Prestala pracovať Panda Cloud Antivirus
Napsal: 28 dub 2013 18:10
Zdravím, prestal mi pracovať antivirus Panda. Takisto sa mi inak zobrazuje Win prieskumník a celkovo je PC spomalený. Poprosil by som o pomoc dík.
Pripájam logy:
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.10.2
Run by BOBO at 18:13:11 on 2013-04-28
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.421.1033.18.1919.1110 [GMT 2:00]
.
AV: Panda Cloud Antivirus *Enabled/Updated* {5AD27692-540A-464E-B625-78275FA38393}
FW: Cloud Antivirus Firewall *Disabled*
.
============== Running Processes ================
.
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\Program Files\Panda Security\Panda Cloud Antivirus\PSANHost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\cidaemon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Panda Security\Panda Cloud Antivirus\PSUAMain.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Opera\Opera.exe
C:\Program Files\Your Uninstaller 2010\urmain.exe
C:\Program Files\Your Uninstaller 2010\urmain.exe
C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k bthsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.sk/
uURLSearchHooks: {472734EA-242A-422b-ADF8-83D1E48CC825} - <orphaned>
BHO: IDM integration (IDMIEHlprObj Class): {0055C089-8582-441B-A0BF-17B458C2A3A8} - c:\program files\internet download manager\IDMIECC.dll
uRun: [uTorrent] "c:\program files\utorrent\uTorrent.exe"
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [PSUAMain] "c:\program files\panda security\panda cloud antivirus\PSUAMain.exe" /LaunchSysTray
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
uPolicies-Explorer: NoDriveTypeAutoRun = dword:323
uPolicies-Explorer: NoDriveAutoRun = dword:67108863
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
IE: Stiahnuť s IDM - c:\program files\internet download manager\IEExt.htm
IE: Stiahnuť s IDM všetky prepojenia - c:\program files\internet download manager\IEGetAll.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://www.update.microsoft.com/windowsupdate/ ... 6973103500
TCP: NameServer = 195.34.133.21 192.168.0.1
TCP: Interfaces\{95590E9A-F60B-4752-BBD9-3232AC14190D} : DHCPNameServer = 195.34.133.21 192.168.0.1
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
SEH: DVDIdleShell Class - {93994DE8-8239-4655-B1D1-5F4E91300429} - c:\program files\dvdidle pro\DVDShell.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\bobo\application data\mozilla\firefox\profiles\d3wvyde2.default\
FF - prefs.js: browser.search.selectedEngine - Search Results
FF - prefs.js: browser.startup.homepage - hxxps://www.facebook.com/
FF - prefs.js: network.proxy.type - 0
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\windows\system32\adobe\director\np32dsw_1168638.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_5_502_135.dll
FF - plugin: c:\windows\system32\npdeployJava1.dll
FF - plugin: c:\windows\system32\npptools.dll
.
============= SERVICES / DRIVERS ===============
.
R1 IDMTDI;IDMTDI;c:\windows\system32\drivers\idmtdi.sys [2011-12-29 101616]
R1 NNSALPC;NNSAlpc;c:\windows\system32\drivers\NNSAlpc.sys [2012-11-9 82728]
R1 NNSHTTP;NNSHttp;c:\windows\system32\drivers\NNSHttp.sys [2012-11-9 119080]
R1 NNSHTTPS;NNSHttps;c:\windows\system32\drivers\NNSHttps.sys [2013-1-9 95584]
R1 NNSIDS;NNSids;c:\windows\system32\drivers\NNSIds.sys [2012-11-9 123944]
R1 NNSPICC;NNSPicc;c:\windows\system32\drivers\NNSpicc.sys [2012-11-9 94632]
R1 NNSPIHS;NNSPihs;c:\windows\system32\drivers\NNSpihs.sys [2012-11-9 51496]
R1 NNSPOP3;NNSPop3;c:\windows\system32\drivers\NNSPop3.sys [2012-11-9 105640]
R1 NNSPROT;NNSProt;c:\windows\system32\drivers\NNSProt.sys [2012-11-9 286888]
R1 NNSPRV;NNSPrv;c:\windows\system32\drivers\NNSPrv.sys [2012-11-9 159528]
R1 NNSSMTP;NNSSmtp;c:\windows\system32\drivers\NNSSmtp.sys [2012-11-9 108200]
R1 NNSSTRM;NNSStrm;c:\windows\system32\drivers\NNSStrm.sys [2012-11-9 218024]
R1 NNSTLSC;NNSTlsc;c:\windows\system32\drivers\NNStlsc.sys [2012-11-9 93096]
R1 PSINKNC;PSINKNC;c:\windows\system32\drivers\PSINKNC.sys [2012-11-9 178728]
R1 sp_rsdrv2;Spyware Terminator 2012 Realtime Shield Driver;c:\windows\system32\drivers\sp_rsdrv2.sys [2013-1-16 32768]
R2 NanoServiceMain;Panda Cloud Antivirus Service;c:\program files\panda security\panda cloud antivirus\PSANHost.exe [2013-1-27 140512]
R2 PSINAflt;PSINAflt;c:\windows\system32\drivers\PSINAflt.sys [2012-11-9 149288]
R2 PSINFile;PSINFile;c:\windows\system32\drivers\PSINFile.sys [2012-11-9 102184]
R2 PSINProc;PSINProc;c:\windows\system32\drivers\PSINProc.sys [2012-11-9 114216]
R2 PSINProt;PSINProt;c:\windows\system32\drivers\PSINProt.sys [2012-11-9 123560]
R3 Cap713x;Cap713x Video Capture;c:\windows\system32\drivers\Cap713x.sys [2004-6-10 502784]
R3 PSched;QoS Packet Scheduler;c:\windows\system32\drivers\psched.sys [2008-4-14 69120]
R3 PSKMAD;PSKMAD;c:\windows\system32\drivers\PSKMAD.sys [2013-4-25 46672]
S0 TfFsMon;TfFsMon;c:\windows\system32\drivers\tffsmon.sys --> c:\windows\system32\drivers\TfFsMon.sys [?]
S0 TFSysMon;TfSysMon;c:\windows\system32\drivers\tfsysmon.sys --> c:\windows\system32\drivers\TfSysMon.sys [?]
S2 PSUAService;Panda Product Service;c:\program files\panda security\panda cloud antivirus\PSUAService.exe [2013-1-27 37088]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2013-2-28 161384]
S3 genmcmnUSB;USB Scroll Mouse Driver;c:\windows\system32\drivers\gflmouhid.sys [2003-8-7 6528]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-1-1 21104]
S3 NNSNAHS;Network Activity Hook Server Service;c:\windows\system32\drivers\NNSNAHS.sys [2012-10-22 38824]
S3 TfNetMon;TfNetMon;\??\c:\windows\system32\drivers\tfnetmon.sys --> c:\windows\system32\drivers\TfNetMon.sys [?]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\wpffontcache_v0400.exe --> c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [?]
S4 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2013-1-1 682344]
S4 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2013-1-1 398184]
S4 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service;c:\program files\common files\pc tools\smonitor\StartManSvc.exe [2013-1-3 794272]
S4 PDF Architect Helper Service;PDF Architect Helper Service;c:\program files\pdf architect\HelperService.exe [2013-1-9 1324104]
S4 PDF Architect Service;PDF Architect Service;c:\program files\pdf architect\ConversionService.exe [2013-1-9 795208]
S4 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service;c:\program files\spyware terminator\st_rsser.exe [2013-1-16 587472]
.
=============== Created Last 30 ================
.
