Zvlastni virus v pocitaci.

[Prochynex]

< *keygen* /s >
[2012/02/08 01:13:08 | 000,018,442 | ---- | M] () -- \Users\Prochyn\AppData\Roaming\BitTorrent\Call_OF_Duty_2_Incl_Crack_&_Keygen.torrent
[2011/12/16 22:10:45 | 000,000,428 | ---- | M] () -- \Users\Prochyn\AppData\Roaming\BitTorrent\Unreal.Tournament.3.KEYGEN-RELOADED.torrent

< *loader* /s >
[2011/10/27 16:14:53 | 000,010,144 | ---- | M] () -- \extensions\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}\modules\ExternalLibraryLoader.jsm
[2012/05/04 13:03:55 | 000,071,208 | ---- | M] () -- \Games\World_of_Tanks\PhysXLoader.dll
[2012/05/04 13:03:55 | 000,005,656 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\tutorial\TutorialLoader.pyc
[2008/04/14 14:00:00 | 000,017,421 | ---- | M] () -- \I386\DMLOADER.DL_
[2008/04/14 14:00:00 | 000,115,367 | ---- | M] () -- \I386\OSLOADER.EX_
[2008/04/14 14:00:00 | 000,133,029 | ---- | M] () -- \I386\OSLOADER.NT_
[2012/01/23 14:48:48 | 002,955,416 | ---- | M] () -- \Program Files\Common Files\DVDVideoSoft\Dll\DVSVideoDownloader.dll
[2006/10/26 13:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\coloader.dll
[2006/10/26 13:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\coloader.tlb
[2011/12/29 15:38:28 | 009,172,080 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free Uploader for Facebook\FreeUploaderForFacebook.exe
[2011/10/04 22:20:00 | 000,000,281 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free Uploader for Facebook\FreeUploaderForFacebook.xml
[2011/12/29 15:38:28 | 000,507,504 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free Uploader for Facebook\FreeUploaderForFacebookStub.exe
[2011/12/29 15:38:10 | 000,005,120 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free Uploader for Facebook\de-DE\FreeUploaderForFacebook.resources.dll
[2011/12/29 15:38:10 | 000,005,120 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free Uploader for Facebook\es-ES\FreeUploaderForFacebook.resources.dll
[2011/12/29 15:38:10 | 000,005,120 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free Uploader for Facebook\fr-FR\FreeUploaderForFacebook.resources.dll
[2011/12/29 15:38:10 | 000,005,120 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free Uploader for Facebook\it-IT\FreeUploaderForFacebook.resources.dll
[2011/12/29 15:38:10 | 000,005,120 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free Uploader for Facebook\ja-JP\FreeUploaderForFacebook.resources.dll
[2011/12/29 15:38:10 | 000,005,120 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free Uploader for Facebook\nl-NL\FreeUploaderForFacebook.resources.dll
[2011/12/29 15:38:10 | 000,005,120 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free Uploader for Facebook\pl-PL\FreeUploaderForFacebook.resources.dll
[2011/12/29 15:38:10 | 000,005,120 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free Uploader for Facebook\pt-PT\FreeUploaderForFacebook.resources.dll
[2011/12/29 15:38:10 | 000,005,120 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free Uploader for Facebook\ru-RU\FreeUploaderForFacebook.resources.dll
[2011/12/29 15:38:10 | 000,005,120 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free Uploader for Facebook\zh-CHS\FreeUploaderForFacebook.resources.dll
[2011/12/29 15:38:10 | 000,005,120 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free Uploader for Facebook\zh-CHT\FreeUploaderForFacebook.resources.dll
[2012/01/23 14:48:42 | 000,041,112 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free YouTube Download\DVDVideoSoft.DVSVideoDownloader.dll
[2012/01/23 14:48:42 | 000,069,272 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free YouTube to DVD Converter\DVDVideoSoft.DownloaderYT2DvdAppExt.dll
[2012/01/23 14:48:44 | 000,041,112 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free YouTube to DVD Converter\DVDVideoSoft.DVSVideoDownloader.dll
[2012/01/23 14:48:44 | 000,041,112 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free YouTube to iPhone Converter\DVDVideoSoft.DVSVideoDownloader.dll
[2012/01/23 14:48:44 | 000,041,112 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free YouTube to iPod Converter\DVDVideoSoft.DVSVideoDownloader.dll
[2012/01/23 14:48:44 | 000,041,112 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free YouTube to MP3 Converter\DVDVideoSoft.DVSVideoDownloader.dll
[2012/01/23 14:48:44 | 001,492,632 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free YouTube Uploader\FreeYouTubeUploader.exe
[2011/10/04 22:19:20 | 000,000,336 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free YouTube Uploader\FreeYouTubeUploader.xml
[2011/12/31 20:29:34 | 000,008,192 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free YouTube Uploader\de-DE\FreeYouTubeUploader.resources.dll
[2011/12/31 20:29:34 | 000,008,192 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free YouTube Uploader\es-ES\FreeYouTubeUploader.resources.dll
[2011/12/31 20:29:34 | 000,008,192 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free YouTube Uploader\fr-FR\FreeYouTubeUploader.resources.dll
[2011/12/31 20:29:34 | 000,008,192 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free YouTube Uploader\it-IT\FreeYouTubeUploader.resources.dll
[2011/12/31 20:29:34 | 000,008,192 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free YouTube Uploader\ja-JP\FreeYouTubeUploader.resources.dll
[2011/12/31 20:29:34 | 000,008,192 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free YouTube Uploader\nl-NL\FreeYouTubeUploader.resources.dll
[2011/12/31 20:29:34 | 000,008,192 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free YouTube Uploader\pl-PL\FreeYouTubeUploader.resources.dll
[2011/12/31 20:29:34 | 000,008,192 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free YouTube Uploader\pt-PT\FreeYouTubeUploader.resources.dll
[2011/12/31 20:29:34 | 000,008,704 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free YouTube Uploader\ru-RU\FreeYouTubeUploader.resources.dll
[2011/12/31 20:29:34 | 000,008,192 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free YouTube Uploader\zh-CHS\FreeYouTubeUploader.resources.dll
[2011/12/31 20:29:34 | 000,008,192 | ---- | M] () -- \Program Files\DVDVideoSoft\Free Studio\Free YouTube Uploader\zh-CHT\FreeYouTubeUploader.resources.dll
[2010/02/10 02:38:44 | 003,473,163 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_001\loader-00.fbrb
[2010/02/10 02:38:44 | 003,417,011 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_001sr\loader-00.fbrb
[2010/02/10 02:38:44 | 005,299,907 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_002\loader-00.fbrb
[2010/02/10 02:38:46 | 005,283,781 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_002sr\loader-00.fbrb
[2010/02/10 02:38:46 | 006,458,338 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_003\loader-00.fbrb
[2010/02/10 02:38:48 | 005,719,429 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_004\loader-00.fbrb
[2010/02/10 02:38:48 | 005,681,043 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_004sdm\loader-00.fbrb
[2010/02/10 02:38:48 | 005,975,692 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_005\loader-00.fbrb
[2010/02/10 02:38:50 | 005,952,738 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_005sr\loader-00.fbrb
[2010/02/10 02:38:50 | 003,625,529 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_006\loader-00.fbrb
[2010/02/10 02:38:50 | 003,618,790 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_006cq\loader-00.fbrb
[2010/02/10 02:38:50 | 003,609,949 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_006sdm\loader-00.fbrb
[2010/02/10 02:38:52 | 005,127,190 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_007\loader-00.fbrb
[2010/02/10 02:38:52 | 005,117,095 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_007sdm\loader-00.fbrb
[2010/02/10 02:38:52 | 003,702,695 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_008\loader-00.fbrb
[2010/02/10 02:38:52 | 003,568,288 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_009cq\loader-00.fbrb
[2010/02/10 02:38:54 | 003,565,006 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_009gr\loader-00.fbrb
[2010/02/10 02:38:54 | 003,544,807 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_009sdm\loader-00.fbrb
[2010/02/10 02:38:54 | 006,516,783 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_012gr\loader-00.fbrb
[2010/02/10 02:38:56 | 006,556,315 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_012sr\loader-00.fbrb
[2010/02/10 02:38:44 | 007,748,201 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_common\loader-00.fbrb
[2010/02/10 02:47:40 | 004,575,342 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_003_B\loader-00.fbrb
[2010/02/10 02:47:42 | 005,437,555 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_004_B\loader-00.fbrb
[2010/02/10 02:47:42 | 005,555,302 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_005\loader-00.fbrb
[2010/02/10 02:47:44 | 006,135,296 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_005_B\loader-00.fbrb
[2010/02/10 02:47:44 | 005,228,984 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_006\loader-00.fbrb
[2010/02/10 02:47:44 | 006,938,136 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_007\loader-00.fbrb
[2010/02/10 02:47:46 | 005,814,240 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_008\loader-00.fbrb
[2010/02/10 02:47:46 | 005,800,297 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_008_B\loader-00.fbrb
[2010/02/10 02:47:48 | 006,397,231 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_009\loader-00.fbrb
[2010/02/10 02:47:38 | 002,006,427 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_01\loader-00.fbrb
[2010/02/10 02:47:40 | 004,760,479 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_02\loader-00.fbrb
[2010/02/10 02:47:40 | 006,542,963 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_03\loader-00.fbrb
[2010/02/10 02:47:42 | 005,840,761 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_04\loader-00.fbrb
[2010/02/10 02:47:38 | 001,271,669 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_common\loader-00.fbrb
[2011/10/22 12:56:46 | 000,000,157 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\bc1_harvest_day_cq\loader-00.fbrb
[2011/10/22 12:57:20 | 000,000,157 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\bc1_harvest_day_gr\loader-00.fbrb
[2011/10/22 12:57:55 | 000,000,157 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\bc1_harvest_day_sdm\loader-00.fbrb
[2011/10/22 12:58:37 | 000,000,157 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\bc1_harvest_day_sr\loader-00.fbrb
[2011/10/22 12:59:19 | 000,000,157 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\bc1_oasis_cq\loader-00.fbrb
[2011/10/22 12:59:55 | 000,000,157 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\bc1_oasis_gr\loader-00.fbrb
[2011/10/22 13:00:30 | 000,000,157 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\bc1_oasis_sdm\loader-00.fbrb
[2011/10/22 13:00:56 | 000,000,157 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\bc1_oasis_sr\loader-00.fbrb
[2011/10/22 13:07:02 | 002,348,343 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_001\loader-00.fbrb
[2011/10/22 13:07:25 | 007,538,086 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_001sdm\loader-00.fbrb
[2011/10/22 13:08:35 | 002,348,343 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_001sr\loader-00.fbrb
[2011/10/22 13:09:18 | 002,348,343 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_002\loader-00.fbrb
[2011/10/22 13:10:01 | 002,348,343 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_002sr\loader-00.fbrb
[2011/10/22 13:10:52 | 002,348,343 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_003\loader-00.fbrb
[2011/10/22 13:11:12 | 005,837,142 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_003sr\loader-00.fbrb
[2011/10/22 13:12:06 | 002,348,343 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_004\loader-00.fbrb
[2011/10/22 13:12:59 | 002,348,343 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_004sdm\loader-00.fbrb
[2011/10/22 13:13:52 | 002,348,343 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_005\loader-00.fbrb
[2011/10/22 13:15:10 | 006,014,815 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_005gr\loader-00.fbrb
[2011/10/22 13:16:08 | 002,348,343 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_005sr\loader-00.fbrb
[2011/10/22 13:17:28 | 002,348,343 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_006\loader-00.fbrb
[2011/10/22 13:18:12 | 002,348,343 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_006cq\loader-00.fbrb
[2011/10/22 13:18:55 | 002,348,343 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_006sdm\loader-00.fbrb
[2011/10/22 13:19:50 | 002,348,343 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_007\loader-00.fbrb
[2011/10/22 13:20:10 | 006,098,333 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_007gr\loader-00.fbrb
[2011/10/22 13:21:22 | 002,348,343 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_007sdm\loader-00.fbrb
[2011/10/22 13:22:18 | 002,348,343 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_008\loader-00.fbrb
[2011/10/22 13:22:42 | 006,029,512 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_008cq\loader-00.fbrb
[2011/10/22 13:23:51 | 006,015,553 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_008sdm\loader-00.fbrb
[2011/10/22 13:24:58 | 002,348,343 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_009cq\loader-00.fbrb
[2011/10/22 13:25:37 | 002,348,343 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_009gr\loader-00.fbrb
[2011/10/22 13:26:24 | 002,348,343 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_009sdm\loader-00.fbrb
[2011/10/22 13:26:45 | 005,878,478 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_009sr\loader-00.fbrb
[2011/10/22 13:28:05 | 006,018,369 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_012cq\loader-00.fbrb
[2011/10/22 13:29:36 | 002,348,343 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_012gr\loader-00.fbrb
[2011/10/22 13:30:24 | 002,348,343 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_012sr\loader-00.fbrb
[2011/10/22 13:30:55 | 000,000,157 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_sp_002gr\loader-00.fbrb
[2011/10/22 13:31:31 | 000,000,157 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_sp_002sdm\loader-00.fbrb
[2011/10/22 13:32:15 | 000,000,157 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_sp_002sr\loader-00.fbrb
[2011/10/22 13:33:20 | 001,612,131 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_sp_005cq\loader-00.fbrb
[2011/10/22 13:33:48 | 000,000,157 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_sp_005sdm\loader-00.fbrb
[2011/10/22 13:05:36 | 007,593,208 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp2_common\loader-00.fbrb
[2011/10/22 13:44:41 | 063,933,148 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_common\loader-00.fbrb
[2011/10/22 13:45:23 | 000,001,006 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_002cq\loader-00.fbrb
[2011/10/22 13:45:58 | 000,001,006 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_002r\loader-00.fbrb
[2011/10/22 13:45:59 | 000,001,204 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_002sdm\loader-00.fbrb
[2011/10/22 13:46:16 | 000,001,006 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_002sr\loader-00.fbrb
[2011/10/22 13:46:35 | 000,001,006 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_003cq\loader-00.fbrb
[2011/10/22 13:47:11 | 000,001,006 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_003r\loader-00.fbrb
[2011/10/22 13:47:13 | 000,001,203 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_003sdm\loader-00.fbrb
[2011/10/22 13:47:30 | 000,001,006 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_003sr\loader-00.fbrb
[2011/10/22 13:47:49 | 000,001,009 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_005cq\loader-00.fbrb
[2011/10/22 13:48:07 | 000,001,009 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_005r\loader-00.fbrb
[2011/10/22 13:48:26 | 000,001,205 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_005sdm\loader-00.fbrb
[2011/10/22 13:48:55 | 000,001,009 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_005sr\loader-00.fbrb
[2011/10/22 13:49:14 | 000,001,008 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_006cq\loader-00.fbrb
[2011/10/22 13:49:32 | 000,001,008 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_006r\loader-00.fbrb
[2011/10/22 13:49:51 | 000,001,203 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_006sdm\loader-00.fbrb
[2011/10/22 13:50:21 | 000,001,008 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_006sr\loader-00.fbrb
[2011/10/22 13:50:40 | 000,001,008 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_007cq\loader-00.fbrb
[2011/10/22 13:50:58 | 000,001,008 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_007r\loader-00.fbrb
[2011/10/22 13:51:16 | 000,001,202 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_007sdm\loader-00.fbrb
[2011/10/22 13:51:51 | 000,001,008 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_007sr\loader-00.fbrb
[2011/10/22 13:52:20 | 001,131,640 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_003_b\loader-00.fbrb
[2011/10/22 13:52:56 | 001,131,640 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_004_b\loader-00.fbrb
[2011/10/22 13:53:18 | 001,131,640 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_005\loader-00.fbrb
[2011/10/22 13:54:21 | 001,131,640 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_005_b\loader-00.fbrb
[2011/10/22 13:54:58 | 001,131,640 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_006\loader-00.fbrb
[2011/10/22 13:55:36 | 001,131,640 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_007\loader-00.fbrb
[2011/10/22 13:56:08 | 001,131,640 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_008\loader-00.fbrb
[2011/10/22 13:56:33 | 001,131,640 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_008_b\loader-00.fbrb
[2011/10/22 13:56:59 | 001,131,640 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_009\loader-00.fbrb
[2011/10/22 13:57:35 | 001,131,275 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_01\loader-00.fbrb
[2011/10/22 13:57:56 | 001,131,640 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_02\loader-00.fbrb
[2011/10/22 13:58:58 | 001,131,640 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_03\loader-00.fbrb
[2011/10/22 13:59:29 | 001,131,640 | ---- | M] () -- \Program Files\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_04\loader-00.fbrb
[2012/05/08 10:59:16 | 000,032,768 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\TLoader.exe
[2011/11/26 13:31:54 | 000,004,176 | ---- | M] () -- \Program Files\Google\Google SketchUp 8\Resources\en-US\searching\ajax-loader.gif
[2011/11/26 13:31:56 | 000,000,500 | ---- | M] () -- \Program Files\Google\Google SketchUp 8\Tools\DynamicComponents\ruby\dcloader.rb
[2011/11/26 13:31:56 | 000,001,871 | ---- | M] () -- \Program Files\Google\Google SketchUp 8\Tools\ShadowStringsFix\shadowstringsfix_loader.rb
[2011/11/26 13:31:56 | 000,003,949 | ---- | M] () -- \Program Files\Google\Google SketchUp 8\Tools\SolarNorth\solarnorth_loader.rb
[2011/11/26 13:31:56 | 000,029,615 | ---- | M] () -- \Program Files\Google\Google SketchUp 8\Tools\WebTextures\webtextures_loader.rb
[2009/05/31 03:21:00 | 000,071,008 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2011/12/06 13:06:24 | 000,429,568 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Facebook\ZPSFacebookUploader.exe
[2010/04/29 14:12:40 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Facebook\ZPSPluginLoader.exe
[2011/12/06 13:06:24 | 000,319,488 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Facebook\en\ZPSFacebookUploader.resources.dll
[2011/12/06 13:06:40 | 000,444,416 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Flickr\ZPSFlickrUploader.exe
[2010/04/29 14:12:42 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Flickr\ZPSPluginLoader.exe
[2011/12/06 13:06:40 | 000,323,584 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Flickr\en\ZPSFlickrUploader.resources.dll
[2011/03/08 17:09:04 | 000,194,048 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Picasa\ZPSPicasaUploader.exe
[2010/04/29 14:12:40 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Picasa\ZPSPluginLoader.exe
[2010/11/11 12:07:12 | 000,323,584 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Picasa\en\ZPSPicasaUploader.resources.dll
[2011/12/21 18:07:52 | 000,102,792 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Program32\8bfLoader.exe
[2011/12/21 18:08:06 | 000,016,776 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Program32\WICLoader.exe
[2012/02/04 20:48:27 | 000,006,494 | ---- | M] () -- \ProgramData\AVG Secure Search\10.0.0.7\modules\skin\ajax-loader.gif
[2012/02/04 20:48:27 | 000,000,729 | ---- | M] () -- \ProgramData\AVG Secure Search\10.0.0.7\modules\skin\loader.gif
[2012/03/12 18:49:41 | 000,006,494 | ---- | M] () -- \ProgramData\AVG Secure Search\10.2.0.3\modules\skin\ajax-loader.gif
[2012/03/12 18:49:41 | 000,000,729 | ---- | M] () -- \ProgramData\AVG Secure Search\10.2.0.3\modules\skin\loader.gif
[2012/04/29 20:54:49 | 000,006,494 | ---- | M] () -- \ProgramData\AVG Secure Search\11.0.0.9\modules\skin\ajax-loader.gif
[2012/04/29 20:54:49 | 000,000,729 | ---- | M] () -- \ProgramData\AVG Secure Search\11.0.0.9\modules\skin\loader.gif
[2011/12/18 18:51:11 | 000,006,494 | ---- | M] () -- \ProgramData\AVG Secure Search\9.0.0.22\modules\skin\ajax-loader.gif
[2011/12/18 18:51:11 | 000,000,729 | ---- | M] () -- \ProgramData\AVG Secure Search\9.0.0.22\modules\skin\loader.gif
[2012/02/21 22:20:57 | 000,001,471 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Programs\Free Uploader for Facebook.lnk
[2012/02/21 22:20:57 | 000,001,416 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Programs\Free YouTube Uploader.lnk
[2012/02/29 09:15:20 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2012/02/29 09:15:20 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2011/07/19 20:37:38 | 000,000,000 | ---- | M] () -- \Qoobox\Quarantine\C\WINDOWS\loader2.exe_ok.vir
[2008/10/15 16:23:24 | 000,452,608 | ---- | M] () -- \SWTOOLS\APPS\skypedl\LenovoApplicationDownloader.exe
[2008/01/14 18:00:54 | 000,000,504 | ---- | M] () -- \SWTOOLS\APPS\skypedl\LenovoApplicationDownloader.ini
[2008/01/14 18:00:26 | 000,000,510 | ---- | M] () -- \SWTOOLS\APPS\skypedl\LenovoApplicationDownloader64.ini
[2008/01/14 18:00:54 | 000,000,504 | ---- | M] () -- \SWTOOLS\APPS\skypedl\LenovoApplicationDownloader86.ini
[2012/02/04 20:48:27 | 000,006,494 | ---- | M] () -- \Users\All Users\AVG Secure Search\10.0.0.7\modules\skin\ajax-loader.gif
[2012/02/04 20:48:27 | 000,000,729 | ---- | M] () -- \Users\All Users\AVG Secure Search\10.0.0.7\modules\skin\loader.gif
[2012/03/12 18:49:41 | 000,006,494 | ---- | M] () -- \Users\All Users\AVG Secure Search\10.2.0.3\modules\skin\ajax-loader.gif
[2012/03/12 18:49:41 | 000,000,729 | ---- | M] () -- \Users\All Users\AVG Secure Search\10.2.0.3\modules\skin\loader.gif
[2012/04/29 20:54:49 | 000,006,494 | ---- | M] () -- \Users\All Users\AVG Secure Search\11.0.0.9\modules\skin\ajax-loader.gif
[2012/04/29 20:54:49 | 000,000,729 | ---- | M] () -- \Users\All Users\AVG Secure Search\11.0.0.9\modules\skin\loader.gif
[2011/12/18 18:51:11 | 000,006,494 | ---- | M] () -- \Users\All Users\AVG Secure Search\9.0.0.22\modules\skin\ajax-loader.gif
[2011/12/18 18:51:11 | 000,000,729 | ---- | M] () -- \Users\All Users\AVG Secure Search\9.0.0.22\modules\skin\loader.gif
[2012/02/21 22:20:57 | 000,001,471 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Programs\Free Uploader for Facebook.lnk
[2012/02/21 22:20:57 | 000,001,416 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Programs\Free YouTube Uploader.lnk
[2012/02/29 09:15:20 | 000,072,638 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.gif
[2012/02/29 09:15:20 | 000,003,032 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.png
[2011/10/21 19:16:35 | 000,057,728 | ---- | M] () -- \Users\Prochyn\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\img\dt_dadget_loader.png
[2011/10/21 19:16:35 | 000,057,728 | ---- | M] () -- \Users\Prochyn\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin1\dt_dadget_loader.png
[2011/10/21 19:16:35 | 000,057,728 | ---- | M] () -- \Users\Prochyn\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin2\dt_dadget_loader.png
[2012/04/13 13:57:44 | 000,002,748 | ---- | M] () -- \Users\Prochyn\AppData\Roaming\.minecraft\ModLoader.txt
[2012/04/13 13:57:44 | 000,000,220 | ---- | M] () -- \Users\Prochyn\AppData\Roaming\.minecraft\config\ModLoader.cfg
[2012/02/28 17:36:59 | 000,000,046 | ---- | M] () -- \Users\Prochyn\AppData\Roaming\.minecraft\config\mod_ModLoaderMp.cfg
[2012/02/27 19:48:26 | 000,004,985 | ---- | M] () -- \Users\Prochyn\AppData\Roaming\.minecraft\mods\WorldEditCUI\wecui\org\yaml\snakeyaml\JavaBeanLoader.class
[2012/02/27 19:48:27 | 000,000,940 | ---- | M] () -- \Users\Prochyn\AppData\Roaming\.minecraft\mods\WorldEditCUI\wecui\org\yaml\snakeyaml\Loader.class
[2012/02/27 19:48:27 | 000,001,099 | ---- | M] () -- \Users\Prochyn\AppData\Roaming\.minecraft\mods\WorldEditCUI\wecui\org\yaml\snakeyaml\LoaderOptions.class
[2012/02/27 19:48:31 | 000,001,669 | ---- | M] () -- \Users\Prochyn\AppData\Roaming\.minecraft\mods\WorldEditCUI\wecui\org\yaml\snakeyaml\constructor\CustomClassLoaderConstructor.class
[2011/11/03 11:22:27 | 000,002,497 | ---- | M] () -- \Users\Prochyn\AppData\Roaming\Microsoft\.minecraft\ModLoader.txt
[2012/04/15 11:16:39 | 000,065,422 | ---- | M] () -- \Users\Prochyn\Desktop\Odkazy (1)\ModLoaderMP 1.2.5 Mod Minecraft 1.2.5 Download Minecraft.htm
[2012/04/25 20:51:32 | 000,000,433 | ---- | M] () -- \Users\Prochyn\Desktop\Odkazy (1)\Jimmydrum92 - YouTube_files\loader-vflff1Mjj.gif
[2012/04/04 17:01:36 | 000,039,855 | ---- | M] () -- \Users\Prochyn\Desktop\Odkazy (1)\Minec TEchnik\.minecraft\ModLoader.txt
[2012/04/04 17:01:22 | 000,001,136 | ---- | M] () -- \Users\Prochyn\Desktop\Odkazy (1)\Minec TEchnik\.minecraft\config\ModLoader.cfg
[2012/03/03 23:06:29 | 000,002,133 | ---- | M] () -- \Users\Prochyn\Desktop\Odkazy (1)\Minec321\.minecraft\ModLoader.txt
[2012/03/03 23:06:28 | 000,000,219 | ---- | M] () -- \Users\Prochyn\Desktop\Odkazy (1)\Minec321\.minecraft\config\ModLoader.cfg
[2012/02/28 17:36:59 | 000,000,046 | ---- | M] () -- \Users\Prochyn\Desktop\Odkazy (1)\Minec321\.minecraft\config\mod_ModLoaderMp.cfg
[2012/02/27 19:48:26 | 000,004,985 | ---- | M] () -- \Users\Prochyn\Desktop\Odkazy (1)\Minec321\.minecraft\mods\WorldEditCUI\wecui\org\yaml\snakeyaml\JavaBeanLoader.class
[2012/02/27 19:48:27 | 000,000,940 | ---- | M] () -- \Users\Prochyn\Desktop\Odkazy (1)\Minec321\.minecraft\mods\WorldEditCUI\wecui\org\yaml\snakeyaml\Loader.class
[2012/02/27 19:48:27 | 000,001,099 | ---- | M] () -- \Users\Prochyn\Desktop\Odkazy (1)\Minec321\.minecraft\mods\WorldEditCUI\wecui\org\yaml\snakeyaml\LoaderOptions.class
[2012/02/27 19:48:31 | 000,001,669 | ---- | M] () -- \Users\Prochyn\Desktop\Odkazy (1)\Minec321\.minecraft\mods\WorldEditCUI\wecui\org\yaml\snakeyaml\constructor\CustomClassLoaderConstructor.class
[2012/04/03 14:55:39 | 000,004,137 | ---- | M] () -- \Users\Prochyn\Desktop\Odkazy (1)\Minec321\Minec213\.minecraft\ModLoader.txt
[2012/04/03 14:33:24 | 000,000,523 | ---- | M] () -- \Users\Prochyn\Desktop\Odkazy (1)\Minec321\Minec213\.minecraft\config\ModLoader.cfg
[2012/04/03 14:33:23 | 000,000,047 | ---- | M] () -- \Users\Prochyn\Desktop\Odkazy (1)\Minec321\Minec213\.minecraft\config\mod_ModLoaderMp.cfg
[2012/04/15 11:16:35 | 000,001,631 | ---- | M] () -- \Users\Prochyn\Desktop\Odkazy (1)\ModLoaderMP 1.2.5 Mod Minecraft 1.2.5 Download Minecraft_files\loader.gif
[2012/04/15 11:16:35 | 000,236,012 | ---- | M] () -- \Users\Prochyn\Desktop\Odkazy (1)\ModLoaderMP 1.2.5 Mod Minecraft 1.2.5 Download Minecraft_files\ModloaderMP-1-1.png
[2012/03/09 21:25:43 | 000,003,951 | ---- | M] () -- \Users\Prochyn\Desktop\Odkazy (1)\Statistiky - Prophet's Lair – PvE & PvP WoW server_files\loader-bar.gif
[2012/03/08 10:07:56 | 000,010,116 | ---- | M] () -- \Users\Public\Documents\Blizzard Entertainment\World of Warcraft\Logs\Downloader.log
[2011/10/21 20:59:14 | 000,082,784 | ---- | M] () -- \Windows\assembly\GAC\IALoader\1.7.6223.0__31bf3856ad364e35\IALoader.dll
[2009/07/14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009/07/14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2012/02/02 15:15:04 | 000,012,532 | ---- | M] () -- \Windows\System32\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2007/04/30 16:43:12 | 000,009,622 | ---- | M] () -- \Windows\System32\Macromed\Shockwave 10\shockwave_Projector_Loader.dcr
[2009/07/14 06:54:01 | 000,003,532 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[2011/10/21 20:15:13 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2011/10/21 20:15:13 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winload.exe.mui_3bc5b827
[2011/10/21 20:15:13 | 000,030,272 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winresume.exe.mui_ff8b5358
[2009/07/14 06:56:40 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4.manifest
[2009/07/14 06:56:40 | 000,033,344 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4_winload.exe.mui_3bc5b827
[2009/07/14 06:56:40 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4_winresume.exe.mui_ff8b5358
[2009/07/14 04:17:55 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_5afd1055cdfa75b9.manifest
[2009/07/14 04:17:55 | 000,507,568 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_5afd1055cdfa75b9_winload.exe_75835076
[2009/07/14 04:17:55 | 000,442,920 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_5afd1055cdfa75b9_winresume.exe_85cd1215
[2009/07/14 04:17:38 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009/07/14 04:17:38 | 000,017,472 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23_spldr.sys_98bd87a0
[2009/07/13 18:54:50 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2009/07/14 04:29:12 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4.manifest
[2009/07/14 03:47:46 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_5afd1055cdfa75b9.manifest
[2009/07/14 03:52:31 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009/07/14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009/07/14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll

[Prochynex]

< *RemoveWAT* /s >

< *minodlogin* /s >

< *tnod* /s >
[2012/05/08 11:35:32 | 003,630,556 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00000104.pnd
[2012/05/08 11:35:32 | 000,000,012 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00000105.pnd
[2012/05/08 11:35:32 | 002,565,474 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00000203.pnd
[2012/05/08 11:35:38 | 031,199,740 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00000204.pnd
[2012/05/08 11:35:40 | 006,138,152 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00000205.pnd
[2012/05/08 11:35:40 | 004,104,204 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00000206.pnd
[2012/05/08 11:35:40 | 000,382,694 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00000300.pnd
[2012/05/08 11:35:42 | 007,640,636 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00000303.pnd
[2012/05/08 11:35:42 | 010,718,952 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00000304.pnd
[2012/05/08 11:35:44 | 001,810,798 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00000305.pnd
[2012/05/08 11:35:46 | 014,978,964 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00000306.pnd
[2012/05/08 11:35:44 | 004,181,034 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00000403.pnd
[2012/05/08 11:35:46 | 005,259,664 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00000404.pnd
[2012/05/08 11:35:46 | 007,835,574 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00000405.pnd
[2012/05/08 11:35:46 | 007,445,116 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00000406.pnd
[2012/05/08 11:35:48 | 005,278,730 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00000503.pnd
[2012/05/08 11:35:50 | 026,713,024 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00000504.pnd
[2012/05/08 11:35:48 | 003,878,382 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00000505.pnd
[2012/05/08 11:35:48 | 001,218,894 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00000604.pnd
[2012/05/08 11:35:50 | 007,015,342 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00000605.pnd
[2012/05/08 11:35:52 | 004,409,612 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00000606.pnd
[2012/05/08 11:35:52 | 000,710,892 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00030000.pnd
[2012/05/08 11:35:52 | 000,140,032 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00040000.pnd
[2012/05/08 11:35:52 | 000,082,414 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00060000.pnd
[2012/05/08 11:35:52 | 000,300,098 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00070000.pnd
[2012/05/08 11:35:52 | 000,068,330 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00080000.pnd
[2012/05/08 11:35:52 | 000,704,098 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00090000.pnd
[2012/05/08 11:35:52 | 000,098,074 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE000A0000.pnd
[2012/05/08 11:35:52 | 000,164,852 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE000B0000.pnd
[2012/05/08 11:35:52 | 000,720,828 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE000C0000.pnd
[2012/05/08 11:35:52 | 000,176,712 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE000D0000.pnd
[2012/05/08 11:35:52 | 000,510,394 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE000E0000.pnd
[2012/05/08 11:35:52 | 001,034,688 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE000F0000.pnd
[2012/05/08 11:35:52 | 000,247,718 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00100000.pnd
[2012/05/08 11:35:52 | 000,449,482 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE00110000.pnd
[2012/05/08 11:35:52 | 000,005,844 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE01F50000.pnd
[2012/05/08 11:35:52 | 000,007,368 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE02590000.pnd
[2012/05/08 11:35:52 | 000,593,686 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE02BC0000.pnd
[2012/05/08 11:35:52 | 004,409,612 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE02BD0000.pnd
[2012/05/08 11:35:54 | 010,718,952 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE02BE0000.pnd
[2012/05/08 11:35:52 | 001,043,802 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE02C00000.pnd
[2012/05/08 11:35:54 | 005,278,730 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE02C20000.pnd
[2012/05/08 11:35:54 | 004,181,034 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE02C40000.pnd
[2012/05/08 11:35:54 | 002,131,730 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE02C60000.pnd
[2012/05/08 11:35:54 | 007,445,116 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE02C80000.pnd
[2012/05/08 11:35:54 | 000,330,866 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE03210000.pnd
[2012/05/08 11:35:54 | 000,177,878 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE03220000.pnd
[2012/05/08 11:35:54 | 000,177,878 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE03230000.pnd
[2012/05/08 11:35:54 | 000,330,866 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE03240000.pnd
[2012/05/08 11:35:56 | 003,004,110 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE038B0000.pnd
[2012/05/08 11:35:56 | 003,004,110 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE038C0000.pnd
[2012/05/08 11:35:56 | 005,200,352 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE038D0000.pnd
[2012/05/08 11:35:56 | 005,200,352 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE038E0000.pnd
[2012/05/08 11:35:56 | 000,081,832 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE038F0000.pnd
[2012/05/08 11:35:56 | 000,032,212 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE07DA0000.pnd
[2012/05/08 11:35:56 | 000,069,760 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE08340000.pnd
[2012/05/08 11:35:56 | 001,341,354 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE08980000.pnd
[2012/05/08 11:35:56 | 002,468,646 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE08990000.pnd
[2012/05/08 11:35:56 | 001,341,354 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Node\TNODE089A0000.pnd
[2012/05/08 11:35:58 | 000,000,242 | ---- | M] () -- \Program Files\Gameforge4D\4Story_CZ\Tcd\TNODE.tcd

