x-kom hosting

[Rozwiązany] Wyskakujący plik nbt.exe i wiele mniejszych problemów

swiatek94
utworzono
utworzono

Witam serdecznie, właśnie dostałem do sprawdzenia laptopa Ojca i widać, że sporo robactwo się w nim zalęgło, przede wszystkim wyskakujące okienko z plikiem nbt.exe, którego naturalnie nie można usunąć. Podejrzewam również, że siedzi w nim o wiele więcej mniejszych robaków i chciałbym je po prostu usunąć, bardzo proszę o to logi i z góry dziękuje serdecznie za pomoc.

[log]OTL logfile created on: 2012-12-26 04:55:53 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\jacec\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Poland | Language: PLK | Date Format: yyyy-MM-dd

2,97 Gb Total Physical Memory | 2,06 Gb Available Physical Memory | 69,28% Memory free
5,93 Gb Paging File | 4,96 Gb Available in Paging File | 83,51% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 101,47 Gb Total Space | 59,60 Gb Free Space | 58,74% Space Free | Partition Type: NTFS
Drive D: | 271,14 Gb Total Space | 44,30 Gb Free Space | 16,34% Space Free | Partition Type: NTFS

Computer Name: ONLYMINE | User Name: jacec | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2012-12-26 04:52:38 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\jacec\Desktop\OTL.exe
PRC - [2012-11-29 00:49:26 | 000,151,952 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunesHelper.exe
PRC - [2012-11-29 00:49:00 | 000,552,848 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe
PRC - [2012-10-23 17:40:06 | 000,580,728 | ---- | M] (Threat Expert Ltd.) -- C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe
PRC - [2012-08-11 16:43:06 | 000,055,184 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PRC - [2012-04-04 06:53:50 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012-04-01 14:50:10 | 000,203,776 | ---- | M] () -- C:\Users\jacec\AppData\Roaming\Microsoft\Windows\nsx3D79.exe
PRC - [2012-04-01 14:49:52 | 000,421,888 | ---- | M] () -- C:\Users\jacec\AppData\Roaming\Microsoft\Windows\AdvService.exe
PRC - [2012-02-11 06:37:49 | 000,317,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spoolsv.exe
PRC - [2011-11-17 06:29:50 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lsass.exe
PRC - [2011-08-30 22:05:02 | 000,390,504 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2011-05-04 05:28:31 | 000,427,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchIndexer.exe
PRC - [2011-04-22 13:21:10 | 000,247,728 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
PRC - [2011-04-22 13:21:10 | 000,092,592 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
PRC - [2011-02-25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2011-02-09 17:26:34 | 000,203,776 | ---- | M] () -- C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe
PRC - [2010-11-20 13:17:56 | 001,121,792 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
PRC - [2010-11-20 13:17:55 | 000,257,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WmiPrvSE.exe
PRC - [2010-11-20 13:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winlogon.exe
PRC - [2010-11-20 13:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2010-11-20 13:17:41 | 001,174,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Sidebar\sidebar.exe
PRC - [2010-11-20 13:17:30 | 003,179,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppsvc.exe
PRC - [2010-11-20 13:17:16 | 000,267,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lsm.exe
PRC - [2010-11-20 13:16:54 | 000,100,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\audiodg.exe
PRC - [2010-09-29 02:33:40 | 000,249,856 | ---- | M] () -- C:\ProgramData\DatacardService\DCService.exe
PRC - [2010-09-29 02:33:34 | 000,228,352 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\ProgramData\DatacardService\DCSHelper.exe
PRC - [2009-12-08 14:51:52 | 000,774,144 | ---- | M] (Sony Ericsson Mobile Communications AB) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe
PRC - [2009-11-16 09:04:30 | 000,735,960 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2009-11-16 09:03:32 | 002,054,360 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2009-08-18 01:36:36 | 000,348,160 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2009-08-18 01:36:08 | 000,176,128 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2009-07-14 02:14:45 | 000,096,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wininit.exe
PRC - [2009-07-14 02:14:43 | 000,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UI0Detect.exe
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:39 | 000,069,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\smss.exe
PRC - [2009-07-14 02:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\services.exe
PRC - [2009-07-14 02:14:31 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rundll32.exe
PRC - [2009-07-14 02:14:24 | 000,157,184 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Windows Defender\MpCmdRun.exe
PRC - [2009-07-14 02:14:19 | 000,092,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwm.exe
PRC - [2009-07-14 02:14:16 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\csrss.exe
PRC - [2009-04-30 11:23:26 | 000,090,112 | ---- | M] () -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
PRC - [2007-09-02 12:58:52 | 000,495,616 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.exe


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2012-12-26 04:52:38 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\jacec\Desktop\OTL.exe
MOD - [2012-11-29 01:23:00 | 000,041,360 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunesHelper.Resources\pl.lproj\iTunesHelperLocalized.dll
MOD - [2012-11-29 00:49:26 | 000,151,952 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunesHelper.exe
MOD - [2012-11-29 00:49:26 | 000,148,368 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunesHelper.dll
MOD - [2012-11-29 00:49:26 | 000,039,824 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll
MOD - [2012-11-28 14:13:30 | 000,124,816 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll
MOD - [2012-11-28 14:13:28 | 000,043,408 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll
MOD - [2012-11-28 14:13:20 | 001,079,184 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll
MOD - [2012-11-28 14:13:16 | 000,075,664 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
MOD - [2012-11-14 03:48:26 | 012,320,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.dll
MOD - [2012-11-14 03:14:59 | 009,738,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieframe.dll
MOD - [2012-11-14 03:09:22 | 001,800,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
MOD - [2012-11-14 02:57:44 | 001,103,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\urlmon.dll
MOD - [2012-11-14 02:57:37 | 001,129,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wininet.dll
MOD - [2012-11-14 02:52:27 | 000,194,560 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\ieproxy.dll
MOD - [2012-11-14 02:48:27 | 000,420,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
MOD - [2012-11-14 02:46:38 | 001,793,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iertutil.dll
MOD - [2012-10-16 08:39:52 | 000,561,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\AppPatch\AcLayers.dll
MOD - [2012-10-09 18:40:31 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll
MOD - [2012-10-04 17:43:05 | 000,868,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kernel32.dll
MOD - [2012-10-04 17:43:05 | 000,293,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KernelBase.dll
MOD - [2012-10-03 17:42:26 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nlaapi.dll
MOD - [2012-09-29 19:54:26 | 000,080,968 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll
MOD - [2012-09-25 23:47:43 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\synceng.dll
MOD - [2012-08-24 17:57:48 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wintrust.dll
MOD - [2012-08-11 16:43:16 | 001,447,824 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
MOD - [2012-06-09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shell32.dll
MOD - [2012-06-06 06:05:52 | 001,390,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml6.dll
MOD - [2012-06-06 06:05:52 | 001,236,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml3.dll
MOD - [2012-06-02 05:39:10 | 000,219,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
MOD - [2012-06-02 05:36:29 | 001,159,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\crypt32.dll
MOD - [2012-05-30 19:06:48 | 000,087,912 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2012-05-30 19:06:34 | 000,456,552 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll
MOD - [2012-05-30 19:06:30 | 001,292,136 | ---- | M] (The ICU Project) -- C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll
MOD - [2012-05-30 19:06:30 | 001,242,512 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2012-05-30 19:06:30 | 000,923,496 | ---- | M] (The ICU Project) -- C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll
MOD - [2012-05-30 19:06:28 | 016,303,976 | ---- | M] (The ICU Project) -- C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll
MOD - [2012-05-30 19:06:20 | 002,463,632 | ---- | M] (Apple, Inc.) -- C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll
MOD - [2012-04-21 05:21:01 | 001,625,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
MOD - [2012-04-07 12:26:29 | 002,342,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msi.dll
MOD - [2012-04-04 06:53:54 | 000,394,136 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.dll
MOD - [2012-04-01 14:50:10 | 000,203,776 | ---- | M] () -- C:\Users\jacec\AppData\Roaming\Microsoft\Windows\nsx3D79.exe
MOD - [2012-03-03 06:31:19 | 001,077,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
MOD - [2012-03-01 06:33:23 | 000,159,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imagehlp.dll
MOD - [2012-01-04 09:58:41 | 000,442,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntshrui.dll
MOD - [2012-01-02 22:41:19 | 000,653,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
MOD - [2012-01-02 22:41:19 | 000,569,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
MOD - [2012-01-01 20:47:54 | 000,811,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\user32.dll
MOD - [2011-12-30 06:27:56 | 000,478,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl
MOD - [2011-12-16 08:52:58 | 000,690,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcrt.dll
MOD - [2011-11-19 00:28:14 | 000,353,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
MOD - [2011-11-19 00:28:14 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
MOD - [2011-11-19 00:28:14 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
MOD - [2011-11-17 06:38:39 | 001,288,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntdll.dll
MOD - [2011-11-17 06:35:02 | 000,314,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\webio.dll
MOD - [2011-11-17 06:34:55 | 000,100,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspicli.dll
MOD - [2011-11-17 06:34:52 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secur32.dll
MOD - [2011-08-30 22:05:04 | 000,073,064 | ---- | M] (Apple Inc.) -- C:\Windows\System32\dnssd.dll
MOD - [2011-08-30 22:05:02 | 000,121,704 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mdnsNSP.dll
MOD - [2011-08-27 05:26:27 | 000,571,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oleaut32.dll
MOD - [2011-08-27 05:26:27 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oleacc.dll
MOD - [2011-06-16 05:33:18 | 000,180,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xmllite.dll
MOD - [2011-06-15 17:02:29 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
MOD - [2011-06-15 17:02:27 | 001,093,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll
MOD - [2011-06-15 17:02:24 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
MOD - [2011-06-15 17:02:24 | 000,554,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
MOD - [2011-05-28 22:04:56 | 000,140,288 | ---- | M] (Alexander Roshal) -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2011-05-04 05:34:43 | 001,549,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll
MOD - [2011-04-22 13:21:10 | 000,247,728 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
MOD - [2011-03-03 06:38:01 | 000,270,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dnsapi.dll
MOD - [2011-02-25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
MOD - [2011-02-19 07:30:50 | 000,739,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
MOD - [2011-01-17 06:47:13 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
MOD - [2010-11-20 13:21:40 | 000,327,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\zipfldr.dll
MOD - [2010-11-20 13:21:39 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscapi.dll
MOD - [2010-11-20 13:21:39 | 000,040,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wtsapi32.dll
MOD - [2010-11-20 13:21:39 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wshbth.dll
MOD - [2010-11-20 13:21:38 | 002,311,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpdshext.dll
MOD - [2010-11-20 13:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ws2_32.dll
MOD - [2010-11-20 13:21:38 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WPDShServiceObj.dll
MOD - [2010-11-20 13:21:36 | 001,010,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecs.dll
MOD - [2010-11-20 13:21:36 | 000,351,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winhttp.dll
MOD - [2010-11-20 13:21:36 | 000,269,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wldap32.dll
MOD - [2010-11-20 13:21:36 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winmm.dll
MOD - [2010-11-20 13:21:36 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winsta.dll
MOD - [2010-11-20 13:21:36 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wkscli.dll
MOD - [2010-11-20 13:21:35 | 001,063,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\werconcpl.dll
MOD - [2010-11-20 13:21:35 | 000,381,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wer.dll
MOD - [2010-11-20 13:21:35 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wdscore.dll
MOD - [2010-11-20 13:21:34 | 001,128,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vssapi.dll
MOD - [2010-11-20 13:21:33 | 002,983,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UIRibbon.dll
MOD - [2010-11-20 13:21:33 | 000,626,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\usp10.dll
MOD - [2010-11-20 13:21:33 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\userenv.dll
MOD - [2010-11-20 13:21:32 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\twext.dll
MOD - [2010-11-20 13:21:30 | 000,082,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\thumbcache.dll
MOD - [2010-11-20 13:21:28 | 000,505,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
MOD - [2010-11-20 13:21:27 | 002,146,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SyncCenter.dll
MOD - [2010-11-20 13:21:27 | 001,159,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sysmain.dll
MOD - [2010-11-20 13:21:27 | 000,380,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sxs.dll
MOD - [2010-11-20 13:21:27 | 000,363,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\StructuredQuery.dll
MOD - [2010-11-20 13:21:27 | 000,159,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\syncui.dll
MOD - [2010-11-20 13:21:26 | 000,228,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\stobject.dll
MOD - [2010-11-20 13:21:26 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srvcli.dll
MOD - [2010-11-20 13:21:25 | 000,301,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srchadmin.dll
MOD - [2010-11-20 13:21:25 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Portable Devices\sqmapi.dll
MOD - [2010-11-20 13:21:24 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spp.dll
MOD - [2010-11-20 13:21:23 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SndVolSSO.dll
MOD - [2010-11-20 13:21:19 | 000,350,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shlwapi.dll
MOD - [2010-11-20 13:21:15 | 000,179,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shdocvw.dll
MOD - [2010-11-20 13:21:14 | 001,667,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\setupapi.dll
MOD - [2010-11-20 13:21:06 | 000,907,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sdengin2.dll
MOD - [2010-11-20 13:21:06 | 000,646,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchFolder.dll
MOD - [2010-11-20 13:21:03 | 000,653,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rpcrt4.dll
MOD - [2010-11-20 13:21:03 | 000,046,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RpcRtRemote.dll
MOD - [2010-11-20 13:21:03 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rtutils.dll
MOD - [2010-11-20 13:21:00 | 000,080,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\QUTIL.DLL
MOD - [2010-11-20 13:20:57 | 002,504,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMVCORE.DLL
MOD - [2010-11-20 13:20:57 | 000,988,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\propsys.dll
MOD - [2010-11-20 13:20:57 | 000,171,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\QAGENT.DLL
MOD - [2010-11-20 13:20:57 | 000,165,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\provsvc.dll
MOD - [2010-11-20 13:20:56 | 000,395,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\prnfldr.dll
MOD - [2010-11-20 13:20:55 | 001,750,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnidui.dll
MOD - [2010-11-20 13:20:55 | 000,547,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll
MOD - [2010-11-20 13:20:53 | 001,456,128 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Photo Viewer\PhotoViewer.dll
MOD - [2010-11-20 13:20:49 | 001,414,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ole32.dll
MOD - [2010-11-20 13:20:49 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\olepro32.dll
MOD - [2010-11-20 13:20:29 | 002,494,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netshell.dll
MOD - [2010-11-20 13:20:29 | 001,661,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\networkexplorer.dll
MOD - [2010-11-20 13:20:29 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netutils.dll
MOD - [2010-11-20 13:20:27 | 000,801,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll
MOD - [2010-11-20 13:19:56 | 000,232,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mswsock.dll
MOD - [2010-11-20 13:19:55 | 000,120,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvfw32.dll
MOD - [2010-11-20 13:19:54 | 000,167,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msutb.dll
MOD - [2010-11-20 13:19:47 | 000,592,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msftedit.dll
MOD - [2010-11-20 13:19:45 | 000,481,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscms.dll
MOD - [2010-11-20 13:19:45 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msasn1.dll
MOD - [2010-11-20 13:19:39 | 000,213,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MMDevAPI.dll
MOD - [2010-11-20 13:19:33 | 003,207,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
MOD - [2010-11-20 13:19:23 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IPHLPAPI.DLL
MOD - [2010-11-20 13:19:22 | 000,118,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imm32.dll
MOD - [2010-11-20 13:19:21 | 000,392,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imapi2.dll
MOD - [2010-11-20 13:19:10 | 000,312,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hgcpl.dll
MOD - [2010-11-20 13:19:05 | 002,576,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
MOD - [2010-11-20 13:19:05 | 000,304,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gdi32.dll
MOD - [2010-11-20 13:19:03 | 000,216,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
MOD - [2010-11-20 13:19:03 | 000,206,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\framedynos.dll
MOD - [2010-11-20 13:19:01 | 001,493,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll
MOD - [2010-11-20 13:18:38 | 000,128,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\EhStorAPI.dll
MOD - [2010-11-20 13:18:36 | 000,508,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
MOD - [2010-11-20 13:18:36 | 000,399,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DXP.dll
MOD - [2010-11-20 13:18:35 | 001,371,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmcore.dll
MOD - [2010-11-20 13:18:35 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmredir.dll
MOD - [2010-11-20 13:18:25 | 001,828,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d9.dll
MOD - [2010-11-20 13:18:25 | 001,171,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
MOD - [2010-11-20 13:18:25 | 001,003,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptui.dll
MOD - [2010-11-20 13:18:25 | 000,418,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cscui.dll
MOD - [2010-11-20 13:18:25 | 000,219,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
MOD - [2010-11-20 13:18:25 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cscobj.dll
MOD - [2010-11-20 13:18:25 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cscapi.dll
MOD - [2010-11-20 13:18:25 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cscdll.dll
MOD - [2010-11-20 13:18:24 | 000,168,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\credui.dll
MOD - [2010-11-20 13:18:24 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\credssp.dll
MOD - [2010-11-20 13:18:23 | 000,530,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
MOD - [2010-11-20 13:18:23 | 000,485,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\comdlg32.dll
MOD - [2010-11-20 13:18:12 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cfgmgr32.dll
MOD - [2010-11-20 13:18:06 | 000,740,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\batmeter.dll
MOD - [2010-11-20 13:18:05 | 001,792,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
MOD - [2010-11-20 13:18:05 | 000,195,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AudioSes.dll
MOD - [2010-11-20 13:18:04 | 000,243,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\audiodev.dll
MOD - [2010-11-20 13:18:03 | 000,295,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\apphelp.dll
MOD - [2010-11-20 13:18:02 | 000,640,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\advapi32.dll
MOD - [2010-11-20 13:18:01 | 000,744,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ActionCenter.dll
MOD - [2010-11-20 13:18:01 | 000,309,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\actxprxy.dll
MOD - [2010-11-20 13:18:01 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\acppage.dll
MOD - [2010-11-20 13:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
MOD - [2010-11-20 13:17:41 | 001,174,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Sidebar\sidebar.exe
MOD - [2010-11-20 13:16:50 | 000,692,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bthprops.cpl
MOD - [2010-11-20 13:16:50 | 000,320,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winspool.drv
MOD - [2010-11-20 13:16:50 | 000,172,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wdmaud.drv
MOD - [2010-11-20 12:55:09 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
MOD - [2010-09-29 02:33:34 | 000,228,352 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\ProgramData\DatacardService\DCSHelper.exe
MOD - [2010-04-05 13:50:00 | 000,011,080 | R--- | M] (WinZip Computing, S.L.) -- C:\Program Files\WinZip\WZSHLSTB.DLL
MOD - [2010-03-15 16:57:02 | 000,053,024 | ---- | M] (Open Source Software community project) -- C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll
MOD - [2009-12-08 14:51:52 | 000,774,144 | ---- | M] (Sony Ericsson Mobile Communications AB) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe
MOD - [2009-12-04 12:52:14 | 000,327,680 | ---- | M] (Avanquest Software) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\ModemWiz.dll
MOD - [2009-11-24 16:31:32 | 000,549,888 | ---- | M] (Avanquest Software) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\NewUI.dll
MOD - [2009-11-16 09:20:20 | 000,291,000 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiUpdate.dll
MOD - [2009-11-16 09:17:30 | 000,183,880 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll
MOD - [2009-11-16 09:16:42 | 000,097,360 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiMailPlugins.dll
MOD - [2009-11-16 09:08:48 | 000,307,480 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiScan.dll
MOD - [2009-11-16 09:06:32 | 000,904,880 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiEpfw.dll
MOD - [2009-11-16 09:03:32 | 002,054,360 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
MOD - [2009-11-16 09:02:04 | 000,109,720 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiEmon.dll
MOD - [2009-11-16 09:00:14 | 000,101,480 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiDmon.dll
MOD - [2009-11-16 08:57:16 | 000,142,680 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiAmon.dll
MOD - [2009-08-18 01:31:32 | 002,469,888 | ---- | M] (ATI Technologies Inc. ) -- C:\Windows\System32\atidxx32.dll
MOD - [2009-07-14 02:17:54 | 000,249,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bcryptprimitives.dll
MOD - [2009-07-14 02:17:54 | 000,242,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rsaenh.dll
MOD - [2009-07-14 02:16:21 | 000,284,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WWanAPI.dll
MOD - [2009-07-14 02:16:21 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wwapi.dll
MOD - [2009-07-14 02:16:20 | 000,095,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscinterop.dll
MOD - [2009-07-14 02:16:20 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wsock32.dll
MOD - [2009-07-14 02:16:20 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wshqos.dll
MOD - [2009-07-14 02:16:20 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wship6.dll
MOD - [2009-07-14 02:16:20 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WSHTCPIP.DLL
MOD - [2009-07-14 02:16:19 | 000,237,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMASF.DLL
MOD - [2009-07-14 02:16:19 | 000,108,544 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Sidebar\wlsrvc.dll
MOD - [2009-07-14 02:16:19 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanapi.dll
MOD - [2009-07-14 02:16:19 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winrnr.dll
MOD - [2009-07-14 02:16:19 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winnsi.dll
MOD - [2009-07-14 02:16:19 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanutil.dll
MOD - [2009-07-14 02:16:18 | 000,262,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wevtapi.dll
MOD - [2009-07-14 02:16:18 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wercplsupport.dll
MOD - [2009-07-14 02:16:17 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\uxtheme.dll
MOD - [2009-07-14 02:16:17 | 000,099,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UIAnimation.dll
MOD - [2009-07-14 02:16:17 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vsstrace.dll
MOD - [2009-07-14 02:16:17 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\version.dll
MOD - [2009-07-14 02:16:16 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll
MOD - [2009-07-14 02:16:16 | 000,239,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\uDWM.dll
MOD - [2009-07-14 02:16:15 | 000,192,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tapi32.dll
MOD - [2009-07-14 02:16:15 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Syncreg.dll
MOD - [2009-07-14 02:16:15 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srclient.dll
MOD - [2009-07-14 02:16:15 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sxproxy.dll
MOD - [2009-07-14 02:16:15 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\slc.dll
MOD - [2009-07-14 02:16:14 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sfc_os.dll
MOD - [2009-07-14 02:16:14 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shfolder.dll
MOD - [2009-07-14 02:16:13 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RstrtMgr.dll
MOD - [2009-07-14 02:16:13 | 000,129,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SensorsApi.dll
MOD - [2009-07-14 02:16:13 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sechost.dll
MOD - [2009-07-14 02:16:13 | 000,082,944 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Sidebar\sbdrop.dll
MOD - [2009-07-14 02:16:13 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\samlib.dll
MOD - [2009-07-14 02:16:13 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sdautoplay.dll
MOD - [2009-07-14 02:16:13 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SensApi.dll
MOD - [2009-07-14 02:16:12 | 000,325,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasapi32.dll
MOD - [2009-07-14 02:16:12 | 000,159,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll
MOD - [2009-07-14 02:16:12 | 000,145,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\powrprof.dll
MOD - [2009-07-14 02:16:12 | 000,139,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PeerDist.dll
MOD - [2009-07-14 02:16:12 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PlaySndSrv.dll
MOD - [2009-07-14 02:16:12 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasman.dll
MOD - [2009-07-14 02:16:12 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnrpnsp.dll
MOD - [2009-07-14 02:16:12 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Photo Viewer\PhotoBase.dll
MOD - [2009-07-14 02:16:12 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\profapi.dll
MOD - [2009-07-14 02:16:12 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasadhlp.dll
MOD - [2009-07-14 02:16:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\psapi.dll
MOD - [2009-07-14 02:16:11 | 000,121,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntmarta.dll
MOD - [2009-07-14 02:16:11 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\npmproxy.dll
MOD - [2009-07-14 02:16:11 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nsi.dll
MOD - [2009-07-14 02:16:03 | 001,537,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0000.dll
MOD - [2009-07-14 02:16:03 | 000,360,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netprofm.dll
MOD - [2009-07-14 02:16:03 | 000,313,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\newdev.dll
MOD - [2009-07-14 02:16:02 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NapiNSP.dll
MOD - [2009-07-14 02:15:50 | 000,406,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcp60.dll
MOD - [2009-07-14 02:15:48 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mssprxy.dll
MOD - [2009-07-14 02:15:44 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msimtf.dll
MOD - [2009-07-14 02:15:44 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msiltcfg.dll
MOD - [2009-07-14 02:15:44 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msimg32.dll
MOD - [2009-07-14 02:15:43 | 000,828,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msctf.dll
MOD - [2009-07-14 02:15:43 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MsCtfMonitor.dll
MOD - [2009-07-14 02:15:42 | 000,072,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msacm32.dll
MOD - [2009-07-14 02:15:41 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mpr.dll
MOD - [2009-07-14 02:15:40 | 000,177,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mlang.dll
MOD - [2009-07-14 02:15:40 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\midimap.dll
MOD - [2009-07-14 02:15:39 | 000,352,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
MOD - [2009-07-14 02:15:36 | 000,226,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\LocationApi.dll
MOD - [2009-07-14 02:15:36 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lpk.dll
MOD - [2009-07-14 02:15:36 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\linkinfo.dll
MOD - [2009-07-14 02:15:35 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ksuser.dll
MOD - [2009-07-14 02:15:27 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IconCodecService.dll
MOD - [2009-07-14 02:15:24 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hcproviders.dll
MOD - [2009-07-14 02:15:24 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hid.dll
MOD - [2009-07-14 02:15:22 | 000,848,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSST.dll
MOD - [2009-07-14 02:15:21 | 000,227,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSAPI.dll
MOD - [2009-07-14 02:15:19 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\es.dll
MOD - [2009-07-14 02:15:14 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\EhStorShell.dll
MOD - [2009-07-14 02:15:14 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehSSO.dll
MOD - [2009-07-14 02:15:13 | 000,717,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dui70.dll
MOD - [2009-07-14 02:15:13 | 000,181,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\duser.dll
MOD - [2009-07-14 02:15:13 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmapi.dll
MOD - [2009-07-14 02:15:13 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dsrole.dll
MOD - [2009-07-14 02:15:11 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devobj.dll
MOD - [2009-07-14 02:15:11 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc.dll
MOD - [2009-07-14 02:15:11 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devrtl.dll
MOD - [2009-07-14 02:15:11 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dimsjob.dll
MOD - [2009-07-14 02:15:10 | 000,531,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ddraw.dll
MOD - [2009-07-14 02:15:10 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ddrawex.dll
MOD - [2009-07-14 02:15:09 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
MOD - [2009-07-14 02:15:08 | 000,817,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3dim700.dll
MOD - [2009-07-14 02:15:08 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d8thk.dll
MOD - [2009-07-14 02:15:07 | 001,030,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
MOD - [2009-07-14 02:15:07 | 000,190,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
MOD - [2009-07-14 02:15:07 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptsp.dll
MOD - [2009-07-14 02:15:07 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptbase.dll
MOD - [2009-07-14 02:15:03 | 000,522,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\clbcatq.dll
MOD - [2009-07-14 02:14:59 | 000,080,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bcrypt.dll
MOD - [2009-07-14 02:14:58 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avrt.dll
MOD - [2009-07-14 02:14:57 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\authz.dll
MOD - [2009-07-14 02:14:57 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\atl.dll
MOD - [2009-07-14 02:14:53 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AltTab.dll
MOD - [2009-07-14 02:14:31 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rundll32.exe
MOD - [2009-07-14 02:14:19 | 000,092,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwm.exe
MOD - [2009-07-14 02:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscript.ocx
MOD - [2009-07-14 02:14:10 | 000,064,000 | ---- | M] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codeca.acm
MOD - [2009-07-14 02:14:09 | 001,140,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscui.cpl
MOD - [2009-07-14 02:14:08 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msacm32.drv
MOD - [2009-07-14 02:10:22 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sfc.dll
MOD - [2009-07-14 02:09:00 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\normaliz.dll
MOD - [2009-07-14 02:05:30 | 000,925,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSRESM.dll
MOD - [2009-06-24 09:32:20 | 000,262,144 | ---- | M] (Avanquest Software) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\bvrpctln.dll
MOD - [2009-06-17 12:09:12 | 000,356,352 | ---- | M] (Avanquest Software) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\RasCnxMngr.dll
MOD - [2009-06-17 09:28:04 | 000,317,440 | ---- | M] (BVRP Software) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\MExplorer.dll
MOD - [2009-05-15 16:14:34 | 000,114,688 | ---- | M] (BVRP Software) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\WUNPACLN.dll
MOD - [2009-04-02 14:57:42 | 000,278,528 | ---- | M] (BVRP Software) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\WFP1N.dll
MOD - [2009-02-05 13:25:38 | 000,049,152 | ---- | M] (Avanquest Software) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\bvrpnac.dll
MOD - [2008-12-05 15:05:56 | 000,073,728 | ---- | M] (Avanquest Software) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\Comm.dll
MOD - [2007-09-02 12:58:52 | 000,495,616 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.exe
MOD - [2007-09-02 12:57:36 | 000,069,632 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.dll
MOD - [2007-02-07 14:31:36 | 000,036,864 | ---- | M] (Sony Ericsson Mobile Communications AB) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\ModExch.dll