2013-04-28 15:44:24 32128 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2013-04-28 14:58:27 -------- d-----w- c:\windows\system32\wbem\repository\FS
2013-04-28 14:58:27 -------- d-----w- c:\windows\system32\wbem\Repository
2013-04-28 14:58:00 -------- d-----w- c:\documents and settings\all users\application data\SaveByclick
2013-04-28 14:00:34 -------- d-----w- C:\RECYCLER(2)
2013-04-25 20:58:14 46672 ----a-w- c:\windows\system32\drivers\PSKMAD.sys
2013-04-24 10:15:09 -------- d-----w- c:\program files\CCleaner
2013-04-23 00:05:43 -------- d-----w- C:\Spear Britney
2013-04-23 00:01:11 -------- d-----w- C:\Obrenovac
2013-04-22 23:59:24 -------- d-----w- C:\Update
2013-04-22 23:58:36 -------- d-----w- C:\Amateur Self Shots1
2013-04-20 14:58:10 -------- d-----w- c:\documents and settings\bobo\local settings\application data\Pokki
2013-04-20 14:57:31 -------- d-----w- c:\documents and settings\all users\application data\Freemake
2013-04-20 14:57:19 -------- d-----w- c:\program files\Freemake
2013-04-20 14:57:19 -------- d-----w- c:\documents and settings\bobo\application data\OpenCandy
2013-04-18 09:06:57 -------- d-----w- c:\program files\OpenVideoConverter
2013-04-18 08:45:13 70656 ----a-w- c:\windows\system32\yv12vfw.dll
2013-04-18 08:45:13 70656 ----a-w- c:\windows\system32\i420vfw.dll
2013-04-18 08:45:13 27648 ----a-w- c:\windows\system32\AVSredirect.dll
2013-04-18 08:44:55 -------- d-----w- c:\program files\eRightSoft
2013-04-18 05:44:14 -------- d-----w- c:\documents and settings\bobo\application data\NVIDIA
2013-04-14 21:06:13 1072544 ----a-w- c:\windows\system32\nvdrsdb1.bin
2013-04-14 21:06:13 1072544 ----a-w- c:\windows\system32\nvdrsdb0.bin
2013-04-14 21:06:13 1 ----a-w- c:\windows\system32\nvdrssel.bin
2013-04-14 18:38:56 -------- d-----w- c:\program files\SomePDF
2013-04-14 10:37:32 -------- d-----w- c:\program files\Driver-Soft
2013-04-14 01:49:34 7520 ----a-w- c:\documents and settings\all users\application data\NanoRepository.bin
2013-04-10 10:14:44 -------- d-----w- c:\documents and settings\bobo\application data\avidemux
2013-04-10 10:14:26 -------- d-----w- c:\program files\Avidemux 2.5
2013-04-10 08:01:56 -------- d-----w- C:\Hailey Arthur-Hotel
2013-04-10 07:59:49 -------- d-----w- c:\documents and settings\all users\application data\blekko toolbars
2013-04-04 06:08:15 -------- d-----w- c:\documents and settings\bobo\application data\Ashampoo
2013-04-04 06:07:59 -------- d-----w- c:\documents and settings\bobo\local settings\application data\ashampoo
2013-04-04 06:07:26 -------- d-----w- c:\documents and settings\all users\application data\Ashampoo
2013-04-04 06:07:24 -------- d-----w- c:\program files\Ashampoo
2013-04-01 11:46:58 -------- d-----w- c:\program files\DVDFab 8 Qt
2013-04-01 11:38:38 -------- d-----w- c:\program files\CZ-SK-IPTV
2013-04-01 11:31:42 -------- d-----w- c:\program files\NeroPortable
2013-04-01 02:37:48 -------- d-----w- c:\documents and settings\bobo\application data\RipIt4Me
2013-03-31 20:34:06 -------- d-----w- c:\program files\MKVtoolnix
2013-03-31 20:17:35 -------- d-----w- c:\program files\AVG SafeGuard toolbar
.
==================== Find3M ====================
.
2013-03-08 08:36:22 293376 ----a-w- c:\windows\system32\winsrv.dll
2013-03-07 01:32:25 2149888 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-03-07 00:50:30 2028544 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-03-02 02:06:31 916480 ----a-w- c:\windows\system32\wininet.dll
2013-03-02 02:06:30 43520 ------w- c:\windows\system32\licmgr10.dll
2013-03-02 02:06:30 1469440 ------w- c:\windows\system32\inetcpl.cpl
2013-03-02 01:25:02 1867264 ----a-w- c:\windows\system32\win32k.sys
2013-03-02 01:08:47 385024 ------w- c:\windows\system32\html.iec
2013-02-27 07:56:51 2067456 ----a-w- c:\windows\system32\mstscax.dll
2013-02-12 00:32:23 12928 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-02-11 00:18:47 720896 ----a-w- c:\windows\iun6002.exe
2013-02-08 03:03:02 19189760 ----a-w- c:\windows\system32\nvoglnt.dll
2013-02-08 03:03:02 1010464 ----a-w- c:\windows\system32\nvdispco32.dll
2013-02-08 03:03:00 4494336 ----a-w- c:\windows\system32\nv4_disp.dll
2013-02-08 03:02:58 7536640 ----a-w- c:\windows\system32\nvcuda.dll
2013-02-08 03:02:58 2581792 ----a-w- c:\windows\system32\nvcuvid.dll
2013-02-08 03:02:56 892704 ----a-w- c:\windows\system32\nvdispgenco32.dll
2013-02-08 03:02:56 2389504 ----a-w- c:\windows\system32\nvapi.dll
2013-02-08 03:02:56 17551360 ----a-w- c:\windows\system32\nvcompiler.dll
2013-02-08 03:02:44 12648960 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2013-02-08 03:02:42 5967872 ----a-w- c:\windows\system32\nvopencl.dll
2013-02-08 03:02:42 1869088 ----a-w- c:\windows\system32\nvcuvenc.dll
2013-01-19 07:44:40 2174976 ----a-w- c:\program files\common files\atimpenc.dll
2006-05-03 09:06:54 163328 --sha-r- c:\windows\system32\flvDX.dll
2007-02-21 10:47:16 31232 --sha-r- c:\windows\system32\msfDX.dll
2008-03-16 12:30:52 216064 --sha-r- c:\windows\system32\nbDX.dll
2010-01-06 22:00:00 107520 --sha-r- c:\windows\system32\TAKDSDecoder.dll
.
============= FINISH: 18:18:40,92 ===============
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
Logfile of random's system information tool 1.06 (written by random/random)
Run by BOBO at 2013-04-28 19:07:51
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 4 GB (5%) free of 80 GB
Total RAM: 1919 MB (47% free)
HijackThis download failed
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\RegClean Pro_DEFAULT.job
C:\WINDOWS\tasks\RegClean Pro_UPDATES.job
C:\WINDOWS\tasks\RMAutoUpdate.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files\Internet Download Manager\IDMIECC.dll [2011-10-01 218544]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"PSUAMain"=C:\Program Files\Panda Security\Panda Cloud Antivirus\PSUAMain.exe [2013-01-27 32480]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2013-01-01 399224]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AsusStartupHelp]
C:\Program Files\ASUS\AASP\1.00.17\AsRunHelp.exe [2006-11-14 363008]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BluetoothAuthenticationAgent]
bthprops.cpl,,BluetoothAuthenticationAgent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\WINDOWS\system32\NvCpl.dll [2010-03-16 13670504]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
C:\WINDOWS\system32\NvMcTray.dll [2010-03-16 110696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Panda Security URL Filtering]
C:\Documents and Settings\All Users\Application Data\Panda Security URL Filtering\Panda_URL_Filtering.exe [2012-10-15 221832]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
C:\Program Files\PowerISO\PWRISOVM.EXE [2007-08-07 200704]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
C:\WINDOWS\RTHDCPL.EXE [2007-02-26 16125440]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyTel]
C:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminatorShield]
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2012-09-07 2777296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminatorUpdater]
C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2012-09-07 3673808]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^BlueSoleil.lnk]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"JavaQuickStarterService"=2
"NVSvc"=2
"AdobeFlashPlayerUpdateSvc"=3
"NBService"=3
"BlueSoleil Hid Service"=2
"nSvcIp"=2
"ForceWare Intelligent Application Manager (IAM)"=2
"MBAMService"=2
"MBAMScheduler"=2
"idsvc"=3
"ICQ Service"=2
"NGRegClnSrv"=2
"ST2012_Svc"=2
"PCToolsSSDMonitorSvc"=2
"PCSUService"=2
"PDF Architect Service"=2
"PDF Architect Helper Service"=2
"bgsvcgen"=2
"SkypeUpdate"=2
"NMIndexingService"=3
C:\Documents and Settings\BOBO\Start Menu\Programs\Startup
