Tak tu sú logy,... ešte napíšem vopred,... že keď som spustil USBfir, tak mi pozatváralo väčšinu procesov (čo proste asi tak má byť
),... ale hlavná vec, že teraz už môžem prehliadať zložky na tom Externom disku (pred tým ich hodilo do karantény). Nemám ale zapnutý ESET, ten vyplo tiež. Takže logy tu :
USBFix :
############################## | UsbFix V 7.134 | [Deletion]
User: Matúš (Administrator) # MATÚŠ-PC
Updated 06/09/2013 by El Desaparecido
Started at 19:21:17 | 06/01/2014
Website:
http://www.sosvirus.net/
Upload Malware:
http://www.sosvirus.net/upload_malware.php
Contact:
eldesaparecido@sosvirus.net
PC: ASUSTeK Computer Inc. (K50IJ ) (X86-based PC)
CPU: Intel(R) Core(TM)2 Duo CPU T6570 @ 2.10GHz (2101)
RAM -> [Total : 3037 | Free : 1803]
BIOS: Default System BIOS
BOOT: Normal boot
OS: Microsoft Windows 7 Professional (6.1.7601 32-Bit) # Service Pack 1
WB: Windows Internet Explorer 11.0.9600.16476
SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: ESET Smart Security 7.0 [(!) Disabled | Updated]
FW: Windows FireWall Service [Enabled]
C:\ (%systemdrive%) -> Fixed drive # 44 Gb (13 Mb free - 30%) [] # NTFS
D:\ -> Fixed drive # 254 Gb (2 Mb free - 1%) [Data] # NTFS
E:\ -> CD-ROM
F:\ -> Removable drive # 7 Gb (5 Mb free - 62%) [NOVÝ ZVÄZOK] # FAT32
H:\ -> Fixed drive # 298 Gb (82 Mb free - 27%) [MATÚŠ ČIGÁŠ] # NTFS
################## | El Desaparecido Section |
HKLM\SOFTWARE | Run : [IgfxTray] - C:\Windows\system32\igfxtray.exe
HKLM\SOFTWARE | Run : [HotKeysCmds] - C:\Windows\system32\hkcmd.exe
HKLM\SOFTWARE | Run : [Persistence] - C:\Windows\system32\igfxpers.exe
HKLM\SOFTWARE | Run : [DivXUpdate] - "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
HKLM\SOFTWARE | Run : [Adobe ARM] - "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
HKLM\SOFTWARE | Run : [SysVContoller32] - C:\Windows\System32\svcl32\svcl32.exe
HKLM\SOFTWARE | Run : [APSDaemon] - "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
HKLM\SOFTWARE | Run : [CTFMon] - C:\Windows\System32\CTF\ctfmon.exe
HKLM\SOFTWARE | Run : [egui] - "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
HKLM\SOFTWARE | Run : [SunJavaUpdateSched] - "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
HKLM\SOFTWARE | Run : [iTunesHelper] - "C:\_Programy\iTunes\iTunesHelper.exe"
HKLM\SOFTWARE | RunOnce : [] -
HKU\S-1-5-19\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-20\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-21-2713317602-194128439-3607372724-1000\SOFTWARE | Run : [Device Detector] - DevDetect.exe -autorun
HKU\S-1-5-21-2713317602-194128439-3607372724-1000\SOFTWARE | Run : [DU Meter] - "C:\_Programy\DU Meter\DUMeter.exe" /autostart
HKU\S-1-5-21-2713317602-194128439-3607372724-1000\SOFTWARE | Run : [DAEMON Tools Lite] - "C:\_Programy\DAEMON Tools Lite\DTLite.exe" -autorun
HKU\S-1-5-21-2713317602-194128439-3607372724-1000\SOFTWARE | Run : [AshSnap] - C:\_Programy\Ashampoo Snap 6\ashsnap.exe
HKU\S-1-5-21-2713317602-194128439-3607372724-1000\SOFTWARE | Run : [Facebook Update] - "C:\Users\Matúš\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