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV - [2012-12-18 11:55:19 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012-10-23 17:40:06 | 000,580,728 | ---- | M] (Threat Expert Ltd.) [Auto | Running] -- C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe -- (Browser Defender Update Service)
SRV - [2012-07-13 12:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012-04-04 06:53:50 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012-04-01 14:49:52 | 000,421,888 | ---- | M] () [Auto | Running] -- C:\Users\jacec\AppData\Roaming\Microsoft\Windows\AdvService.exe -- (SrvAd)
SRV - [2012-01-01 20:47:34 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2011-04-22 13:21:10 | 000,092,592 | ---- | M] (TomTom) [Auto | Running] -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe -- (TomTomHOMEService)
SRV - [2011-02-09 17:26:34 | 000,203,776 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Mobile Partner\UpdateDog\ouc.exe -- (Mobile Partner. RunOuc)
SRV - [2010-09-29 02:33:40 | 000,249,856 | ---- | M] () [Auto | Running] -- C:\ProgramData\DatacardService\DCService.exe -- (DCService.exe)
SRV - [2009-11-16 09:12:54 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2009-11-16 09:04:30 | 000,735,960 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2009-08-18 01:36:08 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2009-07-14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009-07-14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009-07-14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009-04-30 11:23:26 | 000,090,112 | ---- | M] () [Auto | Running] -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe -- (OMSI download service)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\tsusbhub.sys -- (tsusbhub)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\synth3dvsc.sys -- (Synth3dVsc)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ewusbfake.sys -- (hwusbfake)
DRV - File not found [Kernel | Boot | Stopped] -- System32\drivers\jgad.sys -- (guno)
DRV - [2012-10-23 17:40:32 | 000,062,688 | ---- | M] (PC Tools) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PCTBD.sys -- (PCTBD)
DRV - [2011-02-09 17:26:36 | 000,208,896 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ewusbnet.sys -- (ewusbnet)
DRV - [2011-02-09 17:26:36 | 000,106,880 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2011-02-09 17:26:36 | 000,102,784 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ew_hwusbdev.sys -- (ew_hwusbdev)
DRV - [2011-02-09 17:26:36 | 000,072,832 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ew_jubusenum.sys -- (huawei_enumerator)
DRV - [2011-02-09 17:26:36 | 000,011,136 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ew_usbenumfilter.sys -- (ew_usbenumfilter)
DRV - [2010-11-20 13:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010-11-20 13:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010-11-20 13:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010-11-20 11:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010-11-20 11:21:14 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2010-11-20 10:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010-11-20 10:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010-11-20 10:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010-03-15 08:38:44 | 000,124,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1039mdm.sys -- (s1039mdm)
DRV - [2010-03-15 08:38:44 | 000,123,504 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1039unic.sys -- (s1039unic)
DRV - [2010-03-15 08:38:44 | 000,117,872 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1039mgmt.sys -- (s1039mgmt)
DRV - [2010-03-15 08:38:44 | 000,113,904 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1039obex.sys -- (s1039obex)
DRV - [2010-03-15 08:38:44 | 000,098,672 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1039bus.sys -- (s1039bus)
DRV - [2010-03-15 08:38:44 | 000,025,456 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1039nd5.sys -- (s1039nd5)
DRV - [2010-03-15 08:38:44 | 000,014,960 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1039mdfl.sys -- (s1039mdfl)
DRV - [2009-11-16 09:06:52 | 000,095,896 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\epfwwfpr.sys -- (epfwwfpr)
DRV - [2009-11-16 09:03:36 | 000,108,792 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\System32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2009-11-16 08:56:12 | 000,116,520 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\Windows\System32\drivers\eamon.sys -- (eamon)
DRV - [2009-08-18 02:48:06 | 004,994,560 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2009-07-14 00:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2009-07-13 23:02:53 | 000,311,296 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\yk62x86.sys -- (yukonw7)
DRV - [2009-07-13 23:02:51 | 004,231,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netw5v32.sys -- (netw5v32)
DRV - [2009-03-25 16:48:00 | 000,114,728 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018mdm.sys -- (s1018mdm)
DRV - [2009-03-25 16:48:00 | 000,109,864 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018unic.sys -- (s1018unic)
DRV - [2009-03-25 16:48:00 | 000,106,208 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018mgmt.sys -- (s1018mgmt)
DRV - [2009-03-25 16:48:00 | 000,104,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018obex.sys -- (s1018obex)
DRV - [2009-03-25 16:48:00 | 000,086,824 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018bus.sys -- (s1018bus)
DRV - [2009-03-25 16:48:00 | 000,026,024 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018nd5.sys -- (s1018nd5)
DRV - [2009-03-25 16:48:00 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018mdfl.sys -- (s1018mdfl)
DRV - [2008-05-06 15:06:00 | 000,011,520 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wdcsam.sys -- (WDC_SAM)
DRV - [2007-08-03 04:36:10 | 000,009,344 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SFEP.sys -- (SFEP)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\..\SearchScopes,DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [url="http://www.bing.com/search?q=%7BsearchTerms%7D&FORM=IE8SRC"]http://www.bing.com/...ms}&FORM=IE8SRC[/url]
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = [url="http://search.conduit.com/ResultsExt.aspx?q=%7BsearchTerms%7D&SearchSource=4&ctid=CT2475029"]http://search.condui...&ctid=CT2475029[/url]


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-666643132-1411173658-3390636905-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [url="http://search.babylon.com/?affID=110819&tt=190712_n_mont_3012_4&babsrc=HP_ss&mntrId=105a5d79000000000000001e101f859f"]http://search.babylo...000001e101f859f[/url]
IE - HKU\S-1-5-21-666643132-1411173658-3390636905-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP =
IE - HKU\S-1-5-21-666643132-1411173658-3390636905-1000\..\URLSearchHook: {472734EA-242A-422b-ADF8-83D1E48CC825} - C:\Program Files\PC Tools\PC Tools Security\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)
IE - HKU\S-1-5-21-666643132-1411173658-3390636905-1000\..\SearchScopes,DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKU\S-1-5-21-666643132-1411173658-3390636905-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [url="http://findgala.com/?&uid=231&q=%7BsearchTerms%7D"]http://findgala.com/...q={searchTerms}[/url]
IE - HKU\S-1-5-21-666643132-1411173658-3390636905-1000\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = [url="http://search.babylon.com/?q=%7BsearchTerms%7D&affID=110819&tt=190712_n_mont_3012_4&babsrc=SP_ss&mntrId=105a5d79000000000000001e101f859f"]http://search.babylo...000001e101f859f[/url]
IE - HKU\S-1-5-21-666643132-1411173658-3390636905-1000\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = [url="http://websearch.ask.com/redirect?client=ie&tb=UT2V5&o=15158&src=kw&q=%7BsearchTerms%7D&locale=en_US&apn_ptnrs=UG&apn_dtid=YYYYYYYYSE&apn_uid=9813BD7E-E1C6-4F52-ACF8-81AD1F7ED754&apn_sauid=C90B561E-B532-4040-80FE-F2717B161233"]http://websearch.ask...FE-F2717B161233[/url]
IE - HKU\S-1-5-21-666643132-1411173658-3390636905-1000\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = [url="http://search.conduit.com/ResultsExt.aspx?q=%7BsearchTerms%7D&SearchSource=4&ctid=CT2475029"]http://search.condui...&ctid=CT2475029[/url]
IE - HKU\S-1-5-21-666643132-1411173658-3390636905-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-666643132-1411173658-3390636905-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..CT3242340.browser.search.defaultthis.engineName: true
FF - prefs.js..browser.search.defaultengine: ""
FF - prefs.js..browser.search.defaultenginename: "Search the web (Babylon)"
FF - prefs.js..browser.search.defaultthis.engineName: ""
FF - prefs.js..browser.search.defaulturl: ""
FF - prefs.js..browser.search.order.1: "Search the web (Babylon)"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.suggest.enabled: false
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://search.conduit.com/?ctid=CT3242340&SearchSource=13&CUI=SB_CUI"
FF - prefs.js..extensions.enabledAddons: %7B0a3bed8d-198d-42a9-a7d1-983e6581f422%7D:10.13.40.15
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1
FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.aspx?ctid=CT3242340&SearchSource=2&q="


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@SonyCreativeSoftware.com/Media Go,version=1.0: c:\Program Files\Sony\Media Go\npmediago.dll (Sony Creative Software Inc)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.4: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{5cea9a87-a3a5-4c2a-b08d-8a1876d4931c}: C:\Users\jacec\AppData\Roaming\Mozilla\FireFox\{5cea9a87-a3a5-4c2a-b08d-8a1876d4931c}
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{cb84136f-9c44-433a-9048-c5cd9df1dc16}: C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\ [2012-12-10 20:59:53 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-12-18 11:55:19 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-12-19 14:46:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2012-01-02 22:31:25 | 000,000,000 | ---D | M]

[2011-04-11 20:11:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jacec\AppData\Roaming\mozilla\Extensions
[2011-04-11 20:11:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jacec\AppData\Roaming\mozilla\Extensions\home2@tomtom.com
[2012-12-10 21:58:45 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions
[2012-12-10 21:58:45 | 000,000,000 | ---D | M] (WiseConvert 1.6) -- C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}
[2011-06-11 22:11:46 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2012-12-10 21:46:16 | 000,000,000 | ---D | M] (VideoDownloadConverter) -- C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\4zffxtbr@VideoDownloadConverter_4z.com
[2012-12-10 22:13:25 | 000,001,060 | ---- | M] () -- C:\Users\jacec\AppData\Roaming\mozilla\firefox\profiles\ozbth2gs.default\searchplugins\wiseconvert-16-customized-web-search.xml
[2012-12-18 11:55:04 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012-12-18 11:55:19 | 000,262,112 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2010-08-14 01:32:47 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2012-02-05 15:31:25 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2012-07-24 15:09:01 | 000,002,363 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2012-02-05 15:31:25 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2012-02-05 15:31:25 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2012-02-05 15:31:25 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2012-02-05 15:31:25 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2012-02-05 15:31:25 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml

[color=#E56717]========== Chrome ==========[/color]

CHR - homepage:
CHR - homepage:
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\23.0.1271.95\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\23.0.1271.95\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\23.0.1271.95\pdf.dll
CHR - plugin: Babylon ToolBar (Enabled) = C:\Users\jacec\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0\BabylonChromeToolBar.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.210.7 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U21 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.2.183.23\npGoogleOneClick8.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files\VideoLAN\VLC\npvlc.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Media Go Detector (Enabled) = c:\Program Files\Sony\Media Go\npmediago.dll
CHR - Extension: Dysk Google = C:\Users\jacec\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\
CHR - Extension: YouTube = C:\Users\jacec\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Szukaj w Google = C:\Users\jacec\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Babylon Toolbar = C:\Users\jacec\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0\
CHR - Extension: Gmail = C:\Users\jacec\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012-01-02 22:21:31 | 000,000,098 | ---- | M]) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (PC Tools Browser Guard BHO) - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files\PC Tools\PC Tools Security\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)
O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.29.1\bh\BabylonToolbar.dll File not found
O3 - HKLM\..\Toolbar: (PC Tools Browser Guard) - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files\PC Tools\PC Tools Security\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)
O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.29.1\BabylonToolbarTlbr.dll File not found
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKU\S-1-5-21-666643132-1411173658-3390636905-1000..\Run: [CFgjtH7CGDY5EG5l] C:\Users\jacec\AppData\Roaming\Microsoft\Windows\nsx3D79.exe ()
O4 - HKU\S-1-5-21-666643132-1411173658-3390636905-1000..\Run: [Mobile Partner] C:\Program Files\Mobile Partner\Mobile Partner.exe ()
O4 - HKU\S-1-5-21-666643132-1411173658-3390636905-1000..\Run: [RocketDock] C:\Program Files\RocketDock\RocketDock.exe ()
O4 - HKU\S-1-5-21-666643132-1411173658-3390636905-1000..\Run: [Sony Ericsson PC Companion] C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe (Sony Ericsson Mobile Communications AB)
O4 - HKU\S-1-5-21-666643132-1411173658-3390636905-1000..\Run: [TomTomHOME.exe] C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe (TomTom)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 2
O7 - HKU\S-1-5-21-666643132-1411173658-3390636905-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisallowRun = 1
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_21)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} [url="http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab"]http://fpdownload2.m...ash/swflash.cab[/url] (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 172.22.1.13 8.8.8.8 172.22.1.13 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6B3B45B6-0391-490C-AC97-43CC218062C1}: NameServer = 80.251.201.177 80.251.201.178
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{74A74C83-4DE6-477B-A1CD-D62C7D0FC04F}: NameServer = 80.251.201.177 80.251.201.178
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{854D390F-C082-4532-AF8E-BAF7DEE3F948}: DhcpNameServer = 172.22.1.13 8.8.8.8 172.22.1.13 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{914CD710-D399-492E-9B0E-A0C8867069BC}: DhcpNameServer = 83.255.245.11 193.150.193.150
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C2140604-F271-4019-865D-E623A344362D}: NameServer = 80.251.201.177 80.251.201.178
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F3F5FA7B-A4B8-486C-ADA8-9998579E0232}: NameServer = 80.251.201.177 80.251.201.178
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{22ae3d62-2bc9-11e0-86a6-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{22ae3d62-2bc9-11e0-86a6-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{2a39ab88-a9c8-11df-ae52-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{2a39ab88-a9c8-11df-ae52-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{2a39ab98-a9c8-11df-ae52-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{2a39ab98-a9c8-11df-ae52-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{2ec4b55d-d61a-11e0-9c09-8d3c7fbb2f92}\Shell - "" = AutoRun
O33 - MountPoints2\{2ec4b55d-d61a-11e0-9c09-8d3c7fbb2f92}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{488f11bc-a20e-11e0-a3b8-8555dca48493}\Shell - "" = AutoRun
O33 - MountPoints2\{488f11bc-a20e-11e0-a3b8-8555dca48493}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{4fd2e168-45bb-11e0-8910-fc218274819a}\Shell - "" = AutoRun
O33 - MountPoints2\{4fd2e168-45bb-11e0-8910-fc218274819a}\Shell\AutoRun\command - "" = I:\Startme.exe
O33 - MountPoints2\{5c2ab361-cabf-11e1-8430-001e101f82a7}\Shell - "" = AutoRun
O33 - MountPoints2\{5c2ab361-cabf-11e1-8430-001e101f82a7}\Shell\AutoRun\command - "" = F:\windows\Data\setup.exe
O33 - MountPoints2\{5f3371f9-f9b3-11e0-91e5-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{5f3371f9-f9b3-11e0-91e5-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{5f850b90-3b61-11e0-8d25-001dbaad9030}\Shell - "" = AutoRun
O33 - MountPoints2\{5f850b90-3b61-11e0-8d25-001dbaad9030}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{6d89b563-80a4-11e0-9b4f-9e27d4cbe2a7}\Shell - "" = AutoRun
O33 - MountPoints2\{6d89b563-80a4-11e0-9b4f-9e27d4cbe2a7}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a
O33 - MountPoints2\{85eea45d-2b0f-11e0-bec9-001dbaad9030}\Shell - "" = AutoRun
O33 - MountPoints2\{85eea45d-2b0f-11e0-bec9-001dbaad9030}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{ad0c364a-0159-11df-a922-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{ad0c364a-0159-11df-a922-806e6f6e6963}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{ad0c3681-0159-11df-a922-001dbaad9030}\Shell - "" = AutoRun
O33 - MountPoints2\{ad0c3681-0159-11df-a922-001dbaad9030}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{c30f6daf-3305-11e0-8832-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{c30f6daf-3305-11e0-8832-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{c30f6dbb-3305-11e0-8832-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{c30f6dbb-3305-11e0-8832-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{f0bbaeeb-2ad4-11e0-8758-001dbaad9030}\Shell - "" = AutoRun
O33 - MountPoints2\{f0bbaeeb-2ad4-11e0-8758-001dbaad9030}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{f0bbaef9-2ad4-11e0-8758-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{f0bbaef9-2ad4-11e0-8758-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{f7f761db-a965-11df-aaa9-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{f7f761db-a965-11df-aaa9-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{f7f761f6-a965-11df-aaa9-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{f7f761f6-a965-11df-aaa9-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\H\Shell - "" = AutoRun
O33 - MountPoints2\H\Shell\AutoRun\command - "" = H:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

