.bmp
[2013.09.30 18:04:18 | 000,318,746 | ---- | M] () -- C:\Users\Tibor\Desktop\404-SUCCESS-ELEMENT-pdf.pdf
[2013.09.29 22:20:13 | 000,336,732 | ---- | M] () -- C:\Users\Tibor\Desktop\blockmaker_v4.01 (1).zip.opdownload
[2013.09.29 21:49:43 | 000,150,757 | ---- | M] () -- C:\Users\Tibor\Desktop\Public_Blockmaker.sma
[2013.09.29 21:17:00 | 004,978,311 | ---- | M] () -- C:\Users\Tibor\Desktop\models.zip
[2013.09.29 20:55:50 | 000,004,746 | ---- | M] () -- C:\Users\Tibor\Desktop\dm_shop.sma
[2013.09.29 20:39:51 | 001,966,725 | ---- | M] () -- C:\Users\Tibor\Desktop\AMXX_Studio_1.4.3_final.zip
[2013.09.29 19:20:54 | 011,207,270 | ---- | M] () -- C:\Users\Tibor\Desktop\Private Blockmaker by razer.rar
[2013.09.29 19:12:57 | 000,163,057 | ---- | M] () -- C:\Users\Tibor\Desktop\cfg-bm.sma
[2013.09.29 18:50:18 | 000,263,124 | ---- | M] () -- C:\Users\Tibor\Desktop\a.bmp
[2013.09.29 18:10:15 | 000,410,364 | ---- | M] () -- C:\Users\Tibor\Desktop\Blockmaker v4.01 (Edited by Gale).rar
[2013.09.29 18:10:11 | 000,180,002 | ---- | M] () -- C:\Users\Tibor\Desktop\blockmakerv4.1.sma
[2013.09.29 18:10:09 | 000,137,292 | ---- | M] () -- C:\Users\Tibor\Desktop\blockmakerv4.1.amxx
[2013.09.29 18:09:45 | 000,640,808 | ---- | M] () -- C:\Users\Tibor\Desktop\blockmaker_v4.01.zip
[2013.09.29 18:06:17 | 000,072,387 | ---- | M] () -- C:\Users\Tibor\Desktop\sprites.zip
[2013.09.29 18:06:16 | 000,139,113 | ---- | M] () -- C:\Users\Tibor\Desktop\sounds.zip
[2013.09.29 13:23:29 | 000,029,022 | ---- | M] () -- C:\Users\Tibor\Desktop\hnsshopv1.9.sma
[2013.09.27 22:37:53 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2013.09.25 20:03:16 | 003,786,960 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2013.09.25 10:38:55 | 000,297,920 | ---- | M] () -- C:\Users\Tibor\Desktop\burn.mdl
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013.09.30 20:40:32 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2013.09.30 20:12:34 | 001,042,066 | ---- | C] () -- C:\Users\Tibor\Desktop\adwcleaner.exe
[2013.09.30 19:49:22 | 000,781,383 | ---- | C] () -- C:\Users\Tibor\Desktop\RSIT.exe
[2013.09.30 18:39:15 | 000,263,222 | ---- | C] () -- C:\Users\Tibor\Desktop\asd.bmp
[2013.09.30 18:04:17 | 000,318,746 | ---- | C] () -- C:\Users\Tibor\Desktop\404-SUCCESS-ELEMENT-pdf.pdf
[2013.09.29 21:16:51 | 000,150,757 | ---- | C] () -- C:\Users\Tibor\Desktop\Public_Blockmaker.sma
[2013.09.29 21:16:40 | 004,978,311 | ---- | C] () -- C:\Users\Tibor\Desktop\models.zip
[2013.09.29 21:15:41 | 000,336,732 | ---- | C] () -- C:\Users\Tibor\Desktop\blockmaker_v4.01 (1).zip.opdownload
[2013.09.29 20:39:43 | 001,966,725 | ---- | C] () -- C:\Users\Tibor\Desktop\AMXX_Studio_1.4.3_final.zip
[2013.09.29 19:34:50 | 000,004,746 | ---- | C] () -- C:\Users\Tibor\Desktop\dm_shop.sma
[2013.09.29 19:20:10 | 011,207,270 | ---- | C] () -- C:\Users\Tibor\Desktop\Private Blockmaker by razer.rar
[2013.09.29 18:50:18 | 000,263,124 | ---- | C] () -- C:\Users\Tibor\Desktop\a.bmp
[2013.09.29 18:10:13 | 000,410,364 | ---- | C] () -- C:\Users\Tibor\Desktop\Blockmaker v4.01 (Edited by Gale).rar
[2013.09.29 18:10:09 | 000,180,002 | ---- | C] () -- C:\Users\Tibor\Desktop\blockmakerv4.1.sma
[2013.09.29 18:10:07 | 000,137,292 | ---- | C] () -- C:\Users\Tibor\Desktop\blockmakerv4.1.amxx
[2013.09.29 18:09:43 | 000,640,808 | ---- | C] () -- C:\Users\Tibor\Desktop\blockmaker_v4.01.zip
[2013.09.29 18:06:16 | 000,072,387 | ---- | C] () -- C:\Users\Tibor\Desktop\sprites.zip
[2013.09.29 18:06:14 | 000,139,113 | ---- | C] () -- C:\Users\Tibor\Desktop\sounds.zip
[2013.09.29 13:23:27 | 000,029,022 | ---- | C] () -- C:\Users\Tibor\Desktop\hnsshopv1.9.sma
[2013.09.25 13:07:58 | 000,163,057 | ---- | C] () -- C:\Users\Tibor\Desktop\cfg-bm.sma
[2013.09.25 10:38:55 | 000,297,920 | ---- | C] () -- C:\Users\Tibor\Desktop\burn.mdl
[2013.08.13 21:28:58 | 000,000,916 | RHS- | C] () -- C:\Users\Tibor\ntuser.pol
[2013.08.08 07:30:03 | 003,211,264 | ---- | C] () -- C:\Users\Tibor\DevelopmentStorageDb21.mdf
[2013.08.08 07:30:03 | 000,851,968 | ---- | C] () -- C:\Users\Tibor\DevelopmentStorageDb21_log.ldf
[2013.08.04 15:59:12 | 000,000,046 | ---- | C] () -- C:\Program Files\Falco.url
[2013.08.02 17:39:35 | 000,177,864 | ---- | C] () -- C:\Windows\System32\drivers\aswVmm.sys
[2013.08.02 17:39:35 | 000,049,376 | ---- | C] () -- C:\Windows\System32\drivers\aswRvrt.sys
[2013.08.02 03:58:49 | 000,000,175 | ---- | C] () -- C:\Windows\System32\drivers\aswVmm.sys.sum
[2013.08.02 03:58:49 | 000,000,175 | ---- | C] () -- C:\Windows\System32\drivers\aswSP.sys.sum
[2013.08.02 03:58:49 | 000,000,175 | ---- | C] () -- C:\Windows\System32\drivers\aswSnx.sys.sum
[2013.07.30 17:01:18 | 003,786,960 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2013.06.28 12:51:28 | 000,000,058 | ---- | C] () -- C:\Users\Tibor\AppData\Local\DonationCoder_LaunchBarCommander_InstallInfo.dat
[2013.06.14 19:56:18 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll
[2013.06.14 19:56:18 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll
[2013.06.14 19:56:18 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll
[2013.06.14 19:56:18 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll
[2013.03.02 17:14:02 | 000,083,968 | ---- | C] () -- C:\Windows\System32\OEMLicense.dll
[2013.02.13 18:05:12 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2013.01.26 20:17:37 | 000,000,000 | -H-- | C] () -- C:\Users\Tibor\AppData\Roaming\winsvcns.sys
[2013.01.26 17:53:00 | 000,000,028 | ---- | C] () -- C:\Windows\System32\yeqc.ini
[2013.01.26 17:53:00 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xhepiahgu.ini
[2013.01.26 17:53:00 | 000,000,028 | ---- | C] () -- C:\Windows\System32\uaqqwmjt.ini
[2013.01.26 17:53:00 | 000,000,028 | ---- | C] () -- C:\Windows\System32\tgp.dat
[2013.01.26 17:53:00 | 000,000,028 | ---- | C] () -- C:\Windows\System32\netcd.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\zyadeizbstq.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\zmpm.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\zlvlgaoro.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\zbu.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\yruogei.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\yqwnxmuqkr.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ynbpico.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\yft.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\yfddtyco.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xnrwoffi.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xkiazoygsu.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xitroqxj.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xhliavnncf.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xhi.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xei.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xdu.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xbwudob.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xabxrnwognq.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\wztapis.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\wvpmojcpagc.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\wuienx.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\wmaeoulj.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\wjd.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\wgfzxqxc.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\vwx.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\vwvpxtf.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\vtccpjjxhbl.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\vpymgh.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\vky.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\vhgdwwy.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\vexcv.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\uuknvmo.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\uilhoi.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ugh.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\tubh.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\tmksiwyo.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\tjerrruiu.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\tgysztaa.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\szanch.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\swrosmstc.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\surl.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\sthnpbr.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\skjqlknoa.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\rvitifkhda.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ruwy.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\rtsquze.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\rnni.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\rnaxcorvnpm.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\rmkgnn.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\rfbddh.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\rbou.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\qzegqoobxiy.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\qqqewpfdl.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\qpghwlpi.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\qnretzig.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\qheefqe.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\qgqkumwr.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\qbdvroefxtf.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\pvsbacopgo.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\puxozpwjj.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ptfcgaof.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\psxulyb.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\psuezqksw.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\pqjjgvrcrr.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\pplmagu.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\pefaimbebk.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\onuhfaqdr.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\okbzdweogsf.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ogn.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ogknbwh.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ocduhsoaeky.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ndpxrjvfik.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\mxdvmytw.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\mpuqpwyjjoe.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\mlfml.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\mcrrrdylbyb.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\mbpbf.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\lxjydaq.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\lvjfqnrfy.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\lmkwvtfa.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\liif.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\lhlcj.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ldna.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\kgqeevfnt.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\kfkegdfzsmf.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\kblu.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\kaddzumq.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\jxqxva.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\itshnv.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ifvbafbi.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ibqvywo.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hxpuo.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\htzs.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hqwxnfwmq.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hoboh.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hmzimwaq.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hhxjfatux.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hgdxppghmnp.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hfaptb.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hbqnkzjqm.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\gzswrdxw.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\gxveh.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\gxiglgpq.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\gswxesatox.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\gksspjwk.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\gjrxn.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\giemuzl.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ggjxmqh.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\gecrm.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\gbx.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\fyvyvw.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\fqat.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\fnyj.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\fkuuzbgv.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\fas.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ezafudvoiyt.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\err.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ehe.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\egskehx.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\edsljcdivuy.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\ecisfvuhpa.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\dqajfj.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\dmtlsnues.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\cqbt.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\cntaml.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\civwzqm.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\cfclssx.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\cdntf.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\cbgvboorrjj.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\blxcchdo.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\aso.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\arembuqqlhl.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\apluecjxljh.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ajfm.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\aclcvmx.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\zzmbkjttcv.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\zvxuplfqaiv.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\zmulmsalvp.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\zhbezzk.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\zgtn.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\yztg.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ywcotf.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\yfguqg.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ybcwdcj.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xrjmwls.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xratz.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\xibfo.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xhxj.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xbeumyws.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\wvmaql.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\wtkvqxla.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\wmcwjfwebcg.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\wjjkwjxof.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\vuzy.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\vekhfmquvd.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\uvhkeoo.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\upqsk.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ujupkolaxz.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\uhgxcxne.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\udixx.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ubomomrwsdk.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\tttpgilubhz.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\tixbprzs.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\tcu.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\swmx.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\svh.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\srt.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\sqrvkkbktxz.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\sntlrnm.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\slfzi.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\skcx.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\sjzadmi.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\sfsz.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\rzuc.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\rumiqlhw.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\rpz.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\riffaw.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\rifbww.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\rhw.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\refyhravcw.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\rckntimj.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\qxbus.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\qttwzyei.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\qsopsnklrnj.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\qrpcq.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\qqqt.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\pxluctu.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\pqognjycvt.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\pjtdqi.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\phcioojd.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\pedcjlq.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\pcpmvigyknw.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\pclkwlz.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\pathdekgnl.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\oxxpcqneqfk.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ousspnt.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\otvbczqzr.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\otorwgb.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\oofzxmm.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\oofsbkfk.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ooaomuyhvz.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\olhdsirhbjm.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\olcfhmx.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\oicryjbsxhd.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ntpp.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\npuailglpt.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\narceunvfsr.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\mwzhlh.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\mwuwz.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\mvhxlyyr.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\minowwpnhw.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\mhymnl.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\mhefcltipun.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\mflohpswrxl.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\mbufohzbd.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\maynwlp.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\lwcnbd.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\lvzw.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\lqya.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\lnm.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\lffhqjpt.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ktkvvqws.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\kragnbr.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\kppamcnflm.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\kokjkgnayl.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\knk.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\kkrk.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\kjvzwobzke.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\jvpytddxshm.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\jvanbm.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\jscxtijpp.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\jecbuzopv.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\jazdltqdat.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ixrmyzmuf.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ivz.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ithugwck.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\isnvgwxvzx.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\imisiwl.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ilppyukvb.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ikvd.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\iduxw.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ict.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hxokmtz.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hulemjbpzih.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\htubwk.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hrfumedgw.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hiushfclfla.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hgu.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\gwegf.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ghdvcccqxcv.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\gcgii.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\fzzu.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\fnxe.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\fmlgoxxnn.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\fhagevihj.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\epuzw.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\eewo.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\eesejbzog.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\dxrnzku.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\dmuuqmc.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\dkfd.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\djzobvavx.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\dgppwo.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\dgckkqqq.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\dfswulgomz.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\detwvkklv.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\defhdp.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ctxnogspj.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\cbqynozbpo.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\bzyz.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\byoqvakieh.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\bxqecmpfn.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\bulcyfilrrd.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\bsxkwl.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\bsmobir.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\betjex.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\baxqskha.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\azuxhafgo.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ayyyufnvi.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\auemdu.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\akjgqsepny.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ajnzyssdz.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\aesvs.dat
[2012.12.29 01:25:45 | 000,007,605 | ---- | C] () -- C:\Users\Tibor\AppData\Local\Resmon.ResmonCfg
[2012.12.27 14:33:53 | 000,045,270 | ---- | C] () -- C:\Users\Tibor\AppData\Roaming\room_v3.dat
[2012.12.26 19:29:31 | 000,057,082 | ---- | C] () -- C:\Windows\System32\perfh01B.dat
[2012.12.26 19:29:31 | 000,015,696 | ---- | C] () -- C:\Windows\System32\perfc01B.dat
[2012.10.19 04:52:30 | 002,907,040 | ---- | C] () -- C:\Windows\System32\PortChanger.exe
[2012.07.26 08:55:27 | 000,718,572 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2012.07.26 08:55:27 | 000,296,742 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2012.07.26 08:55:27 | 000,136,304 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2012.07.26 08:55:27 | 000,033,362 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2012.07.26 08:53:47 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2012.07.26 08:53:46 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2012.07.26 08:03:55 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2012.07.26 03:20:38 | 000,071,680 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2012.07.26 03:17:42 | 000,043,520 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2012.07.25 22:41:36 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2012.07.25 22:24:47 | 000,526,068 | ---- | C] () -- C:\Windows\System32\staticurllist.bin
[2012.07.14 04:00:46 | 000,043,882 | ---- | C] () -- C:\Windows\System32\srms.dat
[2012.06.02 22:25:24 | 000,008,192 | ---- | C] () -- C:\Windows\System32\settings.dat
[2012.06.02 16:31:24 | 001,520,828 | ---- | C] () -- C:\Windows\System32\WpcNBModel.bin
[2012.06.02 16:31:19 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat

========== ZeroAccess Check ==========

boss382 · #9 Příspěvek od **boss382** » 30 zář 2013 20:51

[2013.01.28 15:06:53 | 000,000,000 | -HSD | M] -- C:\$Recycle.bin\S-1-5-18\$a9963ea70240156658ed2240315b32ad\L
[2013.01.28 15:06:53 | 000,000,000 | -HSD | M] -- C:\$Recycle.bin\S-1-5-18\$a9963ea70240156658ed2240315b32ad\U
[2013.02.15 17:54:29 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013.06.05 18:35:17 | 017,561,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2012.07.26 05:20:13 | 000,354,304 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2013.02.18 15:42:37 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\IObit
[2013.02.18 15:42:37 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\IObit
[2013.08.02 17:00:19 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Agile Web Solutions
[2013.04.05 14:04:56 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Auto-Joiner
[2013.03.10 11:08:33 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Awesomium
[2013.08.05 21:38:39 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Bitcoin
[2013.02.01 19:42:33 | 000,000,000 | -HSD | M] -- C:\Users\Tibor\AppData\Roaming\C1DA18
[2013.09.08 09:57:23 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\DAEMON Tools Lite
[2013.06.05 18:23:16 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\DAEMON Tools Pro
[2013.01.28 09:05:26 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\dclogs
[2013.08.05 15:51:36 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\DG
[2013.06.28 12:51:28 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\DonationCoder
[2013.07.28 16:21:34 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\DownLite
[2013.06.22 23:47:26 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Dropbox
[2013.07.28 16:20:59 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\EZDownloader
[2013.09.14 09:28:20 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Garena
[2013.09.30 20:26:29 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\GarenaPlus
[2013.08.07 21:19:06 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\GHISLER
[2013.09.08 09:54:08 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\HoolappForAndroid
[2013.06.22 23:53:04 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\ICQM
[2013.08.24 10:42:15 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\IObit
[2013.06.22 23:53:39 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\JLC's Software
[2013.06.28 12:42:56 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Launchy
[2013.08.11 12:45:46 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Maxthon3
[2013.06.28 12:20:59 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Micro-Sys
[2013.08.25 16:55:34 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\MilkShape 3D 1.x.x
[2013.08.08 08:41:58 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Notepad++
[2013.09.08 09:54:43 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Opera
[2013.06.24 16:07:07 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Opera Software
[2013.04.02 22:39:51 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\PDF Architect
[2013.08.02 16:24:04 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\PlatinumHideIP
[2013.08.05 17:53:52 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\poclbm
[2013.01.06 23:38:46 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\PowerISO
[2013.06.11 15:22:59 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Quadcore Games
[2013.07.11 18:45:08 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\RBotPlus
[2013.09.08 09:49:39 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Samsung
[2013.07.28 20:34:17 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Seznam.cz
[2013.08.27 10:19:13 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\SFBot
[2013.09.21 21:54:49 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\SimpleFiles
[2013.06.03 19:19:16 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\SkyPath
[2013.09.03 15:18:48 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\skyz
[2013.07.22 09:45:32 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\SoftFuse
[2013.04.02 22:52:52 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Softland
[2013.01.19 10:18:49 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Synaptics
[2013.03.14 21:51:11 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\TeamViewer
[2013.09.17 16:59:39 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Topckit
[2013.09.29 19:49:44 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\TS3Client
[2013.09.08 10:28:38 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\uTorrent
[2013.09.14 19:53:28 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Win8StartMenuCustomizer
[2013.02.18 15:42:37 | 000,000,000 | ---D | M] -- C:\Users\UpdatusUser\AppData\Roaming\IObit

========== Purity Check ==========

========== Custom Scans ==========

< >
[2012.07.26 08:04:47 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2013.02.08 15:24:01 | 000,000,830 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2013.08.24 10:42:15 | 000,000,296 | ---- | C] () -- C:\Windows\Tasks\Driver Booster Startup.job

< >

< MD5 for: ATAPI.SYS >
[2012.07.26 05:42:31 | 000,022,768 | ---- | M] (Microsoft Corporation) MD5=48D8C3F2006698691F5AE0BB595FDCC8 -- C:\Windows.old.000\Windows\System32\Drivers\atapi.sys
[2012.07.26 05:42:31 | 000,022,768 | ---- | M] (Microsoft Corporation) MD5=48D8C3F2006698691F5AE0BB595FDCC8 -- C:\Windows.old.000\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_79ee6a786812523f\atapi.sys
[2012.07.26 05:42:31 | 000,022,768 | ---- | M] (Microsoft Corporation) MD5=48D8C3F2006698691F5AE0BB595FDCC8 -- C:\Windows.old.000\Windows\WinSxS\x86_mshdc.inf_31bf3856ad364e35_6.2.9200.16384_none_d9e333faf2f0935d\atapi.sys
[2012.07.26 05:42:31 | 000,022,768 | ---- | M] (Microsoft Corporation) MD5=48D8C3F2006698691F5AE0BB595FDCC8 -- C:\Windows\System32\Drivers\atapi.sys
[2012.07.26 05:42:31 | 000,022,768 | ---- | M] (Microsoft Corporation) MD5=48D8C3F2006698691F5AE0BB595FDCC8 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_79ee6a786812523f\atapi.sys
[2012.07.26 05:42:31 | 000,022,768 | ---- | M] (Microsoft Corporation) MD5=48D8C3F2006698691F5AE0BB595FDCC8 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_c73107fbdd37000b\atapi.sys
[2012.07.26 05:42:31 | 000,022,768 | ---- | M] (Microsoft Corporation) MD5=48D8C3F2006698691F5AE0BB595FDCC8 -- C:\Windows\WinSxS\x86_mshdc.inf_31bf3856ad364e35_6.2.9200.16384_none_d9e333faf2f0935d\atapi.sys
[2012.07.26 05:42:31 | 000,022,768 | ---- | M] (Microsoft Corporation) MD5=48D8C3F2006698691F5AE0BB595FDCC8 -- C:\Windows\WinSxS\x86_mshdc.inf_31bf3856ad364e35_6.2.9200.16548_none_da12789ef2cc8343\atapi.sys
[2012.07.26 05:42:31 | 000,022,768 | ---- | M] (Microsoft Corporation) MD5=48D8C3F2006698691F5AE0BB595FDCC8 -- C:\Windows\WinSxS\x86_mshdc.inf_31bf3856ad364e35_6.2.9200.20652_none_da8b43c20bf7a6f4\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2012.07.26 05:20:43 | 000,792,064 | ---- | M] (Microsoft Corporation) MD5=55653D86D712641DB6930FAB64F452FF -- C:\Windows.old.000\Windows\System32\autochk.exe
[2012.07.26 05:20:43 | 000,792,064 | ---- | M] (Microsoft Corporation) MD5=55653D86D712641DB6930FAB64F452FF -- C:\Windows.old.000\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.2.9200.16384_none_de9ef92a9327e7b0\autochk.exe
[2012.07.26 05:20:43 | 000,792,064 | ---- | M] (Microsoft Corporation) MD5=55653D86D712641DB6930FAB64F452FF -- C:\Windows\System32\autochk.exe
[2012.07.26 05:20:43 | 000,792,064 | ---- | M] (Microsoft Corporation) MD5=55653D86D712641DB6930FAB64F452FF -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.2.9200.16384_none_de9ef92a9327e7b0\autochk.exe

< MD5 for: CDROM.SYS >
[2012.07.26 04:33:53 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=4E707EC5071DD8F5C29A7410780BD4C3 -- C:\Windows.old.000\Windows\System32\Drivers\cdrom.sys
[2012.07.26 04:33:53 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=4E707EC5071DD8F5C29A7410780BD4C3 -- C:\Windows.old.000\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_a76623cebb64c613\cdrom.sys
[2012.07.26 04:33:53 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=4E707EC5071DD8F5C29A7410780BD4C3 -- C:\Windows.old.000\Windows\WinSxS\x86_cdrom.inf_31bf3856ad364e35_6.2.9200.16384_none_5c5467c3752e2f0b\cdrom.sys
[2012.07.26 04:33:53 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=4E707EC5071DD8F5C29A7410780BD4C3 -- C:\Windows\System32\Drivers\cdrom.sys
[2012.07.26 04:33:53 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=4E707EC5071DD8F5C29A7410780BD4C3 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_a76623cebb64c613\cdrom.sys
[2012.07.26 04:33:53 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=4E707EC5071DD8F5C29A7410780BD4C3 -- C:\Windows\WinSxS\x86_cdrom.inf_31bf3856ad364e35_6.2.9200.16384_none_5c5467c3752e2f0b\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2012.07.26 05:50:01 | 002,114,936 | ---- | M] (Microsoft Corporation) MD5=5B6ED1B57DBFF18D405A0260559B571E -- C:\Windows.old.000\Windows\explorer.exe
[2012.07.26 05:50:01 | 002,114,936 | ---- | M] (Microsoft Corporation) MD5=5B6ED1B57DBFF18D405A0260559B571E -- C:\Windows.old.000\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.16384_none_4e5fb2f34b233380\explorer.exe
[2013.08.05 08:19:42 | 000,190,082 | ---- | M] () MD5=7D48325AACAA53EC22464CA5A3FE0485 -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.20733_none_4f1e64c2641925b3\explorer.exe
[2013.08.05 08:19:36 | 000,191,954 | ---- | M] () MD5=A5130AB8547BFFD17AB5C726A1A2489F -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.16433_none_4e94c42b4afb8b9b\explorer.exe
[2013.06.25 21:31:11 | 000,145,657 | ---- | M] () MD5=B6ECEB54F680B849E905C443D3FE98B4 -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.16384_none_4e5fb2f34b233380\explorer.exe
[2013.06.25 21:31:18 | 000,004,958 | ---- | M] () MD5=E71EB1813F3D175EC63375B9C4275FE5 -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.20534_none_4f1f6140641844bc\explorer.exe
[2013.07.29 15:43:13 | 002,106,176 | ---- | M] (Microsoft Corporation) MD5=EAFE46B0292D2BD2467835E2ACF717CC -- C:\Windows\explorer.exe
[2013.07.29 15:43:13 | 002,106,176 | ---- | M] (Microsoft Corporation) MD5=EAFE46B0292D2BD2467835E2ACF717CC -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.16628_none_4ea499554aeee8ab\explorer.exe

< MD5 for: HAL.DLL >
[2013.06.26 09:13:16 | 000,001,993 | ---- | M] () MD5=0F58394386F255F5017303A4C2B77691 -- C:\Windows\WinSxS\x86_microsoft-windows-hal_31bf3856ad364e35_6.2.9200.20521_none_a89b7be04400a55c\hal.dll
[2012.07.26 06:17:18 | 000,319,216 | ---- | M] (Microsoft Corporation) MD5=4EC411F1AC6C9FB3A96C16D0C500A433 -- C:\Windows.old.000\Windows\System32\hal.dll
[2012.07.26 06:17:18 | 000,319,216 | ---- | M] (Microsoft Corporation) MD5=4EC411F1AC6C9FB3A96C16D0C500A433 -- C:\Windows.old.000\Windows\WinSxS\x86_microsoft-windows-hal_31bf3856ad364e35_6.2.9200.16384_none_a7d3fe852b10fc16\hal.dll
[2013.03.02 17:13:28 | 000,319,208 | ---- | M] (Microsoft Corporation) MD5=CFE569DE5CE1328CEB7FD8C1334C21D0 -- C:\Windows\System32\hal.dll
[2013.03.02 17:13:28 | 000,319,208 | ---- | M] (Microsoft Corporation) MD5=CFE569DE5CE1328CEB7FD8C1334C21D0 -- C:\Windows\WinSxS\x86_microsoft-windows-hal_31bf3856ad364e35_6.2.9200.16420_none_a810decb2ae3ec3b\hal.dll
[2013.06.26 09:12:08 | 000,006,216 | ---- | M] () MD5=DCC740921C239949443874DEB5EF447B -- C:\Windows\WinSxS\x86_microsoft-windows-hal_31bf3856ad364e35_6.2.9200.16384_none_a7d3fe852b10fc16\hal.dll

< MD5 for: SCECLI.DLL >
[2012.07.26 05:19:52 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=B95DC83FF580DD92F487C2F4D0854B6A -- C:\Windows.old.000\Windows\System32\scecli.dll
[2012.07.26 05:19:52 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=B95DC83FF580DD92F487C2F4D0854B6A -- C:\Windows.old.000\Windows\WinSxS\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.2.9200.16384_none_34b8ee3caa8233d3\scecli.dll
[2012.07.26 05:19:52 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=B95DC83FF580DD92F487C2F4D0854B6A -- C:\Windows\System32\scecli.dll
[2012.07.26 05:19:52 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=B95DC83FF580DD92F487C2F4D0854B6A -- C:\Windows\WinSxS\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.2.9200.16384_none_34b8ee3caa8233d3\scecli.dll

< MD5 for: SERVICES.EXE >
[2012.07.26 06:17:18 | 000,333,312 | ---- | M] (Microsoft Corporation) MD5=575FB4211BB07DB7D2179B1B05FE7EFD -- C:\Windows.old.000\Windows\System32\services.exe
[2012.07.26 06:17:18 | 000,333,312 | ---- | M] (Microsoft Corporation) MD5=575FB4211BB07DB7D2179B1B05FE7EFD -- C:\Windows.old.000\Windows\WinSxS\x86_microsoft-windows-s..cecontroller-minwin_31bf3856ad364e35_6.2.9200.16384_none_3bc3d14fce0a0436\services.exe
[2013.03.02 17:13:28 | 000,332,800 | ---- | M] (Microsoft Corporation) MD5=6528BAACA25356FE226904DD36C82BA7 -- C:\Windows\System32\services.exe
[2013.03.02 17:13:28 | 000,332,800 | ---- | M] (Microsoft Corporation) MD5=6528BAACA25356FE226904DD36C82BA7 -- C:\Windows\WinSxS\x86_microsoft-windows-s..cecontroller-minwin_31bf3856ad364e35_6.2.9200.16420_none_3c00b195cddcf45b\services.exe
[2013.06.26 11:58:43 | 000,034,560 | ---- | M] () MD5=7E3CEFABFB064E0960918B3E173DA772 -- C:\Windows\WinSxS\x86_microsoft-windows-s..cecontroller-minwin_31bf3856ad364e35_6.2.9200.16384_none_3bc3d14fce0a0436\services.exe
[2013.06.26 11:58:44 | 000,001,319 | ---- | M] () MD5=7F21C82D270184C9B558973BF660EB1F -- C:\Windows\WinSxS\x86_microsoft-windows-s..cecontroller-minwin_31bf3856ad364e35_6.2.9200.20521_none_3c8b4eaae6f9ad7c\services.exe