_uninst_70805343.lnk - C:\Documents and Settings\BOBO\Local Settings\Temp\_uninst_70805343.bat
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{93994DE8-8239-4655-B1D1-5F4E91300429}"=C:\PROGRA~1\DVDIDL~1\DVDShell.dll [2004-10-09 49152]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoInstrumentation"=1
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"HonorAutoRunSetting"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\ICQ7.7\ICQ.exe"="C:\Program Files\ICQ7.7\ICQ.exe:*:Enabled:ICQ"
"C:\Program Files\Java\jre7\launch4j-tmp\frd.exe"="C:\Program Files\Java\jre7\launch4j-tmp\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe"="C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe:*:Enabled:BlueSoleil"
"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype "
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
======List of files/folders created in the last 1 months======
2013-04-28 19:07:52 ----D---- C:\Program Files\trend micro
2013-04-28 17:19:59 ----D---- C:\WINDOWS\LastGood
2013-04-28 16:58:04 ----SHD---- C:\RECYCLER
2013-04-28 16:58:00 ----D---- C:\Documents and Settings\All Users\Application Data\SaveByclick
2013-04-28 16:58:00 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2013-04-28 16:54:24 ----D---- C:\rsit
2013-04-28 16:00:34 ----D---- C:\RECYCLER(2)
2013-04-28 15:45:56 ----D---- C:\WINDOWS\temp
2013-04-28 15:45:54 ----A---- C:\ComboFix.txt
2013-04-24 12:15:09 ----D---- C:\Program Files\CCleaner
2013-04-24 12:12:44 ----D---- C:\Program Files\Google
2013-04-24 08:21:18 ----D---- C:\Program Files\Mozilla Firefox
2013-04-23 02:05:43 ----D---- C:\Spear Britney
2013-04-23 02:01:11 ----D---- C:\Obrenovac
2013-04-23 01:59:24 ----D---- C:\Update
2013-04-23 01:58:36 ----D---- C:\Amateur Self Shots1
2013-04-20 16:57:31 ----D---- C:\Documents and Settings\All Users\Application Data\Freemake
2013-04-20 16:57:19 ----D---- C:\Program Files\Freemake
2013-04-20 16:57:19 ----D---- C:\Documents and Settings\BOBO\Application Data\OpenCandy
2013-04-18 11:13:16 ----RASH---- C:\WINDOWS\system32\TAKDSDecoder.dll
2013-04-18 11:13:16 ----RASH---- C:\WINDOWS\system32\nbDX.dll
2013-04-18 11:13:16 ----RASH---- C:\WINDOWS\system32\msfDX.dll
2013-04-18 11:13:16 ----RASH---- C:\WINDOWS\system32\flvDX.dll
2013-04-18 11:13:16 ----A---- C:\WINDOWS\system32\drvc.dll
2013-04-18 11:06:57 ----D---- C:\Program Files\OpenVideoConverter
2013-04-18 10:45:13 ----A---- C:\WINDOWS\system32\yv12vfw.dll
2013-04-18 10:45:13 ----A---- C:\WINDOWS\system32\i420vfw.dll
2013-04-18 10:45:13 ----A---- C:\WINDOWS\system32\AVSredirect.dll
2013-04-18 10:44:55 ----D---- C:\Program Files\eRightSoft
2013-04-18 07:44:14 ----D---- C:\Documents and Settings\BOBO\Application Data\NVIDIA
2013-04-16 03:43:26 ----A---- C:\DEBUG.TXT
2013-04-14 20:38:56 ----D---- C:\Program Files\SomePDF
2013-04-14 12:37:32 ----D---- C:\Program Files\Driver-Soft
2013-04-11 21:50:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2808735$
2013-04-11 21:50:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2820917$
2013-04-11 21:47:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2813345$
2013-04-11 21:47:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2813170$
2013-04-10 12:14:44 ----D---- C:\Documents and Settings\BOBO\Application Data\avidemux
2013-04-10 12:14:26 ----D---- C:\Program Files\Avidemux 2.5
2013-04-10 10:01:56 ----D---- C:\Hailey Arthur-Hotel
2013-04-10 10:00:20 ----D---- C:\Config.Msi
2013-04-10 09:59:49 ----D---- C:\Documents and Settings\All Users\Application Data\blekko toolbars
2013-04-04 10:16:50 ----SHD---- C:\WINDOWS\CSC
2013-04-04 08:08:15 ----D---- C:\Documents and Settings\BOBO\Application Data\Ashampoo
2013-04-04 08:07:26 ----D---- C:\Documents and Settings\All Users\Application Data\Ashampoo
2013-04-04 08:07:24 ----D---- C:\Program Files\Ashampoo
2013-04-01 13:46:58 ----D---- C:\Program Files\DVDFab 8 Qt
2013-04-01 13:38:38 ----D---- C:\Program Files\CZ-SK-IPTV
2013-04-01 13:31:42 ----D---- C:\Program Files\NeroPortable
2013-04-01 04:37:48 ----D---- C:\Documents and Settings\BOBO\Application Data\RipIt4Me
2013-03-31 22:34:06 ----D---- C:\Program Files\MKVtoolnix
2013-03-31 22:17:35 ----D---- C:\Program Files\AVG SafeGuard toolbar
======List of files/folders modified in the last 1 months======
2013-04-28 19:07:52 ----D---- C:\Program Files
2013-04-28 19:05:32 ----D---- C:\Documents and Settings\BOBO\Application Data\uTorrent
2013-04-28 18:43:07 ----D---- C:\WINDOWS\Prefetch
2013-04-28 18:43:07 ----D---- C:\Program Files\JDownloader
2013-04-28 18:36:29 ----SHD---- C:\System Volume Information
2013-04-28 18:35:35 ----HD---- C:\WINDOWS\inf
2013-04-28 18:35:35 ----D---- C:\WINDOWS\system32\drivers
2013-04-28 17:45:53 ----D---- C:\Temp
2013-04-28 17:45:26 ----D---- C:\WINDOWS\system32
2013-04-28 17:19:59 ----D---- C:\WINDOWS
2013-04-28 17:18:06 ----D---- C:\Program Files\Registry Mechanic
2013-04-28 17:00:11 ----D---- C:\WINDOWS\system32\CatRoot2
2013-04-28 16:59:28 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2013-04-28 16:58:43 ----D---- C:\WINDOWS\system32\config
2013-04-28 16:58:28 ----D---- C:\WINDOWS\system32\wbem
2013-04-28 16:58:27 ----D---- C:\WINDOWS\Registration
2013-04-28 16:58:15 ----D---- C:\DVD
2013-04-28 16:57:57 ----D---- C:\Qoobox
2013-04-28 16:57:46 ----HD---- C:\Program Files\InstallShield Installation Information
2013-04-28 16:57:35 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-04-28 16:45:23 ----D---- C:\Program Files\ASUS
2013-04-28 16:29:03 ----D---- C:\Documents and Settings\All Users\Application Data\Panda Security
2013-04-28 16:16:58 ----D---- C:\WINDOWS\security
2013-04-28 15:43:35 ----A---- C:\WINDOWS\system.ini
2013-04-28 15:40:56 ----D---- C:\WINDOWS\AppPatch
2013-04-28 15:40:53 ----D---- C:\Program Files\Common Files
2013-04-28 10:36:41 ----D---- C:\WINDOWS\Minidump
2013-04-27 09:33:42 ----D---- C:\Documents and Settings\BOBO\Application Data\DMCache
2013-04-27 02:35:52 ----D---- C:\Demux
2013-04-27 02:20:18 ----A---- C:\WINDOWS\NeroDigital.ini
2013-04-27 02:18:25 ----A---- C:\WINDOWS\DVDIdlePro.INI
2013-04-26 12:25:20 ----D---- C:\Documents and Settings\All Users\Application Data\DVD Shrink
2013-04-26 09:00:26 ----D---- C:\Documents and Settings\BOBO\Application Data\ICQ
2013-04-26 08:57:40 ----A---- C:\WINDOWS\IfoEdit.INI
2013-04-26 08:51:33 ----D---- C:\Documents and Settings\BOBO\Application Data\IDM
2013-04-25 23:55:47 ----D---- C:\WINDOWS\Microsoft.NET
2013-04-25 23:04:00 ----D---- C:\Documents and Settings\BOBO\Application Data\Media Player Classic
2013-04-25 08:51:47 ----SHD---- C:\WINDOWS\Installer
2013-04-25 08:51:44 ----D---- C:\Program Files\Microsoft Silverlight
2013-04-25 08:49:58 ----RSD---- C:\WINDOWS\assembly
2013-04-25 08:49:47 ----D---- C:\WINDOWS\system32\en-US
2013-04-25 08:49:17 ----D---- C:\WINDOWS\WinSxS
2013-04-24 13:17:12 ----SD---- C:\WINDOWS\Tasks
2013-04-24 12:17:59 ----D---- C:\Documents and Settings\BOBO\Application Data\Vso
2013-04-24 12:17:59 ----D---- C:\Documents and Settings\BOBO\Application Data\Skype
2013-04-24 12:17:59 ----D---- C:\Documents and Settings\All Users\Application Data\VSO
2013-04-24 10:12:13 ----D---- C:\VideoOutput
2013-04-22 10:01:36 ----D---- C:\Program Files\Windows Doctor
2013-04-22 09:59:45 ----D---- C:\Program Files\WinRAR
2013-04-22 09:59:42 ----D---- C:\Deep Purple.-.Discography(1968-2005). -SmoK
2013-04-22 09:57:48 ----D---- C:\WINDOWS\Debug
2013-04-21 09:28:52 ----A---- C:\WINDOWS\maketorrent.ini
2013-04-21 09:27:58 ----D---- C:\Torrent up
2013-04-21 09:19:14 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-04-20 16:36:12 ----D---- C:\Program Files\AutoGK
2013-04-19 06:31:49 ----D---- C:\AllokMP3toAMRFolder
2013-04-18 10:45:11 ----RSD---- C:\WINDOWS\Fonts
2013-04-15 03:54:49 ----D---- C:\WINDOWS\system32\CatRoot