< *TemDono* /s >

< *AutoKMS* /s >

< *KMSEmulator* /s >

< *activator* /s >

< *serial* /s >
[2004/08/17 15:44:16 | 000,030,301 | ---- | M] () -- \cmdcons\SERIAL.SY_
[2008/04/14 14:00:00 | 000,024,957 | ---- | M] () -- \I386\DPSERIAL.DL_
[2008/04/14 14:00:00 | 000,030,259 | ---- | M] () -- \I386\SERIAL.SY_
[2008/04/14 14:00:00 | 000,006,549 | ---- | M] () -- \I386\SERIALUI.DL_
[2003/10/09 07:11:48 | 000,000,216 | ---- | M] () -- \Program Files\Image-Line\FL Studio 10\Plugins\Fruity\Generators\Sytrus\Artwork\DelSerialCache.bmp
[2009/06/10 23:13:54 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2009/06/08 10:38:48 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2008/04/14 14:00:00 | 000,064,256 | ---- | M] () -- \RRbackups\FR\UF\WINDOWS\system32\drivers\serial.sys
[2011/12/08 17:56:11 | 000,624,608 | ---- | M] () -- \Users\Prochyn\AppData\Local\VirtualStore\Windows\SoftwareProtection\cod4 serial database.ptn
[2012/02/27 19:48:36 | 000,001,039 | ---- | M] () -- \Users\Prochyn\AppData\Roaming\.minecraft\mods\WorldEditCUI\wecui\org\yaml\snakeyaml\serializer\Serializer$1.class
[2012/02/27 19:48:36 | 000,012,094 | ---- | M] () -- \Users\Prochyn\AppData\Roaming\.minecraft\mods\WorldEditCUI\wecui\org\yaml\snakeyaml\serializer\Serializer.class
[2012/02/27 19:48:36 | 000,000,657 | ---- | M] () -- \Users\Prochyn\AppData\Roaming\.minecraft\mods\WorldEditCUI\wecui\org\yaml\snakeyaml\serializer\SerializerException.class
[2012/02/27 19:48:36 | 000,001,039 | ---- | M] () -- \Users\Prochyn\Desktop\Odkazy (1)\Minec321\.minecraft\mods\WorldEditCUI\wecui\org\yaml\snakeyaml\serializer\Serializer$1.class
[2012/02/27 19:48:36 | 000,012,094 | ---- | M] () -- \Users\Prochyn\Desktop\Odkazy (1)\Minec321\.minecraft\mods\WorldEditCUI\wecui\org\yaml\snakeyaml\serializer\Serializer.class
[2012/02/27 19:48:36 | 000,000,657 | ---- | M] () -- \Users\Prochyn\Desktop\Odkazy (1)\Minec321\.minecraft\mods\WorldEditCUI\wecui\org\yaml\snakeyaml\serializer\SerializerException.class
[2009/06/10 14:14:16 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009/06/10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2009/06/08 10:38:48 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2009/06/10 23:13:54 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2009/07/14 06:43:53 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\39e53f507d9cbc5c10a2f47c4b0d09dd\System.Runtime.Serialization.ni.dll
[2009/07/14 06:43:05 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\d57d865568209a71d63739fa448ed6df\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2012/02/02 01:01:46 | 002,625,024 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\30ed505f7ea7d6139128d4a6d9981dc0\System.Runtime.Serialization.ni.dll
[2012/02/02 01:01:54 | 000,310,272 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\894d864ff8eeb97fad09797d33a06d83\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2012/02/01 22:28:28 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2012/02/01 22:28:26 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2009/06/10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2009/06/10 14:14:16 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009/06/10 23:14:06 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2010/03/18 14:16:28 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2010/03/18 14:16:28 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2009/07/14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2009/07/13 18:38:14 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2009/07/14 01:45:33 | 000,083,456 | ---- | M] () -- \Windows\System32\drivers\serial.sys
[2009/07/13 18:39:44 | 000,009,728 | ---- | M] () -- \Windows\System32\drivers\cs-CZ\serial.sys.mui
[2009/07/14 04:09:30 | 000,010,240 | ---- | M] () -- \Windows\System32\drivers\en-US\serial.sys.mui
[2009/07/14 00:13:45 | 001,068,032 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\mdmmotsm.inf_x86_neutral_c1415d9789c54b89\smserial.sys
[2009/07/14 01:45:33 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_x86_neutral_c1a802e06677f73f\serial.sys
[2009/07/14 00:09:18 | 000,031,232 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_x86_neutral_63e72c669d043f14\grserial.sys
[2009/07/14 04:10:04 | 000,005,120 | ---- | M] () -- \Windows\System32\en-US\serialui.dll.mui
[2009/07/14 04:18:03 | 000,002,762 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486.manifest
[2009/07/14 04:18:03 | 000,015,952 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486_kdcom.dll_db5e7744
[2011/10/21 20:15:08 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed_serialui.dll.mui_7d29d2a3
[2009/07/14 06:56:40 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_919783112bf8b64b_serialui.dll.mui_7d29d2a3
[2009/07/14 04:18:51 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2009/07/14 03:52:33 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896.manifest
[2009/07/13 18:54:22 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0.manifest
[2009/07/14 04:28:14 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_en-us_8f71d563bf7aa3c2.manifest
[2009/07/14 03:51:52 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9.manifest
[2009/07/14 03:49:26 | 000,002,762 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486.manifest
[2009/07/14 03:45:27 | 000,000,866 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_2c93290b67c98d09.manifest
[2009/07/14 03:57:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b.manifest
[2009/06/10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2009/06/10 14:14:16 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_d5c3552dd9b47144\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009/06/10 23:14:06 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896\System.Runtime.Serialization.dll
[2009/06/08 10:38:48 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2009/06/10 23:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9\System.Runtime.Serialization.dll
[2009/07/14 00:13:45 | 001,068,032 | ---- | M] () -- \Windows\winsxs\x86_mdmmotsm.inf_31bf3856ad364e35_6.1.7600.16385_none_7a97936f8a972896\smserial.sys
[2009/06/10 14:14:16 | 000,011,776 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_c002c1170ca9a88f\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009/07/13 18:38:14 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed\serialui.dll.mui
[2009/07/14 04:10:04 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_919783112bf8b64b\serialui.dll.mui
[2009/07/14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2009/06/08 10:38:48 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_5d4a68b4b3d26ecc\System.RunTime.Serialization.Resources.dll
[2009/07/13 18:39:44 | 000,009,728 | ---- | M] () -- \Windows\winsxs\x86_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_c48c78a9ad8ff996\serial.sys.mui
[2009/07/14 04:09:30 | 000,010,240 | ---- | M] () -- \Windows\winsxs\x86_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_en-us_07e2c405948a55f4\serial.sys.mui
[2009/07/14 01:45:33 | 000,083,456 | ---- | M] () -- \Windows\winsxs\x86_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_f86e06d519b1d9a4\serial.sys
[2009/07/14 00:09:18 | 000,031,232 | ---- | M] () -- \Windows\winsxs\x86_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_7280378295916274\grserial.sys
[2009/06/10 23:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b\System.Runtime.Serialization.dll

< *w7lxe* /s >

< *AutoRearm* /s >

< %userprofile%\*.bat /s >

< >

< HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run /s >
"4StoryPrePatch" = C:\Program Files\Gameforge4D\4Story_CZ\PrePatch.exe -- [2012/05/08 10:59:14 | 000,327,680 | ---- | M] (Zemi Interactive Inc.)
"GrooveMonitor" = "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" -- [2006/10/27 00:47:42 | 000,031,016 | ---- | M] (Microsoft Corporation)
"AVG_TRAY" = "C:\Program Files\AVG\AVG2012\avgtray.exe" -- [2012/01/24 18:24:26 | 002,416,480 | ---- | M] (AVG Technologies CZ, s.r.o.)
"vProt" = "C:\Program Files\AVG Secure Search\vprot.exe" -- [2012/04/29 20:54:41 | 001,116,544 | ---- | M] ()
"Adobe ARM" = "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" -- [2012/01/03 09:37:53 | 000,843,712 | ---- | M] (Adobe Systems Incorporated)
"SunJavaUpdateSched" = "C:\Program Files\Common Files\Java\Java Update\jusched.exe" -- [2012/01/18 15:02:04 | 000,254,696 | ---- | M] (Sun Microsystems, Inc.)

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"DAEMON Tools Lite" = "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun -- [2011/08/02 09:33:30 | 004,910,912 | ---- | M] (DT Soft Ltd)
"BitTorrent" = "C:\Program Files\BitTorrent\BitTorrent.exe" /MINIMIZED -- [2011/10/27 16:14:33 | 005,960,560 | ---- | M] (BitTorrent, Inc.)
"AlcoholAutomount" = "C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount -- [2010/08/20 13:03:08 | 000,033,120 | ---- | M] (Alcohol Soft Development Team)
"Sidebar" = C:\Program Files\Windows Sidebar\sidebar.exe /autoRun -- [2009/07/14 03:14:38 | 001,173,504 | ---- | M] (Microsoft Corporation)
"Skype" = "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun -- [2012/02/29 09:20:32 | 017,151,624 | R--- | M] (Skype Technologies S.A.)

< HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run /s >

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012/05/27 13:48:21 | 000,000,512 | ---- | M] () MD5=DBC1199CF5604E6B27BC12F02B64CB77 -- C:\PhysicalMBR.bin

========== Alternate Data Streams ==========

@Alternate Data Stream - 6144 bytes -> C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT

< End of report >

[Danstahr]

Otevřete znovu OTL, do okna dole vložte následující skript a klikněte na tlačítko Opravit. Bude následovat restart PC a po něm se otevře log, ten sem prosím vložte.

Kód: Vybrat vše

:Commands
[EmptyTemp]
[ResetHosts]
[Purity]

:OTL
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O27 - HKLM IFEO\regedit.exe: Debugger - 0 File not found
O27 - HKLM IFEO\taskmgr.exe: Debugger - 0 File not found
[2011/12/08 15:17:09 | 000,051,270 | ---- | C] () -- C:\Users\Prochyn\AppData\Roaming\room_v3.dat
[2011/11/12 22:15:36 | 000,005,632 | ---- | C] () -- C:\Users\Prochyn\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/10/21 20:16:42 | 000,634,546 | ---- | C] () -- C:\Windows\System32\perfh005.dat
[2011/10/21 20:16:42 | 000,292,004 | ---- | C] () -- C:\Windows\System32\perfi005.dat
[2011/10/21 20:16:42 | 000,123,104 | ---- | C] () -- C:\Windows\System32\perfc005.dat
[2011/10/21 20:16:42 | 000,036,232 | ---- | C] () -- C:\Windows\System32\perfd005.dat
[2011/10/21 19:08:55 | 000,086,016 | ---- | C] () -- C:\Windows\stk2135bsrv.exe
[2012/02/01 00:08:04 | 000,152,693 | ---- | M] () -- \Users\Prochyn\AppData\Roaming\BitTorrent\CALL OF DUTY 2 PC DVD + Key + 1.3 Patch + NoCd Crack.torrent
[2012/02/08 01:13:08 | 000,018,442 | ---- | M] () -- \Users\Prochyn\AppData\Roaming\BitTorrent\Call_OF_Duty_2_Incl_Crack_&_Keygen.torrent
[2011/12/28 11:13:47 | 000,015,132 | ---- | M] () -- \Users\Prochyn\AppData\Roaming\BitTorrent\Euro Truck Simulator 2 - Full PC Game 2011 with Crack - SKIDROW.torrent
[2012/01/02 03:00:13 | 000,014,236 | ---- | M] () -- \Users\Prochyn\AppData\Roaming\BitTorrent\Euro Truck Simulator 2011 + crack Full Game.torrent
[2012/01/29 22:56:58 | 000,015,289 | ---- | M] () -- \Users\Prochyn\AppData\Roaming\BitTorrent\FL Studio 10 Fully working Crack.torrent
[2012/02/20 21:09:16 | 000,000,990 | ---- | M] () -- \Users\Prochyn\AppData\Roaming\BitTorrent\H.A.W.X. 2 Crack.rar.torrent
[2012/01/14 15:38:10 | 000,014,401 | ---- | M] () -- \Users\Prochyn\AppData\Roaming\BitTorrent\Minecraft_Cracked_v1.0.0.zip.torrent
[2012/01/22 18:27:25 | 000,015,001 | ---- | M] () -- \Users\Prochyn\AppData\Roaming\BitTorrent\Minecraft_Cracked_v1.1.0.zip.torrent
[2012/01/29 22:05:29 | 000,011,792 | ---- | M] () -- \Users\Prochyn\AppData\Roaming\BitTorrent\Virtual DJ Pro 7.0.5 And Crack.torrent
[2011/11/16 21:13:50 | 000,020,598 | ---- | M] () -- \Users\Prochyn\AppData\Roaming\BitTorrent\[PC GAME MULTI] - Gran Theft Auto San Andreas + Crack NoCD - (Perfect DVD Version) - (Eng-Ita-Deu-Fra-Esp) - (By G-ADLVR_R7.rar.torrent
[2011/12/29 18:23:54 | 000,000,930 | ---- | M] () -- \Users\Prochyn\AppData\Roaming\Microsoft\Office\Naposledy otevřené\Euro Truck Simulator 2 - Full PC Game 2011 with Crack - SKIDROW.LNK
[2011/12/16 22:10:45 | 000,000,428 | ---- | M] () -- \Users\Prochyn\AppData\Roaming\BitTorrent\Unreal.Tournament.3.KEYGEN-RELOADED.torrent
@Alternate Data Stream - 6144 bytes -> C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT

:Reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"4StoryPrePatch"=-
"GrooveMonitor"=-
"AVG_TRAY"=-
"vProt"=-
"Adobe ARM"=-
"SunJavaUpdateSched"=-

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=-
"BitTorrent"=-
"AlcoholAutomount"=-

:Files
C:\Windows\System32\mrvcl32.exe

[Prochynex]

All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Prochyn
->Temp folder emptied: 21315024 bytes
->Temporary Internet Files folder emptied: 1146304 bytes
->Java cache emptied: 233445 bytes
->Google Chrome cache emptied: 249690926 bytes
->Flash cache emptied: 58194 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 8412 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 174 bytes

Total Files Cleaned = 260.00 mb

C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet:/pagefile deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\regedit.exe\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe\ deleted successfully.
C:\Users\Prochyn\AppData\Roaming\room_v3.dat moved successfully.
C:\Users\Prochyn\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini moved successfully.
C:\Windows\System32\perfh005.dat moved successfully.
C:\Windows\System32\perfi005.dat moved successfully.
C:\Windows\System32\perfc005.dat moved successfully.
C:\Windows\System32\perfd005.dat moved successfully.
C:\Windows\stk2135bsrv.exe moved successfully.
File move failed. \Users\Prochyn\AppData\Roaming\BitTorrent\CALL OF DUTY 2 PC DVD + Key + 1.3 Patch + NoCd Crack.torrent scheduled to be moved on reboot.
File move failed. \Users\Prochyn\AppData\Roaming\BitTorrent\Call_OF_Duty_2_Incl_Crack_&_Keygen.torrent scheduled to be moved on reboot.
File move failed. \Users\Prochyn\AppData\Roaming\BitTorrent\Euro Truck Simulator 2 - Full PC Game 2011 with Crack - SKIDROW.torrent scheduled to be moved on reboot.
File move failed. \Users\Prochyn\AppData\Roaming\BitTorrent\Euro Truck Simulator 2011 + crack Full Game.torrent scheduled to be moved on reboot.
File move failed. \Users\Prochyn\AppData\Roaming\BitTorrent\FL Studio 10 Fully working Crack.torrent scheduled to be moved on reboot.
File move failed. \Users\Prochyn\AppData\Roaming\BitTorrent\H.A.W.X. 2 Crack.rar.torrent scheduled to be moved on reboot.
File move failed. \Users\Prochyn\AppData\Roaming\BitTorrent\Minecraft_Cracked_v1.0.0.zip.torrent scheduled to be moved on reboot.
File move failed. \Users\Prochyn\AppData\Roaming\BitTorrent\Minecraft_Cracked_v1.1.0.zip.torrent scheduled to be moved on reboot.
File move failed. \Users\Prochyn\AppData\Roaming\BitTorrent\Virtual DJ Pro 7.0.5 And Crack.torrent scheduled to be moved on reboot.
File move failed. \Users\Prochyn\AppData\Roaming\BitTorrent\[PC GAME MULTI] - Gran Theft Auto San Andreas + Crack NoCD - (Perfect DVD Version) - (Eng-Ita-Deu-Fra-Esp) - (By G-ADLVR_R7.rar.torrent scheduled to be moved on reboot.
File move failed. \Users\Prochyn\AppData\Roaming\Microsoft\Office\Naposledy otevřené\Euro Truck Simulator 2 - Full PC Game 2011 with Crack - SKIDROW.LNK scheduled to be moved on reboot.
File move failed. \Users\Prochyn\AppData\Roaming\BitTorrent\Unreal.Tournament.3.KEYGEN-RELOADED.torrent scheduled to be moved on reboot.
ADS C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT deleted successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\4StoryPrePatch deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\AVG_TRAY deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\vProt deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\BitTorrent deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\AlcoholAutomount deleted successfully.
========== FILES ==========
C:\Windows\System32\mrvcl32.exe moved successfully.

OTL by OldTimer - Version 3.2.43.1 log created on 05272012_185642

Files\Folders moved on Reboot...
File move failed. \Users\Prochyn\AppData\Roaming\BitTorrent\CALL OF DUTY 2 PC DVD + Key + 1.3 Patch + NoCd Crack.torrent scheduled to be moved on reboot.
File move failed. \Users\Prochyn\AppData\Roaming\BitTorrent\Call_OF_Duty_2_Incl_Crack_&_Keygen.torrent scheduled to be moved on reboot.
File move failed. \Users\Prochyn\AppData\Roaming\BitTorrent\Euro Truck Simulator 2 - Full PC Game 2011 with Crack - SKIDROW.torrent scheduled to be moved on reboot.
File move failed. \Users\Prochyn\AppData\Roaming\BitTorrent\Euro Truck Simulator 2011 + crack Full Game.torrent scheduled to be moved on reboot.
File move failed. \Users\Prochyn\AppData\Roaming\BitTorrent\FL Studio 10 Fully working Crack.torrent scheduled to be moved on reboot.
File move failed. \Users\Prochyn\AppData\Roaming\BitTorrent\H.A.W.X. 2 Crack.rar.torrent scheduled to be moved on reboot.
File move failed. \Users\Prochyn\AppData\Roaming\BitTorrent\Minecraft_Cracked_v1.0.0.zip.torrent scheduled to be moved on reboot.
File move failed. \Users\Prochyn\AppData\Roaming\BitTorrent\Minecraft_Cracked_v1.1.0.zip.torrent scheduled to be moved on reboot.
File move failed. \Users\Prochyn\AppData\Roaming\BitTorrent\Virtual DJ Pro 7.0.5 And Crack.torrent scheduled to be moved on reboot.
File move failed. \Users\Prochyn\AppData\Roaming\BitTorrent\[PC GAME MULTI] - Gran Theft Auto San Andreas + Crack NoCD - (Perfect DVD Version) - (Eng-Ita-Deu-Fra-Esp) - (By G-ADLVR_R7.rar.torrent scheduled to be moved on reboot.
File move failed. \Users\Prochyn\AppData\Roaming\Microsoft\Office\Naposledy otevřené\Euro Truck Simulator 2 - Full PC Game 2011 with Crack - SKIDROW.LNK scheduled to be moved on reboot.
File move failed. \Users\Prochyn\AppData\Roaming\BitTorrent\Unreal.Tournament.3.KEYGEN-RELOADED.torrent scheduled to be moved on reboot.