HKU\S-1-5-21-2713317602-194128439-3607372724-1000\SOFTWARE | Run : [IDMan] - C:\_Programy\Internet Download Manager\IDMan.exe /onboot
HKU\S-1-5-21-2713317602-194128439-3607372724-1000\SOFTWARE | Run : [Easy-Hide-IP] - C:\_Programy\Easy-Hide-IP\easy-hide-ip.exe
HKU\S-1-5-21-2713317602-194128439-3607372724-1000\SOFTWARE | Run : [Sidebar] - C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
HKU\S-1-5-19\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe
HKU\S-1-5-19\SOFTWARE | RunOnce : [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}
HKU\S-1-5-20\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe
HKU\S-1-5-20\SOFTWARE | RunOnce : [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}
HKU\S-1-5-18\SOFTWARE | RunOnce : [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}
################## | Stopped processes |
Stopped! C:\Windows\system32\fsproflt.exe (1152)
Stopped! C:\Windows\System32\spoolsv.exe (1380)
Stopped! C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (1556)
Stopped! C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (1580)
Stopped! C:\Program Files\Bonjour\mDNSResponder.exe (1616)
Stopped! C:\_Programy\DU Meter\DUMeterSvc.exe (1660)
Stopped! C:\Windows\system32\taskhost.exe (1752)
Stopped! C:\_Programy\My Lockbox\mylbx.exe (1784)
Stopped! C:\Program Files\ESET\ESET Smart Security\ekrn.exe (1996)
Stopped! C:\_Programy\Malwarebytes' Anti-Malware\mbamscheduler.exe (388)
Stopped! C:\Windows\System32\WUDFHost.exe (2336)
Stopped! C:\_PROGR~1\DUMETE~1\DUMeter.exe (2504)
Stopped! C:\Windows\System32\igfxtray.exe (2612)
Stopped! C:\Windows\System32\hkcmd.exe (2620)
Stopped! C:\Windows\System32\igfxpers.exe (2632)
Stopped! C:\Program Files\DivX\DivX Update\DivXUpdate.exe (2644)
Stopped! C:\Program Files\ESET\ESET Smart Security\egui.exe (2756)
Stopped! C:\Program Files\Common Files\Java\Java Update\jusched.exe (2780)
Stopped! C:\_Programy\iTunes\iTunesHelper.exe (2792)
Stopped! C:\Program Files\Common Files\ACD Systems\EN\DevDetect.exe (2812)
Stopped! C:\_Programy\DAEMON Tools Lite\DTLite.exe (2840)
Stopped! C:\_Programy\Ashampoo Snap 6\ashsnap.exe (2876)
Stopped! C:\Users\Matúš\AppData\Local\Facebook\Update\FacebookUpdate.exe (2924)
Stopped! C:\_Programy\Internet Download Manager\IDMan.exe (2936)
Stopped! C:\Program Files\Windows Sidebar\sidebar.exe (2956)
Stopped! C:\Users\Matúš\AppData\Roaming\Dropbox\bin\Dropbox.exe (2968)
Stopped! C:\Program Files\iPod\bin\iPodService.exe (3284)
Stopped! C:\Windows\system32\SearchIndexer.exe (3384)
Stopped! C:\_Programy\Internet Download Manager\IEMonitor.exe (3472)
Stopped! C:\Program Files\Windows Media Player\wmpnetwk.exe (3704)
Stopped! C:\_Programy\Total Commander\TOTALCMD.EXE (3760)
Stopped! C:\_Programy\Opera\opera.exe (2328)
Stopped! D:\Matus\Programy\Miranda\Miranda32.exe (1968)
Stopped! C:\_Programy\Thunderbird\thunderbird.exe (4676)
Stopped! C:\Windows\system32\SearchProtocolHost.exe (5100)
Stopped! C:\Windows\system32\SearchFilterHost.exe (5156)
################## | Files # Infected Folders |
Deleted ! H:\Thumbs.db
(!) Temporary files deleted.