2013-04-14 23:27:42 ----A---- C:\Documents and Settings\BOBO\Application Data\DVDSubEdit.ini
2013-04-14 23:06:11 ----D---- C:\WINDOWS\system32\ReinstallBackups
2013-04-14 23:06:08 ----RSHDC---- C:\WINDOWS\system32\dllcache
2013-04-14 23:06:01 ----D---- C:\Program Files\NVIDIA Corporation
2013-04-14 17:13:26 ----D---- C:\Documents and Settings\All Users\Application Data\Skype
2013-04-14 17:13:22 ----RD---- C:\Program Files\Skype
2013-04-14 17:13:22 ----D---- C:\Program Files\Common Files\Skype
2013-04-14 13:06:28 ----D---- C:\Documents and Settings\BOBO\Application Data\vlc
2013-04-11 21:51:19 ----D---- C:\Program Files\Internet Explorer
2013-04-11 21:51:00 ----D---- C:\WINDOWS\ie8updates
2013-04-11 21:50:55 ----HD---- C:\WINDOWS\$hf_mig$
2013-04-11 21:47:52 ----A---- C:\WINDOWS\system32\MRT.exe
2013-04-10 21:21:56 ----D---- C:\Program Files\Opera
2013-04-10 10:01:48 ----D---- C:\VobBlanker
2013-04-10 10:01:48 ----D---- C:\NeroPortable
2013-04-10 10:00:19 ----D---- C:\Program Files\Panda Security
2013-04-10 09:53:05 ----D---- C:\Program Files\XnView
2013-04-04 10:26:06 ----D---- C:\Documents and Settings
2013-04-04 10:04:46 ----A---- C:\WINDOWS\win.ini
2013-03-31 18:59:47 ----A---- C:\Documents and Settings\BOBO\Application Data\AutoGK.ini
2013-03-31 14:27:00 ----D---- C:\MyAudio
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AsIO;AsIO; C:\WINDOWS\system32\drivers\AsIO.sys [2006-10-18 12664]
R1 ASPI32;ASPI32; C:\WINDOWS\system32\drivers\ASPI32.sys [2002-07-17 16877]
R1 cdrbsdrv;cdrbsdrv; C:\WINDOWS\system32\drivers\cdrbsdrv.sys [2013-01-27 33408]
R1 IDMTDI;IDMTDI; C:\WINDOWS\system32\DRIVERS\idmtdi.sys [2011-07-06 101616]
R1 NNSALPC;NNSAlpc; C:\WINDOWS\system32\DRIVERS\NNSAlpc.sys [2012-11-26 82728]
R1 NNSHTTP;NNSHttp; C:\WINDOWS\system32\DRIVERS\NNSHttp.sys [2012-11-26 119080]
R1 NNSHTTPS;NNSHttps; C:\WINDOWS\system32\DRIVERS\NNSHttps.sys [2013-01-09 95584]
R1 NNSIDS;NNSids; C:\WINDOWS\system32\DRIVERS\NNSIds.sys [2012-11-26 123944]
R1 NNSPICC;NNSPicc; C:\WINDOWS\system32\DRIVERS\NNSPicc.sys [2012-11-26 94632]
R1 NNSPIHS;NNSPihs; C:\WINDOWS\system32\DRIVERS\NNSPihs.sys [2012-11-26 51496]
R1 NNSPOP3;NNSPop3; C:\WINDOWS\system32\DRIVERS\NNSPop3.sys [2012-11-26 105640]
R1 NNSPROT;NNSProt; C:\WINDOWS\system32\DRIVERS\NNSProt.sys [2012-11-26 286888]
R1 NNSPRV;NNSPrv; C:\WINDOWS\system32\DRIVERS\NNSPrv.sys [2012-11-26 159528]
R1 NNSSMTP;NNSSmtp; C:\WINDOWS\system32\DRIVERS\NNSSmtp.sys [2012-11-26 108200]
R1 NNSSTRM;NNSStrm; C:\WINDOWS\system32\DRIVERS\NNSStrm.sys [2012-11-28 218024]
R1 NNSTLSC;NNSTlsc; C:\WINDOWS\system32\DRIVERS\NNSTlsc.sys [2012-11-26 93096]
R1 PSINKNC;PSINKNC; C:\WINDOWS\system32\DRIVERS\psinknc.sys [2012-11-09 178728]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2007-08-07 33052]
R1 sp_rsdrv2;Spyware Terminator 2012 Realtime Shield Driver; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2008-04-14 12032]
R2 PSINAflt;PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [2012-11-09 149288]
R2 PSINFile;PSINFile; C:\WINDOWS\system32\DRIVERS\PSINFile.sys [2012-11-09 102184]
R2 PSINProc;PSINProc; C:\WINDOWS\system32\DRIVERS\PSINProc.sys [2012-11-09 114216]
R2 PSINProt;PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [2012-11-09 123560]
R3 Cap713x;Cap713x Video Capture; C:\WINDOWS\system32\DRIVERS\Cap713x.sys [2004-06-10 502784]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-03-01 4484608]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2013-02-08 12648960]
R3 NVENETFD;NVIDIA nForce 10/100 Mbps Ethernet ; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2010-03-04 70912]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2010-03-04 13824]
R3 PSKMAD;PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [2012-11-07 46672]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbohci;Microsoft USB Open Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-14 17152]
R3 usbstor;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys [2004-10-19 20096]
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys [2004-09-21 10804]
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys [2004-12-01 22488]
S3 BthEnum;Bluetooth Request Block Driver; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-14 17024]
S3 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\system32\DRIVERS\vbtenum.sys [2004-09-21 11604]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-14 101120]
S3 BTHPORT;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-13 272128]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-14 18944]
S3 BTNetFilter;Bluetooth Network Filter; \??\C:\WINDOWS\system32\drivers\BTNetFilter.sys []
S3 catchme;catchme; \??\C:\ComboFix_2\catchme.sys []
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 genmcmnUSB;USB Scroll Mouse Driver; C:\WINDOWS\system32\DRIVERS\gflmouhid.sys [2003-08-07 6528]
S3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys []
S3 mbr;mbr; \??\C:\DOCUME~1\BOBO\LOCALS~1\Temp\mbr.sys []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 n558;N558 Bluetooth USB Filter Driver; C:\WINDOWS\System32\Drivers\n558.sys [2007-08-15 9600]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 NNSNAHS;Network Activity Hook Server Service; C:\WINDOWS\system32\DRIVERS\NNSNAHS.sys [2012-10-22 38824]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-14 59136]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2008-04-14 5888]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 TfNetMon;TfNetMon; \??\C:\WINDOWS\system32\drivers\TfNetMon.sys []
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys [2004-10-19 61312]
S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys [2004-11-05 82148]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S4 exFat;exFat; C:\WINDOWS\system32\drivers\exFat.sys [2008-09-29 133632]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 NanoServiceMain;Panda Cloud Antivirus Service; C:\Program Files\Panda Security\Panda Cloud Antivirus\PSANHost.exe [2013-01-27 140512]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-11 38912]
S2 PSUAService;Panda Product Service; C:\Program Files\Panda Security\Panda Cloud Antivirus\PSUAService.exe [2013-01-27 37088]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-02-28 161384]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe []
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-01-01 250808]
S4 bgsvcgen;B's Recorder GOLD Library General Service; C:\WINDOWS\system32\bgsvcgen.exe [2013-01-27 145504]
S4 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [2010-01-21 370792]
S4 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S4 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2012-12-31 170408]
S4 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-14 682344]
S4 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-14 398184]
S4 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S4 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [2010-01-21 167528]
S4 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2010-03-16 154216]
S4 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service; C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe [2012-08-21 794272]
S4 PDF Architect Helper Service;PDF Architect Helper Service; C:\Program Files\PDF Architect\HelperService.exe [2013-01-09 1324104]
S4 PDF Architect Service;PDF Architect Service; C:\Program Files\PDF Architect\ConversionService.exe [2013-01-09 795208]
S4 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; C:\Program Files\Spyware Terminator\st_rsser.exe [2012-09-07 587472]
-----------------EOF-----------------
Pripájam logy:
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.10.2
Run by BOBO at 18:13:11 on 2013-04-28
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.421.1033.18.1919.1110 [GMT 2:00]
.