< MD5 for: SVCHOST.EXE >
[2012.07.26 05:20:58 | 000,023,040 | ---- | M] (Microsoft Corporation) MD5=0A175AF8B65797BD22C11903A8BFEB2D -- C:\Windows.old.000\Windows\System32\svchost.exe
[2012.07.26 05:20:58 | 000,023,040 | ---- | M] (Microsoft Corporation) MD5=0A175AF8B65797BD22C11903A8BFEB2D -- C:\Windows.old.000\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.2.9200.16384_none_b2666581d6b482a6\svchost.exe
[2013.06.26 12:02:28 | 000,003,208 | ---- | M] () MD5=7988B0C215FEC8FEB5D47D8EDF106F3F -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.2.9200.16384_none_b2666581d6b482a6\svchost.exe
[2013.03.02 17:13:28 | 000,023,040 | ---- | M] (Microsoft Corporation) MD5=A46DC432F81473F526E3994AA483E366 -- C:\Windows\System32\svchost.exe
[2013.03.02 17:13:28 | 000,023,040 | ---- | M] (Microsoft Corporation) MD5=A46DC432F81473F526E3994AA483E366 -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.2.9200.16420_none_b2a345c7d68772cb\svchost.exe
[2013.06.26 12:02:29 | 000,000,583 | ---- | M] () MD5=E976638F5A6F1454072BA40F8AC770D7 -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.2.9200.20521_none_b32de2dcefa42bec\svchost.exe

< MD5 for: TCPIP.SYS >
[2013.06.26 13:12:22 | 000,293,453 | ---- | M] () MD5=5AA4D552D79B58CA2302CDF067FC4035 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.20521_none_b0909b8e50bcaefd\tcpip.sys
[2013.08.05 09:41:54 | 000,296,508 | ---- | M] () MD5=6EEC5017525E95CA3523E26C11ACC40B -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.20733_none_b087d00250c2f7ea\tcpip.sys
[2013.06.26 13:11:53 | 000,291,175 | ---- | M] () MD5=8771303F73C57CD644E695C8FB682725 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16384_none_afc91e3337cd05b7\tcpip.sys
[2013.08.05 09:41:47 | 000,166,963 | ---- | M] () MD5=87F9FDBA1F6AFFD4BB97F98C6CCF26D9 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16604_none_b01fa345378c1da4\tcpip.sys
[2013.07.29 15:43:10 | 001,800,960 | ---- | M] (Microsoft Corporation) MD5=975529A02C104B7DE0DFA2859C89A3AB -- C:\Windows\System32\Drivers\tcpip.sys
[2013.07.29 15:43:10 | 001,800,960 | ---- | M] (Microsoft Corporation) MD5=975529A02C104B7DE0DFA2859C89A3AB -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16628_none_b00e04953798bae2\tcpip.sys
[2013.06.26 13:12:01 | 000,293,432 | ---- | M] () MD5=9B835DC15E4B0FA828CEBD80D0163F68 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16420_none_b005fe79379ff5dc\tcpip.sys
[2013.06.26 13:12:44 | 000,296,530 | ---- | M] () MD5=CB7A313CC68F512CD0242348D8CF5EA5 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.20708_none_b0ad413850a622ca\tcpip.sys
[2013.06.26 13:12:37 | 000,289,020 | ---- | M] () MD5=CDCB977F1B39B68407DFC4EE8A9B7055 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.20652_none_b0712dfa50d4194e\tcpip.sys
[2013.06.26 13:12:15 | 000,163,075 | ---- | M] () MD5=E87AAB301250A79FEB0E8F89A89736FD -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16548_none_aff862d737a8f59d\tcpip.sys
[2012.07.26 06:17:16 | 001,817,328 | ---- | M] (Microsoft Corporation) MD5=FF19CA1C64458F4E0F4F0FAEA22313C2 -- C:\Windows.old.000\Windows\System32\Drivers\tcpip.sys
[2012.07.26 06:17:16 | 001,817,328 | ---- | M] (Microsoft Corporation) MD5=FF19CA1C64458F4E0F4F0FAEA22313C2 -- C:\Windows.old.000\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16384_none_afc91e3337cd05b7\tcpip.sys

< MD5 for: USERINIT.EXE >
[2012.07.26 05:21:00 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=9F6289D194A04A09671FEED4B6CB6EF7 -- C:\Windows.old.000\Windows\System32\userinit.exe
[2012.07.26 05:21:00 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=9F6289D194A04A09671FEED4B6CB6EF7 -- C:\Windows.old.000\Windows\WinSxS\x86_microsoft-windows-userinit_31bf3856ad364e35_6.2.9200.16384_none_d8d3c5f6a316bccc\userinit.exe
[2012.07.26 05:21:00 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=9F6289D194A04A09671FEED4B6CB6EF7 -- C:\Windows\System32\userinit.exe
[2012.07.26 05:21:00 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=9F6289D194A04A09671FEED4B6CB6EF7 -- C:\Windows\WinSxS\x86_microsoft-windows-userinit_31bf3856ad364e35_6.2.9200.16384_none_d8d3c5f6a316bccc\userinit.exe

< MD5 for: WINLOGON.EXE >
[2013.06.26 13:33:04 | 000,044,529 | ---- | M] () MD5=0078F1D2F7DD672C4CBDAEA85B27E1DE -- C:\Windows\WinSxS\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.16384_none_6c6e0cf7a65840b6\winlogon.exe
[2013.06.26 13:33:06 | 000,044,528 | ---- | M] () MD5=0EA0E4C70E8D51D8C48E866109FB27D7 -- C:\Windows\WinSxS\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.20521_none_6d358a52bf47e9fc\winlogon.exe
[2013.06.26 13:33:07 | 000,001,754 | ---- | M] () MD5=6020E3F261CF8177D60A5F54392CAEA6 -- C:\Windows\WinSxS\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.20534_none_6d2dbb44bf4d51f2\winlogon.exe
[2013.03.02 17:19:32 | 000,411,648 | ---- | M] (Microsoft Corporation) MD5=87DA6ACA9AF2F536C68471787D1B3F4A -- C:\Windows\System32\winlogon.exe
[2013.03.02 17:19:32 | 000,411,648 | ---- | M] (Microsoft Corporation) MD5=87DA6ACA9AF2F536C68471787D1B3F4A -- C:\Windows\WinSxS\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.16433_none_6ca31e2fa63098d1\winlogon.exe
[2012.07.26 05:21:01 | 000,411,648 | ---- | M] (Microsoft Corporation) MD5=C06BA1F360CEF6AB51F41B3D0D5FE92D -- C:\Windows.old.000\Windows\System32\winlogon.exe
[2012.07.26 05:21:01 | 000,411,648 | ---- | M] (Microsoft Corporation) MD5=C06BA1F360CEF6AB51F41B3D0D5FE92D -- C:\Windows.old.000\Windows\WinSxS\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.16384_none_6c6e0cf7a65840b6\winlogon.exe
[2013.06.26 13:33:05 | 000,044,523 | ---- | M] () MD5=D03D306B38D16733AAFD71CAAF9DEE8D -- C:\Windows\WinSxS\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.16420_none_6caaed3da62b30db\winlogon.exe

< >

< %systemroot%*.* /U /s >
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[2 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
[5 C:\Windows\Temp\_avast_\*.tmp files -> C:\Windows\Temp\_avast_\*.tmp -> ]
[1 C:\Windows\WinSxS\*.tmp files -> C:\Windows\WinSxS\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2013.08.30 12:25:30 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Adobe
[2013.08.02 17:00:19 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Agile Web Solutions
[2013.05.15 21:10:28 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Apple Computer
[2013.04.05 14:04:56 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Auto-Joiner
[2013.03.10 11:08:33 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Awesomium
[2013.08.05 21:38:39 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Bitcoin
[2013.02.01 19:42:33 | 000,000,000 | -HSD | M] -- C:\Users\Tibor\AppData\Roaming\C1DA18
[2013.09.08 09:57:23 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\DAEMON Tools Lite
[2013.06.05 18:23:16 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\DAEMON Tools Pro
[2013.01.28 09:05:26 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\dclogs
[2013.08.05 15:51:36 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\DG
[2013.06.28 12:51:28 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\DonationCoder
[2013.07.28 16:21:34 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\DownLite
[2013.06.22 23:47:26 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Dropbox
[2013.07.28 16:20:59 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\EZDownloader
[2013.09.14 09:28:20 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Garena
[2013.09.30 20:26:29 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\GarenaPlus
[2013.08.07 21:19:06 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\GHISLER
[2013.09.08 09:54:08 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\HoolappForAndroid
[2013.06.22 23:53:04 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\ICQM
[2013.08.08 23:52:25 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Identities
[2013.03.16 21:16:20 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\InstallShield
[2013.08.24 10:42:15 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\IObit
[2013.06.22 23:53:39 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\JLC's Software
[2013.06.28 12:42:56 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Launchy
[2012.12.26 16:38:47 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Macromedia
[2013.02.01 15:40:30 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Malwarebytes
[2013.08.11 12:45:46 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Maxthon3
[2013.06.28 12:20:59 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Micro-Sys
[2013.08.08 07:12:08 | 000,000,000 | --SD | M] -- C:\Users\Tibor\AppData\Roaming\Microsoft
[2013.08.25 16:55:34 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\MilkShape 3D 1.x.x
[2013.07.30 21:16:35 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Mozilla
[2013.08.08 08:41:58 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Notepad++
[2013.01.28 08:57:21 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\NVIDIA
[2013.09.08 09:54:43 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Opera
[2013.06.24 16:07:07 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Opera Software
[2013.04.02 22:39:51 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\PDF Architect
[2013.08.02 16:24:04 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\PlatinumHideIP
[2013.08.05 17:53:52 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\poclbm
[2013.01.06 23:38:46 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\PowerISO
[2013.06.11 15:22:59 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Quadcore Games
[2013.07.11 18:45:08 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\RBotPlus
[2013.09.08 09:49:39 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Samsung
[2013.07.28 20:34:17 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Seznam.cz
[2013.08.27 10:19:13 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\SFBot
[2013.09.21 21:54:49 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\SimpleFiles
[2013.06.03 19:19:16 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\SkyPath
[2013.09.30 21:23:29 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Skype
[2013.09.03 15:18:48 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\skyz
[2013.07.22 09:45:32 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\SoftFuse
[2013.04.02 22:52:52 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Softland
[2013.01.19 10:18:49 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Synaptics
[2013.03.14 21:51:11 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\TeamViewer
[2013.09.17 16:59:39 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Topckit
[2013.09.29 19:49:44 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\TS3Client
[2013.09.08 10:28:38 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\uTorrent
[2013.09.14 21:01:16 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\vlc
[2013.09.14 19:53:28 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Win8StartMenuCustomizer
[2013.09.14 15:18:18 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\Winamp
[2012.12.26 16:43:04 | 000,000,000 | ---D | M] -- C:\Users\Tibor\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >
[2013.08.25 11:48:02 | 000,054,632 | ---- | M] (Adobe Systems Inc.) -- C:\Users\Tibor\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
[2013.04.02 22:48:57 | 000,218,238 | R--- | M] () -- C:\Users\Tibor\AppData\Roaming\Microsoft\Installer\{1E25A554-0153-45A7-B342-49003A36367C}\_6FEFF9B68218417F98F549.exe
[2013.08.29 11:41:10 | 006,119,688 | ---- | M] (Power Software Ltd) -- C:\Users\Tibor\AppData\Roaming\PowerISO\Upgrade\PowerISO5.exe
[2013.05.16 15:26:24 | 002,589,256 | ---- | M] () -- C:\Users\Tibor\AppData\Roaming\Seznam.cz\sznsetup.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2012.07.26 05:18:40 | 000,117,248 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\iepeers.dll
[1 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job >
[2013.09.30 20:40:10 | 000,000,830 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2013.08.24 10:42:15 | 000,000,296 | ---- | M] () -- C:\Windows\Tasks\Driver Booster Startup.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >
[2012.07.26 05:18:40 | 000,117,248 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\iepeers.dll
[1 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2013.09.27 22:37:53 | 000,002,577 | ---- | M] () -- C:\Windows\system32\config.nt
[1 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Steam" = "C:\Program Files\Steam\steam.exe" -silent -- [2013.09.21 20:34:58 | 001,814,440 | ---- | M] (Valve Corporation)
"Skype" = "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun -- [2013.02.28 18:50:02 | 018,642,024 | R--- | M] (Skype Technologies S.A.)
"GarenaPlus" = "C:\Program Files\Garena Plus\GarenaMessenger.exe" -autolaunch -- [2013.09.27 08:22:04 | 009,866,032 | ---- | M] ()

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2013.06.05 18:38:14 | 000,770,608 | ---- | M] (Microsoft Corporation) MD5=E4F6125ED5185F8FA37CC4F449B85526 -- C:\Program Files\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >

< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
[2013.07.25 02:49:49 | 000,846,288 | ---- | M] (Google Inc.) MD5=ECCA7F72A24C7CF43131946C076689D1 -- C:\Program Files\Google\Chrome\Application\chrome.exe