################## | Registry |
Deleted ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run|CTFMON
################## | Mountpoints2 |
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{49d4c0af-2329-11e1-8ffc-485b394f88c1}
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{a6c55c1e-623f-11e3-b1a5-485b394f88c1}
################## | Listing |
[12/11/2012 - 01:44:02 | SHD ] C:\$Recycle.Bin
[06/01/2014 - 18:53:31 | D ] C:\AdwCleaner
[10/06/2009 - 22:42:20 | N | 24] C:\autoexec.bat
[10/06/2009 - 22:42:20 | N | 10] C:\config.sys
[14/07/2009 - 05:53:55 | SHD ] C:\Documents and Settings
[06/01/2014 - 18:51:51 | ASH | 2388459520] C:\hiberfil.sys
[03/12/2011 - 01:17:30 | D ] C:\Intel
[10/04/2012 - 01:27:42 | N | 0] C:\IO.SYS
[10/04/2012 - 01:27:42 | N | 0] C:\MSDOS.SYS
[22/04/2013 - 20:56:48 | RHD ] C:\MSOCache
[06/01/2014 - 18:51:53 | ASH | 3184615424] C:\pagefile.sys
[14/07/2009 - 03:37:05 | D ] C:\PerfLogs
[06/01/2014 - 19:11:57 | D ] C:\Program Files
[06/01/2014 - 17:41:46 | HD ] C:\ProgramData
[03/12/2011 - 00:36:03 | SHD ] C:\Recovery
[06/01/2014 - 19:12:07 | D ] C:\rsit
[03/01/2014 - 19:22:38 | SHD ] C:\System Volume Information
[15/12/2013 - 12:08:44 | D ] C:\Temp
[06/01/2014 - 19:23:16 | D ] C:\UsbFix
[06/01/2014 - 19:23:37 | A | 7480] C:\UsbFix [Clean 1] MATÚŠ-PC.txt
[09/12/2011 - 21:36:28 | D ] C:\Users
[06/01/2014 - 18:32:55 | D ] C:\Windows
[21/12/2013 - 19:32:36 | D ] C:\_Programy
[10/03/2013 - 17:36:23 | D ] C:\_Rovio
[19/02/2013 - 00:08:18 | D ] D:\!DropBox
[04/01/2014 - 00:03:04 | D ] D:\!Pro
[09/12/2011 - 21:36:35 | SHD ] D:\$RECYCLE.BIN
[05/01/2014 - 01:10:30 | N | 472692] D:\09.gif
[19/12/2013 - 11:42:39 | N | 2090241] D:\aEw0Dqx_460sa.gif
[01/12/2013 - 16:48:16 | N | 1453359] D:\aXbrWyV_460sa.gif
[04/01/2014 - 20:21:29 | N | 1728169] D:\bvkjbkn_klm.gif
[04/01/2014 - 20:21:32 | N | 1464365] D:\community_image_1388581306.gif
[08/12/2013 - 12:04:49 | N | 1212688] D:\cotijebe.gif
[04/01/2014 - 20:21:23 | N | 1047507] D:\cqbiKil.gif
[22/05/2013 - 10:19:06 | N | 749590] D:\default.gif
[01/01/2014 - 12:45:16 | D ] D:\Matus
[06/01/2014 - 19:18:29 | D ] D:\some_shit_from_internet
[08/12/2011 - 17:22:43 | SHD ] D:\System Volume Information
[01/01/2014 - 23:46:23 | N | 234366] D:\tracker_k0sTi_v1.3.1.xls
[04/01/2014 - 20:21:26 | N | 910988] D:\tumblr_mxpopcmMKF1rmg7i2o1_400.gif
[06/01/2014 - 15:12:17 | D ] D:\_Filmy
[06/12/2013 - 12:00:48 | D ] D:\_Hudba
[25/10/2013 - 20:31:38 | D ] D:\_Serialy
[01/12/2013 - 01:10:18 | N | 861807] D:\židia , cigani a 7 sekund pravdy.webm
[01/01/2013 - 18:13:28 | D ] F:\DCIM
[07/11/2013 - 12:04:36 | D ] F:\Star.Trek.Into.Darkness.2013.BDRip.XviD.AC3.CZ-TreZzoR
[18/11/2013 - 11:51:05 | SHD ] H:\$RECYCLE.BIN
[04/03/2013 - 03:43:07 | D ] H:\Bol Raz Jeden Zivot-SK.CZ.multidub
[04/06/2013 - 19:52:49 | D ] H:\Half-Life 2 Anthology
[12/08/2012 - 08:31:29 | D ] H:\Hviezdne vojny - komplet - CZ
[06/02/2010 - 16:09:09 | D ] H:\Karlik a
[10/06/2009 - 20:43:09 | D ] H:\Maly Toaster
[25/08/2013 - 13:38:39 | D ] H:\Microsoft Office Professional Plus 2007 sk
[18/09/2012 - 23:56:53 | D ] H:\msdownld.tmp
[09/09/2013 - 21:30:26 | D ] H:\Mucha
[08/12/2009 - 17:05:28 | D ] H:\Obecna skola
[07/03/2009 - 16:25:53 | D ] H:\PRCICKY 5 - Naha mile
[11/08/2013 - 22:54:15 | D ] H:\priiatelia
[31/05/2009 - 21:25:53 | D ] H:\Recycled
[13/03/2012 - 20:50:35 | D ] H:\Sexbomba od vedla (2004)
[27/11/2013 - 16:54:43 | SHD ] H:\System Volume Information
[23/08/2013 - 11:44:21 | D ] H:\Transformers.BOXSET.2007-2011.DVDRip.x264.AC3.CZ-bBr
[27/01/2011 - 19:12:43 | D ] H:\ZLATO
[20/12/2013 - 20:23:20 | D ] H:\_Alf
[09/09/2013 - 20:32:00 | D ] H:\_doku
[22/07/2013 - 20:30:47 | D ] H:\_Futurama
[25/06/2013 - 13:10:40 | D ] H:\_Game.of.Thrones
[24/10/2012 - 16:12:52 | D ] H:\_Ultimate Survival
################## | Vaccin |
C:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
D:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
F:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
H:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
################## | E.O.F |