Registry entries deleted on Reboot...

[Danstahr]

Fajn, OTL provedlo, co mělo. Už by měl jít otevřít task manager, zkuste to.
Udělejte nový sken podle postupu na 1. stránce s tímto skriptem :

Kód: Vybrat vše

[code]CREATERESTOREPOINT

netsvc
drivers32

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
%userprofile%\Plocha\*.*
%userprofile%\Desktop\*.*
%ALLUSERSPROFILE%\Plocha\*.*
%ALLUSERSPROFILE%\Desktop\*.*
%userprofile%\*.bat /s

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run /s
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run /s

%SystemDrive%\PhysicalMBR.bin /md5

[Prochynex]

Dobre scan jsem pustil Spravce uz jde otevrit za hodinku se tu zase ukazu diky moc za pomoc xD......

[Prochynex]

OTL logfile created on: 5/27/2012 7:09:56 PM - Run 3
OTL by OldTimer - Version 3.2.43.1 Folder = C:\Users\Prochyn\Desktop
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.00 Gb Total Physical Memory | 2.16 Gb Available Physical Memory | 71.93% Memory free
6.00 Gb Paging File | 5.17 Gb Available in Paging File | 86.15% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 142.84 Gb Total Space | 62.69 Gb Free Space | 43.89% Space Free | Partition Type: NTFS
Drive G: | 465.76 Gb Total Space | 136.82 Gb Free Space | 29.38% Space Free | Partition Type: NTFS

Computer Name: PROCHYN-PC | User Name: Prochyn | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2012/05/26 18:40:49 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Prochyn\Desktop\OTL.exe
PRC - [2012/04/29 20:54:42 | 000,932,736 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.0.2\ToolbarUpdater.exe
PRC - [2012/01/03 15:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/11/28 02:19:04 | 001,229,664 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgnsx.exe
PRC - [2011/10/27 16:14:33 | 005,960,560 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\BitTorrent\BitTorrent.exe
PRC - [2011/08/02 06:09:08 | 000,192,776 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe
PRC - [2011/03/17 04:36:40 | 000,803,432 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
PRC - [2011/03/17 03:35:26 | 000,378,984 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2009/12/23 23:34:20 | 000,370,688 | ---- | M] (StarWind Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
PRC - [2009/07/14 03:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009/07/14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/04/15 18:00:42 | 000,208,896 | R--- | M] () -- C:\Program Files\Lenovo\ATK Hotkey\LFKAS.exe
PRC - [2009/04/15 17:41:22 | 000,315,392 | R--- | M] (Lenovo) -- C:\Program Files\Lenovo\ATK Hotkey\LFKA.exe
PRC - [2009/04/15 16:57:58 | 000,077,824 | R--- | M] (ATK0101) -- C:\Program Files\Lenovo\ATK Hotkey\LControl.exe
PRC - [2009/02/13 17:39:02 | 000,094,208 | R--- | M] () -- C:\Program Files\Lenovo\ATK Hotkey\GFNEXSrv.exe
PRC - [2009/02/13 16:45:54 | 000,094,208 | R--- | M] () -- C:\Program Files\Lenovo\ATK Hotkey\ASLDRSrv.exe


========== Modules (No Company Name) ==========

MOD - [2011/10/21 06:45:46 | 000,420,920 | ---- | M] () -- C:\Users\Prochyn\AppData\Local\Google\Chrome\Application\15.0.874.102\ppgooglenaclpluginchrome.dll
MOD - [2011/10/21 06:45:45 | 003,702,840 | ---- | M] () -- C:\Users\Prochyn\AppData\Local\Google\Chrome\Application\15.0.874.102\pdf.dll
MOD - [2011/10/21 06:44:09 | 000,122,952 | ---- | M] () -- C:\Users\Prochyn\AppData\Local\Google\Chrome\Application\15.0.874.102\avutil-51.dll
MOD - [2011/10/21 06:44:08 | 000,222,280 | ---- | M] () -- C:\Users\Prochyn\AppData\Local\Google\Chrome\Application\15.0.874.102\avformat-53.dll
MOD - [2011/10/21 06:44:07 | 001,745,992 | ---- | M] () -- C:\Users\Prochyn\AppData\Local\Google\Chrome\Application\15.0.874.102\avcodec-53.dll
MOD - [2011/10/21 03:45:13 | 008,587,936 | ---- | M] () -- C:\Users\Prochyn\AppData\Local\Google\Chrome\Application\15.0.874.102\gcswf32.dll
MOD - [2011/05/28 22:04:58 | 000,140,288 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll


========== Win32 Services (SafeList) ==========

SRV - [2012/04/29 20:54:42 | 000,932,736 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.0.2\ToolbarUpdater.exe -- (vToolbarUpdater11.0.2)
SRV - [2012/04/19 22:23:38 | 000,736,104 | ---- | M] (Tunngle.net GmbH) [On_Demand | Stopped] -- C:\Program Files\Tunngle\TnglCtrl.exe -- (TunngleService)
SRV - [2012/02/29 09:16:46 | 000,158,856 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/01/03 15:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/08/02 06:09:08 | 000,192,776 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe -- (avgwd)
SRV - [2011/05/22 15:07:00 | 004,690,480 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\System32\GameMon.des -- (npggsvc)
SRV - [2011/03/17 03:35:26 | 000,378,984 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2009/12/23 23:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2009/07/14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/04/15 18:00:42 | 000,208,896 | R--- | M] () [Auto | Running] -- C:\Program Files\Lenovo\ATK Hotkey\LFKAS.exe -- (LFKAS)
SRV - [2009/02/13 17:39:02 | 000,094,208 | R--- | M] () [Auto | Running] -- C:\Program Files\Lenovo\ATK Hotkey\GFNEXSrv.exe -- (ATKGFNEXSrv)
SRV - [2009/02/13 16:45:54 | 000,094,208 | R--- | M] () [Auto | Running] -- C:\Program Files\Lenovo\ATK Hotkey\ASLDRSrv.exe -- (ASLDRService)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Garena Classic\safedrv.sys -- (GGSAFERDriver)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\EagleXNt.sys -- (EagleXNt)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\Prochyn\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (ah0q2b6x)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (a0bjx2i0)
DRV - [2012/01/31 23:42:50 | 000,428,088 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2011/10/21 19:15:50 | 000,232,512 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2011/07/11 01:14:38 | 000,295,248 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2011/07/11 01:14:12 | 000,023,120 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\AVGIDSEH.sys -- (AVGIDSEH)
DRV - [2011/03/17 11:38:00 | 010,468,712 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2010/11/12 01:10:50 | 000,122,984 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA)
DRV - [2009/09/16 08:02:40 | 000,027,136 | ---- | M] (Tunngle.net) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tap0901t.sys -- (tap0901t) TAP-Win32 Adapter V9 (Tunngle)
DRV - [2009/09/15 13:30:08 | 000,038,400 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rixdptsk.sys -- (rismxdp)
DRV - [2009/09/15 12:36:18 | 000,044,544 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimsptsk.sys -- (rimsptsk)
DRV - [2009/09/07 18:00:28 | 000,048,128 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2009/07/14 03:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2009/07/14 03:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2009/07/14 03:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2009/07/14 01:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009/07/14 01:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009/07/14 01:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2009/07/14 00:02:51 | 004,231,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netw5v32.sys -- (netw5v32) Intel(R)
DRV - [2009/06/04 22:44:28 | 000,014,344 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\PuAcpi32.sys -- (MTsensor32)
DRV - [2009/03/18 17:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi)
DRV - [2009/02/24 19:42:14 | 000,116,736 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mcdbus.sys -- (mcdbus)
DRV - [2008/12/10 17:56:26 | 000,017,792 | ---- | M] (Avnex) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vcsvad.sys -- (VCSVADHWSer) Avnex Virtual Audio Device (WDM)
DRV - [2008/05/06 17:06:00 | 000,011,520 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wdcsam.sys -- (WDC_SAM)
DRV - [2007/07/24 12:09:04 | 000,013,880 | R--- | M] () [Kernel | Auto | Running] -- C:\Program Files\Lenovo\ATK Hotkey\ASMMAP.sys -- (ASMMAP)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No CLSID value found
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.as ... =CT2790392


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1713205610-778408625-3204417612-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://mn.iamwired.net/
IE - HKU\S-1-5-21-1713205610-778408625-3204417612-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKU\S-1-5-21-1713205610-778408625-3204417612-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 72 7F 45 11 E3 A3 CC 01 [binary data]
IE - HKU\S-1-5-21-1713205610-778408625-3204417612-1000\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKU\S-1-5-21-1713205610-778408625-3204417612-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-1713205610-778408625-3204417612-1000\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={ECF2 ... 2012-02-04 19:48:21&v=10.0.0.7&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-1713205610-778408625-3204417612-1000\..\SearchScopes\{95E09968-466E-4C77-AD80-D28C701DEB04}: "URL" = http://mn.iamwired.net/websearch.php?sr ... earchTerms}
IE - HKU\S-1-5-21-1713205610-778408625-3204417612-1000\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.as ... =CT2790392
IE - HKU\S-1-5-21-1713205610-778408625-3204417612-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\11.0.2\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll File not found
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG2012\Firefox4\ [2012/01/31 20:12:55 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG Secure Search\11.0.0.9\ [2012/04/30 10:49:08 | 000,000,000 | ---D | M]


========== Chrome ==========

CHR - default_search_provider: AVG Secure Search (Enabled)
CHR - default_search_provider: search_url = http://isearch.avg.com/search?cid={ECF2 ... 2011-10-21 21:24:51&v=10.0.0.7&sap=dsp&q={searchTerms}
CHR - default_search_provider: suggest_url = http://clients5.google.com/complete/sea ... utEncoding}
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Prochyn\AppData\Local\Google\Chrome\Application\15.0.874.102\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Prochyn\AppData\Local\Google\Chrome\Application\15.0.874.102\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Prochyn\AppData\Local\Google\Chrome\Application\15.0.874.102\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: AVG Internet Security (Enabled) = C:\Users\Prochyn\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.1901_0\plugins/avgnpss.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.290.11 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U29 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll
CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: Battlefield Play4Free = C:\Users\Prochyn\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkejhbcdagodjdndmfnhaibnealjonei\1.0.66.2_0\
CHR - Extension: Battlefield Heroes = C:\Users\Prochyn\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdfjahpadlpfnfheehpddpcllihfkmm\5.0.127.0_0\
CHR - Extension: AVG Safe Search = C:\Users\Prochyn\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.1901_0\
CHR - Extension: Skype Click to Call = C:\Users\Prochyn\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.9.0.9216_0\
CHR - Extension: Click 2 Save = C:\Users\Prochyn\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfnhllloejlgkbnpknjliihmbojbdopc\1.1_0\
CHR - Extension: Space Planet = C:\Users\Prochyn\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppcocpoeoiajndepaaimnnglicichmbb\1.1_0\

O1 HOSTS File: ([2012/05/27 18:56:51 | 000,000,098 | ---- | M]) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.0.0.9\AVG Secure Search_toolbar.dll ()
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.0.0.9\AVG Secure Search_toolbar.dll ()
O3 - HKU\S-1-5-21-1713205610-778408625-3204417612-1000\..\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found.
O4 - HKU\S-1-5-21-1713205610-778408625-3204417612-1000..\Run: [BitTorrent] C:\Program Files\BitTorrent\BitTorrent.exe (BitTorrent, Inc.)
O4 - Startup: C:\Users\Prochyn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk = File not found
O4 - Startup: C:\Users\Prochyn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = File not found
O4 - Startup: C:\Users\Prochyn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_.lnk = File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\PhishingFilter present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1713205610-778408625-3204417612-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1713205610-778408625-3204417612-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Free YouTube Download - C:\Users\Prochyn\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm ()
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Prochyn\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O8 - Extra context menu item: Search the Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0669A87A-B0DA-4AA1-97C0-9291DD7CD01A}: DhcpNameServer = 7.254.254.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5DF8981A-0F9A-418F-B75F-0EE057E832AF}: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{91B794ED-FD96-4937-96D8-DE6B787BACDD}: DhcpNameServer = 10.0.0.138
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\11.0.2\ViProtocol.dll ()
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (systempropertiesperformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

Kód: Vybrat vše

CREATERESTOREPOINT
Restore point Set: OTL Restore Point
 
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.vorbis - C:\Windows\System32\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FPS1 - C:\Windows\System32\frapsvid.dll (Beepa P/L)
 
[color=#E56717]========== Files/Folders - Created Within 7 Days ==========[/color]
 
[2012/05/27 18:56:42 | 000,000,000 | ---D | C] -- C:\_OTL
[2012/05/27 09:29:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Google
[2012/05/27 09:29:29 | 000,000,000 | ---D | C] -- C:\Users\Prochyn\AppData\Roaming\Google
[2012/05/27 09:28:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google SketchUp 8
[2012/05/27 09:28:29 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2012/05/26 18:40:46 | 000,595,968 | ---- | C] (OldTimer Tools) -- C:\Users\Prochyn\Desktop\OTL.exe
[2012/05/20 23:00:10 | 000,000,000 | ---D | C] -- C:\Users\Prochyn\AppData\Roaming\wargaming.net
[2012/05/20 22:59:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Tanks
[2012/05/20 22:59:43 | 000,000,000 | ---D | C] -- C:\Games
 
[color=#E56717]========== Files - Modified Within 7 Days ==========[/color]
 
[2012/05/27 19:08:05 | 000,627,060 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/05/27 19:08:05 | 000,107,358 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/05/27 19:03:59 | 000,014,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/05/27 19:03:59 | 000,014,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/05/27 18:58:07 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/05/27 18:58:00 | 2415,366,144 | -HS- | M] () -- C:\hiberfil.sys
[2012/05/27 18:56:51 | 000,000,098 | ---- | M] () -- C:\Windows\System32\drivers\etc\Hosts
[2012/05/27 13:48:21 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012/05/27 09:41:52 | 000,062,105 | ---- | M] () -- C:\Users\Prochyn\Documents\Untitled.skp
[2012/05/27 09:28:53 | 000,001,965 | ---- | M] () -- C:\Users\Public\Desktop\Google SketchUp 8.lnk
[2012/05/26 18:40:49 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Prochyn\Desktop\OTL.exe
[2012/05/26 17:52:09 | 000,412,464 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012/05/26 12:28:24 | 000,000,943 | ---- | M] () -- C:\Users\Prochyn\Application Data\Microsoft\Internet Explorer\Quick Launch\Tunngle beta.lnk
[2012/05/25 21:40:09 | 000,007,638 | ---- | M] () -- C:\Users\Prochyn\Documents\cc_20120525_214006.reg
[2012/05/20 22:59:46 | 000,000,779 | ---- | M] () -- C:\Users\Public\Desktop\World of Tanks.lnk
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012/05/27 09:41:52 | 000,062,105 | ---- | C] () -- C:\Users\Prochyn\Documents\Untitled.skp
[2012/05/27 09:28:53 | 000,001,965 | ---- | C] () -- C:\Users\Public\Desktop\Google SketchUp 8.lnk
[2012/05/26 18:45:56 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012/05/25 21:40:08 | 000,007,638 | ---- | C] () -- C:\Users\Prochyn\Documents\cc_20120525_214006.reg
[2012/05/20 22:59:46 | 000,000,779 | ---- | C] () -- C:\Users\Public\Desktop\World of Tanks.lnk
[2012/02/06 12:40:29 | 000,000,000 | ---- | C] () -- C:\Windows\System32\Access.dat
[2012/01/29 23:24:26 | 000,002,240 | ---- | C] () -- C:\Windows\LENDIG.sys
[2011/12/29 20:35:09 | 000,163,840 | ---- | C] () -- C:\Windows\System32\JoyFrc.dll
[2011/12/29 20:35:09 | 000,058,963 | ---- | C] () -- C:\Windows\System32\Wcdu5Cpl.dll
[2011/10/21 18:32:20 | 000,014,344 | ---- | C] () -- C:\Windows\System32\drivers\PuAcpi32.sys
[2011/10/21 18:32:13 | 000,061,440 | R--- | C] () -- C:\Windows\System32\AABATT.dll
[2011/10/21 18:30:24 | 000,605,056 | ---- | C] () -- C:\Users\Prochyn\AppData\Local\wanancsp.dat
[2011/10/21 17:54:25 | 000,140,496 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2011/10/21 17:54:25 | 000,022,328 | ---- | C] () -- C:\Users\Prochyn\AppData\Roaming\PnkBstrK.sys
[2011/10/21 17:53:59 | 000,215,128 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2011/10/21 17:53:57 | 002,434,856 | ---- | C] () -- C:\Windows\System32\pbsvc_bc2.exe
[2011/10/21 17:53:57 | 000,075,136 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2011/08/03 03:31:54 | 000,311,912 | ---- | C] () -- C:\Windows\System32\nvStreaming.exe
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2012/05/11 19:08:39 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\.minecraft
[2011/11/19 11:03:27 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\Ashampoo
[2011/10/21 21:25:36 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\AVG2012
[2012/05/27 19:11:24 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\BitTorrent
[2012/01/29 21:54:38 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\com.24veces.oksampler.151ABB9B89C96DCBC4570A9FE5575F3A3D725051.1
[2012/05/25 21:39:40 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\DAEMON Tools Lite
[2012/04/10 23:50:48 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\DVDVideoSoft
[2012/02/21 22:21:08 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\DVDVideoSoftIEHelpers
[2012/01/26 22:23:56 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\GHISLER
[2012/02/28 17:24:23 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\Image-Line
[2012/02/08 16:06:02 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\Leadertech
[2012/02/26 20:48:44 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\Opera
[2012/02/27 20:58:06 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\SynthMaker
[2012/05/27 09:26:20 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\TS3Client
[2012/05/26 12:28:39 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\Tunngle
[2012/05/21 07:28:33 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\wargaming.net
[2012/04/18 22:27:56 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\Zoner
[2012/02/10 18:16:51 | 000,032,602 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU(20).TXT
[2012/02/10 18:16:51 | 000,032,602 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Custom Scans ==========[/color]
 