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2013.09.30 20:40:32 | 000,000,512 | ---- | M] () MD5=09B2885DEDB6FAA3412686D26BF64069 -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2011.08.03 10:56:31 | 000,000,594 | ---- | M] () -- \Backup\Tibor\AppData\Roaming\Microsoft\Windows\Recent\Total-Commander-7.56a-CZ-Final+Crack.lnk
[2011.03.07 12:14:20 | 000,004,328 | ---- | M] () -- \Backup\Tibor\Desktop\JDownloader\JDownloader\jd\plugins\hoster\CrackedCom.class
[2011.03.02 19:06:14 | 000,786,270 | ---- | M] () -- \Program Files\Counter-Strike 1.6 HD\cstrike\gfx\detail\cracked_grounddddg.tga
[2013.03.18 08:57:47 | 000,004,125 | ---- | M] () -- \Program Files\JDownloader\jd\plugins\hoster\CrackedCom.class
[2012.05.05 15:38:42 | 000,062,238 | ---- | M] () -- \Program Files\TC UP\PLUGINS\Media\Gimp\Bin\Gimp\share\gimp\2.0\patterns\cracked.pat
[2010.05.29 22:41:56 | 000,114,899 | ---- | M] () -- \Program Files\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\numpy\f2py\crackfortran.py
[2012.01.03 14:13:36 | 001,386,244 | ---- | M] () -- \Users\Tibor\Desktop\Tibor\Ps_CS5_(32&64-bit)_ENG+CZ\Adobe Photoshop,Premiere CS5 Crack.rar
[2013.07.13 17:12:33 | 001,386,244 | ---- | M] () -- \Users\Tibor\Disk Google\Ps_CS5_(32&64-bit)_ENG+CZ (1)\Adobe Photoshop,Premiere CS5 Crack.rar
[2012.01.03 14:13:36 | 001,386,244 | ---- | M] () -- \Users\Tibor\Disk Google\Ps_CS5_(32&64-bit)_ENG+CZ\Adobe Photoshop,Premiere CS5 Crack.rar
[2013.08.25 10:04:43 | 353,002,982 | ---- | M] () -- \Users\Tibor\Downloads\Incomedia WebSite X5 Evolution 10.0.6.31 + Crack\Incomedia WebSite X5 Evolution 10.0.6.31 + Crack.tgz
[2012.12.26 15:51:55 | 000,026,871 | ---- | M] () -- \Windows.old.000\Documents and Settings\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\8QW0SNFH\win-8-crack-t742790[1].htm
[2012.12.26 14:42:08 | 000,128,362 | ---- | M] () -- \Windows.old.000\Documents and Settings\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\ITS63ZQL\microsoft-windows-8-crack-s-sem-t736380[1].htm
File not found -- \Windows.old.000\Documents and Settings\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\ITS63ZQL\rsecurity_hackingcracking;sz=300x250;tile=1;plat=pc;dc_dedup=1;kcr=us;kga=-1;kgg=-1;klg=sk;kmyd=ad_creative_1;kr=F;kw=windows+8+crack;ord=9488777317476976[1].htm
File not found -- \Windows.old.000\Documents and Settings\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\KV2QWQEN\rsecurity_hackingcracking;sz=300x250;tile=1;plat=pc;dc_dedup=1;kcr=us;kga=-1;kgg=-1;klg=sk;kmyd=ad_creative_1;kr=F;kw=windows+8+crack;ord=1548161991606398[1].htm
File not found -- \Windows.old.000\Documents and Settings\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\KV2QWQEN\rsecurity_hackingcracking;sz=300x250;tile=1;plat=pc;dc_dedup=1;kcr=us;kga=-1;kgg=-1;klg=sk;kmyd=ad_creative_1;kr=F;kw=windows+8+crack;ord=5921275453870372[1].htm
File not found -- \Windows.old.000\Documents and Settings\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\KV2QWQEN\rsecurity_hackingcracking;sz=300x250;tile=1;plat=pc;dc_dedup=1;kcr=us;kga=-1;kgg=-1;klg=sk;kmyd=ad_creative_1;kr=F;kw=windows+8+crack;ord=7944540956528721[1].htm
[2012.12.26 15:37:25 | 000,032,621 | ---- | M] () -- \Windows.old.000\Documents and Settings\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\KV2QWQEN\windows-8-crack-serial-keygen-rapidshare-download[1].htm
[2012.12.26 15:37:41 | 000,022,663 | ---- | M] () -- \Windows.old.000\Documents and Settings\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\V2M1OVDR\windows-8-crack-serial-keygen-download[1].htm
[2012.12.26 15:49:32 | 000,000,142 | ---- | M] () -- \Windows.old.000\Documents and Settings\Tibor\AppData\Local\Opera\Opera\icons\available-crack.blogspot.sk.idx
[2012.12.26 15:49:32 | 000,000,321 | ---- | M] () -- \Windows.old.000\Documents and Settings\Tibor\AppData\Local\Opera\Opera\icons\http%3A%2F%2Favailable-crack.blogspot.sk%2Ffavicon.png
[2012.12.26 15:51:55 | 000,026,871 | ---- | M] () -- \Windows.old.000\Users\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\8QW0SNFH\win-8-crack-t742790[1].htm
[2012.12.26 14:42:08 | 000,128,362 | ---- | M] () -- \Windows.old.000\Users\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\ITS63ZQL\microsoft-windows-8-crack-s-sem-t736380[1].htm
File not found -- \Windows.old.000\Users\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\ITS63ZQL\rsecurity_hackingcracking;sz=300x250;tile=1;plat=pc;dc_dedup=1;kcr=us;kga=-1;kgg=-1;klg=sk;kmyd=ad_creative_1;kr=F;kw=windows+8+crack;ord=9488777317476976[1].htm
File not found -- \Windows.old.000\Users\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\KV2QWQEN\rsecurity_hackingcracking;sz=300x250;tile=1;plat=pc;dc_dedup=1;kcr=us;kga=-1;kgg=-1;klg=sk;kmyd=ad_creative_1;kr=F;kw=windows+8+crack;ord=1548161991606398[1].htm
File not found -- \Windows.old.000\Users\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\KV2QWQEN\rsecurity_hackingcracking;sz=300x250;tile=1;plat=pc;dc_dedup=1;kcr=us;kga=-1;kgg=-1;klg=sk;kmyd=ad_creative_1;kr=F;kw=windows+8+crack;ord=5921275453870372[1].htm
File not found -- \Windows.old.000\Users\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\KV2QWQEN\rsecurity_hackingcracking;sz=300x250;tile=1;plat=pc;dc_dedup=1;kcr=us;kga=-1;kgg=-1;klg=sk;kmyd=ad_creative_1;kr=F;kw=windows+8+crack;ord=7944540956528721[1].htm
[2012.12.26 15:37:25 | 000,032,621 | ---- | M] () -- \Windows.old.000\Users\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\KV2QWQEN\windows-8-crack-serial-keygen-rapidshare-download[1].htm
[2012.12.26 15:37:41 | 000,022,663 | ---- | M] () -- \Windows.old.000\Users\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\V2M1OVDR\windows-8-crack-serial-keygen-download[1].htm
[2012.12.26 15:49:32 | 000,000,142 | ---- | M] () -- \Windows.old.000\Users\Tibor\AppData\Local\Opera\Opera\icons\available-crack.blogspot.sk.idx
[2012.12.26 15:49:32 | 000,000,321 | ---- | M] () -- \Windows.old.000\Users\Tibor\AppData\Local\Opera\Opera\icons\http%3A%2F%2Favailable-crack.blogspot.sk%2Ffavicon.png

< *keygen* /s >
[2009.08.08 21:42:28 | 000,086,528 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-1663960766-3618707702-2185633917-1001\$R5S1XMX.2253BETA\FFF_Keygen\Everest.5.0.1650.All.Edition_KEYGEN-FFF.exe
[2012.12.26 15:37:50 | 000,006,189 | ---- | M] () -- \Windows.old.000\Documents and Settings\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\8QW0SNFH\windows-8-keygen[1].htm
[2012.12.26 15:37:25 | 000,032,621 | ---- | M] () -- \Windows.old.000\Documents and Settings\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\KV2QWQEN\windows-8-crack-serial-keygen-rapidshare-download[1].htm
[2012.12.26 15:37:41 | 000,022,663 | ---- | M] () -- \Windows.old.000\Documents and Settings\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\V2M1OVDR\windows-8-crack-serial-keygen-download[1].htm
[2012.12.26 15:37:50 | 000,006,189 | ---- | M] () -- \Windows.old.000\Users\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\8QW0SNFH\windows-8-keygen[1].htm
[2012.12.26 15:37:25 | 000,032,621 | ---- | M] () -- \Windows.old.000\Users\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\KV2QWQEN\windows-8-crack-serial-keygen-rapidshare-download[1].htm
[2012.12.26 15:37:41 | 000,022,663 | ---- | M] () -- \Windows.old.000\Users\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\V2M1OVDR\windows-8-crack-serial-keygen-download[1].htm

