--->Blokovanie Googla<---

Zpráva

SSS · #1 Příspěvek od **SSS** » 11 úno 2013 20:29

Čaute,

Minule som stiahol 1 súbor kde bola potrebná inštalácia ...

Zapal som ten program a zistil som že to je blbosť tak som ho vymazal ...

Po pustení Googla som zistil

že to bude tým programom....
-- 1. Čo som spravil bolo že som prečistil historiu a údaje
-- 2. Nefungovalo to tak som pustil Antivírus našlo mi 1 vírus --->aj tak mi google neišiel

-- 3. Stiahol som si SpywareTerminator a AntiMalware a našlo mi to zopár infekcii a prečistil som ---> Google mi stále nejde

https://www.dropbox.com/s/0z4s26favayczly/Help.png

#2 Příspěvek od **vyosek** » 12 úno 2013 08:29

Zdravim

Dejte log z RSIT http://forum.viry.cz/viewtopic.php?f=24&t=81939

SSS · #3 Příspěvek od **SSS** » 12 úno 2013 16:05

Logfile of random's system information tool 1.06 (written by random/random)
Run by Dajanka at 2013-02-12 16:00:57
Microsoft Windows 7 Ultimate Service Pack 3
System drive C: has 95 GB (63%) free of 150 GB
Total RAM: 2048 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:01:02, on 12. 2. 2013
Platform: Unknown Windows (WinNT 6.01.3505 SP3)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal

Running processes:
C:\Program Files\Spyware Terminator\st_rsser.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\rundll32.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Windows\PLFSetL.exe
C:\Windows\snuvcdsm.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Steam\Steam.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\Dajanka\Downloads\RSIT.exe
C:\Program Files\trend micro\Dajanka.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - (no file)
O1 - Hosts: 184.22.81.15 www.runescape.com
O1 - Hosts: 184.22.81.15 runescape.com
O1 - Hosts: 184.22.81.15 google.com
O1 - Hosts: 184.22.81.15 www.google.ae
O1 - Hosts: 184.22.81.15 www.google.com.af
O1 - Hosts: 184.22.81.15 www.google.com.ag
O1 - Hosts: 184.22.81.15 www.google.off.ai
O1 - Hosts: 184.22.81.15 www.google.am
O1 - Hosts: 184.22.81.15 www.google.com.ar
O1 - Hosts: 184.22.81.15 www.google.as
O1 - Hosts: 184.22.81.15 www.google.at
O1 - Hosts: 184.22.81.15 www.google.com.au
O1 - Hosts: 184.22.81.15 www.google.az
O1 - Hosts: 184.22.81.15 www.google.ba
O1 - Hosts: 184.22.81.15 www.google.com.bd
O1 - Hosts: 184.22.81.15 www.google.be
O1 - Hosts: 184.22.81.15 www.google.bg
O1 - Hosts: 184.22.81.15 www.google.com.bh
O1 - Hosts: 184.22.81.15 www.google.bi
O1 - Hosts: 184.22.81.15 www.google.com.bo
O1 - Hosts: 184.22.81.15 www.google.com.br
O1 - Hosts: 184.22.81.15 www.google.bs
O1 - Hosts: 184.22.81.15 www.google.co.bw
O1 - Hosts: 184.22.81.15 www.google.com.bz
O1 - Hosts: 184.22.81.15 www.google.ca
O1 - Hosts: 184.22.81.15 www.google.cd
O1 - Hosts: 184.22.81.15 www.google.cg
O1 - Hosts: 184.22.81.15 www.google.ch
O1 - Hosts: 184.22.81.15 www.google.ci
O1 - Hosts: 184.22.81.15 www.google.co.ck
O1 - Hosts: 184.22.81.15 www.google.cl
O1 - Hosts: 184.22.81.15 www.google.cn
O1 - Hosts: 184.22.81.15 www.google.com.co
O1 - Hosts: 184.22.81.15 www.google.co.cr
O1 - Hosts: 184.22.81.15 www.google.com.cu
O1 - Hosts: 184.22.81.15 www.google.cz
O1 - Hosts: 184.22.81.15 www.google.de
O1 - Hosts: 184.22.81.15 www.google.dj
O1 - Hosts: 184.22.81.15 www.google.dk
O1 - Hosts: 184.22.81.15 www.google.dm
O1 - Hosts: 184.22.81.15 www.google.com.do
O1 - Hosts: 184.22.81.15 www.google.com.ec
O1 - Hosts: 184.22.81.15 www.google.ee
O1 - Hosts: 184.22.81.15 www.google.com.eg
O1 - Hosts: 184.22.81.15 www.google.es
O1 - Hosts: 184.22.81.15 www.google.com.et
O1 - Hosts: 184.22.81.15 www.google.fi
O1 - Hosts: 184.22.81.15 www.google.com.fj
O1 - Hosts: 184.22.81.15 www.google.fm
O1 - Hosts: 184.22.81.15 www.google.fr
O1 - Hosts: 184.22.81.15 www.google.ge
O1 - Hosts: 184.22.81.15 www.google.gg
O1 - Hosts: 184.22.81.15 www.google.com.gi
O1 - Hosts: 184.22.81.15 www.google.gl
O1 - Hosts: 184.22.81.15 www.google.gm
O1 - Hosts: 184.22.81.15 www.google.gr
O1 - Hosts: 184.22.81.15 www.google.com.gt
O1 - Hosts: 184.22.81.15 www.google.gy
O1 - Hosts: 184.22.81.15 www.google.com.hk
O1 - Hosts: 184.22.81.15 www.google.hn
O1 - Hosts: 184.22.81.15 www.google.hr
O1 - Hosts: 184.22.81.15 www.google.ht
O1 - Hosts: 184.22.81.15 www.google.hu
O1 - Hosts: 184.22.81.15 www.google.co.id
O1 - Hosts: 184.22.81.15 www.google.ie
O1 - Hosts: 184.22.81.15 www.google.co.il
O1 - Hosts: 184.22.81.15 www.google.co.im
O1 - Hosts: 184.22.81.15 www.google.co.in
O1 - Hosts: 184.22.81.15 www.google.is
O1 - Hosts: 184.22.81.15 www.google.it
O1 - Hosts: 184.22.81.15 www.google.co.je
O1 - Hosts: 184.22.81.15 www.google.com.jm
O1 - Hosts: 184.22.81.15 www.google.jo
O1 - Hosts: 184.22.81.15 www.google.co.jp
O1 - Hosts: 184.22.81.15 www.google.co.ke
O1 - Hosts: 184.22.81.15 www.google.kg
O1 - Hosts: 184.22.81.15 www.google.co.kr
O1 - Hosts: 184.22.81.15 www.google.kz
O1 - Hosts: 184.22.81.15 www.google.li
O1 - Hosts: 184.22.81.15 www.google.lk
O1 - Hosts: 184.22.81.15 www.google.co.ls
O1 - Hosts: 184.22.81.15 www.google.lt
O1 - Hosts: 184.22.81.15 www.google.lu
O1 - Hosts: 184.22.81.15 www.google.lv
O1 - Hosts: 184.22.81.15 www.google.com.ly
O1 - Hosts: 184.22.81.15 www.google.co.ma
O1 - Hosts: 184.22.81.15 www.google.md
O1 - Hosts: 184.22.81.15 www.google.mn
O1 - Hosts: 184.22.81.15 www.google.ms
O1 - Hosts: 184.22.81.15 www.google.com.mt
O1 - Hosts: 184.22.81.15 www.google.mu
O1 - Hosts: 184.22.81.15 www.google.mw
O1 - Hosts: 184.22.81.15 www.google.com.mx
O1 - Hosts: 184.22.81.15 www.google.com.my
O1 - Hosts: 184.22.81.15 www.google.com.na
O1 - Hosts: 184.22.81.15 www.google.com.nf
O1 - Hosts: 184.22.81.15 www.google.com.ng
O1 - Hosts: 184.22.81.15 www.google.com.ni
O1 - Hosts: 184.22.81.15 www.google.nl
O1 - Hosts: 184.22.81.15 www.google.no
O1 - Hosts: 184.22.81.15 www.google.com.np
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - (no file)
O2 - BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - (no file)
O2 - BHO: Pomocník pri prihlasovaní v konte Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - (no file)
O3 - Toolbar: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exe
O4 - HKLM\..\Run: [PLFSetL] C:\Windows\PLFSetL.exe
O4 - HKLM\..\Run: [SNUVCDSM] C:\Windows\snuvcdsm.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [ASUS Camera ScreenSaver] C:\Windows\ASScrProlog.exe
O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SpywareTerminatorShield] C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
O4 - HKLM\..\Run: [SpywareTerminatorUpdater] C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2494451597-1847322619-99670935-1003\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-2494451597-1847322619-99670935-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - (no file)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - (no file)
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - (no file)
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - (no file)
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - (no file)
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - (no file)
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O13 - Gopher Prefix:
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: c:\progra~2\browse~1\261070~1.41\{c16c1~1\browse~1.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Spyware Terminator 2012 Realtime Shield Service (ST2012_Svc) - Crawler.com - C:\Program Files\Spyware Terminator\st_rsser.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