[color=#A23BEC]<  >[/color]
 
[color=#A23BEC]< netsvc >[/color]
 
[color=#A23BEC]<  >[/color]
 
[color=#A23BEC]< %systemroot%*.* /U /s >[/color]
[2 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
 
[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
 
[color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*. >[/color]
 
[color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*.exe /s >[/color]
 
[color=#A23BEC]< %APPDATA%\*. >[/color]
[2012/05/11 19:08:39 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\.minecraft
[2012/01/29 21:54:03 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\Adobe
[2011/11/19 11:03:27 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\Ashampoo
[2011/10/21 21:25:36 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\AVG2012
[2012/05/27 19:13:25 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\BitTorrent
[2012/01/29 21:54:38 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\com.24veces.oksampler.151ABB9B89C96DCBC4570A9FE5575F3A3D725051.1
[2012/05/25 21:39:40 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\DAEMON Tools Lite
[2012/04/10 23:50:48 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\DVDVideoSoft
[2012/02/21 22:21:08 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\DVDVideoSoftIEHelpers
[2012/01/26 22:23:56 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\GHISLER
[2012/05/27 09:29:29 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\Google
[2011/10/21 16:32:51 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\Identities
[2012/02/28 17:24:23 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\Image-Line
[2011/10/21 18:31:49 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\InstallShield
[2012/02/08 16:06:02 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\Leadertech
[2011/10/21 17:58:55 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\Macromedia
[2009/07/14 09:48:45 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\Media Center Programs
[2012/05/27 08:46:01 | 000,000,000 | --SD | M] -- C:\Users\Prochyn\AppData\Roaming\Microsoft
[2012/02/01 23:03:22 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\Nero
[2011/11/16 23:44:17 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\NVIDIA
[2012/02/26 20:48:44 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\Opera
[2011/10/21 18:09:51 | 000,000,000 | RH-D | M] -- C:\Users\Prochyn\AppData\Roaming\SecuROM
[2012/05/27 18:59:50 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\Skype
[2012/02/27 20:58:06 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\SynthMaker
[2012/05/27 09:26:20 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\TS3Client
[2012/05/26 12:28:39 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\Tunngle
[2012/05/21 07:28:33 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\wargaming.net
[2011/10/21 19:37:51 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\WinRAR
[2012/04/18 22:27:56 | 000,000,000 | ---D | M] -- C:\Users\Prochyn\AppData\Roaming\Zoner
 
[color=#A23BEC]< %APPDATA%\*.exe /s >[/color]
[2011/03/01 15:26:14 | 000,270,848 | ---- | M] (Teckda) -- C:\Users\Prochyn\AppData\Roaming\.minecraft\Minecraft Beta Cracked.exe
[2010/10/21 03:00:02 | 000,695,296 | ---- | M] (AnjoCaido) -- C:\Users\Prochyn\AppData\Roaming\.minecraft\MinecraftSP.exe
[2011/07/19 17:12:44 | 000,290,834 | ---- | M] () -- C:\Users\Prochyn\AppData\Roaming\.minecraft\Uninstall.exe
 
[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
 
[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
 
[color=#A23BEC]< %systemroot%\Tasks\*.job >[/color]
 
[color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color]
[2012/01/31 23:42:50 | 000,428,088 | ---- | M] ()[b] Unable to obtain MD5[/b] -- C:\Windows\system32\drivers\sptd.sys
 
[color=#A23BEC]< %systemroot%\System32\config\*.sav >[/color]
 
[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
 
[color=#A23BEC]< %systemroot%\system32\drivers\*.sys /3 >[/color]
 
[color=#A23BEC]< %systemroot%\system32\*.* /3 >[/color]
[2012/05/27 19:03:59 | 000,014,016 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/05/27 19:03:59 | 000,014,016 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/05/26 17:52:09 | 000,412,464 | ---- | M] () -- C:\Windows\system32\FNTCACHE.DAT
[2012/05/27 19:08:05 | 000,107,358 | ---- | M] () -- C:\Windows\system32\perfc009.dat
[2012/05/27 19:08:05 | 000,627,060 | ---- | M] () -- C:\Windows\system32\perfh009.dat
[2012/05/27 19:08:05 | 000,730,320 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI
 
[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
 
[color=#A23BEC]< %userprofile%\Plocha\*.* >[/color]
 
[color=#A23BEC]< %userprofile%\Desktop\*.* >[/color]
[2012/02/12 00:09:11 | 000,002,336 | ---- | M] () -- C:\Users\Prochyn\Desktop\INTERNET.lnk
[2011/11/07 20:48:21 | 000,270,142 | ---- | M] () -- C:\Users\Prochyn\Desktop\Minecraft.exe
[2012/05/26 18:40:49 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Prochyn\Desktop\OTL.exe
 
[color=#A23BEC]< %ALLUSERSPROFILE%\Plocha\*.* >[/color]
 
[color=#A23BEC]< %ALLUSERSPROFILE%\Desktop\*.* >[/color]
 
[color=#A23BEC]< %userprofile%\*.bat /s >[/color]
 
[color=#A23BEC]<  >[/color]
 
[color=#A23BEC]< HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run /s >[/color]
 
[color=#A23BEC]< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >[/color]
"Sidebar" = C:\Program Files\Windows Sidebar\sidebar.exe /autoRun -- [2009/07/14 03:14:38 | 001,173,504 | ---- | M] (Microsoft Corporation)
"Skype" = "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun -- [2012/02/29 09:20:32 | 017,151,624 | R--- | M] (Skype Technologies S.A.)
"BitTorrent" = "C:\Program Files\BitTorrent\BitTorrent.exe"  /MINIMIZED -- [2011/10/27 16:14:33 | 005,960,560 | ---- | M] (BitTorrent, Inc.)
 
[color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run /s >[/color]
 
[color=#A23BEC]<  >[/color]
 
[color=#A23BEC]< %SystemDrive%\PhysicalMBR.bin /md5 >[/color]
[2012/05/27 13:48:21 | 000,000,512 | ---- | M] () MD5=DBC1199CF5604E6B27BC12F02B64CB77 -- C:\PhysicalMBR.bin

< End of report >

[Prochynex]

Extras se mi neukazal

[Danstahr]

Extras se ukazuje jen při prvním spuštění, to je v pořádku.

Jak je na tom PC teď?
Ještě jednou OTL, vložte tento skript a Opravit. Po restartu se zase otevře log, ten sem vložte.

Kód: Vybrat vše

:Commands
[EmptyTemp]

:OTL
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Garena Classic\safedrv.sys -- (GGSAFERDriver)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\EagleXNt.sys -- (EagleXNt)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\Prochyn\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (ah0q2b6x)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (a0bjx2i0)
[2 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2012/02/06 12:40:29 | 000,000,000 | ---- | C] () -- C:\Windows\System32\Access.dat
O8 - Extra context menu item: Search the Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.0.0.9\AVG Secure Search_toolbar.dll ()
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.0.0.9\AVG Secure Search_toolbar.dll ()
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\11.0.2\\npsitesafety.dll ()
IE - HKU\S-1-5-21-1713205610-778408625-3204417612-1000\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={ECF2A20E-911E-4FB3-B42E-ACA1996AAC9C}&mid=92204949322847d1a009d16dcaa8e07e-879cfdebbaf10bd9ae17116c94fc0e3b58c8e5a1&lang=en&ds=AVG&pr=fr&d=2012-02-04 19:48:21&v=10.0.0.7&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-1713205610-778408625-3204417612-1000\..\SearchScopes\{95E09968-466E-4C77-AD80-D28C701DEB04}: "URL" = http://mn.iamwired.net/websearch.php?src=tops&search={SearchTerms}
IE - HKU\S-1-5-21-1713205610-778408625-3204417612-1000\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2790392
IE - HKU\S-1-5-21-1713205610-778408625-3204417612-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://mn.iamwired.net/
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2790392

:Files
C:\Program Files\SweetIM\Toolbars
C:\Program Files\AVG Secure Search
C:\Program Files\Google\Update

:Services
vToolbarUpdater11.0.2

[Prochynex]

Pocitac se zda byt lepsi ...... spravce jede klavesnice jede tak jak ma mozna vykonostne jsem na tom trosku slabjejc ale je to mozna jen dojem kdyz se na to soustredim jinak zde davam log......


All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Prochyn
->Temp folder emptied: 271360 bytes
->Temporary Internet Files folder emptied: 1117157 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 187381553 bytes
->Flash cache emptied: 1268 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 44869 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 180.00 mb

========== OTL ==========
Service GGSAFERDriver stopped successfully!
Service GGSAFERDriver deleted successfully!
File C:\Program Files\Garena Classic\safedrv.sys not found.
Service EagleXNt stopped successfully!
Service EagleXNt deleted successfully!
File C:\Windows\system32\drivers\EagleXNt.sys not found.
Service catchme stopped successfully!
Service catchme deleted successfully!
File C:\Users\Prochyn\AppData\Local\Temp\catchme.sys not found.
Error: No service named ah0q2b6x was found to stop!
Service\Driver key ah0q2b6x not found.
Error: No service named a0bjx2i0 was found to stop!
Service\Driver key a0bjx2i0 not found.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5E64.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP8545.tmp folder deleted successfully.
C:\Windows\System32\Access.dat moved successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Search the Web\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}\ deleted successfully.
C:\Program Files\AVG Secure Search\11.0.0.9\AVG Secure Search_toolbar.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}\ not found.
File C:\Program Files\AVG Secure Search\11.0.0.9\AVG Secure Search_toolbar.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin\ deleted successfully.
File move failed. C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\11.0.2\\npsitesafety.dll scheduled to be moved on reboot.
Registry key HKEY_USERS\S-1-5-21-1713205610-778408625-3204417612-1000\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}\ not found.
Registry key HKEY_USERS\S-1-5-21-1713205610-778408625-3204417612-1000\Software\Microsoft\Internet Explorer\SearchScopes\{95E09968-466E-4C77-AD80-D28C701DEB04}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{95E09968-466E-4C77-AD80-D28C701DEB04}\ not found.
Registry key HKEY_USERS\S-1-5-21-1713205610-778408625-3204417612-1000\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ not found.
HKU\S-1-5-21-1713205610-778408625-3204417612-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ not found.
========== FILES ==========
File\Folder C:\Program Files\SweetIM\Toolbars not found.
C:\Program Files\AVG Secure Search\skin folder moved successfully.
C:\Program Files\AVG Secure Search\radio folder moved successfully.
C:\Program Files\AVG Secure Search\Licenses folder moved successfully.
C:\Program Files\AVG Secure Search\11.0.0.9\radio folder moved successfully.
C:\Program Files\AVG Secure Search\11.0.0.9 folder moved successfully.
C:\Program Files\AVG Secure Search\10.2.0.3\radio folder moved successfully.
C:\Program Files\AVG Secure Search\10.2.0.3 folder moved successfully.
C:\Program Files\AVG Secure Search\10.0.0.7\radio folder moved successfully.
C:\Program Files\AVG Secure Search\10.0.0.7 folder moved successfully.
C:\Program Files\AVG Secure Search folder moved successfully.
File\Folder C:\Program Files\Google\Update not found.
========== SERVICES/DRIVERS ==========
Service vToolbarUpdater11.0.2 stopped successfully!
Service vToolbarUpdater11.0.2 deleted successfully!

OTL by OldTimer - Version 3.2.43.1 log created on 05282012_190308

Files\Folders moved on Reboot...
File\Folder C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\11.0.2\\npsitesafety.dll not found!

Registry entries deleted on Reboot...

[Danstahr]

Pro jistotu to ještě trochu proklepneme, ale log už vypadá OK.

Stáhněte MBAM a vložte sem jeho log podle návodu zde, při výběru skenu zvolte Úplný sken. Zatím nic nemažte, MBAM může mít falešné detekce.

Stahnete si TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe

• Kliknete na volbu Change parametrs
• V obou oknech (Objects to scan i Additional Option) zakliknete vsechny moznosti - ve vsech ctvereccich musi mit fajecka
• Kliknete na OK
• Utilite prikazte, at skenuje - klik na Start Scan
• Po dokonceni skenu se objevi okno, zkontrolujte, zda-li je vsude moznost Skip
• Pokud moznost Skip nebude primarne nastavena, prekliknete ji na Skip
• Pokud mate vsude Skip, kliknete na Continue
• Na disku, kde mate Windows (obvykle c:\) ve tvaru TDSSKiller.nejaka cisilka _log.txt bude log - jeho obsah sem vlozte

(šablona © Vyosek)

[Prochynex]

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware) 1.61.0.1400
www.malwarebytes.org

Verze databáze: v2012.05.28.04

Windows 7 x86 NTFS
Internet Explorer 8.0.7600.16385
Prochyn :: PROCHYN-PC [administrátor]

Ochrana: Povolena

5/28/2012 8:15:24 PM
mbam-log-2012-05-29 (07-11-23).txt

Typ: Úplná kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 365483
Uplynulý čas: 1 hodin, 21 minut, 50 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 6
C:\System Volume Information\_restore{89BEF5AE-4585-4544-984B-87292D4C992E}\RP103\A0026948.exe (Trojan.Agent) -> Žádná instrukce nebyla provedena.
C:\System Volume Information\_restore{89BEF5AE-4585-4544-984B-87292D4C992E}\RP110\A0033524.exe (Adware.KorAd) -> Žádná instrukce nebyla provedena.
C:\System Volume Information\_restore{89BEF5AE-4585-4544-984B-87292D4C992E}\RP136\A0039135.exe (PUP.BitCoinMiner) -> Žádná instrukce nebyla provedena.
C:\_OTL\MovedFiles\05272012_185642\C_Windows\System32\mrvcl32.exe (Trojan.Clicker.CT) -> Žádná instrukce nebyla provedena.
C:\Qoobox\Quarantine\C\Program Files\update.exe.vir (Adware.KorAd) -> Žádná instrukce nebyla provedena.
C:\Qoobox\Quarantine\C\WINDOWS\rpcminer\rpcminer-cpu.exe.vir (PUP.BitCoinMiner) -> Žádná instrukce nebyla provedena.

(konec)

[Prochynex]