< *loader* /s >
[2013.03.27 00:58:42 | 000,066,560 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-1663960766-3618707702-2185633917-1001\$RHSUVPK.29\Config\DATA\DLL\loader.dll
[2013.03.27 00:58:42 | 000,066,560 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-1663960766-3618707702-2185633917-1001\$ROP0SO6.28\Config\DATA\DLL\loader.dll
[2011.07.31 23:16:16 | 000,000,914 | ---- | M] () -- \Backup\Tibor\AppData\Local\Opera\Opera\icons\http%3A%2F%2Fjdownloader.org%2Flib%2Ftpl%2Farctic%2Fimages%2Ffavicon.png
[2011.07.31 23:16:16 | 000,000,110 | ---- | M] () -- \Backup\Tibor\AppData\Local\Opera\Opera\icons\jdownloader.org.idx
[2011.07.31 23:10:51 | 000,000,491 | ---- | M] () -- \Backup\Tibor\AppData\Roaming\Microsoft\Windows\Recent\JDownloader.lnk
[2011.07.31 23:16:09 | 000,000,105 | ---- | M] () -- \Backup\Tibor\Desktop\JDownloader\JDownloader\jd\img\hosterlogos\uploader.pl.png
[2013.08.27 23:15:54 | 001,177,888 | ---- | M] () -- \NVIDIA\DisplayDriver\GeForce320.49Driver\ExtensionLoader.dll
[2013.05.16 16:41:22 | 001,152,288 | ---- | M] () -- \NVIDIA\DisplayDriver\GeForce320.49Driver\GFExperience\ExtensionLoader.dll
[2010.01.21 07:14:00 | 005,275,600 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\Photodownloader.exe
[2010.01.21 04:38:16 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2010.01.21 04:38:18 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2010.01.21 04:38:18 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\de_de\Photodownloader.ini
[2010.01.21 04:38:18 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\en_us\Photodownloader.ini
[2010.01.21 04:38:18 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\es_es\Photodownloader.ini
[2010.01.21 04:38:18 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2010.01.21 04:38:18 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2010.01.21 04:38:20 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\it_it\Photodownloader.ini
[2010.01.21 04:38:20 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2010.01.21 04:38:20 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2010.01.21 04:38:20 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2010.01.21 04:38:20 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\no_no\Photodownloader.ini
[2010.01.21 04:38:20 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2010.01.21 04:38:20 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2010.01.21 04:38:20 | 000,000,308 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2010.01.21 04:38:20 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2006.10.26 14:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\coloader.dll
[2006.10.26 14:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\coloader.tlb
[2012.07.26 19:08:06 | 000,102,864 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\coloader80.dll
[2012.07.26 13:20:02 | 000,004,096 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\coloader80.tlb
[2011.03.16 14:12:14 | 000,169,384 | ---- | M] () -- \Program Files\Counter-Strike 1.6 HD\cstrike\models\qloader.mdl
[2009.09.08 17:36:32 | 000,352,548 | ---- | M] () -- \Program Files\Counter-Strike 1.6 HD\valve\models\loader.mdl
[2009.09.08 17:37:28 | 000,012,764 | ---- | M] () -- \Program Files\Counter-Strike 1.6 HD\valve\sound\ambience\loader_hydra1.wav
[2009.09.08 17:37:42 | 000,012,164 | ---- | M] () -- \Program Files\Counter-Strike 1.6 HD\valve\sound\ambience\loader_step1.wav
[2013.07.10 13:54:34 | 000,051,504 | ---- | M] () -- \Program Files\Garena Plus\FileLoader.dll
[2013.07.10 13:54:36 | 002,941,232 | ---- | M] () -- \Program Files\Garena Plus\ggdownloader.dll
[2013.07.10 13:16:48 | 000,255,280 | ---- | M] () -- \Program Files\Garena Plus\bbtalk\GarenaTalkLoader.exe
[2013.02.17 12:26:01 | 000,002,727 | ---- | M] () -- \Program Files\IObit\Advanced SystemCare 6\Downloader.log
[2012.05.22 09:43:16 | 000,214,528 | ---- | M] () -- \Program Files\JDownloader\JDownloader.exe
[2012.05.22 09:43:16 | 000,593,293 | ---- | M] () -- \Program Files\JDownloader\JDownloader.jar
[2012.05.22 09:43:16 | 000,218,816 | ---- | M] () -- \Program Files\JDownloader\JDownloaderBETA.exe
[2012.05.22 09:43:16 | 000,218,816 | ---- | M] () -- \Program Files\JDownloader\JDownloaderD3D.exe
[2012.05.22 09:43:16 | 000,219,264 | ---- | M] () -- \Program Files\JDownloader\JDownloaderPortable.exe
[2013.02.24 20:00:40 | 000,000,105 | ---- | M] () -- \Program Files\JDownloader\jd\img\hosterlogos\uploader.pl.png
[2013.02.26 14:36:48 | 000,011,071 | ---- | M] () -- \Program Files\JDownloader\jd\plugins\hoster\MyDownloaderNet.class
[2013.02.26 14:36:36 | 000,004,584 | ---- | M] () -- \Program Files\JDownloader\jd\plugins\hoster\OmpLoaderOrg.class
[2013.05.29 17:23:17 | 000,003,880 | ---- | M] () -- \Program Files\JDownloader\jd\plugins\hoster\UploaderJp.class
[2013.02.26 14:36:05 | 000,007,073 | ---- | M] () -- \Program Files\JDownloader\jd\plugins\hoster\UploaderPl.class
[2012.05.22 09:43:16 | 000,032,222 | ---- | M] () -- \Program Files\JDownloader\licenses\jdownloader.license
[2012.11.23 10:03:16 | 000,007,825 | ---- | M] () -- \Program Files\Microsoft ASP.NET\ASP.NET MVC 4\Packages\jquery.mobile.1.2.0\content\Content\images\ajax-loader.gif
[2012.11.23 10:03:16 | 000,007,825 | ---- | M] () -- \Program Files\Microsoft ASP.NET\ASP.NET Web Pages\v2.0\Packages\jquery.mobile.1.2.0\content\Content\images\ajax-loader.gif
[2012.07.26 19:08:06 | 000,102,864 | ---- | M] () -- \Program Files\Microsoft Visual Studio 11.0\Common7\IDE\coloader80.dll
[2012.07.26 14:30:52 | 000,001,373 | ---- | M] () -- \Program Files\Microsoft Visual Studio 11.0\Common7\IDE\coloader80.dll.manifest
[2012.07.26 13:20:02 | 000,004,096 | ---- | M] () -- \Program Files\Microsoft Visual Studio 11.0\Common7\IDE\coloader80.tlb
[2012.07.26 19:08:06 | 000,024,760 | ---- | M] () -- \Program Files\Microsoft Visual Studio 11.0\Common7\IDE\ReferenceAssemblies\v2.0\Microsoft.TeamFoundation.WorkItemTracking.Client.DataStoreLoader.dll
[2013.04.12 14:12:56 | 000,017,088 | ---- | M] () -- \Program Files\Microsoft Web Tools\Page Inspector\Microsoft.VisualStudio.Web.PageInspector.Loader.dll
[2011.07.18 23:33:32 | 000,008,787 | ---- | M] () -- \Program Files\Notepad++\user.manual\sites\all\modules\fancy_login\images\ajax-loader.gif
[2013.08.27 23:15:54 | 001,177,888 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\Display.GFExperience.{94DCB473-75AA-4F15-AC2B-B73737D44E6F}\ExtensionLoader.dll
[2013.08.27 23:15:54 | 001,177,888 | ---- | M] () -- \Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\ExtensionLoader.dll
[2012.11.01 10:32:14 | 000,057,224 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2012.09.05 00:34:12 | 000,083,848 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader.dll
[2013.08.22 15:37:14 | 000,001,657 | ---- | M] () -- \Program Files\Overwolf\Licenses\TextureLoader.txt
[2011.03.16 14:12:14 | 000,169,384 | ---- | M] () -- \Program Files\Steam\SteamApps\common\Half-Life\cstrike\models\qloader.mdl
[2013.09.02 17:25:03 | 000,352,548 | ---- | M] () -- \Program Files\Steam\SteamApps\common\Half-Life\valve\models\loader.mdl
[2013.09.02 17:27:05 | 000,012,764 | ---- | M] () -- \Program Files\Steam\SteamApps\common\Half-Life\valve\sound\ambience\loader_hydra1.wav
[2013.09.02 17:25:54 | 000,012,164 | ---- | M] () -- \Program Files\Steam\SteamApps\common\Half-Life\valve\sound\ambience\loader_step1.wav
[2011.03.08 09:43:28 | 000,013,734 | ---- | M] () -- \Program Files\TC UP\PLUGINS\Media\Gimp\Bin\Gimp\Python\Lib\unittest\loader.py
[2010.03.06 10:24:56 | 000,003,614 | ---- | M] () -- \Program Files\TC UP\PLUGINS\Media\Inkscape\etc\gtk-2.0\gdk-pixbuf.loaders
[2010.08.16 11:41:40 | 000,032,958 | ---- | M] () -- \Program Files\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\ailoader.py
[2010.08.16 11:41:40 | 000,001,847 | ---- | M] () -- \Program Files\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\bziploader.py
[2010.08.16 11:41:40 | 000,057,685 | ---- | M] () -- \Program Files\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\ccxloader.py
[2010.08.16 11:41:40 | 000,029,336 | ---- | M] () -- \Program Files\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cdrloader.py
[2010.08.16 11:41:40 | 000,001,341 | ---- | M] () -- \Program Files\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cdrziploader.py
[2010.08.16 11:41:40 | 000,028,643 | ---- | M] () -- \Program Files\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cgmloader.py
[2010.08.16 11:41:40 | 000,055,918 | ---- | M] () -- \Program Files\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cmxloader.py
[2010.08.16 11:41:40 | 000,038,308 | ---- | M] () -- \Program Files\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\dxfloader.py
[2010.08.16 11:41:40 | 000,001,949 | ---- | M] () -- \Program Files\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\gziploader.py
[2010.08.16 11:41:40 | 000,007,779 | ---- | M] () -- \Program Files\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\pltloader.py
[2010.08.16 11:41:40 | 000,017,301 | ---- | M] () -- \Program Files\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\sk1loader.py
[2010.08.16 11:41:40 | 000,015,416 | ---- | M] () -- \Program Files\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\skloader.py
[2010.08.16 11:41:40 | 000,015,832 | ---- | M] () -- \Program Files\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\stitchloader.py
[2010.08.16 11:41:40 | 000,038,937 | ---- | M] () -- \Program Files\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\svgloader.py
[2010.08.16 11:41:40 | 000,014,300 | ---- | M] () -- \Program Files\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\wmfloader.py
[2010.08.16 11:41:40 | 000,017,550 | ---- | M] () -- \Program Files\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\xfigloader.py
[2012.07.26 10:12:32 | 000,039,485 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Bing_1.2.0.137_x86__8wekyb3d8bbwe\shell\js\backgroundImageLoader.js
[2012.07.26 10:11:33 | 000,002,809 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x86__8wekyb3d8bbwe\DependencyLoader\DependencyLoader.js
[2012.07.26 10:11:34 | 000,001,583 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x86__8wekyb3d8bbwe\ModernAttachmentWell\AttachmentWellComposeDependencyLoader.js
[2012.07.26 10:11:34 | 000,001,711 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x86__8wekyb3d8bbwe\ModernAttachmentWell\AttachmentWellReadDependencyLoader.js
[2012.07.26 10:11:34 | 000,002,509 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x86__8wekyb3d8bbwe\ModernAttachmentWell\AttachmentWellShareAnythingControlDependencyLoader.js
[2012.07.26 10:11:35 | 000,002,394 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x86__8wekyb3d8bbwe\ModernPeople\appframe\BackgroundLoader.js
[2012.07.26 10:11:35 | 000,005,028 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x86__8wekyb3d8bbwe\ModernShareAnything\ShareDataLoader.js
[2012.07.26 10:12:29 | 000,049,108 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.XboxLIVEGames_1.0.927.0_x86__8wekyb3d8bbwe\Framework\imageLoader.js
[2012.07.26 10:12:07 | 000,049,108 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneMusic_1.0.927.0_x86__8wekyb3d8bbwe\Framework\imageLoader.js
[2013.09.26 08:12:40 | 000,052,389 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneMusic_1.5.146.0_x86__8wekyb3d8bbwe\Framework\imageLoader.js
[2012.07.26 10:12:13 | 000,049,108 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneVideo_1.0.927.0_x86__8wekyb3d8bbwe\Framework\imageLoader.js
[2013.05.23 00:40:58 | 000,053,549 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneVideo_1.4.19.0_x86__8wekyb3d8bbwe\Framework\imageLoader.js
[2013.08.16 07:16:19 | 000,053,822 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneVideo_1.5.41.0_x86__8wekyb3d8bbwe\Framework\imageLoader.js
[2013.01.16 19:00:14 | 000,020,813 | ---- | M] () -- \ProgramData\GarenaMessenger\update\12169\FileLoader.dll
[2013.02.07 14:54:58 | 000,020,929 | ---- | M] () -- \ProgramData\GarenaMessenger\update\12177\FileLoader.dll
[2013.01.31 14:47:52 | 000,945,655 | ---- | M] () -- \ProgramData\GarenaMessenger\update\12177\ggdownloader.dll
[2013.01.31 14:41:57 | 000,027,494 | ---- | M] () -- \ProgramData\GarenaMessenger\update\12177\bbtalk\BTalkLoader.exe
[2013.02.24 20:00:26 | 000,001,981 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Uninstaller.lnk
[2013.02.24 20:00:04 | 000,001,913 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Update.lnk
[2013.02.24 20:00:04 | 000,002,000 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader.lnk
[2013.08.03 10:33:17 | 000,001,984 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\YourFileDownloader\YourFile Downloader.lnk
[2013.02.20 16:28:38 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2013.02.20 16:28:38 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2013.02.20 16:28:38 | 000,009,772 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\retina\loader@2x.png
[2013.01.16 19:00:14 | 000,020,813 | ---- | M] () -- \Users\All Users\GarenaMessenger\update\12169\FileLoader.dll
[2013.02.07 14:54:58 | 000,020,929 | ---- | M] () -- \Users\All Users\GarenaMessenger\update\12177\FileLoader.dll
[2013.01.31 14:47:52 | 000,945,655 | ---- | M] () -- \Users\All Users\GarenaMessenger\update\12177\ggdownloader.dll
[2013.01.31 14:41:57 | 000,027,494 | ---- | M] () -- \Users\All Users\GarenaMessenger\update\12177\bbtalk\BTalkLoader.exe
[2013.02.24 20:00:26 | 000,001,981 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\JDownloader Uninstaller.lnk
[2013.02.24 20:00:04 | 000,001,913 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\JDownloader Update.lnk
[2013.02.24 20:00:04 | 000,002,000 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\JDownloader.lnk
[2013.08.03 10:33:17 | 000,001,984 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\YourFileDownloader\YourFile Downloader.lnk
[2013.02.20 16:28:38 | 000,072,638 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.gif
[2013.02.20 16:28:38 | 000,003,032 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.png
[2013.02.20 16:28:38 | 000,009,772 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\retina\loader@2x.png
[2013.08.25 09:47:04 | 000,000,916 | ---- | M] () -- \Users\Tibor\AppData\Local\Microsoft\CLR_v2.0_32\UsageLogs\Torntv Downloader.exe.log
[2011.06.16 21:24:24 | 000,045,286 | ---- | M] () -- \Users\Tibor\AppData\Local\Microsoft\Windows Sidebar\Gadgets\StickyNotesOnline.gadget\Images\Loader.png
[2011.06.16 21:24:24 | 000,012,690 | ---- | M] () -- \Users\Tibor\AppData\Local\Microsoft\Windows Sidebar\Gadgets\StickyNotesOnline.gadget\Images\LoaderBg.png
[2013.09.09 20:58:00 | 000,109,505 | ---- | M] () -- \Users\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\C5VCLDV2\AdLoader-3ce32d357de39fd9427f374be93bd0ac.min[1].js
[2013.09.09 20:57:59 | 000,001,511 | ---- | M] () -- \Users\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\C5VCLDV2\AdLoader[1].htm
[2013.09.21 21:54:53 | 000,001,095 | ---- | M] () -- \Users\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DST9ZINK\downloader[1].htm
[2013.09.21 21:55:05 | 000,001,106 | ---- | M] () -- \Users\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VWYPY3DH\downloader[1].htm
[2013.02.24 20:00:06 | 000,002,000 | ---- | M] () -- \Users\Tibor\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\JDownloader.lnk