--
End of file - 12677 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18 66280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pri prihlasovaní v konte Windows Live ID - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2008-12-11 6703648]
"Skytel"=C:\Program Files\Realtek\Audio\HDA\Skytel.exe [2008-12-11 1833504]
"PLFSetL"=C:\Windows\PLFSetL.exe [2008-07-03 94208]
"SNUVCDSM"=C:\Windows\snuvcdsm.exe [2009-08-10 27184]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-03 946352]
"AdobeAAMUpdater-1.0"=C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
"ASUS Camera ScreenSaver"=C:\Windows\ASScrProlog.exe [2013-01-04 37232]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2012-09-12 947176]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-11-28 59280]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2012-12-12 152544]
"SpywareTerminatorShield"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2013-01-14 2777736]
"SpywareTerminatorUpdater"=C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2013-01-14 3674248]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Nektra OEAPI"= []
"OEXPRESS"= []
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]
"AdobeBridge"= []
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"Steam"=C:\Program Files\Steam\steam.exe [2013-01-24 1354736]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2013-01-08 18705664]
""=C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="c:\progra~2\browse~1\261070~1.41\{c16c1~1\browse~1.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Base]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot file system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CryptSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DcomLaunch]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventLog]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HelpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Netlogon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PCI Configuration]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PlugPlay]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PNP Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Primary disk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcSs]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SCSI Class]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sermouse.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\System Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vga.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vgasave.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{36FC9E60-C465-11CF-8056-444553540000}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E965-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E969-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E977-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E980-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Base]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot file system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Browser]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CryptSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DcomLaunch]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dhcp]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DnsCache]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EventLog]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\File system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HelpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ipnat.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanServer]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanWorkstation]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LmHosts]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Messenger]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS Wrapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ndisuio]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOSGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetDDEGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Netlogon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetMan]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Network]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetworkProvider]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PCI Configuration]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PlugPlay]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP_TDI]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Primary disk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdsessmgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcSs]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCSI Class]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sermouse.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SharedAccess]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Streams Drivers]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\System Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Tcpip]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TDI]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vga.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vgasave.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{36FC9E60-C465-11CF-8056-444553540000}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E965-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E967-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E969-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96A-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96F-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E972-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E973-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E974-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E975-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E977-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97D-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E980-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{dce5411c-079d-11df-a06f-00241d135dda}]
shell\AutoRun\command - J:\setup.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{de951946-6450-11e1-b332-00241d135dda}]
shell\AutoRun\command - K:\LGAutoRun.exe