AV: Panda Cloud Antivirus *Enabled/Updated* {5AD27692-540A-464E-B625-78275FA38393}
FW: Cloud Antivirus Firewall *Disabled*
.
============== Running Processes ================
.
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\Program Files\Panda Security\Panda Cloud Antivirus\PSANHost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\cidaemon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Panda Security\Panda Cloud Antivirus\PSUAMain.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Opera\Opera.exe
C:\Program Files\Your Uninstaller 2010\urmain.exe
C:\Program Files\Your Uninstaller 2010\urmain.exe
C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k bthsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.sk/
uURLSearchHooks: {472734EA-242A-422b-ADF8-83D1E48CC825} - <orphaned>
BHO: IDM integration (IDMIEHlprObj Class): {0055C089-8582-441B-A0BF-17B458C2A3A8} - c:\program files\internet download manager\IDMIECC.dll
uRun: [uTorrent] "c:\program files\utorrent\uTorrent.exe"
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [PSUAMain] "c:\program files\panda security\panda cloud antivirus\PSUAMain.exe" /LaunchSysTray
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
uPolicies-Explorer: NoDriveTypeAutoRun = dword:323
uPolicies-Explorer: NoDriveAutoRun = dword:67108863
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
IE: Stiahnuť s IDM - c:\program files\internet download manager\IEExt.htm
IE: Stiahnuť s IDM všetky prepojenia - c:\program files\internet download manager\IEGetAll.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://www.update.microsoft.com/windowsupdate/ ... 6973103500
TCP: NameServer = 195.34.133.21 192.168.0.1
TCP: Interfaces\{95590E9A-F60B-4752-BBD9-3232AC14190D} : DHCPNameServer = 195.34.133.21 192.168.0.1
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
SEH: DVDIdleShell Class - {93994DE8-8239-4655-B1D1-5F4E91300429} - c:\program files\dvdidle pro\DVDShell.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\bobo\application data\mozilla\firefox\profiles\d3wvyde2.default\
FF - prefs.js: browser.search.selectedEngine - Search Results
FF - prefs.js: browser.startup.homepage - hxxps://www.facebook.com/
FF - prefs.js: network.proxy.type - 0
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\windows\system32\adobe\director\np32dsw_1168638.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_5_502_135.dll
FF - plugin: c:\windows\system32\npdeployJava1.dll
FF - plugin: c:\windows\system32\npptools.dll
.
============= SERVICES / DRIVERS ===============
.
R1 IDMTDI;IDMTDI;c:\windows\system32\drivers\idmtdi.sys [2011-12-29 101616]
R1 NNSALPC;NNSAlpc;c:\windows\system32\drivers\NNSAlpc.sys [2012-11-9 82728]
R1 NNSHTTP;NNSHttp;c:\windows\system32\drivers\NNSHttp.sys [2012-11-9 119080]
R1 NNSHTTPS;NNSHttps;c:\windows\system32\drivers\NNSHttps.sys [2013-1-9 95584]
R1 NNSIDS;NNSids;c:\windows\system32\drivers\NNSIds.sys [2012-11-9 123944]
R1 NNSPICC;NNSPicc;c:\windows\system32\drivers\NNSpicc.sys [2012-11-9 94632]
R1 NNSPIHS;NNSPihs;c:\windows\system32\drivers\NNSpihs.sys [2012-11-9 51496]
R1 NNSPOP3;NNSPop3;c:\windows\system32\drivers\NNSPop3.sys [2012-11-9 105640]
R1 NNSPROT;NNSProt;c:\windows\system32\drivers\NNSProt.sys [2012-11-9 286888]
R1 NNSPRV;NNSPrv;c:\windows\system32\drivers\NNSPrv.sys [2012-11-9 159528]
R1 NNSSMTP;NNSSmtp;c:\windows\system32\drivers\NNSSmtp.sys [2012-11-9 108200]
R1 NNSSTRM;NNSStrm;c:\windows\system32\drivers\NNSStrm.sys [2012-11-9 218024]
R1 NNSTLSC;NNSTlsc;c:\windows\system32\drivers\NNStlsc.sys [2012-11-9 93096]
R1 PSINKNC;PSINKNC;c:\windows\system32\drivers\PSINKNC.sys [2012-11-9 178728]
R1 sp_rsdrv2;Spyware Terminator 2012 Realtime Shield Driver;c:\windows\system32\drivers\sp_rsdrv2.sys [2013-1-16 32768]
R2 NanoServiceMain;Panda Cloud Antivirus Service;c:\program files\panda security\panda cloud antivirus\PSANHost.exe [2013-1-27 140512]
R2 PSINAflt;PSINAflt;c:\windows\system32\drivers\PSINAflt.sys [2012-11-9 149288]
R2 PSINFile;PSINFile;c:\windows\system32\drivers\PSINFile.sys [2012-11-9 102184]
R2 PSINProc;PSINProc;c:\windows\system32\drivers\PSINProc.sys [2012-11-9 114216]
R2 PSINProt;PSINProt;c:\windows\system32\drivers\PSINProt.sys [2012-11-9 123560]
R3 Cap713x;Cap713x Video Capture;c:\windows\system32\drivers\Cap713x.sys [2004-6-10 502784]
R3 PSched;QoS Packet Scheduler;c:\windows\system32\drivers\psched.sys [2008-4-14 69120]
R3 PSKMAD;PSKMAD;c:\windows\system32\drivers\PSKMAD.sys [2013-4-25 46672]
S0 TfFsMon;TfFsMon;c:\windows\system32\drivers\tffsmon.sys --> c:\windows\system32\drivers\TfFsMon.sys [?]
S0 TFSysMon;TfSysMon;c:\windows\system32\drivers\tfsysmon.sys --> c:\windows\system32\drivers\TfSysMon.sys [?]
S2 PSUAService;Panda Product Service;c:\program files\panda security\panda cloud antivirus\PSUAService.exe [2013-1-27 37088]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2013-2-28 161384]
S3 genmcmnUSB;USB Scroll Mouse Driver;c:\windows\system32\drivers\gflmouhid.sys [2003-8-7 6528]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-1-1 21104]
S3 NNSNAHS;Network Activity Hook Server Service;c:\windows\system32\drivers\NNSNAHS.sys [2012-10-22 38824]
S3 TfNetMon;TfNetMon;\??\c:\windows\system32\drivers\tfnetmon.sys --> c:\windows\system32\drivers\TfNetMon.sys [?]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\wpffontcache_v0400.exe --> c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [?]
S4 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2013-1-1 682344]
S4 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2013-1-1 398184]
S4 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service;c:\program files\common files\pc tools\smonitor\StartManSvc.exe [2013-1-3 794272]
S4 PDF Architect Helper Service;PDF Architect Helper Service;c:\program files\pdf architect\HelperService.exe [2013-1-9 1324104]
S4 PDF Architect Service;PDF Architect Service;c:\program files\pdf architect\ConversionService.exe [2013-1-9 795208]
S4 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service;c:\program files\spyware terminator\st_rsser.exe [2013-1-16 587472]
.
=============== Created Last 30 ================
.