MsConfig - StartUpReg: [b]Adobe ARM[/b] - hkey= - key= - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
MsConfig - StartUpReg: [b]Adobe Reader Speed Launcher[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]avast[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]SunJavaUpdateSched[/b] - hkey= - key= - C:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
MsConfig - State: "startup" - 2

SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: NTDS - File not found
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vmms - Service
SafeBootMin: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: Messenger - File not found
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: NTDS - File not found
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vmms - Service
SafeBootNet: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2012-12-26 04:52:34 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\jacec\Desktop\OTL.exe
[2012-12-19 14:45:21 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2012-12-19 14:45:21 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2012-12-19 14:44:55 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2012-12-18 11:55:01 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2012-12-11 00:18:51 | 000,000,000 | -HSD | C] -- C:\found.000
[2012-12-10 21:58:51 | 000,000,000 | ---D | C] -- C:\Users\jacec\AppData\Local\VideoDownloadConverter_4z
[2012-12-10 21:46:39 | 003,155,928 | ---- | C] (VideoDownloadConverter) -- C:\Users\jacec\Desktop\VideoDownloadConvertSetup2.5.11.3.^HJ^fox000^^.exe
[2012-12-10 21:05:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2012-12-10 21:02:52 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2012-12-10 20:59:47 | 000,062,688 | ---- | C] (PC Tools) -- C:\Windows\System32\drivers\PCTBD.sys
[2012-12-10 20:59:44 | 000,150,648 | ---- | C] (PC Tools) -- C:\Windows\SGDetectionTool.dll
[2012-12-10 20:59:43 | 002,280,568 | ---- | C] (Threat Expert Ltd.) -- C:\Windows\PCTBDCore.dll
[2012-12-10 20:59:43 | 001,690,744 | ---- | C] (Threat Expert Ltd.) -- C:\Windows\PCTBDRes.dll
[2012-12-10 20:50:56 | 000,000,000 | ---D | C] -- C:\Program Files\PC Tools
[2012-12-10 20:40:10 | 000,202,280 | ---- | C] (PC Tools) -- C:\Windows\System32\drivers\PCTSD.sys
[2012-12-10 20:39:02 | 000,000,000 | ---D | C] -- C:\Users\jacec\AppData\Roaming\TestApp
[2012-12-10 20:39:02 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Tools
[2012-12-10 20:38:03 | 004,124,152 | ---- | C] (PC Tools) -- C:\Users\jacec\Desktop\sdsetup.exe
[2012-12-09 18:20:34 | 000,000,000 | ---D | C] -- C:\Users\jacec\AppData\Roaming\NBT
[2012-12-09 17:56:15 | 010,669,952 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\jacec\Desktop\mbam-setup-1.65.1.1000.exe
[2012-12-02 08:57:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012-12-02 08:56:22 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2012-12-02 08:56:21 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2012-12-02 08:56:21 | 000,000,000 | ---D | C] -- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
[2012-12-02 08:50:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2012-12-02 08:50:44 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2012-11-27 22:25:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2011-03-03 19:27:34 | 000,148,736 | ---- | C] (Avanquest Software) -- C:\ProgramData\hpe5FDC.dll

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2012-12-26 04:55:01 | 001,391,428 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2012-12-26 04:55:01 | 001,319,270 | ---- | M] () -- C:\Windows\System32\perfh01D.dat
[2012-12-26 04:55:01 | 001,317,710 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012-12-26 04:55:01 | 000,375,966 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2012-12-26 04:55:01 | 000,364,866 | ---- | M] () -- C:\Windows\System32\perfc01D.dat
[2012-12-26 04:55:01 | 000,347,514 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012-12-26 04:52:38 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\jacec\Desktop\OTL.exe
[2012-12-26 04:52:16 | 000,781,383 | ---- | M] () -- C:\Users\jacec\Desktop\RSIT.exe
[2012-12-26 04:33:37 | 000,000,880 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012-12-26 04:33:10 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012-12-26 04:33:04 | 2389,995,520 | -HS- | M] () -- C:\hiberfil.sys
[2012-12-25 12:10:51 | 000,014,416 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012-12-25 12:10:51 | 000,014,416 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012-12-25 11:44:03 | 000,291,040 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012-12-23 22:21:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012-12-19 14:45:31 | 000,001,955 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2012-12-18 12:24:35 | 000,002,286 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2012-12-18 10:35:16 | 012,119,797 | ---- | M] () -- C:\Users\jacec\Desktop\Remove WAT 2.2.6.0.rar
[2012-12-15 21:12:25 | 000,128,512 | ---- | M] () -- C:\Users\jacec\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-12-10 21:46:45 | 003,155,928 | ---- | M] (VideoDownloadConverter) -- C:\Users\jacec\Desktop\VideoDownloadConvertSetup2.5.11.3.^HJ^fox000^^.exe
[2012-12-10 21:05:16 | 000,002,185 | ---- | M] () -- C:\Users\jacec\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012-12-10 20:40:48 | 002,077,421 | ---- | M] () -- C:\Windows\System32\drivers\Cat.DB
[2012-12-10 20:38:48 | 004,124,152 | ---- | M] (PC Tools) -- C:\Users\jacec\Desktop\sdsetup.exe
[2012-12-09 17:57:36 | 000,001,033 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012-12-09 17:56:46 | 010,669,952 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\jacec\Desktop\mbam-setup-1.65.1.1000.exe
[2012-12-09 17:55:21 | 000,579,176 | ---- | M] () -- C:\Users\jacec\Desktop\Malwarebytes-AntiMalware(13117).exe
[2012-12-02 08:57:12 | 000,001,719 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012-12-02 08:50:53 | 000,001,781 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2012-11-27 22:25:44 | 000,000,990 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2012-11-01 15:35:14 | 000,202,280 | ---- | M] (PC Tools) -- C:\Windows\System32\drivers\PCTSD.sys

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2012-12-26 04:52:11 | 000,781,383 | ---- | C] () -- C:\Users\jacec\Desktop\RSIT.exe
[2012-12-19 14:45:31 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2012-12-19 14:45:31 | 000,001,955 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2012-12-10 21:05:16 | 000,002,286 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2012-12-10 21:05:16 | 000,002,185 | ---- | C] () -- C:\Users\jacec\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012-12-10 21:03:11 | 000,000,884 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012-12-10 21:03:04 | 000,000,880 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012-12-10 20:59:46 | 000,769,144 | ---- | C] () -- C:\Windows\BDTSupport.dll
[2012-12-10 20:59:44 | 000,003,488 | ---- | C] () -- C:\Windows\UDB.zip
[2012-12-10 20:59:44 | 000,000,882 | ---- | C] () -- C:\Windows\RegSDImport.xml
[2012-12-10 20:59:44 | 000,000,879 | ---- | C] () -- C:\Windows\RegISSImport.xml
[2012-12-10 20:59:44 | 000,000,131 | ---- | C] () -- C:\Windows\IDB.zip
[2012-12-10 20:40:19 | 002,077,421 | ---- | C] () -- C:\Windows\System32\drivers\Cat.DB
[2012-12-09 17:55:10 | 000,579,176 | ---- | C] () -- C:\Users\jacec\Desktop\Malwarebytes-AntiMalware(13117).exe
[2012-12-02 08:57:12 | 000,001,719 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012-12-02 08:50:53 | 000,001,781 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2012-11-28 03:02:09 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2012-11-28 03:01:40 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2012-11-27 22:25:44 | 000,000,990 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2011-09-12 10:49:13 | 000,080,896 | ---- | C] () -- C:\Windows\System32\RDVGHelper.exe
[2011-09-12 10:47:22 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2010-08-22 10:16:25 | 000,033,134 | ---- | C] () -- C:\Users\jacec\AppData\Roaming\UserTile.png
[2010-08-18 06:24:01 | 000,128,512 | ---- | C] () -- C:\Users\jacec\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-08-17 19:37:40 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2009-07-14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012-06-09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009-07-14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[color=#E56717]========== LOP Check ==========[/color]

[2010-08-17 08:31:01 | 000,000,000 | ---D | M] -- C:\Users\jacec\AppData\Roaming\Ashampoo
[2012-07-24 15:08:33 | 000,000,000 | ---D | M] -- C:\Users\jacec\AppData\Roaming\Babylon
[2012-12-23 21:45:08 | 000,000,000 | ---D | M] -- C:\Users\jacec\AppData\Roaming\NBT
[2010-08-17 09:01:24 | 000,000,000 | ---D | M] -- C:\Users\jacec\AppData\Roaming\OpenOffice.org
[2011-03-03 19:28:39 | 000,000,000 | ---D | M] -- C:\Users\jacec\AppData\Roaming\Sony
[2011-03-03 19:17:12 | 000,000,000 | ---D | M] -- C:\Users\jacec\AppData\Roaming\Sony Setup
[2012-12-10 20:39:02 | 000,000,000 | ---D | M] -- C:\Users\jacec\AppData\Roaming\TestApp
[2011-04-11 20:11:49 | 000,000,000 | ---D | M] -- C:\Users\jacec\AppData\Roaming\TomTom
[2010-08-17 08:23:55 | 000,000,000 | ---D | M] -- C:\Users\jacec\AppData\Roaming\Uniblue
[2011-06-18 17:39:47 | 000,000,000 | ---D | M] -- C:\Users\jacec\AppData\Roaming\uTorrent
[2010-08-14 01:56:18 | 000,000,000 | ---D | M] -- C:\Users\jacec\AppData\Roaming\Win7codecs

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]

[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2009-06-10 22:42:20 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
[2010-11-20 13:40:07 | 000,383,786 | RHS- | M] () -- C:\bootmgr
[2010-01-14 22:00:08 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2009-06-10 22:42:20 | 000,000,010 | ---- | M] () -- C:\config.sys
[2012-12-26 04:33:04 | 2389,995,520 | -HS- | M] () -- C:\hiberfil.sys
[2012-04-03 21:08:33 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2012-04-03 21:08:33 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2012-12-26 04:33:07 | 3186,663,424 | -HS- | M] () -- C:\pagefile.sys
[2012-12-10 20:33:17 | 000,268,142 | ---- | M] () -- C:\TDSSKiller.2.8.15.0_10.12.2012_20.31.48_log.txt
[2012-12-11 23:36:11 | 000,269,128 | ---- | M] () -- C:\TDSSKiller.2.8.15.0_11.12.2012_23.35.00_log.txt
[2010-01-14 22:12:50 | 000,171,136 | RHS- | M] () -- C:\w7ldr

[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2009-07-14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\drivers\AGP440.sys
[2009-07-14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_a97a2a0d0fbc6696\AGP440.sys
[2009-07-14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\AGP440.sys
[2009-07-14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\AGP440.sys

[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2009-07-14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009-07-14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_fab873f3e8a3315c\atapi.sys
[2009-07-14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys
[2009-07-14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\atapi.sys

[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]
[2009-07-14 00:45:01 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=505506526A9D467307B3C393DEDAF858 -- C:\Windows\System32\drivers\beep.sys
[2009-07-14 00:45:01 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=505506526A9D467307B3C393DEDAF858 -- C:\Windows\winsxs\x86_microsoft-windows-beepsys_31bf3856ad364e35_6.1.7600.16385_none_c3f6f77668f0ddcc\beep.sys

[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2009-07-14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_5f7fb206051affbb\cdrom.sys
[2010-11-20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\drivers\cdrom.sys
[2010-11-20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_6381e09675524225\cdrom.sys
[2010-11-20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_61b0c5ce02098355\cdrom.sys

[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2012-08-22 18:05:16 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=15B74B6283CEBCCE3054C1001CA01B5E -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.22097_none_aa0491cf93ad1c31\ndis.sys
[2009-07-14 02:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_a79d81ea7d62a289\ndis.sys
[2012-08-22 18:16:46 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=8C9C922D71F1CD4DEF73F186416B7896 -- C:\Windows\System32\drivers\ndis.sys
[2012-08-22 18:16:46 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=8C9C922D71F1CD4DEF73F186416B7896 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17939_none_a9bdfee47a5cd154\ndis.sys
[2010-11-20 13:30:06 | 000,712,576 | ---- | M] (Microsoft Corporation) MD5=E7C54812A2AAF43316EB6930C1FFA108 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_a9ce95b27a512623\ndis.sys

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2009-10-28 07:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_6fc699643622d177\winlogon.exe
[2009-10-28 06:52:08 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=3BABE6767C78FBF5FB8435FEED187F30 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_703394514f56f7c2\winlogon.exe
[2010-11-20 13:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\System32\winlogon.exe
[2010-11-20 13:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe
[2012-09-29 19:54:26 | 000,218,184 | ---- | M] () MD5=8846E87210AD131CF71E3E2E49F647B0 -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2009-07-14 02:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:DFC5A2B2
@Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:430C6D84

< End of report >

[/log]
[log]OTL Extras logfile created on: 2012-12-26 04:55:53 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\jacec\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Poland | Language: PLK | Date Format: yyyy-MM-dd

2,97 Gb Total Physical Memory | 2,06 Gb Available Physical Memory | 69,28% Memory free
5,93 Gb Paging File | 4,96 Gb Available in Paging File | 83,51% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 101,47 Gb Total Space | 59,60 Gb Free Space | 58,74% Space Free | Partition Type: NTFS
Drive D: | 271,14 Gb Total Space | 44,30 Gb Free Space | 16,34% Space Free | Partition Type: NTFS

Computer Name: ONLYMINE | User Name: jacec | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-666643132-1411173658-3390636905-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[color=#E56717]========== Authorized Applications List ==========[/color]


[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0BFB7654-809E-416A-80DA-B396B7D87E8C}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{24155281-1B52-43C6-B2C1-0B9C2434862E}" = lport=139 | protocol=6 | dir=in | app=system |
"{2F5CDE2A-9E88-430F-A9B6-6EAF46C9AD2D}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{3093EB7C-3CD2-4BB8-AE91-BC5E95B58109}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{320F5D96-61E5-4FE0-9D2E-518DB31B92EC}" = rport=445 | protocol=6 | dir=out | app=system |
"{42B45FBE-A7C8-412C-86B2-2B87934DEB94}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{4489D824-00E6-451F-854E-A6CD79A6D947}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{48E52388-0CEF-444F-A3B0-053C2A1BDD2C}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{5459C17A-BFCC-4DEC-9473-250A761DEE2A}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{57064AAC-9DE2-4638-983C-ADD3E4807BED}" = rport=138 | protocol=17 | dir=out | app=system |
"{5ECE6014-31DC-4DA2-9CD4-DE9999EC8A15}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{6A48A77D-1B4D-4196-BB6D-C2F0CAF97A74}" = lport=445 | protocol=6 | dir=in | app=system |
"{8C15333F-2551-4E25-8C21-856FB23F42C6}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{AC33EEE7-4640-4519-841B-A3B6E16170BB}" = rport=139 | protocol=6 | dir=out | app=system |
"{B1E08FDC-900D-432F-B1D4-185FBEF5E3D7}" = rport=137 | protocol=17 | dir=out | app=system |
"{BFDD3473-3112-4DD3-AFAC-BA9E86081CCA}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{C3D30CA9-5B91-4860-A301-0CC254F2C24D}" = lport=138 | protocol=17 | dir=in | app=system |
"{C6000274-3606-4FF2-9942-6F46E1F611AD}" = lport=137 | protocol=17 | dir=in | app=system |
"{C638A619-74FB-4FCB-966B-5E85EAB73178}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{DB2755E4-D25B-439D-8631-83DD40C5D03A}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{E4EE026F-2BF9-4023-8D9B-525C8645E399}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{F26462F8-0F46-48BF-B4CD-6CBA7A6CF2AF}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{026E3C53-0610-4A64-B170-3ED5207F48EA}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{1A5A30F6-F6E2-4FEE-BEAD-0C182FB7E570}" = protocol=17 | dir=in | app=d:\programy\utorrent.exe |
"{2627D34E-3E01-4DCA-A7F6-3C03C9BAA5AA}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{5F83CE25-5E53-4D52-A8B7-D0304DF5A53B}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{62DEE134-BFB3-4C2B-B457-03738F2246A5}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{6F7A9F87-D2EC-447D-970C-5F187E7FDE65}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{77DAB998-9FDF-479B-8CEE-DBDDC823053D}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{7F9FC2A0-1FAA-4187-8E46-BB078CE4D943}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{83239EE1-0A51-4A50-854D-890512BC9A7A}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{B9C69D3A-1CC0-4653-B6C8-0569ED0C4AE4}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{C1AAADAC-4ED7-4A72-8240-AC2D41D63F4C}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{C31AE23F-0F4D-4A1C-821E-E8C167426675}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{D33704FA-A2E5-4814-82B2-436EA2181404}" = protocol=6 | dir=in | app=d:\programy\utorrent.exe |
"{E3FBC957-21B1-4D3A-89AE-BD11F25D84E8}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{FAC3DDAE-9DCD-4F13-B794-012CAE4E1941}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"TCP Query User{0FEACDA1-00E3-4321-B5EE-B98A5B526045}C:\programdata\73bc1f\sm73b_231.exe" = protocol=6 | dir=in | app=c:\programdata\73bc1f\sm73b_231.exe |
"TCP Query User{1E4FA66A-1273-4F53-A8AC-6BC3AFC3DE0F}D:\programy\vlc\vlc.exe" = protocol=6 | dir=in | app=d:\programy\vlc\vlc.exe |
"TCP Query User{55783CB8-5408-4590-8027-3A23D46125AD}C:\program files\ares\chatserver.exe" = protocol=6 | dir=in | app=c:\program files\ares\chatserver.exe |
"TCP Query User{89FD309F-65D2-4F4C-A1A3-9E25CF727EB2}C:\users\jacec\appdata\local\screamer radio\screamer.exe" = protocol=6 | dir=in | app=c:\users\jacec\appdata\local\screamer radio\screamer.exe |
"TCP Query User{985E029F-883A-4F03-B359-F648B7DD1CE1}D:\programy\vlc\vlc.exe" = protocol=6 | dir=in | app=d:\programy\vlc\vlc.exe |
"TCP Query User{A5EEC1C2-6CCE-4D8E-86D2-5810064C79C6}C:\program files\ares\ares.exe" = protocol=6 | dir=in | app=c:\program files\ares\ares.exe |
"TCP Query User{A922BC9D-E619-4EC4-943E-3121B2C8184F}C:\programdata\73bc1f\sm73b_231.exe" = protocol=6 | dir=in | app=c:\programdata\73bc1f\sm73b_231.exe |
"TCP Query User{CF5906C9-A8B3-4298-AE9F-BAEF4E323237}C:\program files\ares\ares.exe" = protocol=6 | dir=in | app=c:\program files\ares\ares.exe |
"UDP Query User{10FC27AF-43F9-4B44-A71D-A41585EA5E7A}C:\program files\ares\ares.exe" = protocol=17 | dir=in | app=c:\program files\ares\ares.exe |
"UDP Query User{373A80D7-CEE7-4413-839A-15562A365EC0}D:\programy\vlc\vlc.exe" = protocol=17 | dir=in | app=d:\programy\vlc\vlc.exe |
"UDP Query User{84843A01-8D90-408F-A323-19BB76FF7F7D}C:\programdata\73bc1f\sm73b_231.exe" = protocol=17 | dir=in | app=c:\programdata\73bc1f\sm73b_231.exe |
"UDP Query User{8973DC24-7449-4A75-96B6-D1883D2E8DC1}C:\program files\ares\ares.exe" = protocol=17 | dir=in | app=c:\program files\ares\ares.exe |
"UDP Query User{8CFE192B-0A86-4765-A843-8A2E0CDA8ACA}C:\programdata\73bc1f\sm73b_231.exe" = protocol=17 | dir=in | app=c:\programdata\73bc1f\sm73b_231.exe |
"UDP Query User{ADF950EF-6562-4FDA-8B89-E6EEE035735D}D:\programy\vlc\vlc.exe" = protocol=17 | dir=in | app=d:\programy\vlc\vlc.exe |
"UDP Query User{AEB52375-0E3D-4513-9D5F-FEB2A9510E62}C:\program files\ares\chatserver.exe" = protocol=17 | dir=in | app=c:\program files\ares\chatserver.exe |
"UDP Query User{C8E9B2FB-068E-495C-96F6-7094813299A6}C:\users\jacec\appdata\local\screamer radio\screamer.exe" = protocol=17 | dir=in | app=c:\users\jacec\appdata\local\screamer radio\screamer.exe |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}" = PlayStation®Store
"{1871FE54-36AA-478F-B374-A46BA54474CC}" = ESET NOD32 Antivirus
"{1B6C0E95-182C-48E0-9C4B-4F916308249C}" = iTunes
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java™ 6 Update 21
"{2FFE93F0-BB72-4E52-8761-354D1AAA9387}" = Sony Ericsson PC Suite 6.011.00
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{459699C3-9430-4381-964B-4248D87B49F9}" = Apple Mobile Device Support
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{8727531E-6C58-4852-A90B-39CF45E269A9}" = OpenOffice.org 3.2
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C0CAA7A-3272-4991-A808-2C7559DE3409}" = Win7codecs
"{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AB05F2C8-F608-403b-95E1-FD8ADFACD31E}" = Windows 7 Upgrade Advisor
"{AC76BA86-7AD7-1045-7B44-AA1000000001}" = Adobe Reader X (10.1.3) - Polish
"{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}" = QuickTime
"{B6659DD8-00A7-4A24-BBFB-C1F6982E5D66}" = PlayStation®Network Downloader
"{CCE825DB-347A-4004-A186-5F4A6FDD8547}" = Obsługa programów Apple
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240BD}" = WinZip 14.5
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony Ericsson PC Companion 1.60.13
"{FBE5AA96-22F0-4C4A-8E92-4BE3498D4CCB}" = Media Go
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Ares" = Ares 2.1.6
"Browser Defender_is1" = Browser Guard 4.0
"CCleaner" = CCleaner
"Google Chrome" = Google Chrome
"KLiteCodecPack_is1" = K-Lite Codec Pack 6.4.0 (Full)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware wersja 1.65.1.1000
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Mobile Partner" = Mobile Partner
"Mozilla Firefox 17.0.1 (x86 pl)" = Mozilla Firefox 17.0.1 (x86 pl)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"RocketDock_is1" = RocketDock 1.3.5
"TomTom HOME" = TomTom HOME 2.8.2.2264
"uTorrent" = µTorrent
"VLC media player" = VLC media player 2.0.4
"WinRAR archiver" = WinRAR 4.01 (32-bitowy)