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2013-02-12 15:59:40 ----D---- C:\rsit
2013-02-12 15:59:40 ----D---- C:\Program Files\trend micro
2013-02-12 06:50:47 ----D---- C:\avast! sandbox
2013-02-11 20:54:05 ----D---- C:\ProgramData\AVAST Software
2013-02-11 20:54:05 ----D---- C:\Program Files\AVAST Software
2013-02-11 20:15:01 ----D---- C:\Users\Dajanka\AppData\Roaming\Samsung
2013-02-11 20:11:13 ----A---- C:\Windows\system32\WinUSBCoInstaller.dll
2013-02-11 20:11:13 ----A---- C:\Windows\system32\WdfCoInstaller01007.dll
2013-02-11 20:09:15 ----A---- C:\Windows\system32\Redemption.dll
2013-02-11 20:07:47 ----D---- C:\ProgramData\Samsung
2013-02-11 20:07:47 ----D---- C:\Program Files\Samsung
2013-02-10 16:21:55 ----A---- C:\Windows\system32\roboot.exe
2013-02-10 16:21:49 ----D---- C:\Users\Dajanka\AppData\Roaming\systweak
2013-02-10 14:53:08 ----D---- C:\Users\Dajanka\AppData\Roaming\Spyware Terminator
2013-02-10 14:53:08 ----D---- C:\ProgramData\Spyware Terminator
2013-02-10 14:51:09 ----D---- C:\Program Files\Spyware Terminator
2013-02-08 21:05:35 ----SHD---- C:\ProgramData\SecuROM
2013-02-08 18:39:09 ----D---- C:\Program Files\Grand Theft Auto IV - Episodes From Liberty City
2013-02-07 08:55:31 ----D---- C:\Users\Dajanka\AppData\Roaming\Malwarebytes
2013-02-07 08:55:16 ----D---- C:\ProgramData\Malwarebytes
2013-02-06 10:04:23 ----A---- C:\Windows\system32\xactengine3_7.dll
2013-02-06 10:04:23 ----A---- C:\Windows\system32\d3dcsx_43.dll
2013-02-06 10:04:22 ----A---- C:\Windows\system32\XAudio2_6.dll
2013-02-06 10:04:22 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2013-02-06 10:04:22 ----A---- C:\Windows\system32\d3dx11_43.dll
2013-02-06 10:04:22 ----A---- C:\Windows\system32\d3dx10_43.dll
2013-02-06 10:04:21 ----A---- C:\Windows\system32\xactengine3_6.dll
2013-02-06 10:03:39 ----D---- C:\Windows\system32\directx
2013-02-06 07:08:35 ----D---- C:\toolbarImages
2013-02-03 19:01:56 ----D---- C:\Program Files\Opera
2013-02-01 23:08:50 ----D---- C:\Program Files\Common Files\Skype
2013-02-01 23:08:46 ----RD---- C:\Program Files\Skype
2013-01-29 20:49:20 ----D---- C:\Users\Dajanka\AppData\Roaming\Apple Computer
2013-01-29 20:49:12 ----DC---- C:\Windows\system32\DRVSTORE
2013-01-29 20:48:38 ----D---- C:\Program Files\iPod
2013-01-29 20:48:37 ----D---- C:\ProgramData\Apple Computer
2013-01-29 20:48:37 ----D---- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-01-29 20:48:37 ----D---- C:\Program Files\iTunes
2013-01-29 20:47:45 ----D---- C:\Program Files\Apple Software Update
2013-01-29 20:47:23 ----D---- C:\Program Files\Bonjour
2013-01-29 20:47:12 ----D---- C:\ProgramData\Apple
2013-01-29 20:47:12 ----D---- C:\Program Files\Common Files\Apple
2013-01-29 18:04:04 ----RHD---- C:\Users\Dajanka\AppData\Roaming\SecuROM
2013-01-29 18:00:57 ----D---- C:\Windows\system32\xlive
2013-01-29 18:00:56 ----D---- C:\Program Files\Microsoft Games for Windows - LIVE
2013-01-28 18:18:39 ----D---- C:\ProgramData\Mozilla
2013-01-28 18:18:23 ----D---- C:\Program Files\Mozilla Firefox
2013-01-26 18:36:27 ----D---- C:\ProgramData\Tarma Installer
2013-01-26 18:36:22 ----D---- C:\Users\Dajanka\AppData\Roaming\ExpressFiles
2013-01-24 21:42:34 ----D---- C:\Program Files\Common Files\Steam
2013-01-24 21:42:30 ----D---- C:\Program Files\Steam
2013-01-24 17:48:24 ----D---- C:\Program Files\Rockstar Games
2013-01-20 15:26:10 ----D---- C:\Users\Dajanka\AppData\Roaming\YourFileDownloader
2013-01-20 09:40:40 ----D---- C:\Users\Dajanka\AppData\Roaming\uTorrent
2013-01-19 10:31:15 ----D---- C:\Program Files\TeamViewer
2013-01-19 09:39:21 ----D---- C:\ProgramData\BrowserProtect
2013-01-19 09:38:09 ----D---- C:\Users\Dajanka\AppData\Roaming\Babylon
2013-01-19 09:38:09 ----D---- C:\ProgramData\Babylon
2013-01-18 13:32:43 ----A---- C:\Windows\system32\cohelper.dll
2013-01-18 13:32:26 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-01-18 13:32:25 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-01-18 13:32:25 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-01-18 13:32:23 ----A---- C:\Windows\system32\wksprtPS.dll
2013-01-18 13:32:23 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-01-18 13:32:23 ----A---- C:\Windows\system32\tsgqec.dll
2013-01-18 13:32:23 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-01-18 13:32:22 ----A---- C:\Windows\system32\wksprt.exe