21:19:27.0449 3744 TDSS rootkit removing tool 2.7.38.0 May 25 2012 17:35:31
21:19:27.0711 3744 ============================================================
21:19:27.0711 3744 Current date / time: 2012/05/29 21:19:27.0711
21:19:27.0711 3744 SystemInfo:
21:19:27.0711 3744
21:19:27.0711 3744 OS Version: 6.1.7600 ServicePack: 0.0
21:19:27.0712 3744 Product type: Workstation
21:19:27.0712 3744 ComputerName: PROCHYN-PC
21:19:27.0712 3744 UserName: Prochyn
21:19:27.0712 3744 Windows directory: C:\Windows
21:19:27.0712 3744 System windows directory: C:\Windows
21:19:27.0712 3744 Processor architecture: Intel x86
21:19:27.0712 3744 Number of processors: 2
21:19:27.0712 3744 Page size: 0x1000
21:19:27.0712 3744 Boot type: Normal boot
21:19:27.0712 3744 ============================================================
21:19:28.0877 3744 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
21:19:28.0879 3744 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:19:29.0258 3744 ============================================================
21:19:29.0258 3744 \Device\Harddisk0\DR0:
21:19:29.0258 3744 MBR partitions:
21:19:29.0258 3744 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x11DABD17
21:19:29.0258 3744 \Device\Harddisk1\DR1:
21:19:29.0259 3744 MBR partitions:
21:19:29.0259 3744 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02
21:19:29.0259 3744 ============================================================
21:19:29.0285 3744 C: <-> \Device\Harddisk0\DR0\Partition0
21:19:29.0304 3744 G: <-> \Device\Harddisk1\DR1\Partition0
21:19:29.0304 3744 ============================================================
21:19:29.0304 3744 Initialize success
21:19:29.0304 3744 ============================================================
21:19:56.0567 2604 ============================================================
21:19:56.0567 2604 Scan started
21:19:56.0567 2604 Mode: Manual; SigCheck; TDLFS;
21:19:56.0567 2604 ============================================================
21:19:57.0208 2604 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys
21:19:57.0339 2604 1394ohci - ok
21:19:57.0381 2604 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys
21:19:57.0396 2604 ACPI - ok
21:19:57.0419 2604 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys
21:19:57.0489 2604 AcpiPmi - ok
21:19:57.0613 2604 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
21:19:57.0621 2604 AdobeARMservice - ok
21:19:57.0682 2604 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
21:19:57.0702 2604 adp94xx - ok
21:19:57.0740 2604 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
21:19:57.0756 2604 adpahci - ok
21:19:57.0770 2604 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
21:19:57.0784 2604 adpu320 - ok
21:19:57.0814 2604 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
21:19:57.0940 2604 AeLookupSvc - ok
21:19:57.0992 2604 AFD (ddc040fdb01ef1712a6b13e52afb104c) C:\Windows\system32\drivers\afd.sys
21:19:58.0052 2604 AFD - ok
21:19:58.0097 2604 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys
21:19:58.0107 2604 agp440 - ok
21:19:58.0130 2604 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
21:19:58.0139 2604 aic78xx - ok
21:19:58.0189 2604 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
21:19:58.0231 2604 ALG - ok
21:19:58.0261 2604 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys
21:19:58.0271 2604 aliide - ok
21:19:58.0302 2604 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys
21:19:58.0316 2604 amdagp - ok
21:19:58.0329 2604 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys
21:19:58.0339 2604 amdide - ok
21:19:58.0358 2604 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
21:19:58.0372 2604 AmdK8 - ok
21:19:58.0391 2604 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
21:19:58.0434 2604 AmdPPM - ok
21:19:58.0472 2604 amdsata (2101a86c25c154f8314b24ef49d7fbc2) C:\Windows\system32\DRIVERS\amdsata.sys
21:19:58.0484 2604 amdsata - ok
21:19:58.0509 2604 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
21:19:58.0526 2604 amdsbs - ok
21:19:58.0561 2604 amdxata (b81c2b5616f6420a9941ea093a92b150) C:\Windows\system32\DRIVERS\amdxata.sys
21:19:58.0571 2604 amdxata - ok
21:19:58.0628 2604 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys
21:19:58.0689 2604 AppID - ok
21:19:58.0725 2604 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
21:19:58.0780 2604 AppIDSvc - ok
21:19:58.0816 2604 Appinfo (7dead9e3f65dcb2794f2711003bbf650) C:\Windows\System32\appinfo.dll
21:19:58.0867 2604 Appinfo - ok
21:19:58.0914 2604 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll
21:19:58.0937 2604 AppMgmt - ok
21:19:58.0986 2604 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
21:19:58.0996 2604 arc - ok
21:19:59.0006 2604 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
21:19:59.0017 2604 arcsas - ok
21:19:59.0105 2604 ASLDRService (ad699abb71c9bea804d5fe02cc32708b) C:\Program Files\Lenovo\ATK Hotkey\ASLDRSrv.exe
21:19:59.0129 2604 ASLDRService ( UnsignedFile.Multi.Generic ) - warning
21:19:59.0129 2604 ASLDRService - detected UnsignedFile.Multi.Generic (1)
21:19:59.0156 2604 ASMMAP (7b4d08d2017ac06689d422e06c43f0aa) C:\Program Files\Lenovo\ATK Hotkey\ASMMAP.sys
21:19:59.0178 2604 ASMMAP - ok
21:19:59.0215 2604 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
21:19:59.0242 2604 AsyncMac - ok
21:19:59.0254 2604 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys
21:19:59.0264 2604 atapi - ok
21:19:59.0284 2604 ATKGFNEXSrv (f62ca1881d057a98ab8c4ba2020d3d0e) C:\Program Files\Lenovo\ATK Hotkey\GFNEXSrv.exe
21:19:59.0304 2604 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - warning
21:19:59.0305 2604 ATKGFNEXSrv - detected UnsignedFile.Multi.Generic (1)
21:19:59.0368 2604 AudioEndpointBuilder (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll
21:19:59.0428 2604 AudioEndpointBuilder - ok
21:19:59.0436 2604 Audiosrv (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll
21:19:59.0471 2604 Audiosrv - ok
21:19:59.0526 2604 AVGIDSEH (19a08a6728a6e02099d64268218cd799) C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
21:19:59.0533 2604 AVGIDSEH - ok
21:19:59.0566 2604 Avgtdix (a6d562b612216d8d02a35ebeb92366bd) C:\Windows\system32\DRIVERS\avgtdix.sys
21:19:59.0582 2604 Avgtdix - ok
21:19:59.0650 2604 avgwd (6699ece24fe4b3f752a66c66a602ee86) C:\Program Files\AVG\AVG2012\avgwdsvc.exe
21:19:59.0660 2604 avgwd - ok
21:19:59.0710 2604 AxInstSV (dd6a431b43e34b91a767d1ce33728175) C:\Windows\System32\AxInstSV.dll
21:19:59.0781 2604 AxInstSV - ok
21:19:59.0841 2604 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
21:19:59.0880 2604 b06bdrv - ok
21:19:59.0924 2604 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
21:19:59.0963 2604 b57nd60x - ok
21:20:00.0029 2604 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
21:20:00.0089 2604 BDESVC - ok
21:20:00.0115 2604 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
21:20:00.0164 2604 Beep - ok
21:20:00.0414 2604 BFE (85ac71c045ceb054ed48a7841aae0c11) C:\Windows\System32\bfe.dll
21:20:00.0446 2604 BFE - ok
21:20:00.0504 2604 BITS (53f476476f55a27f580661bde09c4ec4) C:\Windows\system32\qmgr.dll
21:20:00.0555 2604 BITS - ok
21:20:00.0579 2604 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
21:20:00.0613 2604 blbdrive - ok
21:20:00.0646 2604 bowser (fcafaef6798d7b51ff029f99a9898961) C:\Windows\system32\DRIVERS\bowser.sys
21:20:00.0701 2604 bowser - ok
21:20:00.0725 2604 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:20:00.0759 2604 BrFiltLo - ok
21:20:00.0795 2604 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:20:00.0828 2604 BrFiltUp - ok
21:20:00.0873 2604 BridgeMP (77361d72a04f18809d0efb6cceb74d4b) C:\Windows\system32\DRIVERS\bridge.sys
21:20:00.0921 2604 BridgeMP - ok
21:20:00.0961 2604 Browser (598e1280e7ff3744f4b8329366cc5635) C:\Windows\System32\browser.dll
21:20:00.0990 2604 Browser - ok
21:20:01.0026 2604 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
21:20:01.0079 2604 Brserid - ok
21:20:01.0087 2604 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
21:20:01.0120 2604 BrSerWdm - ok
21:20:01.0156 2604 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:20:01.0170 2604 BrUsbMdm - ok
21:20:01.0188 2604 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
21:20:01.0224 2604 BrUsbSer - ok
21:20:01.0234 2604 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
21:20:01.0251 2604 BTHMODEM - ok
21:20:01.0300 2604 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
21:20:01.0350 2604 bthserv - ok
21:20:01.0400 2604 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
21:20:01.0447 2604 cdfs - ok
21:20:01.0487 2604 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys
21:20:01.0521 2604 cdrom - ok
21:20:01.0577 2604 CertPropSvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll
21:20:01.0626 2604 CertPropSvc - ok
21:20:01.0669 2604 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
21:20:01.0703 2604 circlass - ok
21:20:01.0766 2604 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
21:20:01.0776 2604 CLFS - ok
21:20:01.0861 2604 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:20:01.0871 2604 clr_optimization_v2.0.50727_32 - ok
21:20:01.0942 2604 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:20:01.0952 2604 clr_optimization_v4.0.30319_32 - ok
21:20:01.0982 2604 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
21:20:01.0994 2604 CmBatt - ok
21:20:02.0013 2604 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys
21:20:02.0023 2604 cmdide - ok
21:20:02.0070 2604 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys
21:20:02.0108 2604 CNG - ok
21:20:02.0125 2604 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
21:20:02.0134 2604 Compbatt - ok
21:20:02.0183 2604 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys
21:20:02.0197 2604 CompositeBus - ok
21:20:02.0214 2604 COMSysApp - ok
21:20:02.0236 2604 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
21:20:02.0246 2604 crcdisk - ok
21:20:02.0288 2604 CryptSvc (9c231178ce4fb385f4b54b0a9080b8a4) C:\Windows\system32\cryptsvc.dll
21:20:02.0317 2604 CryptSvc - ok
21:20:02.0356 2604 CSC (27c9490bdd0ae48911ab8cf1932591ed) C:\Windows\system32\drivers\csc.sys
21:20:02.0416 2604 CSC - ok
21:20:02.0465 2604 CscService (56fb5f222ea30d3d3fc459879772cb73) C:\Windows\System32\cscsvc.dll
21:20:02.0501 2604 CscService - ok
21:20:02.0580 2604 DcomLaunch (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll
21:20:02.0631 2604 DcomLaunch - ok
21:20:02.0673 2604 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
21:20:02.0723 2604 defragsvc - ok
21:20:02.0794 2604 DfsC (8e09e52ee2e3ceb199ef3dd99cf9e3fb) C:\Windows\system32\Drivers\dfsc.sys
21:20:02.0838 2604 DfsC - ok
21:20:02.0903 2604 Dhcp (c56495fbd770712367cad35e5de72da6) C:\Windows\system32\dhcpcore.dll
21:20:02.0943 2604 Dhcp - ok
21:20:02.0973 2604 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
21:20:03.0017 2604 discache - ok
21:20:03.0066 2604 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
21:20:03.0076 2604 Disk - ok
21:20:03.0108 2604 Dnscache (d0722e963d3c6145446874241401b209) C:\Windows\System32\dnsrslvr.dll
21:20:03.0168 2604 Dnscache - ok
21:20:03.0203 2604 dot3svc (4408c85c21eea48eb0ce486baeef0502) C:\Windows\System32\dot3svc.dll
21:20:03.0241 2604 dot3svc - ok
21:20:03.0266 2604 DPS (7fa81c6e11caa594adb52084da73a1e5) C:\Windows\system32\dps.dll
21:20:03.0318 2604 DPS - ok
21:20:03.0367 2604 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
21:20:03.0403 2604 drmkaud - ok
21:20:03.0469 2604 dtsoftbus01 (c0c7ceccb6c85994c2bc92d58e52d3f2) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
21:20:03.0479 2604 dtsoftbus01 - ok
21:20:03.0543 2604 DXGKrnl (39806cfeddcc55e686a49bccd2972f23) C:\Windows\System32\drivers\dxgkrnl.sys
21:20:03.0614 2604 DXGKrnl - ok
21:20:03.0651 2604 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
21:20:03.0694 2604 EapHost - ok
21:20:03.0931 2604 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
21:20:04.0021 2604 ebdrv - ok
21:20:04.0156 2604 EFS (f42309c4191c506b71db5d1126d26318) C:\Windows\System32\lsass.exe
21:20:04.0192 2604 EFS - ok
21:20:04.0289 2604 ehRecvr (3a74a6e33685662b125a3269b1f2114f) C:\Windows\ehome\ehRecvr.exe
21:20:04.0323 2604 ehRecvr - ok
21:20:04.0348 2604 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
21:20:04.0386 2604 ehSched - ok
21:20:04.0495 2604 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
21:20:04.0519 2604 elxstor - ok
21:20:04.0539 2604 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys
21:20:04.0567 2604 ErrDev - ok
21:20:04.0630 2604 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
21:20:04.0684 2604 EventSystem - ok
21:20:04.0734 2604 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
21:20:04.0763 2604 exfat - ok
21:20:04.0794 2604 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
21:20:04.0841 2604 fastfat - ok
21:20:04.0911 2604 Fax (f7ea23cc5e6bf2181f3f399d54f6efc1) C:\Windows\system32\fxssvc.exe
21:20:04.0949 2604 Fax - ok
21:20:04.0984 2604 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
21:20:05.0022 2604 fdc - ok
21:20:05.0044 2604 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
21:20:05.0092 2604 fdPHost - ok
21:20:05.0122 2604 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
21:20:05.0151 2604 FDResPub - ok
21:20:05.0169 2604 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
21:20:05.0179 2604 FileInfo - ok
21:20:05.0191 2604 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
21:20:05.0219 2604 Filetrace - ok
21:20:05.0232 2604 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
21:20:05.0259 2604 flpydisk - ok
21:20:05.0316 2604 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
21:20:05.0330 2604 FltMgr - ok
21:20:05.0386 2604 FontCache (b6512a85815fdc3d560c3705f5bdb93d) C:\Windows\system32\FntCache.dll
21:20:05.0497 2604 FontCache - ok
21:20:05.0572 2604 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
21:20:05.0580 2604 FontCache3.0.0.0 - ok
21:20:05.0601 2604 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
21:20:05.0612 2604 FsDepends - ok
21:20:05.0640 2604 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
21:20:05.0650 2604 Fs_Rec - ok
21:20:05.0689 2604 fvevol (5592f5dba26282d24d2b080eb438a4d7) C:\Windows\system32\DRIVERS\fvevol.sys
21:20:05.0705 2604 fvevol - ok
21:20:05.0724 2604 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
21:20:05.0735 2604 gagp30kx - ok
21:20:05.0801 2604 gpsvc (8ba3c04702bf8f927ab36ae8313ca4ee) C:\Windows\System32\gpsvc.dll
21:20:05.0844 2604 gpsvc - ok
21:20:05.0887 2604 hamachi (833051c6c6c42117191935f734cfbd97) C:\Windows\system32\DRIVERS\hamachi.sys
21:20:05.0894 2604 hamachi - ok
21:20:05.0922 2604 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
21:20:05.0959 2604 hcw85cir - ok
21:20:06.0021 2604 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys
21:20:06.0056 2604 HdAudAddService - ok
21:20:06.0093 2604 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys
21:20:06.0130 2604 HDAudBus - ok
21:20:06.0157 2604 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
21:20:06.0193 2604 HidBatt - ok
21:20:06.0203 2604 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
21:20:06.0226 2604 HidBth - ok
21:20:06.0260 2604 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
21:20:06.0296 2604 HidIr - ok
21:20:06.0340 2604 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\System32\hidserv.dll
21:20:06.0369 2604 hidserv - ok
21:20:06.0409 2604 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys
21:20:06.0446 2604 HidUsb - ok
21:20:06.0466 2604 hkmsvc (741c2a45ca8407e374aaba3e330b7872) C:\Windows\system32\kmsvc.dll
21:20:06.0523 2604 hkmsvc - ok
21:20:06.0582 2604 HomeGroupListener (a768ca158bb06782a2835b907f4873c3) C:\Windows\system32\ListSvc.dll
21:20:06.0599 2604 HomeGroupListener - ok
21:20:06.0655 2604 HomeGroupProvider (fb08dec5ef43d0c66d83b8e9694e7549) C:\Windows\system32\provsvc.dll
21:20:06.0691 2604 HomeGroupProvider - ok
21:20:06.0732 2604 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys
21:20:06.0744 2604 HpSAMD - ok
21:20:06.0806 2604 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys
21:20:06.0869 2604 HTTP - ok
21:20:06.0907 2604 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys
21:20:06.0917 2604 hwpolicy - ok
21:20:06.0958 2604 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
21:20:06.0996 2604 i8042prt - ok
21:20:07.0056 2604 iaStorV (934af4d7c5f457b9f0743f4299b77b67) C:\Windows\system32\DRIVERS\iaStorV.sys
21:20:07.0073 2604 iaStorV - ok
21:20:07.0227 2604 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
21:20:07.0256 2604 IDriverT ( UnsignedFile.Multi.Generic ) - warning
21:20:07.0256 2604 IDriverT - detected UnsignedFile.Multi.Generic (1)
21:20:07.0415 2604 idsvc (5af815eb5bc9802e5a064e2ba62bfc0c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:20:07.0443 2604 idsvc - ok
21:20:07.0572 2604 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
21:20:07.0582 2604 iirsp - ok
21:20:07.0681 2604 IKEEXT (fac0ee6562b121b1399d6e855583f7a5) C:\Windows\System32\ikeext.dll
21:20:07.0716 2604 IKEEXT - ok
21:20:07.0724 2604 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys
21:20:07.0735 2604 intelide - ok
21:20:07.0760 2604 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
21:20:07.0779 2604 intelppm - ok
21:20:07.0793 2604 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
21:20:07.0823 2604 IPBusEnum - ok
21:20:07.0830 2604 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:20:07.0860 2604 IpFilterDriver - ok
21:20:07.0900 2604 iphlpsvc (477397b432a256a50ee7e4339eb9ea14) C:\Windows\System32\iphlpsvc.dll
21:20:07.0961 2604 iphlpsvc - ok
21:20:07.0994 2604 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys
21:20:08.0025 2604 IPMIDRV - ok
21:20:08.0035 2604 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
21:20:08.0075 2604 IPNAT - ok
21:20:08.0122 2604 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
21:20:08.0165 2604 IRENUM - ok
21:20:08.0173 2604 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys
21:20:08.0184 2604 isapnp - ok
21:20:08.0231 2604 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys
21:20:08.0246 2604 iScsiPrt - ok
21:20:08.0274 2604 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
21:20:08.0284 2604 kbdclass - ok
21:20:08.0320 2604 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys
21:20:08.0350 2604 kbdhid - ok
21:20:08.0389 2604 KeyIso (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
21:20:08.0402 2604 KeyIso - ok
21:20:08.0419 2604 KSecDD (e36a061ec11b373826905b21be10948f) C:\Windows\system32\Drivers\ksecdd.sys
21:20:08.0431 2604 KSecDD - ok
21:20:08.0449 2604 KSecPkg (26c046977e85b95036453d7b88ba1820) C:\Windows\system32\Drivers\ksecpkg.sys
21:20:08.0461 2604 KSecPkg - ok
21:20:08.0498 2604 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
21:20:08.0552 2604 KtmRm - ok
21:20:08.0608 2604 LanmanServer (bca92cb047a4326925ecef759dbaa233) C:\Windows\System32\srvsvc.dll
21:20:08.0639 2604 LanmanServer - ok
21:20:08.0652 2604 LanmanWorkstation (b9891f885dcf1f0513a51cb58493cb1f) C:\Windows\System32\wkssvc.dll
21:20:08.0682 2604 LanmanWorkstation - ok
21:20:08.0771 2604 LFKAS (270723e97ca3b26b82700dc02f082c9f) C:\Program Files\Lenovo\ATK Hotkey\LFKAS.exe
21:20:08.0798 2604 LFKAS ( UnsignedFile.Multi.Generic ) - warning
21:20:08.0798 2604 LFKAS - detected UnsignedFile.Multi.Generic (1)
21:20:08.0853 2604 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
21:20:08.0905 2604 lltdio - ok
21:20:08.0955 2604 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
21:20:08.0984 2604 lltdsvc - ok
21:20:09.0004 2604 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
21:20:09.0049 2604 lmhosts - ok
21:20:09.0093 2604 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
21:20:09.0105 2604 LSI_FC - ok
21:20:09.0115 2604 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
21:20:09.0127 2604 LSI_SAS - ok
21:20:09.0140 2604 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:20:09.0152 2604 LSI_SAS2 - ok
21:20:09.0162 2604 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:20:09.0174 2604 LSI_SCSI - ok
21:20:09.0193 2604 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
21:20:09.0241 2604 luafv - ok
21:20:09.0291 2604 MBAMProtector (fb097bbc1a18f044bd17bd2fccf97865) C:\Windows\system32\drivers\mbam.sys
21:20:09.0302 2604 MBAMProtector - ok
21:20:09.0420 2604 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
21:20:09.0442 2604 MBAMService - ok
21:20:09.0490 2604 mcdbus (8fd868e32459ece2a1bb0169f513d31e) C:\Windows\system32\DRIVERS\mcdbus.sys
21:20:09.0511 2604 mcdbus ( UnsignedFile.Multi.Generic ) - warning
21:20:09.0511 2604 mcdbus - detected UnsignedFile.Multi.Generic (1)
21:20:09.0550 2604 Mcx2Svc (e2b0887816ed336685954e3d8fdaa51d) C:\Windows\system32\Mcx2Svc.dll
21:20:09.0565 2604 Mcx2Svc - ok
21:20:09.0598 2604 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
21:20:09.0608 2604 megasas - ok
21:20:09.0630 2604 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
21:20:09.0645 2604 MegaSR - ok
21:20:09.0730 2604 Microsoft Office Groove Audit Service (fafe367d032ed82e9332b4c741a20216) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
21:20:09.0739 2604 Microsoft Office Groove Audit Service - ok
21:20:09.0765 2604 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
21:20:09.0792 2604 MMCSS - ok
21:20:09.0805 2604 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
21:20:09.0851 2604 Modem - ok
21:20:09.0898 2604 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
21:20:09.0934 2604 monitor - ok
21:20:09.0966 2604 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
21:20:09.0976 2604 mouclass - ok
21:20:09.0999 2604 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
21:20:10.0029 2604 mouhid - ok
21:20:10.0069 2604 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys
21:20:10.0081 2604 mountmgr - ok
21:20:10.0108 2604 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys
21:20:10.0120 2604 mpio - ok
21:20:10.0137 2604 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
21:20:10.0195 2604 mpsdrv - ok
21:20:10.0259 2604 MpsSvc (5cd996cecf45cbc3e8d109c86b82d69e) C:\Windows\system32\mpssvc.dll
21:20:10.0294 2604 MpsSvc - ok
21:20:10.0305 2604 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys
21:20:10.0322 2604 MRxDAV - ok
21:20:10.0339 2604 mrxsmb (f4a054be78af7f410129c4b64b07dc9b) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:20:10.0392 2604 mrxsmb - ok
21:20:10.0430 2604 mrxsmb10 (deffa295bd1895c6ed8e3078412ac60b) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:20:10.0461 2604 mrxsmb10 - ok
21:20:10.0484 2604 mrxsmb20 (24d76abe5dcad22f19d105f76fdf0ce1) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:20:10.0511 2604 mrxsmb20 - ok
21:20:10.0525 2604 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\DRIVERS\msahci.sys
21:20:10.0535 2604 msahci - ok
21:20:10.0579 2604 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys
21:20:10.0591 2604 msdsm - ok
21:20:10.0617 2604 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
21:20:10.0654 2604 MSDTC - ok
21:20:10.0695 2604 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
21:20:10.0722 2604 Msfs - ok
21:20:10.0736 2604 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
21:20:10.0784 2604 mshidkmdf - ok
21:20:10.0807 2604 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys
21:20:10.0817 2604 msisadrv - ok
21:20:10.0851 2604 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
21:20:10.0880 2604 MSiSCSI - ok
21:20:10.0884 2604 msiserver - ok
21:20:10.0920 2604 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
21:20:10.0966 2604 MSKSSRV - ok
21:20:10.0986 2604 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
21:20:11.0030 2604 MSPCLOCK - ok
21:20:11.0048 2604 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
21:20:11.0092 2604 MSPQM - ok
21:20:11.0124 2604 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
21:20:11.0134 2604 MsRPC - ok
21:20:11.0164 2604 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
21:20:11.0176 2604 mssmbios - ok
21:20:11.0211 2604 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
21:20:11.0241 2604 MSTEE - ok
21:20:11.0250 2604 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
21:20:11.0287 2604 MTConfig - ok
21:20:11.0330 2604 MTsensor32 (648cbe572ffe978bf33b8d7e60ac441b) C:\Windows\system32\DRIVERS\PuAcpi32.sys
21:20:11.0337 2604 MTsensor32 - ok
21:20:11.0349 2604 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
21:20:11.0361 2604 Mup - ok
21:20:11.0408 2604 napagent (80284f1985c70c86f0b5f86da2dfe1df) C:\Windows\system32\qagentRT.dll
21:20:11.0464 2604 napagent - ok
21:20:11.0529 2604 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
21:20:11.0574 2604 NativeWifiP - ok
21:20:11.0653 2604 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys
21:20:11.0675 2604 NDIS - ok
21:20:11.0692 2604 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
21:20:11.0721 2604 NdisCap - ok
21:20:11.0748 2604 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
21:20:11.0777 2604 NdisTapi - ok
21:20:11.0812 2604 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys
21:20:11.0840 2604 Ndisuio - ok
21:20:11.0858 2604 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys
21:20:11.0888 2604 NdisWan - ok
21:20:11.0907 2604 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys
21:20:11.0937 2604 NDProxy - ok
21:20:11.0966 2604 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
21:20:11.0994 2604 NetBIOS - ok
21:20:12.0015 2604 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys
21:20:12.0065 2604 NetBT - ok
21:20:12.0100 2604 Netlogon (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
21:20:12.0118 2604 Netlogon - ok
21:20:12.0165 2604 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
21:20:12.0217 2604 Netman - ok
21:20:12.0255 2604 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
21:20:12.0285 2604 netprofm - ok
21:20:12.0378 2604 NetTcpPortSharing (fe2aa5a684b0dd9b1fae57b7817c198b) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:20:12.0388 2604 NetTcpPortSharing - ok
21:20:12.0708 2604 netw5v32 (58218ec6b61b1169cf54aab0d00f5fe2) C:\Windows\system32\DRIVERS\netw5v32.sys
21:20:12.0835 2604 netw5v32 - ok
21:20:12.0982 2604 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
21:20:12.0993 2604 nfrd960 - ok
21:20:13.0032 2604 NlaSvc (2226496e34bd40734946a054b1cd657f) C:\Windows\System32\nlasvc.dll
21:20:13.0082 2604 NlaSvc - ok
21:20:13.0103 2604 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
21:20:13.0133 2604 Npfs - ok
21:20:13.0162 2604 npggsvc - ok
21:20:13.0183 2604 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
21:20:13.0212 2604 nsi - ok
21:20:13.0225 2604 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