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-666643132-1411173658-3390636905-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"NBT" = NBT
"Video Player" = Video Player

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2012-12-20 23:06:07 | Computer Name = onlymine | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 9953

Error - 2012-12-20 23:06:07 | Computer Name = onlymine | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 9953

Error - 2012-12-21 04:16:44 | Computer Name = onlymine | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 2012-12-21 04:16:44 | Computer Name = onlymine | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 18646690

Error - 2012-12-21 04:16:44 | Computer Name = onlymine | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 18646690

Error - 2012-12-23 16:43:14 | Computer Name = onlymine | Source = Windows Backup | ID = 4103
Description =

Error - 2012-12-25 23:54:58 | Computer Name = onlymine | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Ciagi wydajnosci w wartosci rejestru wydajnosci sa uszkodzone, kiedy
proces wykonuje nastepujaca operacje na dostawcy licznika rozszerzen: Performance.
Wartosc BaseIndex z rejestru wydajnosci to pierwszy wpis DWORD w sekcji danych
Data, wartosc LastCounter to drugi wpis DWORD, a wartosc LastHelp to trzeci wpis
DWORD w sekcji Data.

Error - 2012-12-25 23:54:58 | Computer Name = onlymine | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Ciagi wydajnosci w wartosci rejestru wydajnosci sa uszkodzone, kiedy
proces wykonuje nastepujaca operacje na dostawcy licznika rozszerzen: Performance.
Wartosc BaseIndex z rejestru wydajnosci to pierwszy wpis DWORD w sekcji danych
Data, wartosc LastCounter to drugi wpis DWORD, a wartosc LastHelp to trzeci wpis
DWORD w sekcji Data.

Error - 2012-12-25 23:54:58 | Computer Name = onlymine | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Ciagi wydajnosci w wartosci rejestru wydajnosci sa uszkodzone, kiedy
proces wykonuje nastepujaca operacje na dostawcy licznika rozszerzen: Performance.
Wartosc BaseIndex z rejestru wydajnosci to pierwszy wpis DWORD w sekcji danych
Data, wartosc LastCounter to drugi wpis DWORD, a wartosc LastHelp to trzeci wpis
DWORD w sekcji Data.

Error - 2012-12-25 23:54:58 | Computer Name = onlymine | Source = Microsoft-Windows-LoadPerf | ID = 3011
Description = Nie mozna usunac z pamieci ciagów licznika wydajnosci dla uslugi WmiApRpl
(WmiApRpl). Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod bledu.

[ System Events ]
Error - 2012-12-25 23:53:29 | Computer Name = onlymine | Source = Service Control Manager | ID = 7003
Description = Usluga PC Tools Browser Defender Driver zalezy od nastepujacej uslugi:
PCTCore. Ta usluga moze nie byc zainstalowana.

Error - 2012-12-25 23:53:59 | Computer Name = onlymine | Source = Service Control Manager | ID = 7003
Description = Usluga PC Tools Browser Defender Driver zalezy od nastepujacej uslugi:
PCTCore. Ta usluga moze nie byc zainstalowana.

Error - 2012-12-25 23:54:29 | Computer Name = onlymine | Source = Service Control Manager | ID = 7003
Description = Usluga PC Tools Browser Defender Driver zalezy od nastepujacej uslugi:
PCTCore. Ta usluga moze nie byc zainstalowana.

Error - 2012-12-25 23:54:59 | Computer Name = onlymine | Source = Service Control Manager | ID = 7003
Description = Usluga PC Tools Browser Defender Driver zalezy od nastepujacej uslugi:
PCTCore. Ta usluga moze nie byc zainstalowana.

Error - 2012-12-25 23:55:29 | Computer Name = onlymine | Source = Service Control Manager | ID = 7003
Description = Usluga PC Tools Browser Defender Driver zalezy od nastepujacej uslugi:
PCTCore. Ta usluga moze nie byc zainstalowana.

Error - 2012-12-25 23:55:59 | Computer Name = onlymine | Source = Service Control Manager | ID = 7003
Description = Usluga PC Tools Browser Defender Driver zalezy od nastepujacej uslugi:
PCTCore. Ta usluga moze nie byc zainstalowana.

Error - 2012-12-25 23:56:29 | Computer Name = onlymine | Source = Service Control Manager | ID = 7003
Description = Usluga PC Tools Browser Defender Driver zalezy od nastepujacej uslugi:
PCTCore. Ta usluga moze nie byc zainstalowana.

Error - 2012-12-25 23:56:59 | Computer Name = onlymine | Source = Service Control Manager | ID = 7003
Description = Usluga PC Tools Browser Defender Driver zalezy od nastepujacej uslugi:
PCTCore. Ta usluga moze nie byc zainstalowana.

Error - 2012-12-25 23:57:29 | Computer Name = onlymine | Source = Service Control Manager | ID = 7003
Description = Usluga PC Tools Browser Defender Driver zalezy od nastepujacej uslugi:
PCTCore. Ta usluga moze nie byc zainstalowana.

Error - 2012-12-25 23:57:59 | Computer Name = onlymine | Source = Service Control Manager | ID = 7003
Description = Usluga PC Tools Browser Defender Driver zalezy od nastepujacej uslugi:
PCTCore. Ta usluga moze nie byc zainstalowana.


< End of report >

[/log]
[log]Logfile of random's system information tool 1.09 (written by random/random)
Run by jacec at 2012-12-26 05:12:40
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 61 GB (59%) free of 104 GB
Total RAM: 3039 MB (65% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 05:12:44, on 2012-12-26
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\System32\rundll32.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe
C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
C:\Users\jacec\AppData\Roaming\Microsoft\Windows\nsx3D79.exe
C:\Users\jacec\Desktop\RSIT.exe
C:\Program Files\trend micro\jacec.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft....k/?LinkId=54896[/url]
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [url="http://search.babylon.com/?affID=110819&tt=190712_n_mont_3012_4&babsrc=HP_ss&mntrId=105a5d79000000000000001e101f859f"]http://search.babylo...000001e101f859f[/url]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [url="http://go.microsoft.com/fwlink/?LinkId=69157"]http://go.microsoft....k/?LinkId=69157[/url]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft....k/?LinkId=54896[/url]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft....k/?LinkId=54896[/url]
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [url="http://go.microsoft.com/fwlink/?LinkId=69157"]http://go.microsoft....k/?LinkId=69157[/url]
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: PC Tools Browser Guard - {472734EA-242A-422b-ADF8-83D1E48CC825} - C:\Program Files\PC Tools\PC Tools Security\BDT\PCTBrowserDefender.dll
O1 - Hosts: ÿþ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Browser Guard BHO - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files\PC Tools\PC Tools Security\BDT\PCTBrowserDefender.dll
O2 - BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.29.1\bh\BabylonToolbar.dll (file missing)
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.29.1\BabylonToolbarTlbr.dll (file missing)
O3 - Toolbar: PC Tools Browser Guard - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files\PC Tools\PC Tools Security\BDT\PCTBrowserDefender.dll
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Sony Ericsson PC Companion] "C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe" /systray /nologon
O4 - HKCU\..\Run: [Mobile Partner] C:\Program Files\Mobile Partner\Mobile Partner.exe
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - HKCU\..\Run: [CFgjtH7CGDY5EG5l] C:\Users\jacec\AppData\Roaming\Microsoft\Windows\nsx3D79.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - [url="http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab"]http://fpdownload2.m...ash/swflash.cab[/url]
O17 - HKLM\System\CCS\Services\Tcpip\..\{6B3B45B6-0391-490C-AC97-43CC218062C1}: NameServer = 80.251.201.177 80.251.201.178
O17 - HKLM\System\CCS\Services\Tcpip\..\{74A74C83-4DE6-477B-A1CD-D62C7D0FC04F}: NameServer = 80.251.201.177 80.251.201.178
O17 - HKLM\System\CCS\Services\Tcpip\..\{C2140604-F271-4019-865D-E623A344362D}: NameServer = 80.251.201.177 80.251.201.178
O17 - HKLM\System\CCS\Services\Tcpip\..\{F3F5FA7B-A4B8-486C-ADA8-9998579E0232}: NameServer = 80.251.201.177 80.251.201.178
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Usluga Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Browser Defender Update Service - Unknown owner - C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe
O23 - Service: DCService.exe - Unknown owner - C:\ProgramData\DatacardService\DCService.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Usluga Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Usluga iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Mobile Partner. OUC (Mobile Partner. RunOuc) - Unknown owner - C:\Program Files\Mobile Partner\UpdateDog\ouc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Sony Ericsson OMSI download service (OMSI download service) - Unknown owner - C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SrvAd - Unknown owner - C:\Users\jacec\AppData\Roaming\Microsoft\Windows\AdvService.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe

--
End of file - 7363 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\jacec\AppData\Roaming\Mozilla\Firefox\Profiles\ozbth2gs.default

prefs.js - "browser.search.suggest.enabled" - false
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://search.conduit.com/?ctid=CT3242340&SearchSource=13&CUI=SB_CUI"
prefs.js - "keyword.URL" - "http://search.conduit.com/ResultsExt.aspx?ctid=CT3242340&SearchSource=2&q="

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"{5cea9a87-a3a5-4c2a-b08d-8a1876d4931c}"=C:\Users\jacec\AppData\Roaming\Mozilla\FireFox\{5cea9a87-a3a5-4c2a-b08d-8a1876d4931c}
"{cb84136f-9c44-433a-9048-c5cd9df1dc16}"=C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=Wtyczka wykrywacza iTunes
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@SonyCreativeSoftware.com/Media Go,version=1.0]
"Description"=
"Path"=c:\Program Files\Sony\Media Go\npmediago.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsIQTScriptablePlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
npdeployJava1.dll
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
allegro-pl.xml
babylon.xml
fbc-pl.xml
google.xml
merlin-pl.xml
pwn-pl.xml
wikipedia-pl.xml
wp-pl.xml

C:\Users\jacec\AppData\Roaming\Mozilla\Firefox\Profiles\ozbth2gs.default\extensions\
4zffxtbr@VideoDownloadConverter_4z.com
{0a3bed8d-198d-42a9-a7d1-983e6581f422}
{3112ca9c-de6d-4884-a869-9855de68056c}

C:\Users\jacec\AppData\Roaming\Mozilla\Firefox\Profiles\ozbth2gs.default\searchplugins\
wiseconvert-16-customized-web-search.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-04-04 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2A0F3D1B-0909-4FF4-B272-609CCE6054E7}]
PC Tools Browser Guard BHO - C:\Program Files\PC Tools\PC Tools Security\BDT\PCTBrowserDefender.dll [2012-10-23 1137784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}]
Babylon toolbar helper - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.29.1\bh\BabylonToolbar.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java™ Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-08-14 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{98889811-442D-49dd-99D7-DC866BE87DBC} - Babylon Toolbar - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.29.1\BabylonToolbarTlbr.dll []
{472734EA-242A-422B-ADF8-83D1E48CC825} - PC Tools Browser Guard - C:\Program Files\PC Tools\PC Tools Security\BDT\PCTBrowserDefender.dll [2012-10-23 1137784]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-11-16 2054360]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-11-28 59280]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2012-10-25 421888]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2012-11-29 151952]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-04-04 843712]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"=C:\Program Files\RocketDock\RocketDock.exe [2007-09-02 495616]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"Sony Ericsson PC Companion"=C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe [2009-12-08 774144]
"Mobile Partner"=C:\Program Files\Mobile Partner\Mobile Partner.exe [2011-02-09 514048]
"TomTomHOME.exe"=C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [2011-04-22 247728]
"CFgjtH7CGDY5EG5l"=C:\Users\jacec\AppData\Roaming\Microsoft\Windows\nsx3D79.exe [2012-04-01 203776]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-04-04 843712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avast]
C:\Program Files\AVAST Software\Avast\avastUI.exe /nogui []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=2
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"DisallowRun"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3filter"=ac3filter.acm
"msacm.avis"=ff_acm.acm
"VIDC.YV12"=yv12vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2012-12-26 05:12:40 ----D---- C:\rsit
2012-12-23 23:02:33 ----A---- C:\Windows\system32\atmlib.dll
2012-12-23 23:02:33 ----A---- C:\Windows\system32\atmfd.dll
2012-12-19 14:45:21 ----D---- C:\Program Files\Common Files\Adobe
2012-12-19 14:45:21 ----D---- C:\Program Files\Adobe
2012-12-19 14:44:55 ----SHD---- C:\Config.Msi
2012-12-19 14:19:35 ----A---- C:\Windows\system32\mshtmled.dll
2012-12-19 14:19:34 ----A---- C:\Windows\system32\vbscript.dll
2012-12-19 14:19:32 ----A---- C:\Windows\system32\jsproxy.dll
2012-12-19 14:19:32 ----A---- C:\Windows\system32\ieui.dll
2012-12-19 14:19:30 ----A---- C:\Windows\system32\msfeeds.dll
2012-12-19 14:19:30 ----A---- C:\Windows\system32\ieUnatt.exe
2012-12-19 14:19:28 ----A---- C:\Windows\system32\wininet.dll
2012-12-19 14:19:28 ----A---- C:\Windows\system32\jscript.dll
2012-12-19 14:19:27 ----A---- C:\Windows\system32\url.dll
2012-12-19 14:19:27 ----A---- C:\Windows\system32\jscript9.dll
2012-12-19 14:19:24 ----A---- C:\Windows\system32\iertutil.dll
2012-12-19 14:19:20 ----A---- C:\Windows\system32\urlmon.dll
2012-12-19 14:19:17 ----A---- C:\Windows\system32\ieframe.dll
2012-12-19 14:19:13 ----A---- C:\Windows\system32\mshtml.dll
2012-12-18 11:55:01 ----D---- C:\Program Files\Mozilla Firefox
2012-12-18 10:41:48 ----A---- C:\Windows\system32\win32k.sys
2012-12-18 10:40:57 ----A---- C:\Windows\system32\KernelBase.dll
2012-12-18 10:40:56 ----A---- C:\Windows\system32\kernel32.dll
2012-12-18 10:40:56 ----A---- C:\Windows\system32\conhost.exe
2012-12-18 10:40:55 ----A---- C:\Windows\system32\winsrv.dll
2012-12-18 10:40:51 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-12-18 10:40:50 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2012-12-18 10:40:50 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2012-12-18 10:40:50 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-12-18 10:40:50 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2012-12-18 10:40:50 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2012-12-18 10:40:50 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-12-18 10:40:50 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2012-12-18 10:40:49 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-12-18 10:40:49 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2012-12-18 10:40:49 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2012-12-18 10:40:49 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2012-12-18 10:40:49 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2012-12-18 10:40:49 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2012-12-18 10:40:49 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2012-12-18 10:40:49 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2012-12-18 10:40:49 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2012-12-18 10:40:49 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2012-12-18 10:40:49 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2012-12-18 10:40:49 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2012-12-18 10:40:49 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2012-12-18 10:40:48 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2012-12-18 10:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2012-12-18 10:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2012-12-18 10:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2012-12-18 10:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2012-12-18 10:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2012-12-18 10:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2012-12-18 10:40:22 ----A---- C:\Windows\system32\dpnet.dll
2012-12-18 10:40:08 ----A---- C:\Windows\system32\tzres.dll
2012-12-11 23:35:00 ----A---- C:\TDSSKiller.2.8.15.0_11.12.2012_23.35.00_log.txt
2012-12-11 00:18:51 ----SHD---- C:\found.000
2012-12-10 21:02:52 ----D---- C:\Program Files\Google
2012-12-10 20:59:47 ----A---- C:\Windows\system32\drivers\PCTBD.sys
2012-12-10 20:59:46 ----A---- C:\Windows\BDTSupport.dll
2012-12-10 20:59:44 ----A---- C:\Windows\SGDetectionTool.dll
2012-12-10 20:59:43 ----A---- C:\Windows\PCTBDRes.dll
2012-12-10 20:59:43 ----A---- C:\Windows\PCTBDCore.dll
2012-12-10 20:50:56 ----D---- C:\Program Files\PC Tools
2012-12-10 20:40:19 ----A---- C:\Windows\system32\drivers\Cat.DB
2012-12-10 20:40:10 ----A---- C:\Windows\system32\drivers\PCTSD.sys
2012-12-10 20:39:02 ----D---- C:\Users\jacec\AppData\Roaming\TestApp
2012-12-10 20:39:02 ----D---- C:\ProgramData\PC Tools
2012-12-10 20:31:48 ----A---- C:\TDSSKiller.2.8.15.0_10.12.2012_20.31.48_log.txt
2012-12-09 18:20:34 ----D---- C:\Users\jacec\AppData\Roaming\NBT
2012-12-02 08:56:59 ----A---- C:\Windows\system32\drivers\GEARAspiWDM.sys
2012-12-02 08:56:22 ----D---- C:\Program Files\iPod
2012-12-02 08:56:21 ----D---- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2012-12-02 08:56:21 ----D---- C:\Program Files\iTunes
2012-12-02 08:50:44 ----D---- C:\Program Files\QuickTime
2012-11-28 03:02:08 ----A---- C:\Windows\system32\Wdfres.dll
2012-11-28 03:02:08 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2012-11-28 03:02:08 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2012-11-28 03:01:41 ----A---- C:\Windows\system32\WUDFSvc.dll
2012-11-28 03:01:41 ----A---- C:\Windows\system32\WUDFPlatform.dll
2012-11-28 03:01:41 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2012-11-28 03:01:41 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2012-11-28 03:01:40 ----A---- C:\Windows\system32\WUDFx.dll
2012-11-28 03:01:40 ----A---- C:\Windows\system32\WUDFHost.exe
2012-11-28 03:01:40 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2012-11-27 22:26:26 ----A---- C:\Windows\system32\nlasvc.dll
2012-11-27 22:26:26 ----A---- C:\Windows\system32\netcorehc.dll
2012-11-27 22:26:26 ----A---- C:\Windows\system32\ncsi.dll
2012-11-27 22:26:26 ----A---- C:\Windows\system32\iphlpsvc.dll
2012-11-27 22:26:26 ----A---- C:\Windows\system32\drivers\tcpip.sys
2012-11-27 22:26:25 ----A---- C:\Windows\system32\nlaapi.dll
2012-11-27 22:26:25 ----A---- C:\Windows\system32\netevent.dll
2012-11-27 22:26:25 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2012-11-27 22:26:19 ----A---- C:\Windows\system32\synceng.dll
2012-11-27 22:26:02 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2012-11-27 22:26:02 ----A---- C:\Windows\system32\dhcpcore6.dll