2013-01-18 13:32:22 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-01-18 13:32:22 ----A---- C:\Windows\system32\rdpudd.dll
2013-01-18 13:32:22 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-01-18 13:32:22 ----A---- C:\Windows\system32\rdpcorets.dll
2013-01-18 13:32:22 ----A---- C:\Windows\system32\mstsc.exe
2013-01-18 13:32:22 ----A---- C:\Windows\system32\aaclient.dll
2013-01-18 13:32:21 ----A---- C:\Windows\system32\mstscax.dll
2013-01-18 13:31:02 ----A---- C:\Windows\system32\schannel.dll
2013-01-18 13:31:01 ----A---- C:\Windows\system32\lsasrv.dll
2013-01-18 13:31:00 ----A---- C:\Windows\system32\qdvd.dll
2013-01-11 21:24:23 ----A---- C:\Windows\system32\XAudio2_7.dll
2013-01-11 21:24:23 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2013-01-11 21:24:23 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2013-01-11 21:24:22 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2013-01-11 21:24:22 ----A---- C:\Windows\system32\D3DX9_43.dll
2013-01-09 21:25:24 ----A---- C:\Windows\system32\usp10.dll
2013-01-09 21:25:22 ----A---- C:\Windows\system32\win32spl.dll
2013-01-09 21:25:00 ----A---- C:\Windows\system32\msxml6.dll
2013-01-09 21:24:58 ----A---- C:\Windows\system32\KernelBase.dll
2013-01-09 21:24:57 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-01-09 21:24:57 ----A---- C:\Windows\system32\winsrv.dll
2013-01-09 21:24:57 ----A---- C:\Windows\system32\kernel32.dll
2013-01-09 21:24:57 ----A---- C:\Windows\system32\conhost.exe
2013-01-09 21:24:56 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-01-09 21:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-01-09 21:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-01-09 21:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-01-09 21:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-01-09 21:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-01-09 21:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-01-09 21:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-01-09 21:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-01-09 21:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-01-09 21:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-01-09 21:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-01-09 21:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-01-09 21:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-01-09 21:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-01-09 21:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-01-09 21:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-01-09 21:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-01-09 21:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-01-09 21:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-01-09 21:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-01-09 21:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-01-09 21:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-01-09 21:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-01-09 21:24:56 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-01-09 21:24:55 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-01-09 21:24:55 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-01-09 21:24:30 ----A---- C:\Windows\system32\Wpc.dll
2013-01-09 21:24:30 ----A---- C:\Windows\system32\gameux.dll
2013-01-09 21:24:16 ----A---- C:\Windows\system32\taskhost.exe
2013-01-09 21:24:16 ----A---- C:\Windows\system32\ncrypt.dll
2013-01-08 20:18:07 ----A---- C:\Windows\system32\nvwgf2um.dll
2013-01-08 20:18:07 ----A---- C:\Windows\system32\nvopencl.dll
2013-01-08 20:18:07 ----A---- C:\Windows\system32\nvoglv32.dll
2013-01-08 20:18:06 ----A---- C:\Windows\system32\nvcuvid.dll
2013-01-08 20:18:05 ----A---- C:\Windows\system32\nvcuvenc.dll
2013-01-08 20:18:05 ----A---- C:\Windows\system32\nvcuda.dll
2013-01-08 20:18:05 ----A---- C:\Windows\system32\nvcompiler.dll
2013-01-08 20:17:28 ----D---- C:\NVIDIA
2013-01-06 20:38:39 ----D---- C:\Users\Dajanka\AppData\Roaming\Need for Speed World
2013-01-05 08:03:46 ----D---- C:\Program Files\resource
2013-01-05 08:03:46 ----D---- C:\Program Files\media
2013-01-05 08:03:46 ----D---- C:\Program Files\gstext
2013-01-05 08:03:46 ----D---- C:\Program Files\gsgui