[2013.09.17 18:05:47 | 000,001,786 | ---- | M] () -- \Users\Tibor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Eurobattle.net\Euroloader.lnk
[2013.09.03 16:57:55 | 000,003,208 | ---- | M] () -- \Users\Tibor\AppData\Roaming\Opera Software\Opera Next\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp\1.5.5_0\skin\ajax-loader.gif
[2013.09.17 18:05:47 | 000,001,732 | ---- | M] () -- \Users\Tibor\Desktop\Euroloader.lnk
[2011.09.25 23:18:06 | 000,098,816 | ---- | M] () -- \Users\Tibor\Desktop\Tibor\travian app\Warcraft III\euroloader.exe
[2011.09.25 23:18:06 | 000,098,816 | ---- | M] () -- \Users\Tibor\Desktop\Tibor\Warcraft III\euroloader.exe
[2011.09.25 23:18:06 | 000,098,816 | ---- | M] () -- \Users\Tibor\Disk Google\Warcraft III\euroloader.exe
[2013.06.28 12:24:33 | 000,001,078 | ---- | M] () -- \Users\Tibor\Documents\Micro-Sys\Launcher\shortcuts\euroloader.bmp
[2013.06.28 12:24:33 | 000,001,078 | ---- | M] () -- \Users\Tibor\Documents\Micro-Sys\Launcher\shortcuts\euroloader.wc.bmp
[2012.07.26 13:03:19 | 000,715,776 | ---- | M] () -- \Users\Tibor\Downloads\windows\sources\upgloader.dll
[2012.07.26 13:03:19 | 000,023,040 | ---- | M] () -- \Users\Tibor\Downloads\windows\sources\sk-sk\upgloader.dll.mui
[2012.12.26 15:38:09 | 000,002,038 | ---- | M] () -- \Windows.old.000\Documents and Settings\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\8QW0SNFH\vbulletin_post_loader[1].js
[2012.12.26 14:50:40 | 000,002,971 | ---- | M] () -- \Windows.old.000\Documents and Settings\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\ITS63ZQL\loader[1].gif
[2012.12.26 15:09:17 | 000,011,362 | ---- | M] () -- \Windows.old.000\Documents and Settings\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\KV2QWQEN\uploader-min[1].js
[2012.12.26 15:19:09 | 000,001,775 | ---- | M] () -- \Windows.old.000\Documents and Settings\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\V2M1OVDR\ajax-loader-grey_round[1].gif
[2012.12.26 15:11:01 | 000,000,014 | ---- | M] () -- \Windows.old.000\Documents and Settings\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\V2M1OVDR\preloader[1].js
[2012.12.26 14:26:04 | 000,022,641 | ---- | M] () -- \Windows.old.000\Documents and Settings\yhkj\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\7N63WZW8\downloader-3[1].jpg
[2012.12.26 14:25:05 | 000,002,971 | ---- | M] () -- \Windows.old.000\Documents and Settings\yhkj\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\7N63WZW8\loader[1].gif
[2012.12.26 14:22:03 | 000,010,819 | ---- | M] () -- \Windows.old.000\Documents and Settings\yhkj\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\8Y29T02K\loader_bar[1].gif
[2012.12.26 14:22:03 | 000,003,208 | ---- | M] () -- \Windows.old.000\Documents and Settings\yhkj\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\KJVQTVYN\ajax_loader[1].gif
[2012.12.26 14:23:07 | 000,000,954 | ---- | M] () -- \Windows.old.000\Documents and Settings\yhkj\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\P26R3H7G\annotationsLoader[1].js
[2012.12.26 14:25:01 | 000,014,895 | ---- | M] () -- \Windows.old.000\Documents and Settings\yhkj\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\P26R3H7G\loader[1].js
[2012.07.26 10:12:18 | 000,039,485 | ---- | M] () -- \Windows.old.000\Program Files\WindowsApps\Microsoft.Bing_1.2.0.137_x86__8wekyb3d8bbwe\shell\js\backgroundImageLoader.js
[2012.07.26 10:11:10 | 000,002,809 | ---- | M] () -- \Windows.old.000\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x86__8wekyb3d8bbwe\DependencyLoader\DependencyLoader.js
[2012.07.26 10:11:11 | 000,001,583 | ---- | M] () -- \Windows.old.000\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x86__8wekyb3d8bbwe\ModernAttachmentWell\AttachmentWellComposeDependencyLoader.js
[2012.07.26 10:11:11 | 000,001,711 | ---- | M] () -- \Windows.old.000\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x86__8wekyb3d8bbwe\ModernAttachmentWell\AttachmentWellReadDependencyLoader.js
[2012.07.26 10:11:11 | 000,002,509 | ---- | M] () -- \Windows.old.000\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x86__8wekyb3d8bbwe\ModernAttachmentWell\AttachmentWellShareAnythingControlDependencyLoader.js
[2012.07.26 10:11:12 | 000,002,394 | ---- | M] () -- \Windows.old.000\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x86__8wekyb3d8bbwe\ModernPeople\appframe\BackgroundLoader.js
[2012.07.26 10:11:12 | 000,005,028 | ---- | M] () -- \Windows.old.000\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x86__8wekyb3d8bbwe\ModernShareAnything\ShareDataLoader.js
[2012.07.26 10:12:14 | 000,049,108 | ---- | M] () -- \Windows.old.000\Program Files\WindowsApps\Microsoft.XboxLIVEGames_1.0.927.0_x86__8wekyb3d8bbwe\Framework\imageLoader.js
[2012.07.26 10:11:47 | 000,049,108 | ---- | M] () -- \Windows.old.000\Program Files\WindowsApps\Microsoft.ZuneMusic_1.0.927.0_x86__8wekyb3d8bbwe\Framework\imageLoader.js
[2012.07.26 10:11:56 | 000,049,108 | ---- | M] () -- \Windows.old.000\Program Files\WindowsApps\Microsoft.ZuneVideo_1.0.927.0_x86__8wekyb3d8bbwe\Framework\imageLoader.js
[2012.12.26 15:38:09 | 000,002,038 | ---- | M] () -- \Windows.old.000\Users\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\8QW0SNFH\vbulletin_post_loader[1].js
[2012.12.26 14:50:40 | 000,002,971 | ---- | M] () -- \Windows.old.000\Users\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\ITS63ZQL\loader[1].gif
[2012.12.26 15:09:17 | 000,011,362 | ---- | M] () -- \Windows.old.000\Users\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\KV2QWQEN\uploader-min[1].js
[2012.12.26 15:19:09 | 000,001,775 | ---- | M] () -- \Windows.old.000\Users\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\V2M1OVDR\ajax-loader-grey_round[1].gif
[2012.12.26 15:11:01 | 000,000,014 | ---- | M] () -- \Windows.old.000\Users\Tibor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\V2M1OVDR\preloader[1].js
[2012.12.26 14:26:04 | 000,022,641 | ---- | M] () -- \Windows.old.000\Users\yhkj\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\7N63WZW8\downloader-3[1].jpg
[2012.12.26 14:25:05 | 000,002,971 | ---- | M] () -- \Windows.old.000\Users\yhkj\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\7N63WZW8\loader[1].gif
[2012.12.26 14:22:03 | 000,010,819 | ---- | M] () -- \Windows.old.000\Users\yhkj\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\8Y29T02K\loader_bar[1].gif
[2012.12.26 14:22:03 | 000,003,208 | ---- | M] () -- \Windows.old.000\Users\yhkj\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\KJVQTVYN\ajax_loader[1].gif
[2012.12.26 14:23:07 | 000,000,954 | ---- | M] () -- \Windows.old.000\Users\yhkj\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\P26R3H7G\annotationsLoader[1].js
[2012.12.26 14:25:01 | 000,014,895 | ---- | M] () -- \Windows.old.000\Users\yhkj\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\P26R3H7G\loader[1].js
[2012.07.26 04:46:24 | 000,003,072 | -H-- | M] () -- \Windows.old.000\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.07.26 04:46:25 | 000,003,584 | -H-- | M] () -- \Windows.old.000\Windows\System32\api-ms-win-core-libraryloader-l1-1-1.dll
[2012.07.26 04:46:36 | 000,002,560 | -H-- | M] () -- \Windows.old.000\Windows\System32\api-ms-win-core-stringloader-l1-1-0.dll
[2012.07.26 05:18:20 | 000,036,352 | ---- | M] () -- \Windows.old.000\Windows\System32\dmloader.dll
[2012.07.26 08:05:26 | 000,003,532 | ---- | M] () -- \Windows.old.000\Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[2012.07.26 10:06:49 | 000,004,654 | ---- | M] () -- \Windows.old.000\Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_en-us_7343c5e6b56a9b34.manifest
[2012.07.26 10:06:49 | 000,029,936 | ---- | M] () -- \Windows.old.000\Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_en-us_7343c5e6b56a9b34_winload.efi.mui_35ee487d
[2012.07.26 10:06:49 | 000,029,936 | ---- | M] () -- \Windows.old.000\Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_en-us_7343c5e6b56a9b34_winload.exe.mui_3bc5b827
[2012.07.26 10:06:49 | 000,020,208 | ---- | M] () -- \Windows.old.000\Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_en-us_7343c5e6b56a9b34_winresume.efi.mui_f412814e
[2012.07.26 10:06:49 | 000,020,208 | ---- | M] () -- \Windows.old.000\Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_en-us_7343c5e6b56a9b34_winresume.exe.mui_ff8b5358
[2012.07.26 08:52:47 | 000,005,804 | ---- | M] () -- \Windows.old.000\Windows\WinSxS\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16384_none_57d1c6133e0da509.manifest
[2012.07.26 08:52:47 | 001,166,728 | ---- | M] () -- \Windows.old.000\Windows\WinSxS\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16384_none_57d1c6133e0da509_winload.efi_75834aa0
[2012.07.26 08:52:47 | 001,063,944 | ---- | M] () -- \Windows.old.000\Windows\WinSxS\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16384_none_57d1c6133e0da509_winload.exe_75835076
[2012.07.26 08:52:47 | 001,034,976 | ---- | M] () -- \Windows.old.000\Windows\WinSxS\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16384_none_57d1c6133e0da509_winresume.efi_85cd069f
[2012.07.26 08:52:47 | 000,939,432 | ---- | M] () -- \Windows.old.000\Windows\WinSxS\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16384_none_57d1c6133e0da509_winresume.exe_85cd1215
[2012.07.26 08:52:25 | 000,000,592 | ---- | M] () -- \Windows.old.000\Windows\WinSxS\FileMaps\programdata_microsoft_network_downloader_7fafaef6d33e4371.cdf-ms
[2012.07.26 10:05:00 | 000,004,654 | ---- | M] () -- \Windows.old.000\Windows\WinSxS\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_en-us_7343c5e6b56a9b34.manifest
[2012.07.26 05:48:01 | 000,005,804 | ---- | M] () -- \Windows.old.000\Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16384_none_57d1c6133e0da509.manifest
[2012.07.26 05:18:20 | 000,036,352 | ---- | M] () -- \Windows.old.000\Windows\WinSxS\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.2.9200.16384_none_429f27d26109941b\dmloader.dll
[2012.07.26 04:46:24 | 000,003,072 | -H-- | M] () -- \Windows.old.000\Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.2.9200.16384_none_075cfbd74d36b7fd\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.07.26 04:46:25 | 000,003,584 | -H-- | M] () -- \Windows.old.000\Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.2.9200.16384_none_075cfbd74d36b7fd\api-ms-win-core-libraryloader-l1-1-1.dll
[2012.07.26 04:46:36 | 000,002,560 | -H-- | M] () -- \Windows.old.000\Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.2.9200.16384_none_075cfbd74d36b7fd\api-ms-win-core-stringloader-l1-1-0.dll
[2013.08.08 07:12:34 | 000,024,760 | ---- | M] () -- \Windows\assembly\GAC_32\Microsoft.TeamFoundation.WorkItemTracking.Client.DataStoreLoader\11.0.0.0__b03f5f7f11d50a3a\Microsoft.TeamFoundation.WorkItemTracking.Client.DataStoreLoader.dll
[2013.08.08 10:32:23 | 000,020,480 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Tde5bef3b#\0a85013fcc99e2a1ea5cef3e6600e47b\Microsoft.TeamFoundation.WorkItemTracking.Client.DataStoreLoader.ni.dll
[2013.08.08 10:32:23 | 000,000,376 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Tde5bef3b#\0a85013fcc99e2a1ea5cef3e6600e47b\Microsoft.TeamFoundation.WorkItemTracking.Client.DataStoreLoader.ni.dll.aux
[2013.08.08 07:29:01 | 000,017,088 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualStudio.Web.PageInspector.Loader\v4.0_1.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Web.PageInspector.Loader.dll
[2012.07.26 04:46:24 | 000,003,072 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.07.26 04:46:25 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-1.dll
[2012.07.26 04:46:36 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-stringloader-l1-1-0.dll
[2012.07.26 05:18:20 | 000,036,352 | ---- | M] () -- \Windows\System32\dmloader.dll
[1 \Windows\System32\*.tmp files -> \Windows\System32\*.tmp -> ]
[2013.07.28 19:14:50 | 000,003,198 | ---- | M] () -- \Windows\System32\Tasks\Torntv 2-codedownloader
[2012.07.26 08:05:26 | 000,003,532 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[1 \Windows\WinSxS\*.tmp files -> \Windows\WinSxS\*.tmp -> ]
[2012.07.26 10:06:49 | 000,004,654 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_en-us_7343c5e6b56a9b34.manifest
[2012.07.26 10:06:49 | 000,029,936 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_en-us_7343c5e6b56a9b34_winload.efi.mui_35ee487d
[2012.07.26 10:06:49 | 000,029,936 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_en-us_7343c5e6b56a9b34_winload.exe.mui_3bc5b827
[2012.07.26 10:06:49 | 000,020,208 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_en-us_7343c5e6b56a9b34_winresume.efi.mui_f412814e
[2012.07.26 10:06:49 | 000,020,208 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_en-us_7343c5e6b56a9b34_winresume.exe.mui_ff8b5358
[2013.07.29 15:43:37 | 000,005,802 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16628_none_5816ac753dd95a34.manifest
[2013.07.29 15:43:37 | 001,166,232 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16628_none_5816ac753dd95a34_winload.efi_75834aa0
[2013.07.29 15:43:37 | 001,063,960 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16628_none_5816ac753dd95a34_winload.exe_75835076
[2013.07.29 15:43:37 | 001,035,512 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16628_none_5816ac753dd95a34_winresume.efi_85cd069f
[2013.07.29 15:43:38 | 000,939,448 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16628_none_5816ac753dd95a34_winresume.exe_85cd1215
[2012.07.26 08:52:25 | 000,000,592 | ---- | M] () -- \Windows\WinSxS\FileMaps\programdata_microsoft_network_downloader_7fafaef6d33e4371.cdf-ms
[2012.07.26 10:05:00 | 000,004,654 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_en-us_7343c5e6b56a9b34.manifest
[2012.07.26 05:48:01 | 000,005,804 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16384_none_57d1c6133e0da509.manifest
[2013.03.02 17:11:52 | 000,005,804 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16420_none_580ea6593de0952e.manifest
[2013.03.02 17:18:47 | 000,005,804 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16433_none_5806d74b3de5fd24.manifest
[2013.06.05 18:42:47 | 000,005,802 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16579_none_57e19b3d3e010219.manifest
[2013.07.29 15:42:48 | 000,005,802 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16628_none_5816ac753dd95a34.manifest
[2013.03.02 17:11:52 | 000,005,804 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.20521_none_5899436e56fd4e4f.manifest
[2013.03.02 17:18:47 | 000,005,804 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.20534_none_589174605702b645.manifest
[2013.06.05 18:42:47 | 000,005,802 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.20683_none_585a6660572c25ca.manifest
[2013.07.29 15:42:48 | 000,005,802 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.20733_none_589077e25703973c.manifest
[2012.07.26 05:18:20 | 000,036,352 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.2.9200.16384_none_429f27d26109941b\dmloader.dll
[2012.07.26 04:46:24 | 000,003,072 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.2.9200.16384_none_075cfbd74d36b7fd\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.07.26 04:46:25 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.2.9200.16384_none_075cfbd74d36b7fd\api-ms-win-core-libraryloader-l1-1-1.dll
[2012.07.26 04:46:36 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.2.9200.16384_none_075cfbd74d36b7fd\api-ms-win-core-stringloader-l1-1-0.dll