======List of files/folders modified in the last 1 month======

2012-12-26 05:12:44 ----D---- C:\Windows\Prefetch
2012-12-26 05:12:41 ----D---- C:\Windows\Temp
2012-12-26 05:12:41 ----D---- C:\Program Files\trend micro
2012-12-26 05:11:58 ----D---- C:\Windows\System32
2012-12-26 05:11:58 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-12-26 04:44:55 ----D---- C:\Windows\system32\config
2012-12-26 04:43:27 ----AD---- C:\ProgramData\TEMP
2012-12-26 04:43:18 ----D---- C:\Windows
2012-12-25 11:44:04 ----D---- C:\Windows\winsxs
2012-12-23 23:02:44 ----D---- C:\Windows\system32\catroot
2012-12-23 23:02:30 ----D---- C:\Windows\system32\catroot2
2012-12-23 23:02:24 ----SHD---- C:\System Volume Information
2012-12-19 21:35:36 ----D---- C:\Windows\system32\drivers
2012-12-19 15:53:16 ----D---- C:\Windows\rescache
2012-12-19 14:47:03 ----SHD---- C:\Windows\Installer
2012-12-19 14:45:22 ----D---- C:\ProgramData\Adobe
2012-12-19 14:45:21 ----D---- C:\Program Files\Common Files
2012-12-19 14:45:21 ----D---- C:\Program Files
2012-12-19 14:39:36 ----D---- C:\Windows\system32\sv-SE
2012-12-19 14:39:36 ----D---- C:\Windows\system32\pl-PL
2012-12-19 14:39:36 ----D---- C:\Windows\system32\en-US
2012-12-19 14:39:30 ----D---- C:\Windows\system32\migration
2012-12-19 14:39:30 ----D---- C:\Program Files\Internet Explorer
2012-12-19 14:08:39 ----A---- C:\Windows\system32\MRT.exe
2012-12-18 21:53:58 ----D---- C:\Program Files\Mozilla Maintenance Service
2012-12-18 21:53:55 ----D---- C:\Windows\Setup
2012-12-18 11:02:21 ----D---- C:\Windows\tracing
2012-12-11 20:44:32 ----D---- C:\Windows\Panther
2012-12-11 19:56:25 ----RSD---- C:\Windows\assembly
2012-12-11 17:03:27 ----D---- C:\Windows\en-US
2012-12-11 16:13:09 ----D---- C:\Program Files\Common Files\PC Tools
2012-12-11 01:33:26 ----D---- C:\Windows\system
2012-12-11 00:15:53 ----D---- C:\Windows\ModemLogs
2012-12-10 21:03:11 ----D---- C:\Windows\Tasks
2012-12-10 21:03:11 ----D---- C:\Windows\system32\Tasks
2012-12-10 20:39:02 ----HD---- C:\ProgramData
2012-12-10 20:26:04 ----D---- C:\Windows\LiveKernelReports
2012-12-10 20:06:59 ----D---- C:\Windows\inf
2012-12-09 22:42:07 ----D---- C:\Windows\pl-PL
2012-12-09 22:30:46 ----D---- C:\Windows\schemas
2012-12-09 20:49:35 ----D---- C:\Windows\IME
2012-12-09 20:33:41 ----D---- C:\Windows\TAPI
2012-12-09 17:57:37 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2012-12-07 20:03:10 ----D---- C:\Users\jacec\AppData\Roaming\vlc
2012-12-06 21:40:53 ----D---- C:\ProgramData\OnlineUpdate
2012-12-02 08:56:58 ----DC---- C:\Windows\system32\DRVSTORE
2012-12-02 08:56:21 ----D---- C:\Program Files\Common Files\Apple
2012-12-02 08:53:47 ----D---- C:\Windows\system32\DriverStore
2012-11-28 03:34:01 ----D---- C:\Windows\Microsoft.NET
2012-11-28 03:23:51 ----RSD---- C:\Windows\Fonts
2012-11-28 03:23:51 ----D---- C:\Windows\AppPatch
2012-11-28 03:23:50 ----D---- C:\Windows\system32\drivers\sv-SE
2012-11-28 03:23:50 ----D---- C:\Windows\system32\drivers\pl-PL
2012-11-28 03:23:50 ----D---- C:\Windows\system32\drivers\en-US
2012-11-28 03:23:50 ----D---- C:\Windows\PolicyDefinitions
2012-11-28 03:23:49 ----D---- C:\Windows\system32\wbem

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2009-11-16 108792]
R2 eamon;eamon; C:\Windows\system32\DRIVERS\eamon.sys [2009-11-16 116520]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2009-11-16 95896]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 4994560]
R3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 26840]
R3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys [2011-02-09 72832]
R3 netw5v32;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 84992]
R3 SFEP;Sony Firmware Extension Parser; C:\Windows\system32\DRIVERS\SFEP.sys [2007-08-03 9344]
R3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360]
R3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992]
R3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504]
S0 guno;guno; C:\Windows\System32\drivers\jgad.sys []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys [2011-02-09 102784]
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys [2011-02-09 11136]
S3 ewusbnet;HUAWEI USB-NDIS miniport; C:\Windows\system32\DRIVERS\ewusbnet.sys [2011-02-09 208896]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2011-02-09 106880]
S3 hwusbfake;Huawei DataCard USB Fake; C:\Windows\system32\DRIVERS\ewusbfake.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 PCTBD;PC Tools Browser Defender Driver; C:\Windows\System32\Drivers\PCTBD.sys [2012-10-23 62688]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM); C:\Windows\system32\DRIVERS\s1018bus.sys [2009-03-25 86824]
S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s1018mdfl.sys [2009-03-25 15016]
S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s1018mdm.sys [2009-03-25 114728]
S3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s1018mgmt.sys [2009-03-25 106208]
S3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS); C:\Windows\system32\DRIVERS\s1018nd5.sys [2009-03-25 26024]
S3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s1018obex.sys [2009-03-25 104744]
S3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM); C:\Windows\system32\DRIVERS\s1018unic.sys [2009-03-25 109864]
S3 s1039bus;Sony Ericsson Device 1039 driver (WDM); C:\Windows\system32\DRIVERS\s1039bus.sys [2010-03-15 98672]
S3 s1039mdfl;Sony Ericsson Device 1039 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s1039mdfl.sys [2010-03-15 14960]
S3 s1039mdm;Sony Ericsson Device 1039 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s1039mdm.sys [2010-03-15 124016]
S3 s1039mgmt;Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s1039mgmt.sys [2010-03-15 117872]
S3 s1039nd5;Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS); C:\Windows\system32\DRIVERS\s1039nd5.sys [2010-03-15 25456]
S3 s1039obex;Sony Ericsson Device 1039 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s1039obex.sys [2010-03-15 113904]
S3 s1039unic;Sony Ericsson Device 1039 USB Ethernet Emulation (WDM); C:\Windows\system32\DRIVERS\s1039unic.sys [2010-03-15 123504]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2012-09-28 44544]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam.sys [2008-05-06 11520]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-04-04 63928]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 176128]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-08-11 55184]
R2 Bonjour Service;Usługa Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504]
R2 Browser Defender Update Service;Browser Defender Update Service; C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe [2012-10-23 580728]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 DCService.exe;DCService.exe; C:\ProgramData\DatacardService\DCService.exe [2010-09-29 249856]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-11-16 735960]
R2 OMSI download service;Sony Ericsson OMSI download service; C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [2009-04-30 90112]
R2 SrvAd;SrvAd; C:\Users\jacec\AppData\Roaming\Microsoft\Windows\AdvService.exe [2012-04-01 421888]
R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2011-04-22 92592]
R3 iPod Service;Usługa iPod; C:\Program Files\iPod\bin\iPodService.exe [2012-11-29 552848]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Usługa Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-12-10 136176]
S2 Mobile Partner. RunOuc;Mobile Partner. OUC; C:\Program Files\Mobile Partner\UpdateDog\ouc.exe [2011-02-09 203776]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2009-11-16 20680]
S3 gupdatem;Google Update Service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-12-10 136176]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-12-18 115168]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-01-01 1343400]

-----------------EOF-----------------

[/log]
[log]info.txt logfile of random's system information tool 1.09 2012-12-26 05:12:45

======Uninstall list======

µTorrent-->"D:\programy\uTorrent.exe" /UNINSTALL
Adobe Flash Player 10 ActiveX-->C:\Windows\system32\Macromed\Flash\FlashUtil10i_ActiveX.exe -maintain activex
Adobe Flash Player 10 Plugin-->C:\Windows\system32\Macromed\Flash\FlashUtil10i_Plugin.exe -maintain plugin
Adobe Reader X (10.1.3) - Polish-->MsiExec.exe /I{AC76BA86-7AD7-1045-7B44-AA1000000001}
Apple Mobile Device Support-->MsiExec.exe /I{459699C3-9430-4381-964B-4248D87B49F9}
Apple Software Update-->MsiExec.exe /I{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
Ares 2.1.6-->"C:\Program Files\Ares\uninstall.exe"
Bonjour-->MsiExec.exe /X{79155F2B-9895-49D7-8612-D92580E0DE5B}
Browser Guard 4.0-->"C:\Program Files\PC Tools\PC Tools Security\BDT\unins000.exe"
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Google Chrome-->"C:\Program Files\Google\Chrome\Application\23.0.1271.97\Installer\setup.exe" --uninstall --multi-install --chrome --system-level
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
iTunes-->MsiExec.exe /I{1B6C0E95-182C-48E0-9C4B-4F916308249C}
Java™ 6 Update 21-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216021FF}
K-Lite Codec Pack 6.4.0 (Full)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
Malwarebytes Anti-Malware wersja 1.65.1.1000-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Media Go-->MsiExec.exe /X{FBE5AA96-22F0-4C4A-8E92-4BE3498D4CCB}
Microsoft .NET Framework 4 Client Profile-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /parameterfolder Client
Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{3C3901C5-3455-3E0A-A214-0B093A5070A6}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Mobile Partner-->C:\Program Files\Mobile Partner\uninst.exe
Mozilla Firefox 17.0.1 (x86 pl)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Mozilla Maintenance Service-->"C:\Program Files\Mozilla Maintenance Service\uninstall.exe"
Obsługa programów Apple-->MsiExec.exe /I{CCE825DB-347A-4004-A186-5F4A6FDD8547}
OpenOffice.org 3.2-->MsiExec.exe /I{8727531E-6C58-4852-A90B-39CF45E269A9}
PlayStation®Network Downloader-->MsiExec.exe /X{B6659DD8-00A7-4A24-BBFB-C1F6982E5D66}
PlayStation®Store-->MsiExec.exe /X{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}
QuickTime-->MsiExec.exe /I{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}
RocketDock 1.3.5-->"C:\Program Files\RocketDock\unins000.exe"
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {3E0806DB-3085-378A-840A-F0D3AE3609D1} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {728D9A6A-2206-31E8-9F65-C3EABEFCF53E} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {2CE2EB39-45C8-32D4-8A99-5529C38F1B99} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {7E97AB83-C1FE-38DE-B848-877E0A4BD81E} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {DB31DEDD-BF95-31E7-A9B7-5480561CEFF3} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {67A5F99B-5EBA-3812-8D2E-BC251490DD3F} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {8DDEFC7E-0C61-3D11-AFC6-5414F2DAFD01} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {4952F442-5C1A-38EB-8C23-B18EFE77E20C} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {9EC88EA8-4ABE-393C-87BD-90EABB1C4C9B} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {86BB5A25-8CC3-33CE-A393-CF28901682B2} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {16EEC04A-B924-37E0-97CF-422DCEFC1B63} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {C4D978AA-2668-3404-96DE-96E2AFC62FD7} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {CD6D9B8A-BBC4-3FA7-B24D-D74CE90630CF} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {ECBEE23D-AB7E-3DAA-B66B-CD52003198F1} /parameterfolder Client
Skype™ 5.10-->MsiExec.exe /X{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}
Sony Ericsson PC Companion 1.60.13-->"C:\Program Files\InstallShield Installation Information\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}\Setup.exe" -runfromtemp -l0x0009 -removeonly
Sony Ericsson PC Suite 6.011.00-->"C:\Program Files\InstallShield Installation Information\{2FFE93F0-BB72-4E52-8761-354D1AAA9387}\ISAdmin.exe" -runfromtemp -l0x0009 -removeonly
TomTom HOME 2.8.2.2264-->C:\Program Files\TomTom HOME 2\Uninstall TomTom HOME.exe
TomTom HOME Visual Studio Merge Modules-->MsiExec.exe /I{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5E9CF3A4-ADB3-3080-A8BF-976A28340758} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {81EBB9D7-173C-32E3-B477-149C8DE075E4} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5D9961AC-7C99-36A2-9EF0-34678AED5384} /parameterfolder Client
VLC media player 2.0.4-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows 7 Upgrade Advisor-->MsiExec.exe /I{AB05F2C8-F608-403b-95E1-FD8ADFACD31E}
WinRAR 4.01 (32-bitowy)-->C:\Program Files\WinRAR\uninstall.exe
WinZip 14.5-->MsiExec.exe /X{CD95F661-A5C4-44F5-A6AA-ECDD91C240BD}

======Hosts File======

::1 localhost

======System event log======

Computer Name: onlymine
Event Code: 7036
Message: Usługa Diagnostic System Host weszła w stan stopped.
Record Number: 97139
Source Name: Service Control Manager
Time Written: 20111203054408.314716-000
Event Type: Informacje
User:

Computer Name: onlymine
Event Code: 7036
Message: Usługa WinHTTP Web Proxy Auto-Discovery Service weszła w stan stopped.
Record Number: 97138
Source Name: Service Control Manager
Time Written: 20111203053314.455317-000
Event Type: Informacje
User:

Computer Name: onlymine
Event Code: 7036
Message: Usługa Windows Modules Installer weszła w stan stopped.
Record Number: 97137
Source Name: Service Control Manager
Time Written: 20111203051848.312777-000
Event Type: Informacje
User:

Computer Name: onlymine
Event Code: 7040
Message: Typ uruchamiania usługi Windows Modules Installer został zmieniony z auto start na demand start.
Record Number: 97136
Source Name: Service Control Manager
Time Written: 20111203051847.553733-000
Event Type: Informacje
User: NT AUTHORITY\SYSTEM

Computer Name: onlymine
Event Code: 7040
Message: Typ uruchamiania usługi Windows Modules Installer został zmieniony z demand start na auto start.
Record Number: 97135
Source Name: Service Control Manager
Time Written: 20111203051845.591621-000
Event Type: Informacje
User: NT AUTHORITY\SYSTEM

=====Application event log=====

Computer Name: onlymine
Event Code: 1000
Message: Żądanie uwagi zostało wysłane przez urządzenie lub program. Urządzenie lub aplikacja: C:\Program Files\Mobile Partner\UpdateDog\RunLiveUpd.exe. Tytuł komunikatu: C:\Program Files\Mobile Partner\UpdateDog\RunLiveUpd.exe.
Record Number: 215248
Source Name: Interactive Services detection
Time Written: 20120928061423.000000-000
Event Type: Informacje
User:

Computer Name: onlymine
Event Code: 1000
Message: Żądanie uwagi zostało wysłane przez urządzenie lub program. Urządzenie lub aplikacja: C:\Program Files\Mobile Partner\UpdateDog\RunLiveUpd.exe. Tytuł komunikatu: C:\Program Files\Mobile Partner\UpdateDog\RunLiveUpd.exe.
Record Number: 215247
Source Name: Interactive Services detection
Time Written: 20120928061323.000000-000
Event Type: Informacje
User:

Computer Name: onlymine
Event Code: 1000
Message: Żądanie uwagi zostało wysłane przez urządzenie lub program. Urządzenie lub aplikacja: C:\Program Files\Mobile Partner\UpdateDog\RunLiveUpd.exe. Tytuł komunikatu: C:\Program Files\Mobile Partner\UpdateDog\RunLiveUpd.exe.
Record Number: 215246
Source Name: Interactive Services detection
Time Written: 20120928061222.000000-000
Event Type: Informacje
User:

Computer Name: onlymine
Event Code: 1000
Message: Żądanie uwagi zostało wysłane przez urządzenie lub program. Urządzenie lub aplikacja: C:\Program Files\Mobile Partner\UpdateDog\RunLiveUpd.exe. Tytuł komunikatu: C:\Program Files\Mobile Partner\UpdateDog\RunLiveUpd.exe.
Record Number: 215245
Source Name: Interactive Services detection
Time Written: 20120928061122.000000-000
Event Type: Informacje
User:

Computer Name: onlymine
Event Code: 1000
Message: Żądanie uwagi zostało wysłane przez urządzenie lub program. Urządzenie lub aplikacja: C:\Program Files\Mobile Partner\UpdateDog\RunLiveUpd.exe. Tytuł komunikatu: C:\Program Files\Mobile Partner\UpdateDog\RunLiveUpd.exe.
Record Number: 215244
Source Name: Interactive Services detection
Time Written: 20120928061022.000000-000
Event Type: Informacje
User:

=====Security event log=====

Computer Name: onlymine
Event Code: 4907
Message: Zmieniono ustawienia inspekcji obiektu.

Podmiot:
Identyfikator zabezpieczeń: S-1-5-18
Nazwa konta: ONLYMINE$
Domena konta: WORKGROUP
Identyfikator logowania: 0x3e7

Obiekt:
Serwer obiektu: Security
Typ obiektu: File
Nazwa obiektu: C:\Windows\System32\msscntrs.dll
Identyfikator dojścia: 0x18

Informacje dotyczące procesu:
Identyfikator procesu: 0x3ac
Nazwa procesu: C:\Windows\System32\poqexec.exe

Ustawienia inspekcji:
Oryginalny deskryptor zabezpieczeń:
Nowy deskryptor zabezpieczeń: S:ARAI(AU;SAFA;DCLCRPCRSDWDWO;;;WD)
Record Number: 18112
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20110629051053.161588-000
Event Type: Sukcesy inspekcji
User:

Computer Name: onlymine
Event Code: 4907
Message: Zmieniono ustawienia inspekcji obiektu.

Podmiot:
Identyfikator zabezpieczeń: S-1-5-18
Nazwa konta: ONLYMINE$
Domena konta: WORKGROUP
Identyfikator logowania: 0x3e7

Obiekt:
Serwer obiektu: Security
Typ obiektu: File
Nazwa obiektu: C:\Windows\System32\mssphtb.dll
Identyfikator dojścia: 0x18

Informacje dotyczące procesu:
Identyfikator procesu: 0x3ac
Nazwa procesu: C:\Windows\System32\poqexec.exe

Ustawienia inspekcji:
Oryginalny deskryptor zabezpieczeń:
Nowy deskryptor zabezpieczeń: S:ARAI(AU;SAFA;DCLCRPCRSDWDWO;;;WD)
Record Number: 18111
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20110629051053.161588-000
Event Type: Sukcesy inspekcji
User:

Computer Name: onlymine
Event Code: 4647
Message: Użytkownik zainicjował wylogowanie:

Podmiot:
Identyfikator zabezpieczeń: S-1-5-21-666643132-1411173658-3390636905-1000
Nazwa konta: jacec
Domena konta: onlymine
Identyfikator logowania: 0x3286e

To zdarzenie jest generowane, gdy zostanie zainicjowane wylogowanie. Nie mogą wystąpić dalsze działania inicjowane przez użytkownika. To zdarzenie można interpretować jako zdarzenie wylogowania.
Record Number: 18110
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20110629051051.242785-000
Event Type: Sukcesy inspekcji
User:

Computer Name: onlymine
Event Code: 4907
Message: Zmieniono ustawienia inspekcji obiektu.

Podmiot:
Identyfikator zabezpieczeń: S-1-5-18
Nazwa konta: ONLYMINE$
Domena konta: WORKGROUP
Identyfikator logowania: 0x3e7

Obiekt:
Serwer obiektu: Security
Typ obiektu: File
Nazwa obiektu: C:\Windows\winsxs\Temp\PendingRenames\4579a9dc1a36cc01cc010000a4174412.verdana.ttf
Identyfikator dojścia: 0x64c

Informacje dotyczące procesu:
Identyfikator procesu: 0x17a4
Nazwa procesu: C:\Windows\servicing\TrustedInstaller.exe

Ustawienia inspekcji:
Oryginalny deskryptor zabezpieczeń:
Nowy deskryptor zabezpieczeń: S:ARAI
Record Number: 18109
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20110629051028.687555-000
Event Type: Sukcesy inspekcji
User:

Computer Name: onlymine
Event Code: 4905
Message: Podjęto próbę wyrejestrowania źródła zdarzeń zabezpieczeń.