http://www.sosvirus.net |
RSIT
Logfile of random's system information tool 1.09 (written by random/random)
Run by Matúš at 2014-01-06 19:24:30
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 13 GB (30%) free of 45 GB
Total RAM: 3037 MB (69% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:24:32, on 6. 1. 2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Windows\System32\rundll32.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\Explorer.exe
C:\_PROGR~1\DUMETE~1\DUMeter.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\SearchProtocolHost.exe
C:\_Programy\Total Commander\TOTALCMD.EXE
D:\some_shit_from_internet\RSIT.exe
C:\Windows\system32\DllHost.exe
C:\Program Files\trend micro\Matúš.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar =
http://go.microsoft.com/fwlink/?linkid=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - (no file)
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\_Programy\Internet Download Manager\IDMIECC.dll
O2 - BHO: (no name) - {259F616C-A300-44F5-B04A-ED001A26C85C} - (no file)
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SysVContoller32] C:\Windows\System32\svcl32\svcl32.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\_Programy\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Device Detector] DevDetect.exe -autorun
O4 - HKCU\..\Run: [DU Meter] "C:\_Programy\DU Meter\DUMeter.exe" /autostart
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\_Programy\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [AshSnap] C:\_Programy\Ashampoo Snap 6\ashsnap.exe
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Matúš\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [IDMan] C:\_Programy\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [Easy-Hide-IP] C:\_Programy\Easy-Hide-IP\easy-hide-ip.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'Default user')
O4 - Startup: Dropbox.lnk = ?
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stiahnuť s IDM - C:\_Programy\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stiahnuť s IDM všetky prepojenia - C:\_Programy\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {62789780-B744-11D0-986B-00609731A21D} (Autodesk MapGuide ActiveX Control) -
http://195.28.70.134/kapor2/lib/mgaxctrl.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{BDA1FB58-13C2-4CC7-8957-544C386F104D}: NameServer = 147.175.111.15
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: DU Meter Service (DUMeterSvc) - Hagel Technologies Ltd. - C:\_Programy\DU Meter\DUMeterSvc.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: FSPro Filter Service (fsproflt) - FSPro Labs - C:\Windows\system32\fsproflt.exe
O23 - Service: HitmanPro 3.7 Crusader (Boot) (HitmanPro37CrusaderBoot) - Unknown owner - D:\some_shit_from_internet\HitmanPro.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\_Programy\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\_Programy\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files\Sony\Sony PC Companion\PCCService.exe
--
End of file - 6649 bytes
=========Mozilla firefox=========
ProfilePath - C:\Users\Matúš\AppData\Roaming\Mozilla\Firefox\Profiles\yyd3hh2v.default
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.170 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=Doplnok iTunes Detector
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\_Programy\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\_Programy\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\_Programy\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\_Programy\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
C:\Users\Matúš\AppData\Roaming\Mozilla\Firefox\Profiles\yyd3hh2v.default\extensions\
ich@maltegoetz.de