========== Files - Unicode (All) ==========
[2013.09.24 15:54:09 | 000,000,693 | ---- | M] ()(C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows Store\Cache Medium IL\0\0-DiscoveryForLicensing-https???go.microsoft.com?fwlink??LinkID=254853&clcid=0x409.dat) -- C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows Store\Cache Medium IL\0\0-DiscoveryForLicensing-https∺∯∯go.microsoft.com∯fwlink∯∿LinkID=254853&clcid=0x409.dat

========== Alternate Data Streams ==========

@Alternate Data Stream - 227 bytes -> C:\ProgramData\TEMP:8FF81EB0
@Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:373E1720

< End of report >

#10 Příspěvek od **vyosek** » 01 říj 2013 07:52

Spustte znovu OTL

Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

Kód: Vybrat vše

:otl
SRV - File not found [Auto | Stopped] -- C:\Users\Tibor\AppData\Local\Temp\7zS6E7A\hpslpsvc32.dll -- (HPSLPSVC)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\modulev.sys -- (modulev)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Garena Plus\Room\safedrv.sys -- (GGSAFERDriver)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys -- (esgiguard)
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
IE - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = D2 DE 2C A3 7B E3 CD 01 [binary data]
O13 - gopher Prefix: missing
O15 - HKU\.DEFAULT\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\S-1-5-19\..Trusted Domains: clonewarsadventures.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: freerealms.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: soe.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: sony.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: clonewarsadventures.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: freerealms.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: soe.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: sony.com ([]* in )
O15 - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-1663960766-3618707702-2185633917-1005\..Trusted Domains: clonewarsadventures.com ([]* in )
O15 - HKU\S-1-5-21-1663960766-3618707702-2185633917-1005\..Trusted Domains: freerealms.com ([]* in )
O15 - HKU\S-1-5-21-1663960766-3618707702-2185633917-1005\..Trusted Domains: soe.com ([]* in )
O15 - HKU\S-1-5-21-1663960766-3618707702-2185633917-1005\..Trusted Domains: sony.com ([]* in )
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
[2013.01.26 20:17:37 | 000,000,000 | -H-- | C] () -- C:\Users\Tibor\AppData\Roaming\winsvcns.sys
[2013.01.26 17:53:00 | 000,000,028 | ---- | C] () -- C:\Windows\System32\yeqc.ini
[2013.01.26 17:53:00 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xhepiahgu.ini
[2013.01.26 17:53:00 | 000,000,028 | ---- | C] () -- C:\Windows\System32\uaqqwmjt.ini
[2013.01.26 17:53:00 | 000,000,028 | ---- | C] () -- C:\Windows\System32\tgp.dat
[2013.01.26 17:53:00 | 000,000,028 | ---- | C] () -- C:\Windows\System32\netcd.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\zyadeizbstq.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\zmpm.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\zlvlgaoro.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\zbu.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\yruogei.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\yqwnxmuqkr.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ynbpico.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\yft.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\yfddtyco.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xnrwoffi.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xkiazoygsu.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xitroqxj.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xhliavnncf.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xhi.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xei.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xdu.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xbwudob.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xabxrnwognq.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\wztapis.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\wvpmojcpagc.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\wuienx.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\wmaeoulj.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\wjd.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\wgfzxqxc.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\vwx.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\vwvpxtf.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\vtccpjjxhbl.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\vpymgh.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\vky.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\vhgdwwy.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\vexcv.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\uuknvmo.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\uilhoi.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ugh.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\tubh.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\tmksiwyo.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\tjerrruiu.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\tgysztaa.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\szanch.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\swrosmstc.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\surl.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\sthnpbr.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\skjqlknoa.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\rvitifkhda.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ruwy.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\rtsquze.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\rnni.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\rnaxcorvnpm.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\rmkgnn.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\rfbddh.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\rbou.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\qzegqoobxiy.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\qqqewpfdl.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\qpghwlpi.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\qnretzig.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\qheefqe.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\qgqkumwr.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\qbdvroefxtf.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\pvsbacopgo.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\puxozpwjj.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ptfcgaof.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\psxulyb.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\psuezqksw.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\pqjjgvrcrr.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\pplmagu.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\pefaimbebk.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\onuhfaqdr.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\okbzdweogsf.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ogn.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ogknbwh.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ocduhsoaeky.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ndpxrjvfik.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\mxdvmytw.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\mpuqpwyjjoe.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\mlfml.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\mcrrrdylbyb.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\mbpbf.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\lxjydaq.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\lvjfqnrfy.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\lmkwvtfa.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\liif.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\lhlcj.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ldna.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\kgqeevfnt.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\kfkegdfzsmf.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\kblu.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\kaddzumq.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\jxqxva.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\itshnv.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ifvbafbi.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ibqvywo.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hxpuo.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\htzs.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hqwxnfwmq.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hoboh.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hmzimwaq.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hhxjfatux.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hgdxppghmnp.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hfaptb.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hbqnkzjqm.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\gzswrdxw.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\gxveh.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\gxiglgpq.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\gswxesatox.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\gksspjwk.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\gjrxn.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\giemuzl.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ggjxmqh.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\gecrm.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\gbx.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\fyvyvw.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\fqat.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\fnyj.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\fkuuzbgv.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\fas.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ezafudvoiyt.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\err.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ehe.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\egskehx.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\edsljcdivuy.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\ecisfvuhpa.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\dqajfj.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\dmtlsnues.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\cqbt.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\cntaml.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\civwzqm.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\cfclssx.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\cdntf.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\cbgvboorrjj.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\blxcchdo.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\aso.dat
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\arembuqqlhl.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\apluecjxljh.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ajfm.ini
[2013.01.26 17:52:59 | 000,000,028 | ---- | C] () -- C:\Windows\System32\aclcvmx.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\zzmbkjttcv.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\zvxuplfqaiv.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\zmulmsalvp.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\zhbezzk.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\zgtn.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\yztg.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ywcotf.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\yfguqg.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ybcwdcj.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xrjmwls.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xratz.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\xibfo.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xhxj.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\xbeumyws.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\wvmaql.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\wtkvqxla.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\wmcwjfwebcg.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\wjjkwjxof.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\vuzy.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\vekhfmquvd.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\uvhkeoo.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\upqsk.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ujupkolaxz.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\uhgxcxne.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\udixx.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ubomomrwsdk.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\tttpgilubhz.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\tixbprzs.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\tcu.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\swmx.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\svh.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\srt.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\sqrvkkbktxz.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\sntlrnm.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\slfzi.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\skcx.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\sjzadmi.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\sfsz.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\rzuc.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\rumiqlhw.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\rpz.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\riffaw.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\rifbww.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\rhw.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\refyhravcw.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\rckntimj.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\qxbus.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\qttwzyei.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\qsopsnklrnj.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\qrpcq.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\qqqt.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\pxluctu.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\pqognjycvt.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\pjtdqi.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\phcioojd.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\pedcjlq.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\pcpmvigyknw.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\pclkwlz.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\pathdekgnl.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\oxxpcqneqfk.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ousspnt.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\otvbczqzr.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\otorwgb.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\oofzxmm.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\oofsbkfk.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ooaomuyhvz.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\olhdsirhbjm.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\olcfhmx.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\oicryjbsxhd.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ntpp.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\npuailglpt.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\narceunvfsr.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\mwzhlh.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\mwuwz.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\mvhxlyyr.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\minowwpnhw.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\mhymnl.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\mhefcltipun.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\mflohpswrxl.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\mbufohzbd.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\maynwlp.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\lwcnbd.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\lvzw.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\lqya.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\lnm.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\lffhqjpt.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ktkvvqws.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\kragnbr.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\kppamcnflm.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\kokjkgnayl.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\knk.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\kkrk.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\kjvzwobzke.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\jvpytddxshm.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\jvanbm.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\jscxtijpp.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\jecbuzopv.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\jazdltqdat.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ixrmyzmuf.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ivz.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ithugwck.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\isnvgwxvzx.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\imisiwl.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ilppyukvb.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ikvd.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\iduxw.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ict.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hxokmtz.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hulemjbpzih.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\htubwk.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hrfumedgw.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hiushfclfla.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\hgu.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\gwegf.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ghdvcccqxcv.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\gcgii.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\fzzu.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\fnxe.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\fmlgoxxnn.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\fhagevihj.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\epuzw.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\eewo.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\eesejbzog.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\dxrnzku.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\dmuuqmc.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\dkfd.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\djzobvavx.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\dgppwo.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\dgckkqqq.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\dfswulgomz.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\detwvkklv.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\defhdp.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ctxnogspj.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\cbqynozbpo.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\bzyz.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\byoqvakieh.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\bxqecmpfn.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\bulcyfilrrd.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\bsxkwl.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\bsmobir.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\betjex.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\baxqskha.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\azuxhafgo.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ayyyufnvi.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\auemdu.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\akjgqsepny.ini
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\ajnzyssdz.dat
[2013.01.26 17:52:58 | 000,000,028 | ---- | C] () -- C:\Windows\System32\aesvs.dat
[2013.02.18 15:42:37 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\IObit
[2013.02.18 15:42:37 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\IObit
[2013.02.18 15:42:37 | 000,000,000 | ---D | M] -- C:\Users\UpdatusUser\AppData\Roaming\IObit
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[2 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
[5 C:\Windows\Temp\_avast_\*.tmp files -> C:\Windows\Temp\_avast_\*.tmp -> ]
[1 C:\Windows\WinSxS\*.tmp files -> C:\Windows\WinSxS\*.tmp -> ]
[2013.09.30 20:40:10 | 000,000,830 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2013.08.24 10:42:15 | 000,000,296 | ---- | M] () -- C:\Windows\Tasks\Driver Booster Startup.job
@Alternate Data Stream - 227 bytes -> C:\ProgramData\TEMP:8FF81EB0
@Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:373E1720

:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=-
"WinampAgent"=-
"avast"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=-
"Skype"=-
"GarenaPlus"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OBERON Center]

:files
C:\Program Files\Enigma Software Group
C:\$Recycle.bin\S-1-5-18
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]
[EMPTYJAVA]

Nasledne kliknete na Opravit ci RunFix
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

boss382 · #11 Příspěvek od **boss382** » 01 říj 2013 12:46

All processes killed
========== OTL ==========
Service HPSLPSVC stopped successfully!
Service HPSLPSVC deleted successfully!
File C:\Users\Tibor\AppData\Local\Temp\7zS6E7A\hpslpsvc32.dll not found.
Service modulev stopped successfully!
Service modulev deleted successfully!
File C:\modulev.sys not found.
Service GGSAFERDriver stopped successfully!
Service GGSAFERDriver deleted successfully!
File C:\Program Files\Garena Plus\Room\safedrv.sys not found.
Service esgiguard stopped successfully!
Service esgiguard deleted successfully!
File C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKEY_USERS\S-1-5-21-1663960766-3618707702-2185633917-1001\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-1663960766-3618707702-2185633917-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-1663960766-3618707702-2185633917-1001\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ not found.
HKU\S-1-5-21-1663960766-3618707702-2185633917-1001\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache_TIMESTAMP| /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
Registry key HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\clonewarsadventures.com\ deleted successfully.
Registry key HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\freerealms.com\ deleted successfully.
Registry key HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\soe.com\ deleted successfully.
Registry key HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\sony.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\clonewarsadventures.com\ not found.
Registry key HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\freerealms.com\ not found.
Registry key HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\soe.com\ not found.
Registry key HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\sony.com\ not found.
Registry key HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\clonewarsadventures.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\freerealms.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\soe.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\sony.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\clonewarsadventures.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\freerealms.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\soe.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\sony.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-1663960766-3618707702-2185633917-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\clonewarsadventures.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-1663960766-3618707702-2185633917-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\freerealms.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-1663960766-3618707702-2185633917-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\soe.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-1663960766-3618707702-2185633917-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\sony.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-1663960766-3618707702-2185633917-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\clonewarsadventures.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-1663960766-3618707702-2185633917-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\freerealms.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-1663960766-3618707702-2185633917-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\soe.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-1663960766-3618707702-2185633917-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\sony.com\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
C:\Users\Tibor\AppData\Roaming\winsvcns.sys moved successfully.
C:\Windows\System32\yeqc.ini moved successfully.
C:\Windows\System32\xhepiahgu.ini moved successfully.
C:\Windows\System32\uaqqwmjt.ini moved successfully.
C:\Windows\System32\tgp.dat moved successfully.
C:\Windows\System32\netcd.ini moved successfully.
C:\Windows\System32\zyadeizbstq.ini moved successfully.
C:\Windows\System32\zmpm.dat moved successfully.
C:\Windows\System32\zlvlgaoro.dat moved successfully.
C:\Windows\System32\zbu.ini moved successfully.
C:\Windows\System32\yruogei.ini moved successfully.
C:\Windows\System32\yqwnxmuqkr.ini moved successfully.
C:\Windows\System32\ynbpico.ini moved successfully.
C:\Windows\System32\yft.ini moved successfully.
C:\Windows\System32\yfddtyco.ini moved successfully.
C:\Windows\System32\xnrwoffi.ini moved successfully.
C:\Windows\System32\xkiazoygsu.dat moved successfully.
C:\Windows\System32\xitroqxj.dat moved successfully.
C:\Windows\System32\xhliavnncf.ini moved successfully.
C:\Windows\System32\xhi.dat moved successfully.
C:\Windows\System32\xei.ini moved successfully.
C:\Windows\System32\xdu.dat moved successfully.
C:\Windows\System32\xbwudob.ini moved successfully.
C:\Windows\System32\xabxrnwognq.ini moved successfully.
C:\Windows\System32\wztapis.ini moved successfully.
C:\Windows\System32\wvpmojcpagc.ini moved successfully.
C:\Windows\System32\wuienx.ini moved successfully.
C:\Windows\System32\wmaeoulj.ini moved successfully.
C:\Windows\System32\wjd.ini moved successfully.
C:\Windows\System32\wgfzxqxc.dat moved successfully.
C:\Windows\System32\vwx.ini moved successfully.
C:\Windows\System32\vwvpxtf.dat moved successfully.
C:\Windows\System32\vtccpjjxhbl.ini moved successfully.
C:\Windows\System32\vpymgh.ini moved successfully.
C:\Windows\System32\vky.dat moved successfully.
C:\Windows\System32\vhgdwwy.ini moved successfully.
C:\Windows\System32\vexcv.ini moved successfully.
C:\Windows\System32\uuknvmo.ini moved successfully.
C:\Windows\System32\uilhoi.dat moved successfully.
C:\Windows\System32\ugh.ini moved successfully.
C:\Windows\System32\tubh.ini moved successfully.
C:\Windows\System32\tmksiwyo.ini moved successfully.
C:\Windows\System32\tjerrruiu.ini moved successfully.
C:\Windows\System32\tgysztaa.ini moved successfully.
C:\Windows\System32\szanch.dat moved successfully.
C:\Windows\System32\swrosmstc.ini moved successfully.
C:\Windows\System32\surl.ini moved successfully.
C:\Windows\System32\sthnpbr.ini moved successfully.
C:\Windows\System32\skjqlknoa.ini moved successfully.
C:\Windows\System32\rvitifkhda.ini moved successfully.
C:\Windows\System32\ruwy.dat moved successfully.
C:\Windows\System32\rtsquze.dat moved successfully.
C:\Windows\rnni.ini moved successfully.
C:\Windows\System32\rnaxcorvnpm.ini moved successfully.
C:\Windows\System32\rmkgnn.ini moved successfully.
C:\Windows\System32\rfbddh.dat moved successfully.
C:\Windows\System32\rbou.dat moved successfully.
C:\Windows\System32\qzegqoobxiy.ini moved successfully.
C:\Windows\System32\qqqewpfdl.ini moved successfully.
C:\Windows\System32\qpghwlpi.ini moved successfully.
C:\Windows\System32\qnretzig.ini moved successfully.
C:\Windows\System32\qheefqe.dat moved successfully.
C:\Windows\qgqkumwr.ini moved successfully.
C:\Windows\System32\qbdvroefxtf.ini moved successfully.
C:\Windows\System32\pvsbacopgo.ini moved successfully.
C:\Windows\System32\puxozpwjj.dat moved successfully.
C:\Windows\System32\ptfcgaof.dat moved successfully.
C:\Windows\System32\psxulyb.ini moved successfully.
C:\Windows\System32\psuezqksw.dat moved successfully.
C:\Windows\System32\pqjjgvrcrr.ini moved successfully.
C:\Windows\System32\pplmagu.ini moved successfully.
C:\Windows\System32\pefaimbebk.ini moved successfully.
C:\Windows\System32\onuhfaqdr.dat moved successfully.
C:\Windows\System32\okbzdweogsf.ini moved successfully.
C:\Windows\System32\ogn.ini moved successfully.
C:\Windows\System32\ogknbwh.ini moved successfully.
C:\Windows\System32\ocduhsoaeky.ini moved successfully.
C:\Windows\System32\ndpxrjvfik.dat moved successfully.
C:\Windows\System32\mxdvmytw.ini moved successfully.
C:\Windows\System32\mpuqpwyjjoe.ini moved successfully.
C:\Windows\System32\mlfml.ini moved successfully.
C:\Windows\System32\mcrrrdylbyb.dat moved successfully.
C:\Windows\System32\mbpbf.ini moved successfully.
C:\Windows\System32\lxjydaq.dat moved successfully.
C:\Windows\System32\lvjfqnrfy.dat moved successfully.
C:\Windows\System32\lmkwvtfa.ini moved successfully.
C:\Windows\System32\liif.ini moved successfully.
C:\Windows\System32\lhlcj.ini moved successfully.
C:\Windows\System32\ldna.ini moved successfully.
C:\Windows\System32\kgqeevfnt.dat moved successfully.
C:\Windows\System32\kfkegdfzsmf.dat moved successfully.
C:\Windows\System32\kblu.ini moved successfully.
C:\Windows\System32\kaddzumq.ini moved successfully.
C:\Windows\System32\jxqxva.ini moved successfully.
C:\Windows\System32\itshnv.ini moved successfully.
C:\Windows\System32\ifvbafbi.dat moved successfully.
C:\Windows\System32\ibqvywo.ini moved successfully.
C:\Windows\System32\hxpuo.dat moved successfully.
C:\Windows\System32\htzs.dat moved successfully.
C:\Windows\System32\hqwxnfwmq.ini moved successfully.
C:\Windows\System32\hoboh.dat moved successfully.
C:\Windows\System32\hmzimwaq.dat moved successfully.
C:\Windows\System32\hhxjfatux.dat moved successfully.
C:\Windows\System32\hgdxppghmnp.dat moved successfully.
C:\Windows\System32\hfaptb.dat moved successfully.
C:\Windows\System32\hbqnkzjqm.dat moved successfully.
C:\Windows\System32\gzswrdxw.ini moved successfully.
C:\Windows\System32\gxveh.dat moved successfully.
C:\Windows\System32\gxiglgpq.ini moved successfully.
C:\Windows\System32\gswxesatox.ini moved successfully.
C:\Windows\System32\gksspjwk.dat moved successfully.
C:\Windows\System32\gjrxn.dat moved successfully.
C:\Windows\System32\giemuzl.ini moved successfully.
C:\Windows\System32\ggjxmqh.ini moved successfully.
C:\Windows\System32\gecrm.ini moved successfully.
C:\Windows\System32\gbx.ini moved successfully.
C:\Windows\System32\fyvyvw.ini moved successfully.
C:\Windows\System32\fqat.dat moved successfully.
C:\Windows\System32\fnyj.ini moved successfully.
C:\Windows\System32\fkuuzbgv.dat moved successfully.
C:\Windows\fas.ini moved successfully.
C:\Windows\System32\ezafudvoiyt.ini moved successfully.
C:\Windows\err.ini moved successfully.
C:\Windows\System32\ehe.dat moved successfully.
C:\Windows\System32\egskehx.ini moved successfully.
C:\Windows\System32\edsljcdivuy.ini moved successfully.
C:\Windows\ecisfvuhpa.ini moved successfully.
C:\Windows\System32\dqajfj.ini moved successfully.
C:\Windows\System32\dmtlsnues.dat moved successfully.
C:\Windows\System32\cqbt.ini moved successfully.
C:\Windows\System32\cntaml.ini moved successfully.
C:\Windows\System32\civwzqm.ini moved successfully.
C:\Windows\System32\cfclssx.ini moved successfully.
C:\Windows\System32\cdntf.dat moved successfully.
C:\Windows\System32\cbgvboorrjj.dat moved successfully.
C:\Windows\System32\blxcchdo.dat moved successfully.
C:\Windows\System32\aso.dat moved successfully.
C:\Windows\System32\arembuqqlhl.ini moved successfully.
C:\Windows\System32\apluecjxljh.ini moved successfully.
C:\Windows\System32\ajfm.ini moved successfully.
C:\Windows\System32\aclcvmx.ini moved successfully.
C:\Windows\System32\zzmbkjttcv.ini moved successfully.
C:\Windows\System32\zvxuplfqaiv.dat moved successfully.
C:\Windows\System32\zmulmsalvp.ini moved successfully.
C:\Windows\System32\zhbezzk.ini moved successfully.
C:\Windows\System32\zgtn.dat moved successfully.
C:\Windows\System32\yztg.dat moved successfully.
C:\Windows\System32\ywcotf.ini moved successfully.
C:\Windows\System32\yfguqg.dat moved successfully.
C:\Windows\System32\ybcwdcj.ini moved successfully.
C:\Windows\System32\xrjmwls.ini moved successfully.
C:\Windows\System32\xratz.ini moved successfully.
C:\Windows\xibfo.dat moved successfully.
C:\Windows\System32\xhxj.ini moved successfully.
C:\Windows\System32\xbeumyws.ini moved successfully.
C:\Windows\System32\wvmaql.ini moved successfully.
C:\Windows\System32\wtkvqxla.ini moved successfully.
C:\Windows\System32\wmcwjfwebcg.dat moved successfully.
C:\Windows\System32\wjjkwjxof.dat moved successfully.
C:\Windows\System32\vuzy.ini moved successfully.
C:\Windows\System32\vekhfmquvd.dat moved successfully.
C:\Windows\System32\uvhkeoo.dat moved successfully.
C:\Windows\System32\upqsk.dat moved successfully.
C:\Windows\System32\ujupkolaxz.ini moved successfully.
C:\Windows\System32\uhgxcxne.ini moved successfully.
C:\Windows\System32\udixx.ini moved successfully.
C:\Windows\System32\ubomomrwsdk.dat moved successfully.
C:\Windows\System32\tttpgilubhz.ini moved successfully.
C:\Windows\System32\tixbprzs.dat moved successfully.
C:\Windows\System32\tcu.ini moved successfully.
C:\Windows\System32\swmx.dat moved successfully.
C:\Windows\System32\svh.dat moved successfully.
C:\Windows\System32\srt.ini moved successfully.
C:\Windows\System32\sqrvkkbktxz.dat moved successfully.
C:\Windows\System32\sntlrnm.dat moved successfully.
C:\Windows\System32\slfzi.ini moved successfully.
C:\Windows\System32\skcx.dat moved successfully.
C:\Windows\System32\sjzadmi.ini moved successfully.
C:\Windows\System32\sfsz.dat moved successfully.
C:\Windows\System32\rzuc.ini moved successfully.
C:\Windows\System32\rumiqlhw.dat moved successfully.
C:\Windows\System32\rpz.ini moved successfully.
C:\Windows\System32\riffaw.ini moved successfully.
C:\Windows\System32\rifbww.ini moved successfully.
C:\Windows\System32\rhw.dat moved successfully.
C:\Windows\refyhravcw.dat moved successfully.
C:\Windows\System32\rckntimj.dat moved successfully.
C:\Windows\System32\qxbus.dat moved successfully.
C:\Windows\System32\qttwzyei.dat moved successfully.
C:\Windows\System32\qsopsnklrnj.dat moved successfully.
C:\Windows\System32\qrpcq.dat moved successfully.
C:\Windows\System32\qqqt.ini moved successfully.
C:\Windows\pxluctu.dat moved successfully.
C:\Windows\System32\pqognjycvt.dat moved successfully.
C:\Windows\System32\pjtdqi.ini moved successfully.
C:\Windows\System32\phcioojd.ini moved successfully.
C:\Windows\System32\pedcjlq.ini moved successfully.
C:\Windows\System32\pcpmvigyknw.dat moved successfully.
C:\Windows\System32\pclkwlz.ini moved successfully.
C:\Windows\System32\pathdekgnl.dat moved successfully.
C:\Windows\System32\oxxpcqneqfk.dat moved successfully.
C:\Windows\System32\ousspnt.ini moved successfully.
C:\Windows\System32\otvbczqzr.dat moved successfully.
C:\Windows\System32\otorwgb.ini moved successfully.
C:\Windows\System32\oofzxmm.dat moved successfully.
C:\Windows\System32\oofsbkfk.ini moved successfully.
C:\Windows\System32\ooaomuyhvz.ini moved successfully.
C:\Windows\System32\olhdsirhbjm.dat moved successfully.
C:\Windows\System32\olcfhmx.ini moved successfully.
C:\Windows\System32\oicryjbsxhd.ini moved successfully.
C:\Windows\System32\ntpp.ini moved successfully.
C:\Windows\System32\npuailglpt.dat moved successfully.
C:\Windows\System32\narceunvfsr.ini moved successfully.
C:\Windows\System32\mwzhlh.ini moved successfully.
C:\Windows\System32\mwuwz.dat moved successfully.
C:\Windows\System32\mvhxlyyr.dat moved successfully.
C:\Windows\System32\minowwpnhw.dat moved successfully.
C:\Windows\System32\mhymnl.ini moved successfully.
C:\Windows\System32\mhefcltipun.ini moved successfully.
C:\Windows\System32\mflohpswrxl.dat moved successfully.
C:\Windows\System32\mbufohzbd.dat moved successfully.
C:\Windows\System32\maynwlp.ini moved successfully.
C:\Windows\System32\lwcnbd.ini moved successfully.
C:\Windows\System32\lvzw.dat moved successfully.
C:\Windows\System32\lqya.dat moved successfully.
C:\Windows\System32\lnm.ini moved successfully.
C:\Windows\System32\lffhqjpt.dat moved successfully.
C:\Windows\System32\ktkvvqws.dat moved successfully.
C:\Windows\kragnbr.dat moved successfully.
C:\Windows\System32\kppamcnflm.dat moved successfully.
C:\Windows\System32\kokjkgnayl.dat moved successfully.
C:\Windows\System32\knk.ini moved successfully.
C:\Windows\System32\kkrk.ini moved successfully.
C:\Windows\System32\kjvzwobzke.ini moved successfully.
C:\Windows\System32\jvpytddxshm.ini moved successfully.
C:\Windows\System32\jvanbm.ini moved successfully.
C:\Windows\System32\jscxtijpp.ini moved successfully.
C:\Windows\System32\jecbuzopv.ini moved successfully.
C:\Windows\System32\jazdltqdat.ini moved successfully.
C:\Windows\System32\ixrmyzmuf.ini moved successfully.
C:\Windows\System32\ivz.ini moved successfully.
C:\Windows\System32\ithugwck.dat moved successfully.
C:\Windows\System32\isnvgwxvzx.ini moved successfully.
C:\Windows\System32\imisiwl.ini moved successfully.
C:\Windows\System32\ilppyukvb.ini moved successfully.
C:\Windows\System32\ikvd.ini moved successfully.
C:\Windows\System32\iduxw.ini moved successfully.
C:\Windows\System32\ict.ini moved successfully.
C:\Windows\System32\hxokmtz.ini moved successfully.
C:\Windows\System32\hulemjbpzih.dat moved successfully.
C:\Windows\System32\htubwk.ini moved successfully.
C:\Windows\System32\hrfumedgw.ini moved successfully.
C:\Windows\System32\hiushfclfla.ini moved successfully.
C:\Windows\System32\hgu.ini moved successfully.
C:\Windows\System32\gwegf.dat moved successfully.
C:\Windows\System32\ghdvcccqxcv.ini moved successfully.
C:\Windows\System32\gcgii.ini moved successfully.
C:\Windows\System32\fzzu.dat moved successfully.
C:\Windows\System32\fnxe.dat moved successfully.
C:\Windows\System32\fmlgoxxnn.ini moved successfully.
C:\Windows\System32\fhagevihj.dat moved successfully.
C:\Windows\System32\epuzw.ini moved successfully.
C:\Windows\eewo.ini moved successfully.
C:\Windows\System32\eesejbzog.ini moved successfully.
C:\Windows\System32\dxrnzku.ini moved successfully.
C:\Windows\System32\dmuuqmc.ini moved successfully.
C:\Windows\System32\dkfd.ini moved successfully.
C:\Windows\System32\djzobvavx.ini moved successfully.
C:\Windows\System32\dgppwo.dat moved successfully.
C:\Windows\System32\dgckkqqq.ini moved successfully.
C:\Windows\System32\dfswulgomz.ini moved successfully.
C:\Windows\System32\detwvkklv.ini moved successfully.
C:\Windows\System32\defhdp.ini moved successfully.
C:\Windows\System32\ctxnogspj.ini moved successfully.
C:\Windows\System32\cbqynozbpo.ini moved successfully.
C:\Windows\System32\bzyz.dat moved successfully.
C:\Windows\System32\byoqvakieh.ini moved successfully.
C:\Windows\System32\bxqecmpfn.ini moved successfully.
C:\Windows\System32\bulcyfilrrd.dat moved successfully.
C:\Windows\System32\bsxkwl.dat moved successfully.
C:\Windows\System32\bsmobir.dat moved successfully.
C:\Windows\System32\betjex.ini moved successfully.
C:\Windows\baxqskha.dat moved successfully.
C:\Windows\System32\azuxhafgo.ini moved successfully.
C:\Windows\System32\ayyyufnvi.ini moved successfully.
C:\Windows\System32\auemdu.ini moved successfully.
C:\Windows\System32\akjgqsepny.ini moved successfully.
C:\Windows\System32\ajnzyssdz.dat moved successfully.
C:\Windows\System32\aesvs.dat moved successfully.
C:\Users\Default\AppData\Roaming\IObit\IObit Malware Fighter folder moved successfully.
C:\Users\Default\AppData\Roaming\IObit folder moved successfully.
Folder C:\Users\Default User\AppData\Roaming\IObit\ not found.
C:\Users\UpdatusUser\AppData\Roaming\IObit\IObit Malware Fighter folder moved successfully.
C:\Users\UpdatusUser\AppData\Roaming\IObit folder moved successfully.
C:\Windows\865537E164904193A4B6669C62711852.TMP\WiseCustomCall.dll deleted successfully.
C:\Windows\865537E164904193A4B6669C62711852.TMP\WiseCustomCalla.dll deleted successfully.
C:\Windows\865537E164904193A4B6669C62711852.TMP\WiseCustomCalla17.dll deleted successfully.
C:\Windows\865537E164904193A4B6669C62711852.TMP\WiseCustomCalla18.exe deleted successfully.
C:\Windows\865537E164904193A4B6669C62711852.TMP\WiseCustomCalla19.dll deleted successfully.
C:\Windows\865537E164904193A4B6669C62711852.TMP\WiseCustomCalla2.dll deleted successfully.
C:\Windows\865537E164904193A4B6669C62711852.TMP\WiseCustomCalla20.dll deleted successfully.
C:\Windows\865537E164904193A4B6669C62711852.TMP\WiseCustomCalla22.dll deleted successfully.
C:\Windows\865537E164904193A4B6669C62711852.TMP\WiseCustomCalla22.exe deleted successfully.
C:\Windows\865537E164904193A4B6669C62711852.TMP\WiseData.ini deleted successfully.
C:\Windows\865537E164904193A4B6669C62711852.TMP folder deleted successfully.
C:\Windows\LastGood.Tmp\system32\DRIVERS\k57nd60x.sys deleted successfully.
C:\Windows\LastGood.Tmp\system32\DRIVERS folder deleted successfully.
C:\Windows\LastGood.Tmp\system32 folder deleted successfully.
C:\Windows\LastGood.Tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP75AE.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPB62E.tmp folder deleted successfully.
File delete failed. C:\Windows\System32\SET81DE.tmp scheduled to be deleted on reboot.
C:\Windows\Temp\aeuC2BE.tmp folder deleted successfully.
C:\Windows\Temp\aeuC2C0.tmp folder deleted successfully.
C:\Windows\WinSxS\Reserve.tmp deleted successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job moved successfully.
C:\Windows\Tasks\Driver Booster Startup.job moved successfully.
ADS C:\ProgramData\TEMP:8FF81EB0 deleted successfully.
ADS C:\ProgramData\TEMP:373E1720 deleted successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\WinampAgent deleted successfully.
Registry delete failed. HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\avast scheduled to be deleted on reboot.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Steam deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Skype deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\GarenaPlus deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OBERON Center\ deleted successfully.
========== FILES ==========
C:\Program Files\Enigma Software Group\SpyHunter\Rollback folder moved successfully.
C:\Program Files\Enigma Software Group\SpyHunter\Log folder moved successfully.
C:\Program Files\Enigma Software Group\SpyHunter\Data folder moved successfully.
C:\Program Files\Enigma Software Group\SpyHunter folder moved successfully.
C:\Program Files\Enigma Software Group folder moved successfully.
C:\$Recycle.bin\S-1-5-18\$a9963ea70240156658ed2240315b32ad\U folder moved successfully.
C:\$Recycle.bin\S-1-5-18\$a9963ea70240156658ed2240315b32ad\L folder moved successfully.
C:\$Recycle.bin\S-1-5-18\$a9963ea70240156658ed2240315b32ad folder moved successfully.
C:\$Recycle.bin\S-1-5-18 folder moved successfully.
File/Folder C:\Windows\system32\*.tmp.dll not found.
File move failed. C:\Windows\system32\SET81DE.tmp scheduled to be moved on reboot.
File/Folder C:\Windows\*.tmp not found.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 57472 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Public

User: Tibor
->Temp folder emptied: 173422275 bytes
->Temporary Internet Files folder emptied: 123607974 bytes
->Java cache emptied: 21010 bytes
->Google Chrome cache emptied: 164116428 bytes
->Flash cache emptied: 70976 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 1262752 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 3124138904 bytes
RecycleBin emptied: 2876852049 bytes

Total Files Cleaned = 6 164,00 mb

[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Public

User: Tibor
->Flash cache emptied: 0 bytes

User: UpdatusUser
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb

[EMPTYJAVA]

User: All Users

User: Default

User: Default User

User: Public

User: Tibor
->Java cache emptied: 0 bytes

User: UpdatusUser

Total Java Files Cleaned = 0,00 mb

OTL by OldTimer - Version 3.2.69.0 log created on 10012013_134235

Files\Folders moved on Reboot...
File move failed. C:\Windows\System32\SET81DE.tmp scheduled to be moved on reboot.
File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
Registry delete failed. HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\avast scheduled to be deleted on reboot.

#12 Příspěvek od **vyosek** » 01 říj 2013 13:01

Tak jeste uklidime

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

Stahnete a spustte
Pro potvrzeni volby mackejte A, Enter
Po pouziti utilitu smazte
Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse

boss382 · #13 Příspěvek od **boss382** » 01 říj 2013 14:04

ďakujem

.

#14 Příspěvek od **vyosek** » 01 říj 2013 16:21

Nemate zac, rad jsem pomohl

Zase nekdy Obrázek

A na zaklade Pravidla o zamykani temat

VIRY.CZ

Prosím o preventivku

Prosím o preventivku

Re: Prosím o preventivku

Re: Prosím o preventivku

Re: Prosím o preventivku

Re: Prosím o preventivku

Re: Prosím o preventivku

Re: Prosím o preventivku

Re: Prosím o preventivku

Re: Prosím o preventivku

Re: Prosím o preventivku

Re: Prosím o preventivku

Re: Prosím o preventivku

Re: Prosím o preventivku

Re: Prosím o preventivku