Podmiot:
Identyfikator zabezpieczeń: S-1-5-18
Nazwa konta: ONLYMINE$
Domena konta: WORKGROUP
Identyfikator logowania: 0x3e7

Proces:
Identyfikator procesu: 0x15e0
Nazwa procesu: C:\Windows\System32\VSSVC.exe

Źródło zdarzeń:
Nazwa źródła: VSSAudit
Identyfikator źródła zdarzeń: 0x7b845d3
Record Number: 18108
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20110629051021.570148-000
Event Type: Sukcesy inspekcji
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\QuickTime\QTSystem\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=2
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 23 Stepping 6, GenuineIntel
"PROCESSOR_REVISION"=1706
"asl.log"=Destination=file
"CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip

-----------------EOF-----------------

[/log]

Natsuki Kuga
komentarz
komentarz

Na tym komputerze są zainstalowane aż trzy antywirusy: Avast, PCTools i ESET. Wybierz jednego, resztę odinstaluj. Usuń też [b]Babylon Toolbar[/b], po czym do OTL wklej:
[code]
:OTL
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.condui...&ctid=CT2475029
IE - HKU\S-1-5-21-666643132-1411173658-3390636905-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.babylo...000001e101f859f
IE - HKU\S-1-5-21-666643132-1411173658-3390636905-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://findgala.com/...q={searchTerms}
IE - HKU\S-1-5-21-666643132-1411173658-3390636905-1000\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylo...000001e101f859f
IE - HKU\S-1-5-21-666643132-1411173658-3390636905-1000\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = http://websearch.ask...FE-F2717B161233
IE - HKU\S-1-5-21-666643132-1411173658-3390636905-1000\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.condui...&ctid=CT2475029
FF - prefs.js..browser.search.defaultenginename: "Search the web (Babylon)"
FF - prefs.js..browser.search.order.1: "Search the web (Babylon)"
FF - prefs.js..browser.startup.homepage: "http://search.conduit.com/?ctid=CT3242340&SearchSource=13&CUI=SB_CUI"
FF - prefs.js..extensions.enabledAddons: %7B0a3bed8d-198d-42a9-a7d1-983e6581f422%7D:10.13.40.15
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1
FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.aspx?ctid=CT3242340&SearchSource=2&q="
[2012-07-24 15:09:01 | 000,002,363 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.29.1\bh\BabylonToolbar.dll File not found
O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.29.1\BabylonToolbarTlbr.dll File not found
O4 - HKU\S-1-5-21-666643132-1411173658-3390636905-1000..\Run: [CFgjtH7CGDY5EG5l] C:\Users\jacec\AppData\Roaming\Microsoft\Windows\nsx3D79.exe ()
@Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:DFC5A2B2
@Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:430C6D84

:Files
C:\Users\jacec\AppData\Roaming\Microsoft\Windows\AdvService.exe
C:\WINDOWS\System32\drivers\jgad.sys
C:\Users\jacec\AppData\Roaming\Babylon

:Reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{98889811-442D-49dd-99D7-DC866BE87DBC}"=-

:Services
SrvAd
guno

:Commands
[emptytemp]
[emptyflash]
[/code]
[b]Wykonaj skrypt,[/b] pokaż raport.

Uruchom OTL ponownie i wklej:
[code]
C:\Users\jacec\AppData\Roaming\NBT\*.*
C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1\*.*
C:\Users\jacec\AppData\Roaming\Microsoft\Windows\*.*
[/code]
[b]Skanuj,[/b] pokaż log.

Do [url="http://jpshortstuff.247fixes.com/SystemLook.exe"][b]SystemLook[/b][/url] wklej:
[code]
:file
C:\ProgramData\hpe5FDC.dll
[/code]
[b]Look,[/b] pokaż raport.

[code]
C:\TDSSKiller.2.8.15.0_10.12.2012_20.31.48_log.txt
C:\TDSSKiller.2.8.15.0_11.12.2012_23.35.00_log.txt
[/code]
Pokaż zawartość tych logów.

  • Dobra wypowiedź 1
swiatek94
komentarz
komentarz (edytowane)

Bardzo Ci dziękuje za pomoc !
Mam tylko pytanko, otóż otwieram "usuń programy" i nie widzę tam Avasta i Pc Tools, tylko NOD'a, identyczna sytuacja jest z Babylon Toolbar, którego tam po prostu nie ma, masz może jakiś pomysł jak się tego pozbyć ? Dodam, że po wstawieniu loga zrobiłem analizę CCleaner i usunąłem sporo plików + rejestry, więc może jakieś dane się wykasowały jak resztki po avaście, czy coś ?

Edit. Na pulpicie jest tylko instalka PC Tools, a Avasta nie ma w ogóle tzn. wyszukiwarka nie wyszukuje nic co jest z nim związane

Natsuki Kuga
komentarz
komentarz

W logach w takim razie były resztki w/w. Wykonaj zalecenia z mojego poprzedniego posta, a jak już załączysz log z OTL po czyszczeniu to podam jeszcze jeden skrypt na usunięcie tamtych pozostałości.

  • Dobra wypowiedź 1
swiatek94
komentarz
komentarz (edytowane)

Pierwszy Log - nadal widzę o góry jakieś dodatkowe paski, niestety nie wiem czy to Babylon czy jakiś inny toolbar

[log]All processes killed
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ not found.
HKU\S-1-5-21-666643132-1411173658-3390636905-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-666643132-1411173658-3390636905-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-666643132-1411173658-3390636905-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ not found.
Registry key HKEY_USERS\S-1-5-21-666643132-1411173658-3390636905-1000\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}\ not found.
Registry key HKEY_USERS\S-1-5-21-666643132-1411173658-3390636905-1000\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ not found.
Prefs.js: "Search the web (Babylon)" removed from browser.search.defaultenginename
Prefs.js: "Search the web (Babylon)" removed from browser.search.order.1
Prefs.js: "http://search.conduit.com/?ctid=CT3242340&SearchSource=13&CUI=SB_CUI" removed from browser.startup.homepage
Prefs.js: %7B0a3bed8d-198d-42a9-a7d1-983e6581f422%7D:10.13.40.15 removed from extensions.enabledAddons
Prefs.js: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1 removed from extensions.enabledAddons
Prefs.js: "http://search.conduit.com/ResultsExt.aspx?ctid=CT3242340&SearchSource=2&q=" removed from keyword.URL
C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{98889811-442D-49dd-99D7-DC866BE87DBC} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC}\ not found.
Registry value HKEY_USERS\S-1-5-21-666643132-1411173658-3390636905-1000\Software\Microsoft\Windows\CurrentVersion\Run\\CFgjtH7CGDY5EG5l deleted successfully.
C:\Users\jacec\AppData\Roaming\Microsoft\Windows\nsx3D79.exe moved successfully.
ADS C:\ProgramData\TEMP:DFC5A2B2 deleted successfully.
ADS C:\ProgramData\TEMP:430C6D84 deleted successfully.
========== FILES ==========
C:\Users\jacec\AppData\Roaming\Microsoft\Windows\AdvService.exe moved successfully.
File\Folder C:\WINDOWS\System32\drivers\jgad.sys not found.
C:\Users\jacec\AppData\Roaming\Babylon folder moved successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{98889811-442D-49dd-99D7-DC866BE87DBC} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC}\ not found.
========== SERVICES/DRIVERS ==========
Service SrvAd stopped successfully!
Service SrvAd deleted successfully!
Service guno stopped successfully!
Service guno deleted successfully!
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: jacec
->Temp folder emptied: 1182 bytes
->Temporary Internet Files folder emptied: 1102254 bytes
->Java cache emptied: 54395 bytes
->FireFox cache emptied: 575723076 bytes
->Google Chrome cache emptied: 6552580 bytes
->Flash cache emptied: 487 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 524288 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 557,00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: jacec
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 12272012_124552

Files\Folders moved on Reboot...
File\Folder C:\Windows\temp\TMP0000000D4929E4A795AFE674 not found!

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

[/log]
[log]OTL logfile created on: 2012-12-27 12:52:03 - Run 3
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\jacec\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Poland | Language: PLK | Date Format: yyyy-MM-dd

2,97 Gb Total Physical Memory | 1,84 Gb Available Physical Memory | 62,15% Memory free
5,93 Gb Paging File | 4,81 Gb Available in Paging File | 81,13% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 101,47 Gb Total Space | 61,38 Gb Free Space | 60,49% Space Free | Partition Type: NTFS
Drive D: | 271,14 Gb Total Space | 44,30 Gb Free Space | 16,34% Space Free | Partition Type: NTFS

Computer Name: ONLYMINE | User Name: jacec | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2012-12-26 04:52:38 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\jacec\Desktop\OTL.exe
PRC - [2012-12-18 11:55:19 | 000,916,960 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012-10-23 17:40:06 | 000,580,728 | ---- | M] (Threat Expert Ltd.) -- C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe
PRC - [2012-04-04 06:53:50 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011-04-22 13:21:10 | 000,247,728 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
PRC - [2011-04-22 13:21:10 | 000,092,592 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
PRC - [2011-02-25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2011-02-09 17:26:34 | 000,203,776 | ---- | M] () -- C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe
PRC - [2010-11-20 13:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2010-11-20 13:16:54 | 000,100,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\audiodg.exe
PRC - [2010-09-29 02:33:40 | 000,249,856 | ---- | M] () -- C:\ProgramData\DatacardService\DCService.exe
PRC - [2010-09-29 02:33:34 | 000,228,352 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\ProgramData\DatacardService\DCSHelper.exe
PRC - [2009-12-08 14:51:52 | 000,774,144 | ---- | M] (Sony Ericsson Mobile Communications AB) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe
PRC - [2009-11-16 09:04:30 | 000,735,960 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2009-11-16 09:03:32 | 002,054,360 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2009-08-18 01:36:36 | 000,348,160 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2009-08-18 01:36:08 | 000,176,128 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2009-04-30 11:23:26 | 000,090,112 | ---- | M] () -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
PRC - [2007-09-02 12:58:52 | 000,495,616 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2012-12-18 11:55:19 | 002,397,152 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012-05-30 19:06:48 | 000,087,912 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2012-05-30 19:06:30 | 001,242,512 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2010-08-17 13:36:04 | 005,969,360 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32.dll
MOD - [2007-09-02 12:58:52 | 000,495,616 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.exe
MOD - [2007-09-02 12:57:36 | 000,069,632 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.dll


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV - [2012-12-18 11:55:19 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012-10-23 17:40:06 | 000,580,728 | ---- | M] (Threat Expert Ltd.) [Auto | Running] -- C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe -- (Browser Defender Update Service)
SRV - [2012-07-13 12:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012-04-04 06:53:50 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012-01-01 20:47:34 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2011-04-22 13:21:10 | 000,092,592 | ---- | M] (TomTom) [Auto | Running] -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe -- (TomTomHOMEService)
SRV - [2011-02-09 17:26:34 | 000,203,776 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Mobile Partner\UpdateDog\ouc.exe -- (Mobile Partner. RunOuc)
SRV - [2010-09-29 02:33:40 | 000,249,856 | ---- | M] () [Auto | Running] -- C:\ProgramData\DatacardService\DCService.exe -- (DCService.exe)
SRV - [2009-11-16 09:12:54 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2009-11-16 09:04:30 | 000,735,960 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2009-08-18 01:36:08 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2009-07-14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009-07-14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009-07-14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009-04-30 11:23:26 | 000,090,112 | ---- | M] () [Auto | Running] -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe -- (OMSI download service)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\tsusbhub.sys -- (tsusbhub)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\synth3dvsc.sys -- (Synth3dVsc)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ewusbfake.sys -- (hwusbfake)
DRV - [2012-10-23 17:40:32 | 000,062,688 | ---- | M] (PC Tools) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PCTBD.sys -- (PCTBD)
DRV - [2011-02-09 17:26:36 | 000,208,896 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ewusbnet.sys -- (ewusbnet)
DRV - [2011-02-09 17:26:36 | 000,106,880 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2011-02-09 17:26:36 | 000,102,784 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ew_hwusbdev.sys -- (ew_hwusbdev)
DRV - [2011-02-09 17:26:36 | 000,072,832 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ew_jubusenum.sys -- (huawei_enumerator)
DRV - [2011-02-09 17:26:36 | 000,011,136 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ew_usbenumfilter.sys -- (ew_usbenumfilter)
DRV - [2010-11-20 13:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010-11-20 13:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010-11-20 13:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010-11-20 11:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010-11-20 11:21:14 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2010-11-20 10:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010-11-20 10:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010-11-20 10:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010-03-15 08:38:44 | 000,124,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1039mdm.sys -- (s1039mdm)
DRV - [2010-03-15 08:38:44 | 000,123,504 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1039unic.sys -- (s1039unic)
DRV - [2010-03-15 08:38:44 | 000,117,872 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1039mgmt.sys -- (s1039mgmt)
DRV - [2010-03-15 08:38:44 | 000,113,904 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1039obex.sys -- (s1039obex)
DRV - [2010-03-15 08:38:44 | 000,098,672 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1039bus.sys -- (s1039bus)
DRV - [2010-03-15 08:38:44 | 000,025,456 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1039nd5.sys -- (s1039nd5)
DRV - [2010-03-15 08:38:44 | 000,014,960 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1039mdfl.sys -- (s1039mdfl)
DRV - [2009-11-16 09:06:52 | 000,095,896 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\epfwwfpr.sys -- (epfwwfpr)
DRV - [2009-11-16 09:03:36 | 000,108,792 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\System32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2009-11-16 08:56:12 | 000,116,520 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\Windows\System32\drivers\eamon.sys -- (eamon)
DRV - [2009-08-18 02:48:06 | 004,994,560 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2009-07-14 00:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2009-07-13 23:02:53 | 000,311,296 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\yk62x86.sys -- (yukonw7)
DRV - [2009-07-13 23:02:51 | 004,231,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netw5v32.sys -- (netw5v32)
DRV - [2009-03-25 16:48:00 | 000,114,728 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018mdm.sys -- (s1018mdm)
DRV - [2009-03-25 16:48:00 | 000,109,864 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018unic.sys -- (s1018unic)
DRV - [2009-03-25 16:48:00 | 000,106,208 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018mgmt.sys -- (s1018mgmt)
DRV - [2009-03-25 16:48:00 | 000,104,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018obex.sys -- (s1018obex)
DRV - [2009-03-25 16:48:00 | 000,086,824 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018bus.sys -- (s1018bus)
DRV - [2009-03-25 16:48:00 | 000,026,024 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018nd5.sys -- (s1018nd5)
DRV - [2009-03-25 16:48:00 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018mdfl.sys -- (s1018mdfl)
DRV - [2008-05-06 15:06:00 | 000,011,520 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wdcsam.sys -- (WDC_SAM)
DRV - [2007-08-03 04:36:10 | 000,009,344 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SFEP.sys -- (SFEP)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\..\SearchScopes,DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [url="http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC"]http://www.bing.com/...ms}&FORM=IE8SRC[/url]

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP =
IE - HKCU\..\URLSearchHook: {472734EA-242A-422b-ADF8-83D1E48CC825} - C:\Program Files\PC Tools\PC Tools Security\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)
IE - HKCU\..\SearchScopes,DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..CT3242340.browser.search.defaultthis.engineName: true
FF - prefs.js..browser.search.defaultengine: ""
FF - prefs.js..browser.search.defaultenginename: ""
FF - prefs.js..browser.search.defaultthis.engineName: ""
FF - prefs.js..browser.search.defaulturl: ""
FF - prefs.js..browser.search.order.1: ""
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.suggest.enabled: false
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://search.conduit.com/?ctid=CT3242340&SearchSource=13&CUI=SB_CUI"
FF - prefs.js..extensions.enabledAddons: %7B0a3bed8d-198d-42a9-a7d1-983e6581f422%7D:10.13.40.15
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1
FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.aspx?ctid=CT3242340&SearchSource=2&q="


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@SonyCreativeSoftware.com/Media Go,version=1.0: c:\Program Files\Sony\Media Go\npmediago.dll (Sony Creative Software Inc)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.4: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{5cea9a87-a3a5-4c2a-b08d-8a1876d4931c}: C:\Users\jacec\AppData\Roaming\Mozilla\FireFox\{5cea9a87-a3a5-4c2a-b08d-8a1876d4931c}
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{cb84136f-9c44-433a-9048-c5cd9df1dc16}: C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\ [2012-12-10 20:59:53 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-12-18 11:55:19 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-12-19 14:46:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2012-01-02 22:31:25 | 000,000,000 | ---D | M]

[2011-04-11 20:11:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jacec\AppData\Roaming\mozilla\Extensions
[2011-04-11 20:11:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jacec\AppData\Roaming\mozilla\Extensions\home2@tomtom.com
[2012-12-10 21:58:45 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions
[2012-12-10 21:58:45 | 000,000,000 | ---D | M] (WiseConvert 1.6) -- C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}
[2011-06-11 22:11:46 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2012-12-10 21:46:16 | 000,000,000 | ---D | M] (VideoDownloadConverter) -- C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\4zffxtbr@VideoDownloadConverter_4z.com
[2012-12-10 22:13:25 | 000,001,060 | ---- | M] () -- C:\Users\jacec\AppData\Roaming\mozilla\firefox\profiles\ozbth2gs.default\searchplugins\wiseconvert-16-customized-web-search.xml
[2012-12-18 11:55:04 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012-12-18 11:55:19 | 000,262,112 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2010-08-14 01:32:47 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2012-02-05 15:31:25 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2012-02-05 15:31:25 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2012-02-05 15:31:25 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2012-02-05 15:31:25 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2012-02-05 15:31:25 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2012-02-05 15:31:25 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml

[color=#E56717]========== Chrome ==========[/color]