21:20:13.0268 2604 nsiproxy - ok
21:20:13.0394 2604 Ntfs (3795dcd21f740ee799fb7223234215af) C:\Windows\system32\drivers\Ntfs.sys
21:20:13.0432 2604 Ntfs - ok
21:20:13.0569 2604 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
21:20:13.0619 2604 Null - ok
21:20:13.0682 2604 NVHDA (92cfe8964b3a6da0692331fa66630db3) C:\Windows\system32\drivers\nvhda32v.sys
21:20:13.0693 2604 NVHDA - ok
21:20:14.0368 2604 nvlddmkm (eab7a01791777cd40cc979c495730fae) C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:20:14.0744 2604 nvlddmkm - ok
21:20:14.0900 2604 nvraid (3f3d04b1d08d43c16ea7963954ec768d) C:\Windows\system32\DRIVERS\nvraid.sys
21:20:14.0912 2604 nvraid - ok
21:20:14.0928 2604 nvstor (c99f251a5de63c6f129cf71933aced0f) C:\Windows\system32\DRIVERS\nvstor.sys
21:20:14.0941 2604 nvstor - ok
21:20:15.0020 2604 nvsvc (655dffd4692426f28deffa51b0ca7645) C:\Windows\system32\nvvsvc.exe
21:20:15.0044 2604 nvsvc - ok
21:20:15.0056 2604 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys
21:20:15.0068 2604 nv_agp - ok
21:20:15.0179 2604 odserv (84de1dd996b48b05ace31ad015fa108a) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:20:15.0197 2604 odserv - ok
21:20:15.0238 2604 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys
21:20:15.0274 2604 ohci1394 - ok
21:20:15.0341 2604 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:20:15.0351 2604 ose - ok
21:20:15.0398 2604 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
21:20:15.0417 2604 p2pimsvc - ok
21:20:15.0471 2604 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
21:20:15.0490 2604 p2psvc - ok
21:20:15.0519 2604 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
21:20:15.0533 2604 Parport - ok
21:20:15.0546 2604 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys
21:20:15.0556 2604 partmgr - ok
21:20:15.0567 2604 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
21:20:15.0580 2604 Parvdm - ok
21:20:15.0602 2604 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
21:20:15.0621 2604 PcaSvc - ok
21:20:15.0646 2604 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys
21:20:15.0659 2604 pci - ok
21:20:15.0669 2604 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys
21:20:15.0678 2604 pciide - ok
21:20:15.0694 2604 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
21:20:15.0709 2604 pcmcia - ok
21:20:15.0723 2604 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
21:20:15.0733 2604 pcw - ok
21:20:15.0813 2604 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
21:20:15.0881 2604 PEAUTH - ok
21:20:15.0985 2604 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll
21:20:16.0034 2604 PeerDistSvc - ok
21:20:16.0180 2604 pla (9c1bff7910c89a1d12e57343475840cb) C:\Windows\system32\pla.dll
21:20:16.0242 2604 pla - ok
21:20:16.0389 2604 PlugPlay (2cc2008f1296968fba162ed9f9afe328) C:\Windows\system32\umpnpmgr.dll
21:20:16.0441 2604 PlugPlay - ok
21:20:16.0518 2604 PnkBstrA (3a2bdd76e7d2a5f40a7174793d1ba794) C:\Windows\system32\PnkBstrA.exe
21:20:16.0528 2604 PnkBstrA - ok
21:20:16.0616 2604 PnkBstrB (9a386ec60a166df66205343ca12c6b86) C:\Windows\system32\PnkBstrB.exe
21:20:16.0628 2604 PnkBstrB - ok
21:20:16.0654 2604 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
21:20:16.0689 2604 PNRPAutoReg - ok
21:20:16.0731 2604 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
21:20:16.0747 2604 PNRPsvc - ok
21:20:16.0794 2604 PolicyAgent (48e1b75c6dc0232fd92baae4bd344721) C:\Windows\System32\ipsecsvc.dll
21:20:16.0839 2604 PolicyAgent - ok
21:20:16.0886 2604 Power (dbff83f709a91049621c1d35dd45c92c) C:\Windows\system32\umpo.dll
21:20:16.0915 2604 Power - ok
21:20:16.0986 2604 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
21:20:17.0040 2604 PptpMiniport - ok
21:20:17.0063 2604 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
21:20:17.0095 2604 Processor - ok
21:20:17.0154 2604 ProfSvc (630cf26f0227498b7d5a92b12548960f) C:\Windows\system32\profsvc.dll
21:20:17.0186 2604 ProfSvc - ok
21:20:17.0212 2604 ProtectedStorage (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
21:20:17.0225 2604 ProtectedStorage - ok
21:20:17.0271 2604 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
21:20:17.0317 2604 Psched - ok
21:20:17.0428 2604 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
21:20:17.0470 2604 ql2300 - ok
21:20:17.0612 2604 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
21:20:17.0623 2604 ql40xx - ok
21:20:17.0657 2604 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
21:20:17.0697 2604 QWAVE - ok
21:20:17.0726 2604 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
21:20:17.0748 2604 QWAVEdrv - ok
21:20:17.0765 2604 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
21:20:17.0810 2604 RasAcd - ok
21:20:17.0848 2604 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:20:17.0903 2604 RasAgileVpn - ok
21:20:17.0942 2604 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
21:20:17.0972 2604 RasAuto - ok
21:20:17.0993 2604 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:20:18.0045 2604 Rasl2tp - ok
21:20:18.0080 2604 RasMan (0ce66ec736b7fc526d78f7624c7d2a94) C:\Windows\System32\rasmans.dll
21:20:18.0110 2604 RasMan - ok
21:20:18.0152 2604 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
21:20:18.0208 2604 RasPppoe - ok
21:20:18.0235 2604 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
21:20:18.0288 2604 RasSstp - ok
21:20:18.0336 2604 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys
21:20:18.0367 2604 rdbss - ok
21:20:18.0378 2604 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
21:20:18.0393 2604 rdpbus - ok
21:20:18.0404 2604 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:20:18.0431 2604 RDPCDD - ok
21:20:18.0458 2604 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\Windows\system32\drivers\rdpdr.sys
21:20:18.0489 2604 RDPDR - ok
21:20:18.0530 2604 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
21:20:18.0559 2604 RDPENCDD - ok
21:20:18.0572 2604 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
21:20:18.0622 2604 RDPREFMP - ok
21:20:18.0637 2604 RDPWD (801371ba9782282892d00aadb08ee367) C:\Windows\system32\drivers\RDPWD.sys
21:20:18.0666 2604 RDPWD - ok
21:20:18.0720 2604 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys
21:20:18.0731 2604 rdyboost - ok
21:20:18.0757 2604 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
21:20:18.0801 2604 RemoteAccess - ok
21:20:18.0850 2604 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
21:20:18.0902 2604 RemoteRegistry - ok
21:20:18.0957 2604 rimmptsk (d65ac8797f0286ed269500747d6290a4) C:\Windows\system32\DRIVERS\rimmptsk.sys
21:20:18.0980 2604 rimmptsk - ok
21:20:19.0000 2604 rimsptsk (49ec82b44eb93374ed9988da7e0e0151) C:\Windows\system32\DRIVERS\rimsptsk.sys
21:20:19.0019 2604 rimsptsk - ok
21:20:19.0038 2604 rismxdp (3f400c3ccd0818858602ddb37b5de719) C:\Windows\system32\DRIVERS\rixdptsk.sys
21:20:19.0072 2604 rismxdp - ok
21:20:19.0119 2604 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
21:20:19.0150 2604 RpcEptMapper - ok
21:20:19.0176 2604 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
21:20:19.0207 2604 RpcLocator - ok
21:20:19.0252 2604 RpcSs (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll
21:20:19.0284 2604 RpcSs - ok
21:20:19.0331 2604 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
21:20:19.0382 2604 rspndr - ok
21:20:19.0436 2604 RTL8167 (7dfd48e24479b68b258d8770121155a0) C:\Windows\system32\DRIVERS\Rt86win7.sys
21:20:19.0471 2604 RTL8167 - ok
21:20:19.0495 2604 s3cap (5423d8437051e89dd34749f242c98648) C:\Windows\system32\DRIVERS\vms3cap.sys
21:20:19.0509 2604 s3cap - ok
21:20:19.0533 2604 SamSs (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
21:20:19.0547 2604 SamSs - ok
21:20:19.0574 2604 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys
21:20:19.0585 2604 sbp2port - ok
21:20:19.0619 2604 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
21:20:19.0654 2604 SCardSvr - ok
21:20:19.0686 2604 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys
21:20:19.0714 2604 scfilter - ok
21:20:19.0772 2604 Schedule (3e8b0c453e25613a1f59762a5c42aa75) C:\Windows\system32\schedsvc.dll
21:20:19.0839 2604 Schedule - ok
21:20:19.0887 2604 SCPolicySvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll
21:20:19.0914 2604 SCPolicySvc - ok
21:20:19.0962 2604 sdbus (7b48cff3a475fe849dea65ec4d35c425) C:\Windows\system32\DRIVERS\sdbus.sys
21:20:19.0978 2604 sdbus - ok
21:20:20.0000 2604 SDRSVC (5fd90abdbfaee85986802622cbb03446) C:\Windows\System32\SDRSVC.dll
21:20:20.0017 2604 SDRSVC - ok
21:20:20.0057 2604 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
21:20:20.0100 2604 secdrv - ok
21:20:20.0126 2604 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
21:20:20.0171 2604 seclogon - ok
21:20:20.0192 2604 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\system32\sens.dll
21:20:20.0237 2604 SENS - ok
21:20:20.0285 2604 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
21:20:20.0315 2604 SensrSvc - ok
21:20:20.0338 2604 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
21:20:20.0351 2604 Serenum - ok
21:20:20.0368 2604 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
21:20:20.0403 2604 Serial - ok
21:20:20.0425 2604 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
21:20:20.0466 2604 sermouse - ok
21:20:20.0521 2604 SessionEnv (8f55ce568c543d5adf45c409d16718fc) C:\Windows\system32\sessenv.dll
21:20:20.0574 2604 SessionEnv - ok
21:20:20.0608 2604 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys
21:20:20.0646 2604 sffdisk - ok
21:20:20.0678 2604 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys
21:20:20.0707 2604 sffp_mmc - ok
21:20:20.0735 2604 sffp_sd (4f1e5b0fe7c8050668dbfade8999aefb) C:\Windows\system32\DRIVERS\sffp_sd.sys
21:20:20.0769 2604 sffp_sd - ok
21:20:20.0795 2604 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
21:20:20.0830 2604 sfloppy - ok
21:20:20.0876 2604 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
21:20:20.0909 2604 SharedAccess - ok
21:20:20.0955 2604 ShellHWDetection (cd2e48fa5b29ee2b3b5858056d246ef2) C:\Windows\System32\shsvcs.dll
21:20:20.0999 2604 ShellHWDetection - ok
21:20:21.0021 2604 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys
21:20:21.0032 2604 sisagp - ok
21:20:21.0054 2604 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:20:21.0064 2604 SiSRaid2 - ok
21:20:21.0073 2604 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
21:20:21.0084 2604 SiSRaid4 - ok
21:20:21.0192 2604 SkypeUpdate (8c5477eb1c03ca76cd8eb66a610a9e90) C:\Program Files\Skype\Updater\Updater.exe
21:20:21.0202 2604 SkypeUpdate - ok
21:20:21.0227 2604 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
21:20:21.0280 2604 Smb - ok
21:20:21.0332 2604 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
21:20:21.0346 2604 SNMPTRAP - ok
21:20:21.0379 2604 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
21:20:21.0388 2604 spldr - ok
21:20:21.0429 2604 Spooler (49b6dd6ab3715b7a67965f17194e98a9) C:\Windows\System32\spoolsv.exe
21:20:21.0450 2604 Spooler - ok
21:20:21.0668 2604 sppsvc (4c287f9069fedbd791178876ee9de536) C:\Windows\system32\sppsvc.exe
21:20:21.0748 2604 sppsvc - ok
21:20:21.0878 2604 sppuinotify (d8e3e19eebdab49dd4a8d3062ead4ec7) C:\Windows\system32\sppuinotify.dll
21:20:21.0906 2604 sppuinotify - ok
21:20:22.0008 2604 sptd (f42efefb765235f24b24e1d2b6f99f46) C:\Windows\System32\Drivers\sptd.sys
21:20:22.0008 2604 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: f42efefb765235f24b24e1d2b6f99f46
21:20:22.0009 2604 sptd ( LockedFile.Multi.Generic ) - warning
21:20:22.0009 2604 sptd - detected LockedFile.Multi.Generic (1)
21:20:22.0062 2604 srv (2ba4ebc7dfba845a1edbe1f75913be33) C:\Windows\system32\DRIVERS\srv.sys
21:20:22.0094 2604 srv - ok
21:20:22.0122 2604 srv2 (dce7e10feaabd4cae95948b3de5340bb) C:\Windows\system32\DRIVERS\srv2.sys
21:20:22.0174 2604 srv2 - ok
21:20:22.0244 2604 SrvHsfHDA (e00fdfaff025e94f9821153750c35a6d) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
21:20:22.0261 2604 SrvHsfHDA - ok
21:20:22.0334 2604 SrvHsfV92 (ceb4e3b6890e1e42dca6694d9e59e1a0) C:\Windows\system32\DRIVERS\VSTDPV3.SYS
21:20:22.0366 2604 SrvHsfV92 - ok
21:20:22.0441 2604 SrvHsfWinac (bc0c7ea89194c299f051c24119000e17) C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
21:20:22.0466 2604 SrvHsfWinac - ok
21:20:22.0499 2604 srvnet (b5665baa2120b8a54e22e9cd07c05106) C:\Windows\system32\DRIVERS\srvnet.sys
21:20:22.0527 2604 srvnet - ok
21:20:22.0562 2604 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
21:20:22.0594 2604 SSDPSRV - ok
21:20:22.0613 2604 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
21:20:22.0643 2604 SstpSvc - ok
21:20:22.0775 2604 StarWindServiceAE (e5c796b621f6fba8616511063d7f0ffe) C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
21:20:22.0788 2604 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - warning
21:20:22.0789 2604 StarWindServiceAE - detected UnsignedFile.Multi.Generic (1)
21:20:22.0890 2604 Stereo Service (c871ea0d276c7a582a9ed832abb9f156) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
21:20:22.0906 2604 Stereo Service - ok
21:20:22.0978 2604 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
21:20:22.0987 2604 stexstor - ok
21:20:23.0039 2604 StiSvc (a22825e7bb7018e8af3e229a5af17221) C:\Windows\System32\wiaservc.dll
21:20:23.0065 2604 StiSvc - ok
21:20:23.0108 2604 storflt (957e346ca948668f2496a6ccf6ff82cc) C:\Windows\system32\DRIVERS\vmstorfl.sys
21:20:23.0118 2604 storflt - ok
21:20:23.0149 2604 storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\Windows\system32\DRIVERS\storvsc.sys
21:20:23.0158 2604 storvsc - ok
21:20:23.0175 2604 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
21:20:23.0186 2604 swenum - ok
21:20:23.0240 2604 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
21:20:23.0299 2604 swprv - ok
21:20:23.0408 2604 SysMain (04105c8da62353589c29bdaeb8d88bd8) C:\Windows\system32\sysmain.dll
21:20:23.0473 2604 SysMain - ok
21:20:23.0509 2604 TabletInputService (fcfb6c552fbc0da299799cbd50ad9fd4) C:\Windows\System32\TabSvc.dll
21:20:23.0551 2604 TabletInputService - ok
21:20:23.0634 2604 tap0901t (b7aee68d2e867cbf69b649b18fcedbbb) C:\Windows\system32\DRIVERS\tap0901t.sys
21:20:23.0683 2604 tap0901t - ok
21:20:23.0722 2604 TapiSrv (2f46b0c70a4adc8c90cf825da3b4feaf) C:\Windows\System32\tapisrv.dll
21:20:23.0755 2604 TapiSrv - ok
21:20:23.0771 2604 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
21:20:23.0802 2604 TBS - ok
21:20:23.0917 2604 Tcpip (2cc3d75488abd3ec628bbb9a4fc84efc) C:\Windows\system32\drivers\tcpip.sys
21:20:23.0947 2604 Tcpip - ok
21:20:24.0176 2604 TCPIP6 (2cc3d75488abd3ec628bbb9a4fc84efc) C:\Windows\system32\DRIVERS\tcpip.sys
21:20:24.0206 2604 TCPIP6 - ok
21:20:24.0339 2604 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys
21:20:24.0367 2604 tcpipreg - ok
21:20:24.0384 2604 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys
21:20:24.0412 2604 TDPIPE - ok
21:20:24.0417 2604 TDTCP (7551e91ea999ee9a8e9c331d5a9c31f3) C:\Windows\system32\drivers\tdtcp.sys
21:20:24.0447 2604 TDTCP - ok
21:20:24.0470 2604 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys
21:20:24.0522 2604 tdx - ok
21:20:24.0548 2604 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys
21:20:24.0558 2604 TermDD - ok
21:20:24.0622 2604 TermService (a01e50a04d7b1960b33e92b9080e6a94) C:\Windows\System32\termsrv.dll
21:20:24.0662 2604 TermService - ok
21:20:24.0677 2604 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
21:20:24.0717 2604 Themes - ok
21:20:24.0754 2604 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
21:20:24.0781 2604 THREADORDER - ok
21:20:24.0820 2604 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
21:20:24.0874 2604 TrkWks - ok
21:20:24.0953 2604 TrustedInstaller (41a4c781d2286208d397d72099304133) C:\Windows\servicing\TrustedInstaller.exe
21:20:24.0963 2604 TrustedInstaller - ok
21:20:24.0983 2604 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:20:25.0013 2604 tssecsrv - ok
21:20:25.0052 2604 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys
21:20:25.0080 2604 tunnel - ok
21:20:25.0219 2604 TunngleService (eb2252371a7a4b26b8ab2c6df0b4eeff) C:\Program Files\Tunngle\TnglCtrl.exe
21:20:25.0248 2604 TunngleService - ok
21:20:25.0277 2604 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
21:20:25.0287 2604 uagp35 - ok
21:20:25.0317 2604 udfs (09cc3e16f8e5ee7168e01cf8fcbe061a) C:\Windows\system32\DRIVERS\udfs.sys
21:20:25.0347 2604 udfs - ok
21:20:25.0382 2604 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
21:20:25.0420 2604 UI0Detect - ok
21:20:25.0431 2604 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys
21:20:25.0444 2604 uliagpkx - ok
21:20:25.0482 2604 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys
21:20:25.0516 2604 umbus - ok
21:20:25.0555 2604 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
21:20:25.0584 2604 UmPass - ok
21:20:25.0638 2604 UmRdpService (8ecaca5454844f66386f7be4ae0d7cd1) C:\Windows\System32\umrdp.dll
21:20:25.0652 2604 UmRdpService - ok
21:20:25.0686 2604 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
21:20:25.0719 2604 upnphost - ok
21:20:25.0750 2604 usbccgp (8455c4ed038efd09e99327f9d2d48ffa) C:\Windows\system32\DRIVERS\usbccgp.sys
21:20:25.0763 2604 usbccgp - ok
21:20:25.0794 2604 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys
21:20:25.0835 2604 usbcir - ok
21:20:25.0862 2604 usbehci (1c333bfd60f2fed2c7ad5daf533cb742) C:\Windows\system32\DRIVERS\usbehci.sys
21:20:25.0893 2604 usbehci - ok
21:20:25.0945 2604 usbhub (ee6ef93ccfa94fae8c6ab298273d8ae2) C:\Windows\system32\DRIVERS\usbhub.sys
21:20:25.0962 2604 usbhub - ok
21:20:25.0977 2604 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\DRIVERS\usbohci.sys
21:20:25.0991 2604 usbohci - ok
21:20:26.0004 2604 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
21:20:26.0038 2604 usbprint - ok
21:20:26.0063 2604 USBSTOR (d8889d56e0d27e57ed4591837fe71d27) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:20:26.0077 2604 USBSTOR - ok
21:20:26.0095 2604 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\DRIVERS\usbuhci.sys
21:20:26.0132 2604 usbuhci - ok
21:20:26.0199 2604 usbvideo (f642a7e4bf78cfa359cca0a3557c28d7) C:\Windows\system32\Drivers\usbvideo.sys
21:20:26.0216 2604 usbvideo - ok
21:20:26.0242 2604 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
21:20:26.0290 2604 UxSms - ok
21:20:26.0323 2604 VaultSvc (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
21:20:26.0337 2604 VaultSvc - ok
21:20:26.0378 2604 VCSVADHWSer (b2abab4ca46bad182e27763dc19c780f) C:\Windows\system32\DRIVERS\vcsvad.sys
21:20:26.0383 2604 VCSVADHWSer ( UnsignedFile.Multi.Generic ) - warning
21:20:26.0383 2604 VCSVADHWSer - detected UnsignedFile.Multi.Generic (1)
21:20:26.0407 2604 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys
21:20:26.0417 2604 vdrvroot - ok
21:20:26.0477 2604 vds (8c4e7c49d3641bc9e299e466a7f8867d) C:\Windows\System32\vds.exe
21:20:26.0518 2604 vds - ok
21:20:26.0559 2604 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
21:20:26.0575 2604 vga - ok
21:20:26.0595 2604 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
21:20:26.0629 2604 VgaSave - ok
21:20:26.0642 2604 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys
21:20:26.0655 2604 vhdmp - ok
21:20:26.0670 2604 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys
21:20:26.0681 2604 viaagp - ok
21:20:26.0688 2604 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
21:20:26.0721 2604 ViaC7 - ok
21:20:26.0728 2604 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys
21:20:26.0738 2604 viaide - ok
21:20:26.0774 2604 vmbus (379b349f65f453d2a6e75ea6b7448e49) C:\Windows\system32\DRIVERS\vmbus.sys
21:20:26.0786 2604 vmbus - ok
21:20:26.0792 2604 VMBusHID (ec2bbab4b84d0738c6c83d2234dc36fe) C:\Windows\system32\DRIVERS\VMBusHID.sys
21:20:26.0805 2604 VMBusHID - ok
21:20:26.0834 2604 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys
21:20:26.0844 2604 volmgr - ok
21:20:26.0881 2604 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
21:20:26.0897 2604 volmgrx - ok
21:20:26.0950 2604 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys
21:20:26.0964 2604 volsnap - ok
21:20:26.0995 2604 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
21:20:27.0009 2604 vsmraid - ok
21:20:27.0100 2604 VSS (7ea2bcd94d9cfaf4c556f5cc94532a6c) C:\Windows\system32\vssvc.exe
21:20:27.0126 2604 VSS - ok
21:20:27.0139 2604 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
21:20:27.0170 2604 vwifibus - ok
21:20:27.0226 2604 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
21:20:27.0277 2604 W32Time - ok
21:20:27.0326 2604 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
21:20:27.0339 2604 WacomPen - ok
21:20:27.0376 2604 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
21:20:27.0404 2604 WANARP - ok
21:20:27.0408 2604 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
21:20:27.0438 2604 Wanarpv6 - ok
21:20:27.0547 2604 wbengine (7790b77fe1e5ee47dcc66247095bb4c9) C:\Windows\system32\wbengine.exe
21:20:27.0588 2604 wbengine - ok
21:20:27.0612 2604 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
21:20:27.0632 2604 WbioSrvc - ok
21:20:27.0661 2604 wcncsvc (d0f88aa11ee1a62bcc6d6a8a7783ca11) C:\Windows\System32\wcncsvc.dll
21:20:27.0705 2604 wcncsvc - ok
21:20:27.0765 2604 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
21:20:27.0779 2604 WcsPlugInService - ok
21:20:27.0833 2604 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
21:20:27.0842 2604 Wd - ok
21:20:27.0878 2604 WDC_SAM (d6efaf429fd30c5df613d220e344cce7) C:\Windows\system32\DRIVERS\wdcsam.sys
21:20:27.0908 2604 WDC_SAM - ok
21:20:27.0956 2604 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
21:20:27.0975 2604 Wdf01000 - ok
21:20:27.0998 2604 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
21:20:28.0033 2604 WdiServiceHost - ok
21:20:28.0037 2604 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
21:20:28.0056 2604 WdiSystemHost - ok
21:20:28.0112 2604 WebClient (d87c7d2c517f82a5ab7a73e203063d9e) C:\Windows\System32\webclnt.dll
21:20:28.0140 2604 WebClient - ok
21:20:28.0175 2604 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
21:20:28.0213 2604 Wecsvc - ok
21:20:28.0238 2604 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
21:20:28.0284 2604 wercplsupport - ok
21:20:28.0330 2604 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
21:20:28.0361 2604 WerSvc - ok
21:20:28.0399 2604 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
21:20:28.0426 2604 WfpLwf - ok
21:20:28.0437 2604 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
21:20:28.0448 2604 WIMMount - ok
21:20:28.0554 2604 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
21:20:28.0584 2604 WinDefend - ok
21:20:28.0594 2604 WinHttpAutoProxySvc - ok
21:20:28.0668 2604 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
21:20:28.0722 2604 Winmgmt - ok
21:20:28.0837 2604 WinRM (c4f5d3901d1b41d602ddc196e0b95b51) C:\Windows\system32\WsmSvc.dll
21:20:28.0896 2604 WinRM - ok
21:20:28.0996 2604 WinUsb (30fc6e5448d0cbaaa95280eeef7fedae) C:\Windows\system32\DRIVERS\WinUSB.sys
21:20:29.0010 2604 WinUsb - ok
21:20:29.0094 2604 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
21:20:29.0149 2604 Wlansvc - ok
21:20:29.0182 2604 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys
21:20:29.0227 2604 WmiAcpi - ok
21:20:29.0307 2604 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
21:20:29.0346 2604 wmiApSrv - ok
21:20:29.0490 2604 WMPNetworkSvc (77fbd400984cf72ba0fc4b3489d65f74) C:\Program Files\Windows Media Player\wmpnetwk.exe
21:20:29.0550 2604 WMPNetworkSvc - ok
21:20:29.0688 2604 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
21:20:29.0701 2604 WPCSvc - ok
21:20:29.0719 2604 WPDBusEnum (b7f658a2ebc07129538ad9ab35212637) C:\Windows\system32\wpdbusenum.dll
21:20:29.0734 2604 WPDBusEnum - ok
21:20:29.0789 2604 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
21:20:29.0837 2604 ws2ifsl - ok
21:20:29.0878 2604 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\system32\wscsvc.dll
21:20:29.0895 2604 wscsvc - ok
21:20:29.0899 2604 WSearch - ok
21:20:30.0036 2604 wuauserv (a33408cc036f9c08142b11be5e93f0a1) C:\Windows\system32\wuaueng.dll
21:20:30.0106 2604 wuauserv - ok
21:20:30.0250 2604 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
21:20:30.0277 2604 WudfPf - ok
21:20:30.0308 2604 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:20:30.0355 2604 WUDFRd - ok
21:20:30.0402 2604 wudfsvc (ddee3682fe97037c45f4d7ab467cb8b6) C:\Windows\System32\WUDFSvc.dll
21:20:30.0430 2604 wudfsvc - ok
21:20:30.0463 2604 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
21:20:30.0483 2604 WwanSvc - ok
21:20:30.0545 2604 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
21:20:31.0178 2604 \Device\Harddisk0\DR0 - ok
21:20:31.0195 2604 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
21:20:31.0919 2604 \Device\Harddisk1\DR1 - ok
21:20:31.0924 2604 Boot (0x1200) (efd299c3890987845773411fce5fba3a) \Device\Harddisk0\DR0\Partition0
21:20:31.0926 2604 \Device\Harddisk0\DR0\Partition0 - ok
21:20:31.0931 2604 Boot (0x1200) (118f4e8fb193d86fe541b3d0fc6cbf47) \Device\Harddisk1\DR1\Partition0
21:20:31.0933 2604 \Device\Harddisk1\DR1\Partition0 - ok
21:20:31.0935 2604 ============================================================
21:20:31.0935 2604 Scan finished
21:20:31.0935 2604 ============================================================
21:20:31.0955 0492 Detected object count: 8
21:20:31.0955 0492 Actual detected object count: 8
21:20:50.0593 0492 ASLDRService ( UnsignedFile.Multi.Generic ) - skipped by user
21:20:50.0593 0492 ASLDRService ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:20:50.0596 0492 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - skipped by user
21:20:50.0596 0492 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:20:50.0598 0492 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
21:20:50.0598 0492 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:20:50.0600 0492 LFKAS ( UnsignedFile.Multi.Generic ) - skipped by user
21:20:50.0600 0492 LFKAS ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:20:50.0602 0492 mcdbus ( UnsignedFile.Multi.Generic ) - skipped by user
21:20:50.0602 0492 mcdbus ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:20:50.0605 0492 sptd ( LockedFile.Multi.Generic ) - skipped by user
21:20:50.0605 0492 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
21:20:50.0607 0492 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - skipped by user
21:20:50.0607 0492 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:20:50.0609 0492 VCSVADHWSer ( UnsignedFile.Multi.Generic ) - skipped by user
21:20:50.0609 0492 VCSVADHWSer ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:20:53.0136 3276 Deinitialize success