2013-01-05 08:03:46 ----D---- C:\Program Files\gs_cfg
2013-01-05 08:03:46 ----D---- C:\Program Files\gfx
2013-01-04 16:35:52 ----A---- C:\Windows\system32\atmlib.dll
2013-01-04 16:35:52 ----A---- C:\Windows\system32\atmfd.dll
2013-01-04 16:35:05 ----A---- C:\Windows\system32\mshtmled.dll
2013-01-04 16:35:04 ----A---- C:\Windows\system32\vbscript.dll
2013-01-04 16:35:04 ----A---- C:\Windows\system32\jsproxy.dll
2013-01-04 16:35:04 ----A---- C:\Windows\system32\ieui.dll
2013-01-04 16:35:03 ----A---- C:\Windows\system32\wininet.dll
2013-01-04 16:35:03 ----A---- C:\Windows\system32\msfeeds.dll
2013-01-04 16:35:03 ----A---- C:\Windows\system32\jscript.dll
2013-01-04 16:35:03 ----A---- C:\Windows\system32\ieUnatt.exe
2013-01-04 16:35:02 ----A---- C:\Windows\system32\url.dll
2013-01-04 16:35:02 ----A---- C:\Windows\system32\jscript9.dll
2013-01-04 16:35:02 ----A---- C:\Windows\system32\iertutil.dll
2013-01-04 16:35:01 ----A---- C:\Windows\system32\urlmon.dll
2013-01-04 16:35:00 ----A---- C:\Windows\system32\ieframe.dll
2013-01-04 16:34:58 ----A---- C:\Windows\system32\mshtml.dll
2013-01-04 16:20:26 ----D---- C:\Program Files\Valve
2013-01-04 15:17:51 ----A---- C:\Windows\ASScrProlog.exe
2013-01-04 15:17:50 ----A---- C:\Windows\LCD Demo.exe
2013-01-04 15:17:50 ----A---- C:\Windows\ASUS LCD ScreenSaver Uninstaller.exe
2013-01-04 15:17:48 ----D---- C:\Windows\Asus_LCD_ScreenSaver dir
2013-01-04 15:17:48 ----A---- C:\Windows\impborl.dll
2013-01-04 15:17:48 ----A---- C:\Windows\flashax.exe
2013-01-04 15:15:51 ----D---- C:\Program Files\ASUS
2013-01-04 15:03:32 ----A---- C:\Windows\system32\dpnet.dll
2013-01-04 15:03:30 ----A---- C:\Windows\system32\tzres.dll
2013-01-04 14:51:09 ----D---- C:\Windows\Options
2013-01-04 14:50:43 ----D---- C:\ProgramData\TP-LINK
2012-12-29 02:54:24 ----A---- C:\Windows\system32\nvStreaming.exe
2012-12-18 10:06:06 ----A---- C:\Windows\system32\muzwmts.dll
2012-12-18 10:06:06 ----A---- C:\Windows\system32\muzapp.exe
2012-12-18 10:06:06 ----A---- C:\Windows\system32\muzapp.dll
2012-12-18 10:06:06 ----A---- C:\Windows\system32\muzaf1.dll
2012-12-18 10:06:06 ----A---- C:\Windows\system32\MTXSYNCICON.dll
2012-12-18 10:06:06 ----A---- C:\Windows\system32\MTTELECHIP.dll
2012-12-18 10:06:06 ----A---- C:\Windows\system32\MSLUR71.dll
2012-12-18 10:06:06 ----A---- C:\Windows\system32\MSFLib.dll
2012-12-18 10:06:06 ----A---- C:\Windows\system32\MSCLib.dll
2012-12-18 10:06:06 ----A---- C:\Windows\system32\MK_Lyric.dll
2012-12-18 10:06:06 ----A---- C:\Windows\system32\MaXMLProto.dll
2012-12-18 10:06:06 ----A---- C:\Windows\system32\MASetupCleaner.exe
2012-12-18 10:06:06 ----A---- C:\Windows\system32\MAMACExtract.dll
2012-12-18 10:06:06 ----A---- C:\Windows\system32\MaJGUILib.dll
2012-12-18 10:06:06 ----A---- C:\Windows\system32\MaDRM.dll
2012-12-18 10:06:06 ----A---- C:\Windows\system32\MACXMLProto.dll
2012-12-18 10:06:06 ----A---- C:\Windows\system32\issacapi_se-2.3.dll
2012-12-18 10:06:06 ----A---- C:\Windows\system32\issacapi_pe-2.3.dll
2012-12-18 10:06:06 ----A---- C:\Windows\system32\issacapi_bs-2.3.dll
2012-12-18 10:06:06 ----A---- C:\Windows\system32\cis-2.4.dll
2012-11-29 20:49:51 ----D---- C:\Users\Dajanka\AppData\Roaming\NVIDIA
2012-11-18 19:28:08 ----A---- C:\Windows\system32\nvsvcr.dll
2012-11-18 19:26:43 ----D---- C:\ProgramData\NVIDIA Corporation
2012-11-14 16:12:40 ----A---- C:\Windows\system32\Wdfres.dll
2012-11-14 16:12:21 ----A---- C:\Windows\system32\WUDFSvc.dll
2012-11-14 16:12:21 ----A---- C:\Windows\system32\WUDFPlatform.dll
2012-11-14 16:12:20 ----A---- C:\Windows\system32\WUDFx.dll
2012-11-14 16:12:20 ----A---- C:\Windows\system32\WUDFHost.exe
2012-11-14 16:12:20 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2012-11-14 15:54:26 ----A---- C:\Windows\system32\synceng.dll
2012-11-14 15:54:24 ----A---- C:\Windows\system32\nlasvc.dll
2012-11-14 15:54:24 ----A---- C:\Windows\system32\netcorehc.dll
2012-11-14 15:54:24 ----A---- C:\Windows\system32\ncsi.dll
2012-11-14 15:54:24 ----A---- C:\Windows\system32\iphlpsvc.dll
2012-11-14 15:54:23 ----A---- C:\Windows\system32\nlaapi.dll
2012-11-14 15:54:23 ----A---- C:\Windows\system32\netevent.dll
2012-11-14 15:54:16 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2012-11-14 15:54:16 ----A---- C:\Windows\system32\dhcpcore6.dll