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\_Programy\Internet Download Manager\IDMIECC.dll [2012-10-26 230872]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{259F616C-A300-44F5-B04A-ED001A26C85C}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-10-26 194432]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-10-22 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-10-22 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-02-11 137752]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-02-11 171032]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-02-11 172568]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-07-29 1259376]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"SysVContoller32"=C:\Windows\System32\svcl32\svcl32.exe []
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2013-08-19 5110160]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"iTunesHelper"=C:\_Programy\iTunes\iTunesHelper.exe [2013-11-02 152392]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
""= []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Device Detector"=DevDetect.exe -autorun []
"DU Meter"=C:\_Programy\DU Meter\DUMeter.exe [2013-03-06 3814368]
"DAEMON Tools Lite"=C:\_Programy\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]
"AshSnap"=C:\_Programy\Ashampoo Snap 6\ashsnap.exe [2012-11-06 3804568]
"Facebook Update"=C:\Users\Matúš\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-05-29 138096]
"IDMan"=C:\_Programy\Internet Download Manager\IDMan.exe [2012-10-31 3540416]
"Easy-Hide-IP"=C:\_Programy\Easy-Hide-IP\easy-hide-ip.exe []
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]
C:\Users\Matúš\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-05-29 138096]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony PC Companion]
C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe [2013-02-04 447152]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Matúš^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Facebook Messenger.lnk]
C:\Users\MAT~1\AppData\Local\Facebook\MESSEN~1\214623~1.0\FACEBO~1.EXE []
C:\Users\Matúš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Matúš\AppData\Roaming\Dropbox\bin\Dropbox.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-02-11 228864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0
"NoDriveAutoRun"=3
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=3
"NoDriveTypeAutoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\_Programy\xchat\xchat.exe"="C:\_Programy\xchat\xchat.exe:*:Enabled:XChat IRC Client"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.ACDV"=ACDV.dll
"VIDC.FPS1"=frapsvid.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-01-06 19:23:37 ----RASHD---- C:\Autorun.inf
2014-01-06 19:21:17 ----A---- C:\UsbFix [Clean 1] MATÚŠ-PC.txt
2014-01-06 19:20:25 ----D---- C:\UsbFix
2014-01-06 19:11:57 ----D---- C:\rsit
2014-01-06 19:11:57 ----D---- C:\Program Files\trend micro
2014-01-06 18:47:11 ----D---- C:\AdwCleaner
2014-01-06 18:33:06 ----D---- C:\Program Files\Enigma Software Group
2014-01-06 18:32:55 ----D---- C:\Windows\A358F2F62500420C989C25C4F22DF51E.TMP
2014-01-06 18:32:53 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2014-01-06 17:57:55 ----A---- C:\Windows\system32\bootdelete.exe
2014-01-06 17:41:46 ----D---- C:\ProgramData\HitmanPro
2013-12-18 10:43:49 ----D---- C:\Users\Matúš\AppData\Roaming\Opera Software
2013-12-15 12:07:49 ----A---- C:\Windows\system32\WdfCoInstaller01007.dll
2013-12-15 12:07:49 ----A---- C:\Windows\system32\drivers\ANDROIDUSB.sys
2013-12-15 12:07:44 ----D---- C:\Temp
2013-12-15 12:07:06 ----D---- C:\ProgramData\HTC
2013-12-15 11:05:50 ----D---- C:\Program Files\mp3DirectCut
2013-12-11 09:36:09 ----A---- C:\Windows\system32\ie4uinit.exe
2013-12-11 09:36:08 ----A---- C:\Windows\system32\jsproxy.dll
2013-12-11 09:36:08 ----A---- C:\Windows\system32\ieui.dll
2013-12-11 09:36:08 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2013-12-11 09:36:07 ----A---- C:\Windows\system32\jscript9diag.dll
2013-12-11 09:36:07 ----A---- C:\Windows\system32\iesetup.dll
2013-12-11 09:36:07 ----A---- C:\Windows\system32\iernonce.dll
2013-12-11 09:36:07 ----A---- C:\Windows\system32\ieapfltr.dll
2013-12-11 09:36:06 ----A---- C:\Windows\system32\ieUnatt.exe
2013-12-11 09:36:06 ----A---- C:\Windows\system32\ieetwproxystub.dll
2013-12-11 09:36:06 ----A---- C:\Windows\system32\ieetwcollector.exe