CHR - homepage:
CHR - homepage:
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\23.0.1271.95\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\23.0.1271.95\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\23.0.1271.95\pdf.dll
CHR - plugin: Babylon ToolBar (Enabled) = C:\Users\jacec\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0\BabylonChromeToolBar.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.210.7 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U21 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.2.183.23\npGoogleOneClick8.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files\VideoLAN\VLC\npvlc.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Media Go Detector (Enabled) = c:\Program Files\Sony\Media Go\npmediago.dll
CHR - Extension: Dysk Google = C:\Users\jacec\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\
CHR - Extension: YouTube = C:\Users\jacec\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Szukaj w Google = C:\Users\jacec\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Babylon Toolbar = C:\Users\jacec\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0\
CHR - Extension: Gmail = C:\Users\jacec\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012-01-02 22:21:31 | 000,000,098 | ---- | M]) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (PC Tools Browser Guard BHO) - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files\PC Tools\PC Tools Security\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)
O3 - HKLM\..\Toolbar: (PC Tools Browser Guard) - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files\PC Tools\PC Tools Security\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKCU..\Run: [Mobile Partner] C:\Program Files\Mobile Partner\Mobile Partner.exe ()
O4 - HKCU..\Run: [RocketDock] C:\Program Files\RocketDock\RocketDock.exe ()
O4 - HKCU..\Run: [Sony Ericsson PC Companion] C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe (Sony Ericsson Mobile Communications AB)
O4 - HKCU..\Run: [TomTomHOME.exe] C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe (TomTom)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 2
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisallowRun = 1
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_21)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} [url="http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab"]http://fpdownload2.m...ash/swflash.cab[/url] (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 172.22.1.13 8.8.8.8 172.22.1.13 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6B3B45B6-0391-490C-AC97-43CC218062C1}: NameServer = 80.251.201.177 80.251.201.178
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{74A74C83-4DE6-477B-A1CD-D62C7D0FC04F}: NameServer = 80.251.201.177 80.251.201.178
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{854D390F-C082-4532-AF8E-BAF7DEE3F948}: DhcpNameServer = 172.22.1.13 8.8.8.8 172.22.1.13 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{914CD710-D399-492E-9B0E-A0C8867069BC}: DhcpNameServer = 83.255.245.11 193.150.193.150
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C2140604-F271-4019-865D-E623A344362D}: NameServer = 80.251.201.177 80.251.201.178
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F3F5FA7B-A4B8-486C-ADA8-9998579E0232}: NameServer = 80.251.201.177 80.251.201.178
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{22ae3d62-2bc9-11e0-86a6-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{22ae3d62-2bc9-11e0-86a6-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{2a39ab88-a9c8-11df-ae52-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{2a39ab88-a9c8-11df-ae52-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{2a39ab98-a9c8-11df-ae52-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{2a39ab98-a9c8-11df-ae52-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{2ec4b55d-d61a-11e0-9c09-8d3c7fbb2f92}\Shell - "" = AutoRun
O33 - MountPoints2\{2ec4b55d-d61a-11e0-9c09-8d3c7fbb2f92}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{488f11bc-a20e-11e0-a3b8-8555dca48493}\Shell - "" = AutoRun
O33 - MountPoints2\{488f11bc-a20e-11e0-a3b8-8555dca48493}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{4fd2e168-45bb-11e0-8910-fc218274819a}\Shell - "" = AutoRun
O33 - MountPoints2\{4fd2e168-45bb-11e0-8910-fc218274819a}\Shell\AutoRun\command - "" = I:\Startme.exe
O33 - MountPoints2\{5c2ab361-cabf-11e1-8430-001e101f82a7}\Shell - "" = AutoRun
O33 - MountPoints2\{5c2ab361-cabf-11e1-8430-001e101f82a7}\Shell\AutoRun\command - "" = F:\windows\Data\setup.exe
O33 - MountPoints2\{5f3371f9-f9b3-11e0-91e5-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{5f3371f9-f9b3-11e0-91e5-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{5f850b90-3b61-11e0-8d25-001dbaad9030}\Shell - "" = AutoRun
O33 - MountPoints2\{5f850b90-3b61-11e0-8d25-001dbaad9030}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{6d89b563-80a4-11e0-9b4f-9e27d4cbe2a7}\Shell - "" = AutoRun
O33 - MountPoints2\{6d89b563-80a4-11e0-9b4f-9e27d4cbe2a7}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a
O33 - MountPoints2\{85eea45d-2b0f-11e0-bec9-001dbaad9030}\Shell - "" = AutoRun
O33 - MountPoints2\{85eea45d-2b0f-11e0-bec9-001dbaad9030}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{ad0c364a-0159-11df-a922-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{ad0c364a-0159-11df-a922-806e6f6e6963}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{ad0c3681-0159-11df-a922-001dbaad9030}\Shell - "" = AutoRun
O33 - MountPoints2\{ad0c3681-0159-11df-a922-001dbaad9030}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{c30f6daf-3305-11e0-8832-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{c30f6daf-3305-11e0-8832-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{c30f6dbb-3305-11e0-8832-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{c30f6dbb-3305-11e0-8832-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{f0bbaeeb-2ad4-11e0-8758-001dbaad9030}\Shell - "" = AutoRun
O33 - MountPoints2\{f0bbaeeb-2ad4-11e0-8758-001dbaad9030}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{f0bbaef9-2ad4-11e0-8758-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{f0bbaef9-2ad4-11e0-8758-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{f7f761db-a965-11df-aaa9-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{f7f761db-a965-11df-aaa9-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{f7f761f6-a965-11df-aaa9-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{f7f761f6-a965-11df-aaa9-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\H\Shell - "" = AutoRun
O33 - MountPoints2\H\Shell\AutoRun\command - "" = H:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2012-12-27 12:45:52 | 000,000,000 | ---D | C] -- C:\_OTL
[2012-12-26 05:27:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2012-12-26 05:12:40 | 000,000,000 | ---D | C] -- C:\rsit
[2012-12-26 04:52:34 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\jacec\Desktop\OTL.exe
[2012-12-23 23:02:33 | 000,295,424 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2012-12-23 23:02:33 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2012-12-19 14:45:21 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2012-12-19 14:45:21 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2012-12-19 14:44:55 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2012-12-19 14:19:36 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2012-12-19 14:19:32 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2012-12-19 14:19:32 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2012-12-19 14:19:30 | 000,607,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2012-12-19 14:19:30 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2012-12-19 14:19:27 | 001,800,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2012-12-19 14:19:27 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2012-12-19 14:19:18 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2012-12-18 11:55:01 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2012-12-18 10:41:48 | 002,345,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2012-12-18 10:40:56 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
[2012-12-18 10:40:55 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2012-12-18 10:40:51 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
[2012-12-18 10:40:50 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
[2012-12-18 10:40:50 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
[2012-12-18 10:40:50 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
[2012-12-18 10:40:50 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
[2012-12-18 10:40:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
[2012-12-18 10:40:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012-12-18 10:40:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
[2012-12-18 10:40:49 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
[2012-12-18 10:40:49 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
[2012-12-18 10:40:49 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
[2012-12-18 10:40:49 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
[2012-12-18 10:40:49 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2012-12-18 10:40:49 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
[2012-12-18 10:40:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
[2012-12-18 10:40:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
[2012-12-18 10:40:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
[2012-12-18 10:40:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
[2012-12-18 10:40:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
[2012-12-18 10:40:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
[2012-12-18 10:40:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
[2012-12-18 10:40:48 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
[2012-12-18 10:40:48 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
[2012-12-18 10:40:48 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
[2012-12-18 10:40:48 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
[2012-12-18 10:40:48 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
[2012-12-18 10:40:48 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
[2012-12-18 10:40:48 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
[2012-12-18 10:40:22 | 000,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpnet.dll
[2012-12-18 10:40:08 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2012-12-11 00:18:51 | 000,000,000 | -HSD | C] -- C:\found.000
[2012-12-10 21:58:51 | 000,000,000 | ---D | C] -- C:\Users\jacec\AppData\Local\VideoDownloadConverter_4z
[2012-12-10 21:46:39 | 003,155,928 | ---- | C] (VideoDownloadConverter) -- C:\Users\jacec\Desktop\VideoDownloadConvertSetup2.5.11.3.^HJ^fox000^^.exe
[2012-12-10 21:05:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2012-12-10 21:02:52 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2012-12-10 20:59:47 | 000,062,688 | ---- | C] (PC Tools) -- C:\Windows\System32\drivers\PCTBD.sys
[2012-12-10 20:59:44 | 000,150,648 | ---- | C] (PC Tools) -- C:\Windows\SGDetectionTool.dll
[2012-12-10 20:59:43 | 002,280,568 | ---- | C] (Threat Expert Ltd.) -- C:\Windows\PCTBDCore.dll
[2012-12-10 20:59:43 | 001,690,744 | ---- | C] (Threat Expert Ltd.) -- C:\Windows\PCTBDRes.dll
[2012-12-10 20:50:56 | 000,000,000 | ---D | C] -- C:\Program Files\PC Tools
[2012-12-10 20:40:10 | 000,202,280 | ---- | C] (PC Tools) -- C:\Windows\System32\drivers\PCTSD.sys
[2012-12-10 20:39:02 | 000,000,000 | ---D | C] -- C:\Users\jacec\AppData\Roaming\TestApp
[2012-12-10 20:39:02 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Tools
[2012-12-10 20:38:03 | 004,124,152 | ---- | C] (PC Tools) -- C:\Users\jacec\Desktop\sdsetup.exe
[2012-12-09 18:20:34 | 000,000,000 | ---D | C] -- C:\Users\jacec\AppData\Roaming\NBT
[2012-12-09 17:56:15 | 010,669,952 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\jacec\Desktop\mbam-setup-1.65.1.1000.exe
[2012-12-02 08:57:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012-12-02 08:56:22 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2012-12-02 08:56:21 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2012-12-02 08:56:21 | 000,000,000 | ---D | C] -- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
[2012-12-02 08:50:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2012-12-02 08:50:44 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2012-11-28 03:02:08 | 000,047,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\WdfLdr.sys
[2012-11-28 03:02:08 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Wdfres.dll
[2012-11-28 03:01:41 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFPlatform.dll
[2012-11-28 03:01:40 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFx.dll
[2012-11-28 03:01:40 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFCoinstaller.dll
[2012-11-27 22:26:26 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netcorehc.dll
[2012-11-27 22:26:26 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncsi.dll
[2012-11-27 22:26:25 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2012-11-27 22:26:19 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\synceng.dll
[2012-11-27 22:26:02 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcore6.dll
[2012-11-27 22:26:02 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll
[2012-11-27 22:25:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2011-03-03 19:27:34 | 000,148,736 | ---- | C] (Avanquest Software) -- C:\ProgramData\hpe5FDC.dll

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2012-12-27 12:47:49 | 000,000,880 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012-12-27 12:47:28 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012-12-27 12:47:22 | 2389,995,520 | -HS- | M] () -- C:\hiberfil.sys
[2012-12-27 12:46:51 | 000,014,416 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012-12-27 12:46:50 | 000,014,416 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012-12-26 14:21:03 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012-12-26 05:27:17 | 000,000,931 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2012-12-26 05:11:58 | 001,404,060 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2012-12-26 05:11:58 | 001,331,902 | ---- | M] () -- C:\Windows\System32\perfh01D.dat
[2012-12-26 05:11:58 | 001,330,342 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012-12-26 05:11:58 | 000,380,370 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2012-12-26 05:11:58 | 000,369,270 | ---- | M] () -- C:\Windows\System32\perfc01D.dat
[2012-12-26 05:11:58 | 000,351,918 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012-12-26 04:52:38 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\jacec\Desktop\OTL.exe
[2012-12-26 04:52:16 | 000,781,383 | ---- | M] () -- C:\Users\jacec\Desktop\RSIT.exe
[2012-12-25 11:44:03 | 000,291,040 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012-12-19 14:45:31 | 000,001,955 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2012-12-18 12:24:35 | 000,002,286 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2012-12-18 10:35:16 | 012,119,797 | ---- | M] () -- C:\Users\jacec\Desktop\Remove WAT 2.2.6.0.rar
[2012-12-16 15:13:28 | 000,295,424 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2012-12-16 15:13:20 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2012-12-15 21:12:25 | 000,128,512 | ---- | M] () -- C:\Users\jacec\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-12-10 21:46:45 | 003,155,928 | ---- | M] (VideoDownloadConverter) -- C:\Users\jacec\Desktop\VideoDownloadConvertSetup2.5.11.3.^HJ^fox000^^.exe
[2012-12-10 21:05:16 | 000,002,185 | ---- | M] () -- C:\Users\jacec\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012-12-10 20:40:48 | 002,077,421 | ---- | M] () -- C:\Windows\System32\drivers\Cat.DB
[2012-12-10 20:38:48 | 004,124,152 | ---- | M] (PC Tools) -- C:\Users\jacec\Desktop\sdsetup.exe
[2012-12-09 17:57:36 | 000,001,033 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012-12-09 17:56:46 | 010,669,952 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\jacec\Desktop\mbam-setup-1.65.1.1000.exe
[2012-12-09 17:55:21 | 000,579,176 | ---- | M] () -- C:\Users\jacec\Desktop\Malwarebytes-AntiMalware(13117).exe
[2012-12-02 08:57:12 | 000,001,719 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012-12-02 08:50:53 | 000,001,781 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2012-11-27 22:25:44 | 000,000,990 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2012-12-26 05:27:17 | 000,000,931 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2012-12-26 04:52:11 | 000,781,383 | ---- | C] () -- C:\Users\jacec\Desktop\RSIT.exe
[2012-12-19 14:45:31 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2012-12-19 14:45:31 | 000,001,955 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2012-12-10 21:05:16 | 000,002,286 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2012-12-10 21:05:16 | 000,002,185 | ---- | C] () -- C:\Users\jacec\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012-12-10 21:03:11 | 000,000,884 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012-12-10 21:03:04 | 000,000,880 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012-12-10 20:59:46 | 000,769,144 | ---- | C] () -- C:\Windows\BDTSupport.dll
[2012-12-10 20:59:44 | 000,003,488 | ---- | C] () -- C:\Windows\UDB.zip
[2012-12-10 20:59:44 | 000,000,882 | ---- | C] () -- C:\Windows\RegSDImport.xml
[2012-12-10 20:59:44 | 000,000,879 | ---- | C] () -- C:\Windows\RegISSImport.xml
[2012-12-10 20:59:44 | 000,000,131 | ---- | C] () -- C:\Windows\IDB.zip
[2012-12-10 20:40:19 | 002,077,421 | ---- | C] () -- C:\Windows\System32\drivers\Cat.DB
[2012-12-09 17:55:10 | 000,579,176 | ---- | C] () -- C:\Users\jacec\Desktop\Malwarebytes-AntiMalware(13117).exe
[2012-12-02 08:57:12 | 000,001,719 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012-12-02 08:50:53 | 000,001,781 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2012-11-28 03:02:09 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2012-11-28 03:01:40 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2012-11-27 22:25:44 | 000,000,990 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2011-09-12 10:49:13 | 000,080,896 | ---- | C] () -- C:\Windows\System32\RDVGHelper.exe
[2011-09-12 10:47:22 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2010-08-22 10:16:25 | 000,033,134 | ---- | C] () -- C:\Users\jacec\AppData\Roaming\UserTile.png
[2010-08-18 06:24:01 | 000,128,512 | ---- | C] () -- C:\Users\jacec\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-08-17 19:37:40 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2009-07-14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012-06-09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009-07-14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[color=#E56717]========== Custom Scans ==========[/color]

[color=#A23BEC]< C:\Users\jacec\AppData\Roaming\NBT\*.* >[/color]
[2012-12-23 21:45:08 | 000,002,481 | ---- | M] () -- C:\Users\jacec\AppData\Roaming\NBT\nbt.exe

[color=#A23BEC]< C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1\*.* >[/color]
[2012-08-21 13:01:28 | 001,977,816 | ---- | M] (GEAR Software, Inc.) -- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1\GEARDIFx.exe

[color=#A23BEC]< C:\Users\jacec\AppData\Roaming\Microsoft\Windows\*.* >[/color]

< End of report >

[/log]
[log]SystemLook 30.07.11 by jpshortstuff
Log created at 13:00 on 27/12/2012 by jacec
Administrator - Elevation successful

========== file ==========

C:\ProgramData\hpe5FDC.dll - File found and opened.
MD5: CBF470B77B2DB2F25C56E05CE391F18A
Created at 18:27 on 03/03/2011
Modified at 18:27 on 03/03/2011
Size: 148736 bytes
Attributes: --a----
FileDescription: IElevator Class Container
FileVersion: 1.0.0.1
ProductVersion: 1.0.0.1
OriginalFilename: hpe.dll
InternalName: hpe.dll
CompanyName: Avanquest Software
LegalCopyright: © Avanquest Software. All rights reserved.