2013-04-28 15:44:24 32128 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2013-04-28 14:58:27 -------- d-----w- c:\windows\system32\wbem\repository\FS
2013-04-28 14:58:27 -------- d-----w- c:\windows\system32\wbem\Repository
2013-04-28 14:58:00 -------- d-----w- c:\documents and settings\all users\application data\SaveByclick
2013-04-28 14:00:34 -------- d-----w- C:\RECYCLER(2)
2013-04-25 20:58:14 46672 ----a-w- c:\windows\system32\drivers\PSKMAD.sys
2013-04-24 10:15:09 -------- d-----w- c:\program files\CCleaner
2013-04-23 00:05:43 -------- d-----w- C:\Spear Britney
2013-04-23 00:01:11 -------- d-----w- C:\Obrenovac
2013-04-22 23:59:24 -------- d-----w- C:\Update
2013-04-22 23:58:36 -------- d-----w- C:\Amateur Self Shots1
2013-04-20 14:58:10 -------- d-----w- c:\documents and settings\bobo\local settings\application data\Pokki
2013-04-20 14:57:31 -------- d-----w- c:\documents and settings\all users\application data\Freemake
2013-04-20 14:57:19 -------- d-----w- c:\program files\Freemake
2013-04-20 14:57:19 -------- d-----w- c:\documents and settings\bobo\application data\OpenCandy
2013-04-18 09:06:57 -------- d-----w- c:\program files\OpenVideoConverter
2013-04-18 08:45:13 70656 ----a-w- c:\windows\system32\yv12vfw.dll
2013-04-18 08:45:13 70656 ----a-w- c:\windows\system32\i420vfw.dll
2013-04-18 08:45:13 27648 ----a-w- c:\windows\system32\AVSredirect.dll
2013-04-18 08:44:55 -------- d-----w- c:\program files\eRightSoft
2013-04-18 05:44:14 -------- d-----w- c:\documents and settings\bobo\application data\NVIDIA
2013-04-14 21:06:13 1072544 ----a-w- c:\windows\system32\nvdrsdb1.bin
2013-04-14 21:06:13 1072544 ----a-w- c:\windows\system32\nvdrsdb0.bin
2013-04-14 21:06:13 1 ----a-w- c:\windows\system32\nvdrssel.bin
2013-04-14 18:38:56 -------- d-----w- c:\program files\SomePDF
2013-04-14 10:37:32 -------- d-----w- c:\program files\Driver-Soft
2013-04-14 01:49:34 7520 ----a-w- c:\documents and settings\all users\application data\NanoRepository.bin
2013-04-10 10:14:44 -------- d-----w- c:\documents and settings\bobo\application data\avidemux
2013-04-10 10:14:26 -------- d-----w- c:\program files\Avidemux 2.5
2013-04-10 08:01:56 -------- d-----w- C:\Hailey Arthur-Hotel
2013-04-10 07:59:49 -------- d-----w- c:\documents and settings\all users\application data\blekko toolbars
2013-04-04 06:08:15 -------- d-----w- c:\documents and settings\bobo\application data\Ashampoo
2013-04-04 06:07:59 -------- d-----w- c:\documents and settings\bobo\local settings\application data\ashampoo
2013-04-04 06:07:26 -------- d-----w- c:\documents and settings\all users\application data\Ashampoo
2013-04-04 06:07:24 -------- d-----w- c:\program files\Ashampoo
2013-04-01 11:46:58 -------- d-----w- c:\program files\DVDFab 8 Qt
2013-04-01 11:38:38 -------- d-----w- c:\program files\CZ-SK-IPTV
2013-04-01 11:31:42 -------- d-----w- c:\program files\NeroPortable
2013-04-01 02:37:48 -------- d-----w- c:\documents and settings\bobo\application data\RipIt4Me
2013-03-31 20:34:06 -------- d-----w- c:\program files\MKVtoolnix
2013-03-31 20:17:35 -------- d-----w- c:\program files\AVG SafeGuard toolbar
.
==================== Find3M ====================
.
2013-03-08 08:36:22 293376 ----a-w- c:\windows\system32\winsrv.dll
2013-03-07 01:32:25 2149888 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-03-07 00:50:30 2028544 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-03-02 02:06:31 916480 ----a-w- c:\windows\system32\wininet.dll
2013-03-02 02:06:30 43520 ------w- c:\windows\system32\licmgr10.dll
2013-03-02 02:06:30 1469440 ------w- c:\windows\system32\inetcpl.cpl
2013-03-02 01:25:02 1867264 ----a-w- c:\windows\system32\win32k.sys
2013-03-02 01:08:47 385024 ------w- c:\windows\system32\html.iec
2013-02-27 07:56:51 2067456 ----a-w- c:\windows\system32\mstscax.dll
2013-02-12 00:32:23 12928 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-02-11 00:18:47 720896 ----a-w- c:\windows\iun6002.exe
2013-02-08 03:03:02 19189760 ----a-w- c:\windows\system32\nvoglnt.dll
2013-02-08 03:03:02 1010464 ----a-w- c:\windows\system32\nvdispco32.dll
2013-02-08 03:03:00 4494336 ----a-w- c:\windows\system32\nv4_disp.dll
2013-02-08 03:02:58 7536640 ----a-w- c:\windows\system32\nvcuda.dll
2013-02-08 03:02:58 2581792 ----a-w- c:\windows\system32\nvcuvid.dll
2013-02-08 03:02:56 892704 ----a-w- c:\windows\system32\nvdispgenco32.dll
2013-02-08 03:02:56 2389504 ----a-w- c:\windows\system32\nvapi.dll
2013-02-08 03:02:56 17551360 ----a-w- c:\windows\system32\nvcompiler.dll
2013-02-08 03:02:44 12648960 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2013-02-08 03:02:42 5967872 ----a-w- c:\windows\system32\nvopencl.dll
2013-02-08 03:02:42 1869088 ----a-w- c:\windows\system32\nvcuvenc.dll
2013-01-19 07:44:40 2174976 ----a-w- c:\program files\common files\atimpenc.dll
2006-05-03 09:06:54 163328 --sha-r- c:\windows\system32\flvDX.dll
2007-02-21 10:47:16 31232 --sha-r- c:\windows\system32\msfDX.dll
2008-03-16 12:30:52 216064 --sha-r- c:\windows\system32\nbDX.dll
2010-01-06 22:00:00 107520 --sha-r- c:\windows\system32\TAKDSDecoder.dll
.
============= FINISH: 18:18:40,92 ===============
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
Logfile of random's system information tool 1.06 (written by random/random)
Run by BOBO at 2013-04-28 19:07:51
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 4 GB (5%) free of 80 GB
Total RAM: 1919 MB (47% free)
HijackThis download failed
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\RegClean Pro_DEFAULT.job
C:\WINDOWS\tasks\RegClean Pro_UPDATES.job
C:\WINDOWS\tasks\RMAutoUpdate.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files\Internet Download Manager\IDMIECC.dll [2011-10-01 218544]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"PSUAMain"=C:\Program Files\Panda Security\Panda Cloud Antivirus\PSUAMain.exe [2013-01-27 32480]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2013-01-01 399224]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AsusStartupHelp]
C:\Program Files\ASUS\AASP\1.00.17\AsRunHelp.exe [2006-11-14 363008]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BluetoothAuthenticationAgent]
bthprops.cpl,,BluetoothAuthenticationAgent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\WINDOWS\system32\NvCpl.dll [2010-03-16 13670504]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
C:\WINDOWS\system32\NvMcTray.dll [2010-03-16 110696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Panda Security URL Filtering]
C:\Documents and Settings\All Users\Application Data\Panda Security URL Filtering\Panda_URL_Filtering.exe [2012-10-15 221832]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
C:\Program Files\PowerISO\PWRISOVM.EXE [2007-08-07 200704]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
C:\WINDOWS\RTHDCPL.EXE [2007-02-26 16125440]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyTel]
C:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminatorShield]
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2012-09-07 2777296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminatorUpdater]
C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2012-09-07 3673808]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^BlueSoleil.lnk]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"JavaQuickStarterService"=2
"NVSvc"=2
"AdobeFlashPlayerUpdateSvc"=3
"NBService"=3
"BlueSoleil Hid Service"=2
"nSvcIp"=2
"ForceWare Intelligent Application Manager (IAM)"=2
"MBAMService"=2
"MBAMScheduler"=2
"idsvc"=3
"ICQ Service"=2
"NGRegClnSrv"=2
"ST2012_Svc"=2
"PCToolsSSDMonitorSvc"=2
"PCSUService"=2
"PDF Architect Service"=2
"PDF Architect Helper Service"=2
"bgsvcgen"=2
"SkypeUpdate"=2
"NMIndexingService"=3