======List of files/folders modified in the last 3 months======

2013-02-12 15:59:40 ----RD---- C:\Program Files
2013-02-12 15:59:28 ----D---- C:\Windows\Temp
2013-02-12 15:51:21 ----D---- C:\Windows\system32\config
2013-02-12 15:38:54 ----D---- C:\Users\Dajanka\AppData\Roaming\Skype
2013-02-12 15:38:01 ----D---- C:\ProgramData\NVIDIA
2013-02-12 15:26:54 ----D---- C:\Windows\system32\Tasks
2013-02-12 15:26:54 ----D---- C:\Windows\System32
2013-02-12 15:26:54 ----D---- C:\Windows
2013-02-12 15:26:53 ----D---- C:\Windows\system32\drivers
2013-02-12 15:26:48 ----D---- C:\Windows\inf
2013-02-12 15:26:24 ----SHD---- C:\System Volume Information
2013-02-12 07:16:47 ----RSD---- C:\Windows\assembly
2013-02-12 07:16:47 ----D---- C:\Windows\Microsoft.NET
2013-02-11 21:11:22 ----D---- C:\Windows\system32\catroot2
2013-02-11 21:07:17 ----SHD---- C:\Windows\Installer
2013-02-11 21:07:17 ----SHD---- C:\Config.Msi
2013-02-11 21:07:17 ----HD---- C:\Program Files\InstallShield Installation Information
2013-02-11 20:57:43 ----D---- C:\Program Files\Google
2013-02-11 20:55:08 ----D---- C:\Windows\system32\catroot
2013-02-11 20:55:07 ----D---- C:\Windows\system32\DriverStore
2013-02-11 20:54:51 ----D---- C:\Windows\winsxs
2013-02-11 20:54:05 ----HD---- C:\ProgramData
2013-02-11 20:36:03 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-02-10 16:23:14 ----RSD---- C:\Windows\Fonts
2013-02-10 15:46:23 ----D---- C:\Windows\system32\NDF
2013-02-10 11:56:54 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2013-02-07 12:25:29 ----D---- C:\Users\Dajanka\AppData\Roaming\Mozilla
2013-02-07 12:24:58 ----D---- C:\Windows\Prefetch
2013-02-07 12:24:09 ----D---- C:\Users\Dajanka\AppData\Roaming\Opera
2013-02-07 09:45:54 ----D---- C:\Windows\Speech
2013-02-03 11:28:48 ----D---- C:\Windows\rescache
2013-02-01 23:08:56 ----D---- C:\ProgramData\Skype
2013-02-01 23:08:50 ----D---- C:\Program Files\Common Files
2013-01-30 11:53:21 ----N---- C:\Windows\system32\MpSigStub.exe
2013-01-27 15:53:48 ----SHD---- C:\$Recycle.Bin
2013-01-27 15:53:44 ----RD---- C:\Users
2013-01-27 13:36:15 ----D---- C:\Windows\Tasks
2013-01-22 06:49:28 ----D---- C:\Windows\system32\wfp
2013-01-22 06:49:28 ----D---- C:\Windows\system32\wbem
2013-01-22 06:49:26 ----D---- C:\Windows\AppCompat
2013-01-22 06:49:24 ----D---- C:\Windows\registration
2013-01-22 06:47:52 ----D---- C:\Windows\system32\LogFiles
2013-01-18 13:51:23 ----D---- C:\Windows\system32\sk-SK
2013-01-18 13:51:23 ----D---- C:\Windows\system32\en-US
2013-01-18 13:51:23 ----D---- C:\Windows\PolicyDefinitions
2013-01-17 17:40:44 ----D---- C:\Program Files\Microsoft Office
2013-01-17 17:40:30 ----D---- C:\ProgramData\Microsoft Help
2013-01-17 17:39:46 ----D---- C:\Program Files\Common Files\microsoft shared
2013-01-17 17:38:21 ----A---- C:\Windows\win.ini
2013-01-17 15:04:10 ----D---- C:\Program Files\Microsoft Silverlight
2013-01-17 14:58:53 ----D---- C:\Program Files\Common Files\System
2013-01-17 14:07:04 ----D---- C:\Program Files\Microsoft Security Client
2013-01-17 14:06:31 ----HD---- C:\Windows\system32\GroupPolicy
2013-01-17 14:06:23 ----SD---- C:\Users\Dajanka\AppData\Roaming\Microsoft
2013-01-16 17:35:05 ----A---- C:\Windows\GSetup.ini
2013-01-09 21:33:09 ----A---- C:\Windows\system32\MRT.exe
2013-01-08 20:19:50 ----D---- C:\Program Files\NVIDIA Corporation
2013-01-08 20:19:28 ----D---- C:\Temp
2013-01-04 18:15:20 ----D---- C:\Windows\system32\wdi
2013-01-04 18:13:18 ----D---- C:\Windows\system32\migration
2013-01-04 18:13:18 ----D---- C:\Program Files\Internet Explorer
2013-01-04 16:33:55 ----D---- C:\Windows\debug
2013-01-04 15:15:31 ----A---- C:\Windows\Ascd_tmp.ini
2013-01-04 14:58:44 ----SD---- C:\ProgramData\Microsoft
2013-01-02 12:52:07 ----D---- C:\Program Files\Common Files\Logitech
2013-01-02 12:51:53 ----D---- C:\ProgramData\DivX
2013-01-02 12:49:43 ----D---- C:\ProgramData\EPSON
2013-01-02 12:49:12 ----D---- C:\Windows\twain_32
2013-01-02 12:47:58 ----D---- C:\Program Files\Common Files\InstallShield
2013-01-02 12:47:32 ----D---- C:\Program Files\NewFolder Software
2013-01-02 12:46:48 ----D---- C:\Program Files\Common Files\ACD Systems
2013-01-02 12:46:21 ----D---- C:\ProgramData\ABBYY
2012-12-29 11:26:54 ----A---- C:\Windows\system32\nvdispgenco32.dll
2012-12-29 11:26:54 ----A---- C:\Windows\system32\nvdispco32.dll
2012-12-29 11:26:54 ----A---- C:\Windows\system32\nvd3dum.dll
2012-12-29 11:26:54 ----A---- C:\Windows\system32\nvapi.dll
2012-12-29 09:26:22 ----A---- C:\Windows\system32\nvsvc.dll
2012-12-29 09:26:22 ----A---- C:\Windows\system32\nvcpl.dll
2012-12-29 09:25:57 ----A---- C:\Windows\system32\nvvsvc.exe
2012-12-29 09:25:57 ----A---- C:\Windows\system32\nvshext.dll
2012-12-29 09:25:57 ----A---- C:\Windows\system32\nvmctray.dll
2012-12-22 14:00:37 ----D---- C:\ProgramData\LangSoft
2012-12-11 16:45:29 ----D---- C:\ProgramData\Norton
2012-12-11 16:38:06 ----AD---- C:\ProgramData\TEMP
2012-12-11 16:37:55 ----D---- C:\Program Files\Common Files\PC Tools
2012-12-11 16:34:49 ----D---- C:\Program Files\Common Files\Adobe
2012-12-11 16:34:46 ----D---- C:\ProgramData\Adobe
2012-12-11 16:34:17 ----D---- C:\Program Files\Adobe
2012-11-29 15:53:37 ----D---- C:\Windows\Minidump
2012-11-28 15:11:08 ----D---- C:\Windows\AppPatch