2013-12-11 09:36:05 ----A---- C:\Windows\system32\wininet.dll
2013-12-11 09:36:04 ----A---- C:\Windows\system32\urlmon.dll
2013-12-11 09:36:04 ----A---- C:\Windows\system32\iertutil.dll
2013-12-11 09:36:03 ----A---- C:\Windows\system32\ieframe.dll
2013-12-11 09:36:02 ----A---- C:\Windows\system32\mshtml.dll
2013-12-11 09:36:02 ----A---- C:\Windows\system32\jscript9.dll
2013-12-11 09:31:54 ----A---- C:\Windows\system32\wmp.dll
2013-12-11 09:31:53 ----A---- C:\Windows\system32\wmploc.DLL
2013-12-11 09:30:34 ----A---- C:\Windows\system32\msieftp.dll
2013-12-11 09:30:24 ----A---- C:\Windows\system32\wscript.exe
2013-12-11 09:30:24 ----A---- C:\Windows\system32\scrrun.dll
2013-12-11 09:30:23 ----A---- C:\Windows\system32\cscript.exe
2013-12-11 09:30:21 ----A---- C:\Windows\system32\WMPhoto.dll
2013-12-11 09:30:05 ----A---- C:\Windows\system32\tzres.dll
2013-12-11 09:29:46 ----A---- C:\Windows\system32\imagehlp.dll
2013-12-11 09:29:11 ----A---- C:\Windows\system32\win32k.sys
2013-12-11 09:29:01 ----A---- C:\Windows\system32\drivers\portcls.sys
2013-12-11 09:29:01 ----A---- C:\Windows\system32\drivers\drmk.sys
======List of files/folders modified in the last 1 month======
2014-01-06 19:24:28 ----D---- C:\Windows\Temp
2014-01-06 19:20:22 ----D---- C:\Users\Matúš\AppData\Roaming\DMCache
2014-01-06 19:11:57 ----D---- C:\Program Files
2014-01-06 19:06:24 ----D---- C:\Windows\system32\config
2014-01-06 18:52:43 ----D---- C:\Users\Matúš\AppData\Roaming\Dropbox
2014-01-06 18:48:53 ----D---- C:\Windows\System32
2014-01-06 18:41:27 ----SHD---- C:\Windows\Installer
2014-01-06 18:41:26 ----D---- C:\Windows\system32\Tasks
2014-01-06 18:39:58 ----D---- C:\Windows\system32\drivers
2014-01-06 18:32:55 ----D---- C:\Windows
2014-01-06 18:32:53 ----D---- C:\Program Files\Common Files
2014-01-06 18:32:11 ----D---- C:\Windows\Prefetch
2014-01-06 18:01:02 ----D---- C:\Users\Matúš\AppData\Roaming\IDM
2014-01-06 17:48:26 ----D---- C:\Windows\en-US
2014-01-06 17:47:27 ----D---- C:\Users\Matúš\AppData\Roaming\uTorrent
2014-01-06 17:47:15 ----D---- C:\Users\Matúš\AppData\Roaming\Winamp
2014-01-06 17:41:46 ----HD---- C:\ProgramData
2014-01-06 17:41:17 ----D---- C:\Users\Matúš\AppData\Roaming\vlc
2014-01-06 17:27:59 ----D---- C:\Windows\inf
2014-01-06 17:27:59 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-01-03 19:22:38 ----SHD---- C:\System Volume Information
2013-12-27 10:09:58 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-12-21 21:34:14 ----D---- C:\Windows\Panther
2013-12-21 21:34:14 ----D---- C:\Windows\Logs
2013-12-21 21:34:14 ----D---- C:\Windows\debug
2013-12-21 19:32:36 ----D---- C:\_Programy
2013-12-16 21:20:34 ----D---- C:\Windows\LiveKernelReports
2013-12-16 01:27:24 ----D---- C:\Windows\Tasks
2013-12-16 01:27:16 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2013-12-16 01:25:24 ----D---- C:\Windows\system32\catroot
2013-12-16 01:21:26 ----D---- C:\Users\Matúš\AppData\Roaming\DAEMON Tools Lite
2013-12-15 12:13:24 ----D---- C:\Windows\system32\DriverStore
2013-12-11 15:11:44 ----D---- C:\Windows\rescache
2013-12-11 09:40:35 ----D---- C:\Windows\winsxs
2013-12-11 09:38:02 ----D---- C:\Program Files\Internet Explorer
2013-12-11 09:38:01 ----D---- C:\Windows\system32\sk-SK
2013-12-11 09:38:00 ----D---- C:\Program Files\Windows Media Player
2013-12-11 09:36:21 ----D---- C:\Windows\system32\catroot2
2013-12-11 09:35:54 ----D---- C:\ProgramData\Microsoft Help
2013-12-11 09:34:31 ----D---- C:\Windows\system32\MRT
2013-12-11 09:32:11 ----A---- C:\Windows\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2013-08-20 49240]
R0 FSProFilter;FSPro File Filter; C:\Windows\System32\Drivers\FSPFltd.sys [2010-07-22 41912]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-12-03 691696]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2013-08-20 188808]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2013-08-20 134248]
R1 EpfwLWF;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2013-08-20 37416]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2013-08-20 174400]