C:\Documents and Settings\BOBO\Start Menu\Programs\Startup
_uninst_70805343.lnk - C:\Documents and Settings\BOBO\Local Settings\Temp\_uninst_70805343.bat
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{93994DE8-8239-4655-B1D1-5F4E91300429}"=C:\PROGRA~1\DVDIDL~1\DVDShell.dll [2004-10-09 49152]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoInstrumentation"=1
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"HonorAutoRunSetting"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\ICQ7.7\ICQ.exe"="C:\Program Files\ICQ7.7\ICQ.exe:*:Enabled:ICQ"
"C:\Program Files\Java\jre7\launch4j-tmp\frd.exe"="C:\Program Files\Java\jre7\launch4j-tmp\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe"="C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe:*:Enabled:BlueSoleil"
"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype "
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
======List of files/folders created in the last 1 months======
2013-04-28 19:07:52 ----D---- C:\Program Files\trend micro
2013-04-28 17:19:59 ----D---- C:\WINDOWS\LastGood
2013-04-28 16:58:04 ----SHD---- C:\RECYCLER
2013-04-28 16:58:00 ----D---- C:\Documents and Settings\All Users\Application Data\SaveByclick
2013-04-28 16:58:00 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2013-04-28 16:54:24 ----D---- C:\rsit
2013-04-28 16:00:34 ----D---- C:\RECYCLER(2)
2013-04-28 15:45:56 ----D---- C:\WINDOWS\temp
2013-04-28 15:45:54 ----A---- C:\ComboFix.txt
2013-04-24 12:15:09 ----D---- C:\Program Files\CCleaner
2013-04-24 12:12:44 ----D---- C:\Program Files\Google
2013-04-24 08:21:18 ----D---- C:\Program Files\Mozilla Firefox
2013-04-23 02:05:43 ----D---- C:\Spear Britney
2013-04-23 02:01:11 ----D---- C:\Obrenovac
2013-04-23 01:59:24 ----D---- C:\Update
2013-04-23 01:58:36 ----D---- C:\Amateur Self Shots1
2013-04-20 16:57:31 ----D---- C:\Documents and Settings\All Users\Application Data\Freemake
2013-04-20 16:57:19 ----D---- C:\Program Files\Freemake
2013-04-20 16:57:19 ----D---- C:\Documents and Settings\BOBO\Application Data\OpenCandy
2013-04-18 11:13:16 ----RASH---- C:\WINDOWS\system32\TAKDSDecoder.dll
2013-04-18 11:13:16 ----RASH---- C:\WINDOWS\system32\nbDX.dll
2013-04-18 11:13:16 ----RASH---- C:\WINDOWS\system32\msfDX.dll
2013-04-18 11:13:16 ----RASH---- C:\WINDOWS\system32\flvDX.dll
2013-04-18 11:13:16 ----A---- C:\WINDOWS\system32\drvc.dll
2013-04-18 11:06:57 ----D---- C:\Program Files\OpenVideoConverter
2013-04-18 10:45:13 ----A---- C:\WINDOWS\system32\yv12vfw.dll
2013-04-18 10:45:13 ----A---- C:\WINDOWS\system32\i420vfw.dll
2013-04-18 10:45:13 ----A---- C:\WINDOWS\system32\AVSredirect.dll
2013-04-18 10:44:55 ----D---- C:\Program Files\eRightSoft
2013-04-18 07:44:14 ----D---- C:\Documents and Settings\BOBO\Application Data\NVIDIA
2013-04-16 03:43:26 ----A---- C:\DEBUG.TXT
2013-04-14 20:38:56 ----D---- C:\Program Files\SomePDF
2013-04-14 12:37:32 ----D---- C:\Program Files\Driver-Soft
2013-04-11 21:50:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2808735$
2013-04-11 21:50:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2820917$
2013-04-11 21:47:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2813345$
2013-04-11 21:47:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2813170$
2013-04-10 12:14:44 ----D---- C:\Documents and Settings\BOBO\Application Data\avidemux
2013-04-10 12:14:26 ----D---- C:\Program Files\Avidemux 2.5
2013-04-10 10:01:56 ----D---- C:\Hailey Arthur-Hotel
2013-04-10 10:00:20 ----D---- C:\Config.Msi
2013-04-10 09:59:49 ----D---- C:\Documents and Settings\All Users\Application Data\blekko toolbars
2013-04-04 10:16:50 ----SHD---- C:\WINDOWS\CSC
2013-04-04 08:08:15 ----D---- C:\Documents and Settings\BOBO\Application Data\Ashampoo
2013-04-04 08:07:26 ----D---- C:\Documents and Settings\All Users\Application Data\Ashampoo
2013-04-04 08:07:24 ----D---- C:\Program Files\Ashampoo
2013-04-01 13:46:58 ----D---- C:\Program Files\DVDFab 8 Qt
2013-04-01 13:38:38 ----D---- C:\Program Files\CZ-SK-IPTV
2013-04-01 13:31:42 ----D---- C:\Program Files\NeroPortable
2013-04-01 04:37:48 ----D---- C:\Documents and Settings\BOBO\Application Data\RipIt4Me
2013-03-31 22:34:06 ----D---- C:\Program Files\MKVtoolnix
2013-03-31 22:17:35 ----D---- C:\Program Files\AVG SafeGuard toolbar
======List of files/folders modified in the last 1 months======
2013-04-28 19:07:52 ----D---- C:\Program Files
2013-04-28 19:05:32 ----D---- C:\Documents and Settings\BOBO\Application Data\uTorrent
2013-04-28 18:43:07 ----D---- C:\WINDOWS\Prefetch
2013-04-28 18:43:07 ----D---- C:\Program Files\JDownloader
2013-04-28 18:36:29 ----SHD---- C:\System Volume Information
2013-04-28 18:35:35 ----HD---- C:\WINDOWS\inf
2013-04-28 18:35:35 ----D---- C:\WINDOWS\system32\drivers
2013-04-28 17:45:53 ----D---- C:\Temp
2013-04-28 17:45:26 ----D---- C:\WINDOWS\system32
2013-04-28 17:19:59 ----D---- C:\WINDOWS
2013-04-28 17:18:06 ----D---- C:\Program Files\Registry Mechanic
2013-04-28 17:00:11 ----D---- C:\WINDOWS\system32\CatRoot2
2013-04-28 16:59:28 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2013-04-28 16:58:43 ----D---- C:\WINDOWS\system32\config
2013-04-28 16:58:28 ----D---- C:\WINDOWS\system32\wbem
2013-04-28 16:58:27 ----D---- C:\WINDOWS\Registration
2013-04-28 16:58:15 ----D---- C:\DVD
2013-04-28 16:57:57 ----D---- C:\Qoobox
2013-04-28 16:57:46 ----HD---- C:\Program Files\InstallShield Installation Information
2013-04-28 16:57:35 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-04-28 16:45:23 ----D---- C:\Program Files\ASUS
2013-04-28 16:29:03 ----D---- C:\Documents and Settings\All Users\Application Data\Panda Security
2013-04-28 16:16:58 ----D---- C:\WINDOWS\security
2013-04-28 15:43:35 ----A---- C:\WINDOWS\system.ini
2013-04-28 15:40:56 ----D---- C:\WINDOWS\AppPatch
2013-04-28 15:40:53 ----D---- C:\Program Files\Common Files
2013-04-28 10:36:41 ----D---- C:\WINDOWS\Minidump
2013-04-27 09:33:42 ----D---- C:\Documents and Settings\BOBO\Application Data\DMCache
2013-04-27 02:35:52 ----D---- C:\Demux
2013-04-27 02:20:18 ----A---- C:\WINDOWS\NeroDigital.ini
2013-04-27 02:18:25 ----A---- C:\WINDOWS\DVDIdlePro.INI
2013-04-26 12:25:20 ----D---- C:\Documents and Settings\All Users\Application Data\DVD Shrink
2013-04-26 09:00:26 ----D---- C:\Documents and Settings\BOBO\Application Data\ICQ
2013-04-26 08:57:40 ----A---- C:\WINDOWS\IfoEdit.INI
2013-04-26 08:51:33 ----D---- C:\Documents and Settings\BOBO\Application Data\IDM
2013-04-25 23:55:47 ----D---- C:\WINDOWS\Microsoft.NET
2013-04-25 23:04:00 ----D---- C:\Documents and Settings\BOBO\Application Data\Media Player Classic
2013-04-25 08:51:47 ----SHD---- C:\WINDOWS\Installer
2013-04-25 08:51:44 ----D---- C:\Program Files\Microsoft Silverlight
2013-04-25 08:49:58 ----RSD---- C:\WINDOWS\assembly
2013-04-25 08:49:47 ----D---- C:\WINDOWS\system32\en-US
2013-04-25 08:49:17 ----D---- C:\WINDOWS\WinSxS
2013-04-24 13:17:12 ----SD---- C:\WINDOWS\Tasks
2013-04-24 12:17:59 ----D---- C:\Documents and Settings\BOBO\Application Data\Vso
2013-04-24 12:17:59 ----D---- C:\Documents and Settings\BOBO\Application Data\Skype
2013-04-24 12:17:59 ----D---- C:\Documents and Settings\All Users\Application Data\VSO
2013-04-24 10:12:13 ----D---- C:\VideoOutput
2013-04-22 10:01:36 ----D---- C:\Program Files\Windows Doctor
2013-04-22 09:59:45 ----D---- C:\Program Files\WinRAR
2013-04-22 09:59:42 ----D---- C:\Deep Purple.-.Discography(1968-2005). -SmoK
2013-04-22 09:57:48 ----D---- C:\WINDOWS\Debug
2013-04-21 09:28:52 ----A---- C:\WINDOWS\maketorrent.ini
2013-04-21 09:27:58 ----D---- C:\Torrent up
2013-04-21 09:19:14 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-04-20 16:36:12 ----D---- C:\Program Files\AutoGK
2013-04-19 06:31:49 ----D---- C:\AllokMP3toAMRFolder