#4 Příspěvek od **vyosek** » 12 úno 2013 17:49

Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe

Ukoncete vsechny programy
Pokud pouzivate Win Vista ci W7, kliknete na RogueKiller pravym a dejte Run As Administrator ci Spustit jako spravce
Pockejte na dokonceni PreScanu
Zvolte moznost Prohledat (scan)
Po dokonceni skenu kliknete na Zpráva (Report)- otevre se log, ten sem vlozte
Detailni postup vc. obrazku mate zde http://forum.viry.cz/viewtopic.php?f=24&t=120452

SSS · #5 Příspěvek od **SSS** » 12 úno 2013 18:05

RogueKiller V8.5.0 [Feb 9 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operačný systém : Windows 7 (6.1.7601 Service Pack 3) 32 bits version
Spustené v : Normálny režim
Užívateľ : Dajanka [Práva Správcu]
Režim : Kontrola -- Dátum : 02/12/2013 18:04:42
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy : 1 ¤¤¤
[SUSP PATH] snuvcdsm.exe -- C:\Windows\snuvcdsm.exe -> ZASTAVENÉ [TermProc]

¤¤¤ Záznamy Registrov : 4 ¤¤¤
[RUN][SUSP PATH] HKLM\[...]\Run : SNUVCDSM (C:\Windows\snuvcdsm.exe) -> NÁJDENÉ
[HJ DESK] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NÁJDENÉ
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NÁJDENÉ
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NÁJDENÉ

¤¤¤ Zvláštne súbory / Adresáre: ¤¤¤

¤¤¤ Ovládač : [NAHRATÉ] ¤¤¤

¤¤¤ Súbor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

184.22.81.15 www.runescape.com
184.22.81.15 runescape.com
184.22.81.15 google.com
184.22.81.15 www.google.ae
184.22.81.15 www.google.com.af
184.22.81.15 www.google.com.ag
184.22.81.15 www.google.off.ai
184.22.81.15 www.google.am
184.22.81.15 www.google.com.ar
184.22.81.15 www.google.as
184.22.81.15 www.google.at
184.22.81.15 www.google.com.au
184.22.81.15 www.google.az
184.22.81.15 www.google.ba
184.22.81.15 www.google.com.bd
184.22.81.15 www.google.be
184.22.81.15 www.google.bg
184.22.81.15 www.google.com.bh
184.22.81.15 www.google.bi
184.22.81.15 www.google.com.bo
[...]