[Danstahr]

Nálezy už jsou akorát karantény, takže čisto. Uklidíme a máme hotovo.

Spusťte ještě jednou OTL, vložte tento skript a dejte Opravit.

Kód: Vybrat vše

:Commands
[EmptyTemp]
[ClearAllRestorePoints]

Pro jistotu přeinstalujte antivir (a toolbary můžete klidně odškrtnout, ty opravdu potřeba nejsou).

Odinstalujte MBAM.

Stiskněte kombinaci kláves WIN (mezi ctrl a alt, logo Windows) a R, do okna napište combofix /uninstall a nechte odinstalaci dojet, případně se řiďte pokyny.

Antivir některou z následujících utilit může chybně označit za infikovanou, pokud se tak stane, hlášku ignorujte, popř. AV dočasně vypněte.

Stáhněte T-Cleaner. Potvrzování se provádí stisknutím A.

Stáhněte OTC, Spusťte jej a stiskněte CleanUp! Bude následovat restart.

Stáhněte TFC, spusťte jej a dejte Start.

Stáhněte CCleaner, nainstalujte a spusťte.

• Na záložce Čistič stiskněte tlačítko Spustit Cleaner
• Po provedení přepněte na záložku Registry, stiskněte Hledej problémy a poté Opravit vybrané problémy. Opakujte, dokud nebude po hledání problémů seznam prázdný.

[Prochynex]

Ja moc dekuu vse jsem udelal tak jak ma a jeste se chci zeptat jestli byste me doporucil za antivirovi programy zatim nejlepe free