R2 IDMWFP;IDMWFP; C:\Windows\system32\DRIVERS\idmwfp.sys [2012-09-27 99192]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2011-06-27 2191872]
R3 DUMeterDrv;Hagel Technologies DU Meter traffic accounting driver; \??\C:\_Programy\DU Meter\DUMETR32.SYS [2012-11-08 19504]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 26840]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2011-02-11 9036800]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E62x86.sys [2009-08-23 48640]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2013-04-04 22856]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATKACPI.sys [2007-07-31 7680]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aad2q4cp;aad2q4cp; C:\Windows\system32\drivers\aad2q4cp.sys []
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 HTCAND32;HTC Device Driver; C:\Windows\System32\Drivers\ANDROIDUSB.sys [2009-10-26 25088]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsu.sys [2011-08-17 137472]
S3 nmwcdnsuc;Nokia USB Flashing Generic; C:\Windows\system32\drivers\nmwcdnsuc.sys [2011-08-17 8576]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM); C:\Windows\system32\DRIVERS\s0016bus.sys [2008-05-16 89256]
S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s0016mdfl.sys [2008-05-16 15016]
S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s0016mdm.sys [2008-05-16 120744]
S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s0016mgmt.sys [2008-05-16 114216]
S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS); C:\Windows\system32\DRIVERS\s0016nd5.sys [2008-05-16 25512]
S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s0016obex.sys [2008-05-16 110632]
S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM); C:\Windows\system32\DRIVERS\s0016unic.sys [2008-05-16 115752]
S3 s1039bus;Sony Ericsson Device 1039 driver (WDM); C:\Windows\system32\DRIVERS\s1039bus.sys [2010-03-15 98672]
S3 s1039mdfl;Sony Ericsson Device 1039 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s1039mdfl.sys [2010-03-15 14960]
S3 s1039mdm;Sony Ericsson Device 1039 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s1039mdm.sys [2010-03-15 124016]
S3 s1039mgmt;Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s1039mgmt.sys [2010-03-15 117872]
S3 s1039nd5;Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS); C:\Windows\system32\DRIVERS\s1039nd5.sys [2010-03-15 25456]
S3 s1039obex;Sony Ericsson Device 1039 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s1039obex.sys [2010-03-15 113904]
S3 s1039unic;Sony Ericsson Device 1039 USB Ethernet Emulation (WDM); C:\Windows\system32\DRIVERS\s1039unic.sys [2010-03-15 123504]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); C:\Windows\system32\DRIVERS\ss_bus.sys [2009-09-21 98560]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 taphss;Anchorfree HSS Adapter; C:\Windows\system32\DRIVERS\taphss.sys [2012-01-05 32768]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 49152]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2013-09-07 55624]
R2 DUMeterSvc;DU Meter Service; C:\_Programy\DU Meter\DUMeterSvc.exe [2013-03-06 2054624]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2013-08-19 1337240]
S2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]
S2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 fsproflt;FSPro Filter Service; C:\Windows\system32\fsproflt.exe [2010-08-26 68832]
S2 HitmanPro37CrusaderBoot;HitmanPro 3.7 Crusader (Boot); D:\some_shit_from_internet\HitmanPro.exe /crusader:boot []
S2 MBAMService;MBAMService; C:\_Programy\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S2 MBAMScheduler;MBAMScheduler; C:\_Programy\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S3 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 108032]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2013-11-02 553288]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-12-20 119408]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-12-03 1343400]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
No uvidime co se s tim da delat 