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: SAMSUNG HD502IJ SCSI Disk Device +++++
--- User ---
[MBR] 6f98893109feae6a1f7b692d9a55a4fc
[BSP] 68721d2923c7ba42ef9c2a4c98f650ee : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 149997 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 307194930 | Size: 326932 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Dokončené : << RKreport[1]_S_02122013_02d1804.txt >>
RKreport[1]_S_02122013_02d1804.txt

#6 Příspěvek od **vyosek** » 12 úno 2013 18:16

Nedavejte ty logy do code, spatne se to lusti a boli z toho oci

Spustte znovu RogueKiller

Pokud pouzivate Win Vista ci W7, kliknete na RogueKiller pravym a dejte Run As Administrator ci Spustit jako spravce
Zvolte moznost Prohledat a pote Smazat a nasledne Zprava - otevre se log, ten sem vlozte
Pak kliknete na Oprava Host a Zprava - otevre se log, ten sem vlozte

SSS · #7 Příspěvek od **SSS** » 12 úno 2013 19:14

Tu je ten 1.
RogueKiller V8.5.1 [Feb 12 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operačný systém : Windows 7 (6.1.7601 Service Pack 3) 32 bits version
Spustené v : Normálny režim
Užívateľ : Dajanka [Práva Správcu]
Režim : Odebrať -- Dátum : 02/12/2013 19:11:10
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy : 0 ¤¤¤

¤¤¤ Záznamy Registrov : 2 ¤¤¤
[HJ DESK] HKCU\[...]\ClassicStartMenu : {59031A47-3F72-44A7-89C5-5595FE6B30EE} (1) -> NAHRADENÉ (0)
[HJ DESK] HKCU\[...]\NewStartPanel : {59031A47-3F72-44A7-89C5-5595FE6B30EE} (1) -> NAHRADENÉ (0)

¤¤¤ Zvláštne súbory / Adresáre: ¤¤¤

¤¤¤ Ovládač : [NAHRATÉ] ¤¤¤

¤¤¤ Súbor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

184.22.81.15 www.runescape.com
184.22.81.15 runescape.com
184.22.81.15 google.com
184.22.81.15 www.google.ae
184.22.81.15 www.google.com.af
184.22.81.15 www.google.com.ag
184.22.81.15 www.google.off.ai
184.22.81.15 www.google.am
184.22.81.15 www.google.com.ar
184.22.81.15 www.google.as
184.22.81.15 www.google.at
184.22.81.15 www.google.com.au
184.22.81.15 www.google.az
184.22.81.15 www.google.ba
184.22.81.15 www.google.com.bd
184.22.81.15 www.google.be
184.22.81.15 www.google.bg
184.22.81.15 www.google.com.bh
184.22.81.15 www.google.bi
184.22.81.15 www.google.com.bo
[...]

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: SAMSUNG HD502IJ SCSI Disk Device +++++
--- User ---
[MBR] 6f98893109feae6a1f7b692d9a55a4fc
[BSP] 68721d2923c7ba42ef9c2a4c98f650ee : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 149997 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 307194930 | Size: 326932 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Dokončené : << RKreport[2]_D_02122013_02d1911.txt >>
RKreport[1]_S_02122013_02d1909.txt ; RKreport[2]_D_02122013_02d1911.txt

a ten 2.
RogueKiller V8.5.1 [Feb 12 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operačný systém : Windows 7 (6.1.7601 Service Pack 3) 32 bits version
Spustené v : Normálny režim
Užívateľ : Dajanka [Práva Správcu]
Režim : Oprava HOSTS -- Dátum : 02/12/2013 19:12:16
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy : 0 ¤¤¤

¤¤¤ Záznamy Registrov : 0 ¤¤¤

¤¤¤ Ovládač : [NAHRATÉ] ¤¤¤

¤¤¤ Súbor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

184.22.81.15 www.runescape.com
184.22.81.15 runescape.com
184.22.81.15 google.com
184.22.81.15 www.google.ae
184.22.81.15 www.google.com.af
184.22.81.15 www.google.com.ag
184.22.81.15 www.google.off.ai
184.22.81.15 www.google.am
184.22.81.15 www.google.com.ar
184.22.81.15 www.google.as
184.22.81.15 www.google.at
184.22.81.15 www.google.com.au
184.22.81.15 www.google.az
184.22.81.15 www.google.ba
184.22.81.15 www.google.com.bd
184.22.81.15 www.google.be
184.22.81.15 www.google.bg
184.22.81.15 www.google.com.bh
184.22.81.15 www.google.bi
184.22.81.15 www.google.com.bo
[...]

¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost

Dokončené : << RKreport[3]_H_02122013_02d1912.txt >>
RKreport[1]_S_02122013_02d1909.txt ; RKreport[2]_D_02122013_02d1911.txt ; RKreport[3]_H_02122013_02d1912.txt

SSS · #8 Příspěvek od **SSS** » 12 úno 2013 19:16

okej google už fičí

A diki za pomoc

vyosek

#9 Příspěvek od **vyosek** » 12 úno 2013 19:26

Tak jeste uklidime

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

Stahnete a spustte
Pro potvrzeni volby mackejte A, Enter
Po pouziti utilitu smazte
Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse

VIRY.CZ

--->Blokovanie Googla<---

--->Blokovanie Googla<---

Re: Blokovanie Googla

Re: Blokovanie Googla

Re: --->Blokovanie Googla<---

Re: --->Blokovanie Googla<---

Re: --->Blokovanie Googla<---

Re: --->Blokovanie Googla<---

Re: --->Blokovanie Googla<---

Re: --->Blokovanie Googla<---