2013-04-18 10:45:11 ----RSD---- C:\WINDOWS\Fonts
2013-04-15 03:54:49 ----D---- C:\WINDOWS\system32\CatRoot
2013-04-14 23:27:42 ----A---- C:\Documents and Settings\BOBO\Application Data\DVDSubEdit.ini
2013-04-14 23:06:11 ----D---- C:\WINDOWS\system32\ReinstallBackups
2013-04-14 23:06:08 ----RSHDC---- C:\WINDOWS\system32\dllcache
2013-04-14 23:06:01 ----D---- C:\Program Files\NVIDIA Corporation
2013-04-14 17:13:26 ----D---- C:\Documents and Settings\All Users\Application Data\Skype
2013-04-14 17:13:22 ----RD---- C:\Program Files\Skype
2013-04-14 17:13:22 ----D---- C:\Program Files\Common Files\Skype
2013-04-14 13:06:28 ----D---- C:\Documents and Settings\BOBO\Application Data\vlc
2013-04-11 21:51:19 ----D---- C:\Program Files\Internet Explorer
2013-04-11 21:51:00 ----D---- C:\WINDOWS\ie8updates
2013-04-11 21:50:55 ----HD---- C:\WINDOWS\$hf_mig$
2013-04-11 21:47:52 ----A---- C:\WINDOWS\system32\MRT.exe
2013-04-10 21:21:56 ----D---- C:\Program Files\Opera
2013-04-10 10:01:48 ----D---- C:\VobBlanker
2013-04-10 10:01:48 ----D---- C:\NeroPortable
2013-04-10 10:00:19 ----D---- C:\Program Files\Panda Security
2013-04-10 09:53:05 ----D---- C:\Program Files\XnView
2013-04-04 10:26:06 ----D---- C:\Documents and Settings
2013-04-04 10:04:46 ----A---- C:\WINDOWS\win.ini
2013-03-31 18:59:47 ----A---- C:\Documents and Settings\BOBO\Application Data\AutoGK.ini
2013-03-31 14:27:00 ----D---- C:\MyAudio
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AsIO;AsIO; C:\WINDOWS\system32\drivers\AsIO.sys [2006-10-18 12664]
R1 ASPI32;ASPI32; C:\WINDOWS\system32\drivers\ASPI32.sys [2002-07-17 16877]
R1 cdrbsdrv;cdrbsdrv; C:\WINDOWS\system32\drivers\cdrbsdrv.sys [2013-01-27 33408]
R1 IDMTDI;IDMTDI; C:\WINDOWS\system32\DRIVERS\idmtdi.sys [2011-07-06 101616]
R1 NNSALPC;NNSAlpc; C:\WINDOWS\system32\DRIVERS\NNSAlpc.sys [2012-11-26 82728]
R1 NNSHTTP;NNSHttp; C:\WINDOWS\system32\DRIVERS\NNSHttp.sys [2012-11-26 119080]
R1 NNSHTTPS;NNSHttps; C:\WINDOWS\system32\DRIVERS\NNSHttps.sys [2013-01-09 95584]
R1 NNSIDS;NNSids; C:\WINDOWS\system32\DRIVERS\NNSIds.sys [2012-11-26 123944]
R1 NNSPICC;NNSPicc; C:\WINDOWS\system32\DRIVERS\NNSPicc.sys [2012-11-26 94632]
R1 NNSPIHS;NNSPihs; C:\WINDOWS\system32\DRIVERS\NNSPihs.sys [2012-11-26 51496]
R1 NNSPOP3;NNSPop3; C:\WINDOWS\system32\DRIVERS\NNSPop3.sys [2012-11-26 105640]
R1 NNSPROT;NNSProt; C:\WINDOWS\system32\DRIVERS\NNSProt.sys [2012-11-26 286888]
R1 NNSPRV;NNSPrv; C:\WINDOWS\system32\DRIVERS\NNSPrv.sys [2012-11-26 159528]
R1 NNSSMTP;NNSSmtp; C:\WINDOWS\system32\DRIVERS\NNSSmtp.sys [2012-11-26 108200]
R1 NNSSTRM;NNSStrm; C:\WINDOWS\system32\DRIVERS\NNSStrm.sys [2012-11-28 218024]
R1 NNSTLSC;NNSTlsc; C:\WINDOWS\system32\DRIVERS\NNSTlsc.sys [2012-11-26 93096]
R1 PSINKNC;PSINKNC; C:\WINDOWS\system32\DRIVERS\psinknc.sys [2012-11-09 178728]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2007-08-07 33052]
R1 sp_rsdrv2;Spyware Terminator 2012 Realtime Shield Driver; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2008-04-14 12032]
R2 PSINAflt;PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [2012-11-09 149288]
R2 PSINFile;PSINFile; C:\WINDOWS\system32\DRIVERS\PSINFile.sys [2012-11-09 102184]
R2 PSINProc;PSINProc; C:\WINDOWS\system32\DRIVERS\PSINProc.sys [2012-11-09 114216]
R2 PSINProt;PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [2012-11-09 123560]
R3 Cap713x;Cap713x Video Capture; C:\WINDOWS\system32\DRIVERS\Cap713x.sys [2004-06-10 502784]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-03-01 4484608]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2013-02-08 12648960]
R3 NVENETFD;NVIDIA nForce 10/100 Mbps Ethernet ; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2010-03-04 70912]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2010-03-04 13824]
R3 PSKMAD;PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [2012-11-07 46672]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbohci;Microsoft USB Open Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-14 17152]
R3 usbstor;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys [2004-10-19 20096]
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys [2004-09-21 10804]
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys [2004-12-01 22488]
S3 BthEnum;Bluetooth Request Block Driver; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-14 17024]
S3 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\system32\DRIVERS\vbtenum.sys [2004-09-21 11604]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-14 101120]
S3 BTHPORT;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-13 272128]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-14 18944]
S3 BTNetFilter;Bluetooth Network Filter; \??\C:\WINDOWS\system32\drivers\BTNetFilter.sys []
S3 catchme;catchme; \??\C:\ComboFix_2\catchme.sys []
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 genmcmnUSB;USB Scroll Mouse Driver; C:\WINDOWS\system32\DRIVERS\gflmouhid.sys [2003-08-07 6528]
S3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys []
S3 mbr;mbr; \??\C:\DOCUME~1\BOBO\LOCALS~1\Temp\mbr.sys []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 n558;N558 Bluetooth USB Filter Driver; C:\WINDOWS\System32\Drivers\n558.sys [2007-08-15 9600]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 NNSNAHS;Network Activity Hook Server Service; C:\WINDOWS\system32\DRIVERS\NNSNAHS.sys [2012-10-22 38824]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-14 59136]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2008-04-14 5888]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 TfNetMon;TfNetMon; \??\C:\WINDOWS\system32\drivers\TfNetMon.sys []
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys [2004-10-19 61312]
S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys [2004-11-05 82148]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S4 exFat;exFat; C:\WINDOWS\system32\drivers\exFat.sys [2008-09-29 133632]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 NanoServiceMain;Panda Cloud Antivirus Service; C:\Program Files\Panda Security\Panda Cloud Antivirus\PSANHost.exe [2013-01-27 140512]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-11 38912]
S2 PSUAService;Panda Product Service; C:\Program Files\Panda Security\Panda Cloud Antivirus\PSUAService.exe [2013-01-27 37088]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-02-28 161384]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe []
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-01-01 250808]
S4 bgsvcgen;B's Recorder GOLD Library General Service; C:\WINDOWS\system32\bgsvcgen.exe [2013-01-27 145504]
S4 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [2010-01-21 370792]
S4 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S4 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2012-12-31 170408]
S4 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-14 682344]
S4 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-14 398184]
S4 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S4 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [2010-01-21 167528]
S4 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2010-03-16 154216]
S4 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service; C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe [2012-08-21 794272]
S4 PDF Architect Helper Service;PDF Architect Helper Service; C:\Program Files\PDF Architect\HelperService.exe [2013-01-09 1324104]
S4 PDF Architect Service;PDF Architect Service; C:\Program Files\PDF Architect\ConversionService.exe [2013-01-09 795208]
S4 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; C:\Program Files\Spyware Terminator\st_rsser.exe [2012-09-07 587472]
-----------------EOF-----------------