-= EOF =-
[/log]
[log]20:31:48.0270 2860 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
20:31:50.0270 2860 ============================================================
20:31:50.0270 2860 Current date / time: 2012/12/10 20:31:50.0270
20:31:50.0270 2860 SystemInfo:
20:31:50.0270 2860
20:31:50.0270 2860 OS Version: 6.1.7601 ServicePack: 1.0
20:31:50.0270 2860 Product type: Workstation
20:31:50.0270 2860 ComputerName: ONLYMINE
20:31:50.0270 2860 UserName: jacec
20:31:50.0270 2860 Windows directory: C:\Windows
20:31:50.0270 2860 System windows directory: C:\Windows
20:31:50.0270 2860 Processor architecture: Intel x86
20:31:50.0270 2860 Number of processors: 2
20:31:50.0270 2860 Page size: 0x1000
20:31:50.0270 2860 Boot type: Normal boot
20:31:50.0270 2860 ============================================================
20:31:52.0350 2860 Drive \Device\Harddisk0\DR0 - Size: 0x5D27216000 (372.61 Gb), SectorSize: 0x200, Cylinders: 0xBE01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
20:31:52.0360 2860 Drive \Device\Harddisk1\DR1 - Size: 0x1DE600000 (7.47 Gb), SectorSize: 0x200, Cylinders: 0x3CF, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
20:31:52.0360 2860 ============================================================
20:31:52.0360 2860 \Device\Harddisk0\DR0:
20:31:52.0360 2860 MBR partitions:
20:31:52.0360 2860 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xCAF05FF
20:31:52.0390 2860 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xCAF067D, BlocksNum 0x21E47644
20:31:52.0390 2860 \Device\Harddisk1\DR1:
20:31:52.0390 2860 MBR partitions:
20:31:52.0390 2860 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xB, StartLBA 0x1F80, BlocksNum 0xEF1080
20:31:52.0390 2860 ============================================================
20:31:52.0390 2860 C: <-> \Device\Harddisk0\DR0\Partition1
20:31:52.0410 2860 D: <-> \Device\Harddisk0\DR0\Partition2
20:31:52.0410 2860 ============================================================
20:31:52.0410 2860 Initialize success
20:31:52.0410 2860 ============================================================
20:32:03.0677 0384 ============================================================
20:32:03.0677 0384 Scan started
20:32:03.0677 0384 Mode: Manual;
20:32:03.0677 0384 ============================================================
20:32:05.0079 0384 ================ Scan system memory ========================
20:32:05.0079 0384 System memory - ok
20:32:05.0079 0384 ================ Scan services =============================
20:32:05.0269 0384 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:32:05.0269 0384 1394ohci - ok
20:32:05.0329 0384 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:32:05.0329 0384 ACPI - ok
20:32:05.0359 0384 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:32:05.0379 0384 AcpiPmi - ok
20:32:05.0439 0384 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:32:05.0479 0384 adp94xx - ok
20:32:05.0499 0384 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:32:05.0529 0384 adpahci - ok
20:32:05.0539 0384 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:32:05.0559 0384 adpu320 - ok
20:32:05.0599 0384 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:32:05.0599 0384 AeLookupSvc - ok
20:32:05.0650 0384 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
20:32:05.0670 0384 AFD - ok
20:32:05.0690 0384 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
20:32:05.0710 0384 agp440 - ok
20:32:05.0730 0384 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
20:32:05.0750 0384 aic78xx - ok
20:32:05.0780 0384 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
20:32:05.0790 0384 ALG - ok
20:32:05.0830 0384 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
20:32:05.0850 0384 aliide - ok
20:32:05.0900 0384 [ B19505648F033393E907E2E419FDE8B3 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
20:32:05.0910 0384 AMD External Events Utility - ok
20:32:05.0920 0384 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
20:32:05.0940 0384 amdagp - ok
20:32:05.0950 0384 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
20:32:05.0970 0384 amdide - ok
20:32:06.0020 0384 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:32:06.0040 0384 AmdK8 - ok
20:32:06.0040 0384 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:32:06.0070 0384 AmdPPM - ok
20:32:06.0090 0384 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:32:06.0100 0384 amdsata - ok
20:32:06.0120 0384 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:32:06.0140 0384 amdsbs - ok
20:32:06.0150 0384 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:32:06.0170 0384 amdxata - ok
20:32:06.0220 0384 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
20:32:06.0250 0384 AppID - ok
20:32:06.0280 0384 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:32:06.0280 0384 AppIDSvc - ok
20:32:06.0330 0384 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
20:32:06.0330 0384 Appinfo - ok
20:32:06.0460 0384 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:32:06.0460 0384 Apple Mobile Device - ok
20:32:06.0490 0384 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
20:32:06.0490 0384 AppMgmt - ok
20:32:06.0550 0384 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
20:32:06.0570 0384 arc - ok
20:32:06.0580 0384 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:32:06.0600 0384 arcsas - ok
20:32:06.0630 0384 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:32:06.0650 0384 AsyncMac - ok
20:32:06.0690 0384 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
20:32:06.0690 0384 atapi - ok
20:32:06.0880 0384 [ 04F09923A393E4E0E8453A8F78361E73 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
20:32:07.0100 0384 atikmdag - ok
20:32:07.0160 0384 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:32:07.0160 0384 AudioEndpointBuilder - ok
20:32:07.0180 0384 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
20:32:07.0190 0384 Audiosrv - ok
20:32:07.0240 0384 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:32:07.0260 0384 AxInstSV - ok
20:32:07.0330 0384 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
20:32:07.0340 0384 b06bdrv - ok
20:32:07.0380 0384 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
20:32:07.0470 0384 b57nd60x - ok
20:32:07.0530 0384 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
20:32:07.0530 0384 BDESVC - ok
20:32:07.0570 0384 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
20:32:07.0590 0384 Beep - ok
20:32:07.0650 0384 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
20:32:07.0660 0384 BFE - ok
20:32:07.0701 0384 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll
20:32:07.0711 0384 BITS - ok
20:32:07.0741 0384 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:32:07.0781 0384 blbdrive - ok
20:32:07.0901 0384 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:32:07.0911 0384 Bonjour Service - ok
20:32:08.0001 0384 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:32:08.0011 0384 bowser - ok
20:32:08.0031 0384 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:32:08.0031 0384 BrFiltLo - ok
20:32:08.0051 0384 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:32:08.0051 0384 BrFiltUp - ok
20:32:08.0091 0384 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
20:32:08.0091 0384 Browser - ok
20:32:08.0221 0384 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:32:08.0261 0384 Brserid - ok
20:32:08.0271 0384 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:32:08.0271 0384 BrSerWdm - ok
20:32:08.0291 0384 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:32:08.0291 0384 BrUsbMdm - ok
20:32:08.0301 0384 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:32:08.0301 0384 BrUsbSer - ok
20:32:08.0371 0384 [ 2865A5C8E98C70C605F417908CEBB3A4 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
20:32:08.0401 0384 BthEnum - ok
20:32:08.0411 0384 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:32:08.0431 0384 BTHMODEM - ok
20:32:08.0461 0384 [ AD1872E5829E8A2C3B5B4B641C3EAB0E ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
20:32:08.0461 0384 BthPan - ok
20:32:08.0571 0384 [ 1153DE2E4F5941E10C399CB5592F78A1 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
20:32:08.0611 0384 BTHPORT - ok
20:32:08.0661 0384 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
20:32:08.0661 0384 bthserv - ok
20:32:08.0701 0384 [ C81E9413A25A439F436B1D4B6A0CF9E9 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
20:32:08.0731 0384 BTHUSB - ok
20:32:08.0771 0384 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:32:08.0801 0384 cdfs - ok
20:32:08.0891 0384 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:32:08.0921 0384 cdrom - ok
20:32:08.0991 0384 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
20:32:09.0001 0384 CertPropSvc - ok
20:32:09.0021 0384 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:32:09.0021 0384 circlass - ok
20:32:09.0081 0384 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
20:32:09.0091 0384 CLFS - ok
20:32:09.0181 0384 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:32:09.0241 0384 clr_optimization_v2.0.50727_32 - ok
20:32:09.0301 0384 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:32:09.0341 0384 clr_optimization_v4.0.30319_32 - ok
20:32:09.0351 0384 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:32:09.0371 0384 CmBatt - ok
20:32:09.0381 0384 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:32:09.0391 0384 cmdide - ok
20:32:09.0461 0384 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
20:32:09.0501 0384 CNG - ok
20:32:09.0531 0384 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:32:09.0541 0384 Compbatt - ok
20:32:09.0591 0384 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
20:32:09.0611 0384 CompositeBus - ok
20:32:09.0651 0384 COMSysApp - ok
20:32:09.0691 0384 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:32:09.0711 0384 crcdisk - ok
20:32:09.0761 0384 [ 96C0E38905CFD788313BE8E11DAE3F2F ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:32:09.0771 0384 CryptSvc - ok
20:32:09.0811 0384 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys
20:32:09.0861 0384 CSC - ok
20:32:09.0931 0384 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll
20:32:09.0941 0384 CscService - ok
20:32:09.0981 0384 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
20:32:09.0981 0384 DcomLaunch - ok
20:32:10.0131 0384 [ 9AC09551F559A1EEAFC0B19F624C233E ] DCService.exe C:\ProgramData\DatacardService\DCService.exe
20:32:10.0141 0384 DCService.exe - ok
20:32:10.0191 0384 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
20:32:10.0201 0384 defragsvc - ok
20:32:10.0321 0384 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:32:10.0331 0384 DfsC - ok
20:32:10.0401 0384 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
20:32:10.0401 0384 Dhcp - ok
20:32:10.0431 0384 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
20:32:10.0451 0384 discache - ok
20:32:10.0501 0384 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:32:10.0521 0384 Disk - ok
20:32:10.0601 0384 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:32:10.0601 0384 Dnscache - ok
20:32:10.0631 0384 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
20:32:10.0641 0384 dot3svc - ok
20:32:10.0681 0384 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
20:32:10.0681 0384 DPS - ok
20:32:10.0721 0384 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:32:10.0731 0384 drmkaud - ok
20:32:10.0801 0384 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:32:11.0031 0384 DXGKrnl - ok
20:32:11.0081 0384 [ AF82DC664E3D8E2CBA3B95E68F6448A7 ] eamon C:\Windows\system32\DRIVERS\eamon.sys
20:32:11.0091 0384 eamon - ok
20:32:11.0141 0384 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
20:32:11.0171 0384 EapHost - ok
20:32:11.0321 0384 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
20:32:11.0671 0384 ebdrv - ok
20:32:11.0711 0384 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
20:32:11.0844 0384 EFS - ok
20:32:11.0927 0384 [ 686A799C1BF1B18941994DAF9F45DB06 ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
20:32:11.0987 0384 ehdrv - ok
20:32:12.0077 0384 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:32:12.0187 0384 ehRecvr - ok
20:32:12.0217 0384 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
20:32:12.0337 0384 ehSched - ok
20:32:12.0637 0384 [ 9329BA45C8B97485926A171E34C2ABB8 ] EhttpSrv C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
20:32:12.0757 0384 EhttpSrv - ok
20:32:13.0037 0384 [ 3543C6195D5ED4EDA0316D3E1BA0E6EE ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
20:32:13.0047 0384 ekrn - ok
20:32:13.0147 0384 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:32:13.0467 0384 elxstor - ok
20:32:13.0597 0384 [ 8700EADC8BDFA27D948FCC43EE0AE434 ] epfwwfpr C:\Windows\system32\DRIVERS\epfwwfpr.sys
20:32:13.0607 0384 epfwwfpr - ok
20:32:13.0767 0384 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:32:13.0787 0384 ErrDev - ok
20:32:13.0867 0384 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
20:32:13.0867 0384 EventSystem - ok
20:32:13.0917 0384 [ 95BCB4321962028799EB2EA53319BB0C ] ewusbnet C:\Windows\system32\DRIVERS\ewusbnet.sys
20:32:13.0937 0384 ewusbnet - ok
20:32:13.0967 0384 [ 57C171EA22F0A7F068FCB0CAEDD1E8E7 ] ew_hwusbdev C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
20:32:13.0977 0384 ew_hwusbdev - ok
20:32:13.0987 0384 [ 61A973F60E94A551BA7B15F3460444FB ] ew_usbenumfilter C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys
20:32:13.0997 0384 ew_usbenumfilter - ok
20:32:14.0017 0384 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
20:32:14.0037 0384 exfat - ok
20:32:14.0057 0384 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:32:14.0077 0384 fastfat - ok
20:32:14.0157 0384 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
20:32:14.0167 0384 Fax - ok
20:32:14.0197 0384 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:32:14.0237 0384 fdc - ok
20:32:14.0287 0384 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
20:32:14.0297 0384 fdPHost - ok
20:32:14.0307 0384 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
20:32:14.0317 0384 FDResPub - ok
20:32:14.0327 0384 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:32:14.0337 0384 FileInfo - ok
20:32:14.0357 0384 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:32:14.0367 0384 Filetrace - ok
20:32:14.0387 0384 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:32:14.0407 0384 flpydisk - ok
20:32:14.0437 0384 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:32:14.0467 0384 FltMgr - ok
20:32:14.0617 0384 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
20:32:14.0617 0384 FontCache - ok
20:32:14.0737 0384 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
20:32:14.0747 0384 FontCache3.0.0.0 - ok
20:32:14.0767 0384 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:32:14.0777 0384 FsDepends - ok
20:32:14.0837 0384 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:32:14.0857 0384 Fs_Rec - ok
20:32:14.0897 0384 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:32:14.0947 0384 fvevol - ok
20:32:15.0007 0384 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:32:15.0017 0384 gagp30kx - ok
20:32:15.0057 0384 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
20:32:15.0057 0384 GEARAspiWDM - ok
20:32:15.0127 0384 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
20:32:15.0167 0384 gpsvc - ok
20:32:15.0187 0384 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:32:15.0207 0384 hcw85cir - ok
20:32:15.0287 0384 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:32:15.0357 0384 HdAudAddService - ok
20:32:15.0397 0384 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
20:32:15.0397 0384 HDAudBus - ok
20:32:15.0437 0384 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:32:15.0477 0384 HidBatt - ok
20:32:15.0497 0384 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:32:15.0527 0384 HidBth - ok
20:32:15.0567 0384 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:32:15.0587 0384 HidIr - ok
20:32:15.0607 0384 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
20:32:15.0607 0384 hidserv - ok
20:32:15.0637 0384 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\drivers\hidusb.sys
20:32:15.0677 0384 HidUsb - ok
20:32:15.0727 0384 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:32:15.0727 0384 hkmsvc - ok
20:32:15.0777 0384 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:32:15.0837 0384 HomeGroupListener - ok
20:32:15.0887 0384 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:32:15.0887 0384 HomeGroupProvider - ok
20:32:15.0918 0384 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:32:15.0968 0384 HpSAMD - ok
20:32:16.0128 0384 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:32:16.0198 0384 HTTP - ok
20:32:16.0228 0384 [ 92548543D50C9BCCDB31FFB7EC39249D ] huawei_enumerator C:\Windows\system32\DRIVERS\ew_jubusenum.sys
20:32:16.0238 0384 huawei_enumerator - ok
20:32:16.0298 0384 [ A89423D0132C8AB69BA621B6CE191714 ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
20:32:16.0308 0384 hwdatacard - ok
20:32:16.0338 0384 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:32:16.0358 0384 hwpolicy - ok
20:32:16.0368 0384 hwusbfake - ok
20:32:16.0408 0384 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:32:16.0428 0384 i8042prt - ok
20:32:16.0458 0384 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:32:16.0478 0384 iaStorV - ok
20:32:16.0638 0384 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:32:16.0678 0384 idsvc - ok
20:32:16.0738 0384 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:32:16.0748 0384 iirsp - ok
20:32:16.0798 0384 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
20:32:16.0898 0384 IKEEXT - ok
20:32:16.0928 0384 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
20:32:16.0948 0384 intelide - ok
20:32:16.0978 0384 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:32:16.0978 0384 intelppm - ok
20:32:17.0028 0384 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:32:17.0028 0384 IPBusEnum - ok
20:32:17.0048 0384 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:32:17.0068 0384 IpFilterDriver - ok
20:32:17.0158 0384 [ 58F67245D041FBE7AF88F4EAF79DF0FA ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:32:17.0168 0384 iphlpsvc - ok
20:32:17.0198 0384 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:32:17.0218 0384 IPMIDRV - ok
20:32:17.0248 0384 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:32:17.0278 0384 IPNAT - ok
20:32:17.0418 0384 [ EF1C51222117B37AFBFF8F4642EA8C62 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:32:17.0428 0384 iPod Service - ok
20:32:17.0468 0384 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:32:17.0478 0384 IRENUM - ok
20:32:17.0498 0384 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:32:17.0528 0384 isapnp - ok
20:32:17.0578 0384 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:32:17.0598 0384 iScsiPrt - ok
20:32:17.0648 0384 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
20:32:17.0668 0384 kbdclass - ok
20:32:17.0728 0384 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
20:32:17.0778 0384 kbdhid - ok
20:32:17.0828 0384 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
20:32:17.0828 0384 KeyIso - ok
20:32:17.0868 0384 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:32:17.0868 0384 KSecDD - ok
20:32:17.0918 0384 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:32:17.0979 0384 KSecPkg - ok
20:32:18.0039 0384 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
20:32:18.0039 0384 KtmRm - ok
20:32:18.0089 0384 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
20:32:18.0089 0384 LanmanServer - ok
20:32:18.0109 0384 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:32:18.0109 0384 LanmanWorkstation - ok
20:32:18.0159 0384 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:32:18.0179 0384 lltdio - ok
20:32:18.0199 0384 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:32:18.0209 0384 lltdsvc - ok
20:32:18.0229 0384 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
20:32:18.0229 0384 lmhosts - ok
20:32:18.0259 0384 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:32:18.0279 0384 LSI_FC - ok
20:32:18.0299 0384 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:32:18.0309 0384 LSI_SAS - ok
20:32:18.0319 0384 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:32:18.0359 0384 LSI_SAS2 - ok
20:32:18.0389 0384 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:32:18.0429 0384 LSI_SCSI - ok
20:32:18.0439 0384 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
20:32:18.0439 0384 luafv - ok
20:32:18.0479 0384 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:32:18.0489 0384 Mcx2Svc - ok
20:32:18.0519 0384 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:32:18.0549 0384 megasas - ok
20:32:18.0589 0384 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:32:18.0619 0384 MegaSR - ok
20:32:18.0659 0384 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
20:32:18.0659 0384 MMCSS - ok
20:32:18.0789 0384 [ 1EE12E08960682DDF05F6C3FDCCBC713 ] Mobile Partner. RunOuc C:\Program Files\Mobile Partner\UpdateDog\ouc.exe
20:32:18.0799 0384 Mobile Partner. RunOuc - ok
20:32:18.0819 0384 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
20:32:18.0859 0384 Modem - ok
20:32:18.0899 0384 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:32:18.0899 0384 monitor - ok
20:32:18.0939 0384 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\drivers\mouclass.sys
20:32:18.0959 0384 mouclass - ok
20:32:18.0989 0384 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:32:19.0009 0384 mouhid - ok
20:32:19.0059 0384 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:32:19.0099 0384 mountmgr - ok
20:32:19.0199 0384 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
20:32:19.0199 0384 MozillaMaintenance - ok
20:32:19.0219 0384 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
20:32:19.0249 0384 mpio - ok
20:32:19.0289 0384 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:32:19.0319 0384 mpsdrv - ok
20:32:19.0419 0384 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:32:19.0439 0384 MpsSvc - ok
20:32:19.0469 0384 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:32:19.0529 0384 MRxDAV - ok
20:32:19.0579 0384 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:32:19.0619 0384 mrxsmb - ok
20:32:19.0659 0384 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:32:19.0689 0384 mrxsmb10 - ok
20:32:19.0709 0384 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:32:19.0729 0384 mrxsmb20 - ok
20:32:19.0749 0384 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
20:32:19.0769 0384 msahci - ok
20:32:19.0819 0384 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:32:19.0829 0384 msdsm - ok
20:32:19.0869 0384 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
20:32:19.0889 0384 MSDTC - ok
20:32:19.0919 0384 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:32:19.0939 0384 Msfs - ok
20:32:19.0949 0384 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:32:19.0969 0384 mshidkmdf - ok
20:32:19.0979 0384 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:32:19.0999 0384 msisadrv - ok
20:32:20.0039 0384 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:32:20.0039 0384 MSiSCSI - ok
20:32:20.0049 0384 msiserver - ok
20:32:20.0059 0384 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:32:20.0079 0384 MSKSSRV - ok
20:32:20.0089 0384 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:32:20.0099 0384 MSPCLOCK - ok
20:32:20.0109 0384 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:32:20.0109 0384 MSPQM - ok
20:32:20.0129 0384 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:32:20.0129 0384 MsRPC - ok
20:32:20.0169 0384 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
20:32:20.0169 0384 mssmbios - ok
20:32:20.0209 0384 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:32:20.0219 0384 MSTEE - ok
20:32:20.0239 0384 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:32:20.0249 0384 MTConfig - ok
20:32:20.0269 0384 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
20:32:20.0289 0384 Mup - ok
20:32:20.0359 0384 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
20:32:20.0369 0384 napagent - ok
20:32:20.0419 0384 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:32:20.0439 0384 NativeWifiP - ok
20:32:20.0519 0384 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:32:20.0559 0384 NDIS - ok
20:32:20.0609 0384 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:32:20.0619 0384 NdisCap - ok
20:32:20.0649 0384 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:32:20.0649 0384 NdisTapi - ok
20:32:20.0679 0384 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:32:20.0689 0384 Ndisuio - ok
20:32:20.0729 0384 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:32:20.0759 0384 NdisWan - ok
20:32:20.0779 0384 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:32:20.0809 0384 NDProxy - ok
20:32:20.0829 0384 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:32:20.0859 0384 NetBIOS - ok
20:32:20.0919 0384 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:32:20.0949 0384 NetBT - ok
20:32:20.0959 0384 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
20:32:20.0969 0384 Netlogon - ok
20:32:21.0049 0384 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
20:32:21.0069 0384 Netman - ok
20:32:21.0109 0384 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
20:32:21.0109 0384 netprofm - ok
20:32:21.0129 0384 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:32:21.0139 0384 NetTcpPortSharing - ok
20:32:21.0509 0384 [ 58218EC6B61B1169CF54AAB0D00F5FE2 ] netw5v32 C:\Windows\system32\DRIVERS\netw5v32.sys
20:32:21.0689 0384 netw5v32 - ok
20:32:21.0749 0384 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:32:21.0769 0384 nfrd960 - ok
20:32:21.0809 0384 [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc C:\Windows\System32\nlasvc.dll
20:32:21.0809 0384 NlaSvc - ok
20:32:21.0829 0384 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:32:21.0849 0384 Npfs - ok
20:32:21.0879 0384 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
20:32:21.0879 0384 nsi - ok
20:32:21.0909 0384 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:32:21.0929 0384 nsiproxy - ok
20:32:22.0090 0384 [ 0D87503986BB3DFED58E343FE39DDE13 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:32:22.0180 0384 Ntfs - ok
20:32:22.0220 0384 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
20:32:22.0250 0384 Null - ok
20:32:22.0300 0384 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:32:22.0320 0384 nvraid - ok
20:32:22.0350 0384 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:32:22.0380 0384 nvstor - ok
20:32:22.0390 0384 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:32:22.0420 0384 nv_agp - ok
20:32:22.0430 0384 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:32:22.0440 0384 ohci1394 - ok
20:32:22.0520 0384 [ DA345DE3B450E9E1691E7B9956D8FFC3 ] OMSI download service C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
20:32:22.0530 0384 OMSI download service - ok
20:32:22.0570 0384 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:32:22.0620 0384 p2pimsvc - ok
20:32:22.0640 0384 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
20:32:22.0650 0384 p2psvc - ok
20:32:22.0690 0384 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:32:22.0700 0384 Parport - ok
20:32:22.0740 0384 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:32:22.0780 0384 partmgr - ok
20:32:22.0790 0384 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
20:32:22.0810 0384 Parvdm - ok
20:32:22.0820 0384 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:32:22.0820 0384 PcaSvc - ok
20:32:22.0890 0384 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
20:32:22.0900 0384 pci - ok
20:32:22.0930 0384 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
20:32:22.0940 0384 pciide - ok
20:32:22.0990 0384 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:32:23.0050 0384 pcmcia - ok
20:32:23.0060 0384 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
20:32:23.0080 0384 pcw - ok
20:32:23.0140 0384 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:32:23.0170 0384 PEAUTH - ok
20:32:23.0250 0384 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
20:32:23.0330 0384 PeerDistSvc - ok
20:32:23.0410 0384 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
20:32:23.0470 0384 pla - ok
20:32:23.0540 0384 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:32:23.0540 0384 PlugPlay - ok
20:32:23.0590 0384 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:32:23.0600 0384 PNRPAutoReg - ok
20:32:23.0620 0384 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:32:23.0630 0384 PNRPsvc - ok
20:32:23.0690 0384 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:32:23.0750 0384 PolicyAgent - ok
20:32:23.0770 0384 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
20:32:23.0780 0384 Power - ok
20:32:23.0830 0384 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:32:23.0850 0384 PptpMiniport - ok
20:32:23.0880 0384 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:32:23.0910 0384 Processor - ok
20:32:23.0980 0384 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
20:32:23.0980 0384 ProfSvc - ok
20:32:24.0000 0384 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:32:24.0000 0384 ProtectedStorage - ok
20:32:24.0040 0384 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:32:24.0060 0384 Psched - ok
20:32:24.0170 0384 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:32:24.0240 0384 ql2300 - ok
20:32:24.0290 0384 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:32:24.0330 0384 ql40xx - ok
20:32:24.0370 0384 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
20:32:24.0370 0384 QWAVE - ok
20:32:24.0390 0384 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:32:24.0410 0384 QWAVEdrv - ok
20:32:24.0420 0384 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:32:24.0440 0384 RasAcd - ok
20:32:24.0460 0384 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:32:24.0480 0384 RasAgileVpn - ok
20:32:24.0500 0384 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
20:32:24.0500 0384 RasAuto - ok
20:32:24.0520 0384 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:32:24.0530 0384 Rasl2tp - ok
20:32:24.0620 0384 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
20:32:24.0650 0384 RasMan - ok
20:32:24.0670 0384 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:32:24.0690 0384 RasPppoe - ok
20:32:24.0710 0384 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:32:24.0730 0384 RasSstp - ok
20:32:24.0770 0384 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:32:24.0820 0384 rdbss - ok
20:32:24.0850 0384 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:32:24.0880 0384 rdpbus - ok
20:32:24.0920 0384 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:32:24.0940 0384 RDPCDD - ok
20:32:24.0990 0384 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
20:32:25.0000 0384 RDPDR - ok
20:32:25.0030 0384 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:32:25.0040 0384 RDPENCDD - ok
20:32:25.0070 0384 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:32:25.0090 0384 RDPREFMP - ok
20:32:25.0160 0384 [ 68A0387F58E226DEEE23D9715955572A ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
20:32:25.0180 0384 RdpVideoMiniport - ok
20:32:25.0210 0384 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:32:25.0230 0384 RDPWD - ok
20:32:25.0290 0384 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:32:25.0320 0384 rdyboost - ok
20:32:25.0370 0384 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
20:32:25.0390 0384 RemoteAccess - ok
20:32:25.0420 0384 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:32:25.0430 0384 RemoteRegistry - ok
20:32:25.0440 0384 [ CB928D9E6DAF51879DD6BA8D02F01321 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
20:32:25.0460 0384 RFCOMM - ok
20:32:25.0500 0384 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:32:25.0510 0384 RpcEptMapper - ok
20:32:25.0530 0384 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
20:32:25.0530 0384 RpcLocator - ok
20:32:25.0570 0384 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
20:32:25.0570 0384 RpcSs - ok
20:32:25.0620 0384 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:32:25.0660 0384 rspndr - ok
20:32:25.0700 0384 [ 1C5C2CB892553D2CF3F45A4BB323FCD6 ] s1018bus C:\Windows\system32\DRIVERS\s1018bus.sys
20:32:25.0700 0384 s1018bus - ok
20:32:25.0740 0384 [ 38F5EA219593F19B6B3A1B9C169E3B61 ] s1018mdfl C:\Windows\system32\DRIVERS\s1018mdfl.sys
20:32:25.0760 0384 s1018mdfl - ok
20:32:25.0770 0384 [ 666AF6B64FC7DF92D3CA4819EA91631D ] s1018mdm C:\Windows\system32\DRIVERS\s1018mdm.sys
20:32:25.0800 0384 s1018mdm - ok
20:32:25.0810 0384 [ F4CEDA6E2DDFF2AF8BD745615A7CA9C0 ] s1018mgmt C:\Windows\system32\DRIVERS\s1018mgmt.sys
20:32:25.0820 0384 s1018mgmt - ok
20:32:25.0830 0384 [ 3622D9FF2253DCBE885B10736609A4CA ] s1018nd5 C:\Windows\system32\DRIVERS\s1018nd5.sys
20:32:25.0840 0384 s1018nd5 - ok
20:32:25.0870 0384 [ 49431EFDA842B474531C29FFAE9F5D09 ] s1018obex C:\Windows\system32\DRIVERS\s1018obex.sys
20:32:25.0930 0384 s1018obex - ok
20:32:25.0950 0384 [ AC6B514CB4474F4C867D7CDC9CD54F05 ] s1018unic C:\Windows\system32\DRIVERS\s1018unic.sys
20:32:25.0970 0384 s1018unic - ok
20:32:25.0990 0384 [ D0EEDC88876B20D42157CDCCA3E647F3 ] s1039bus C:\Windows\system32\DRIVERS\s1039bus.sys
20:32:26.0010 0384 s1039bus - ok
20:32:26.0040 0384 [ 7B35091A7BB597C86262C589B0B57D06 ] s1039mdfl C:\Windows\system32\DRIVERS\s1039mdfl.sys
20:32:26.0050 0384 s1039mdfl - ok
20:32:26.0070 0384 [ 4CB1AB13C9813CBF3E4C6406F8043EC2 ] s1039mdm C:\Windows\system32\DRIVERS\s1039mdm.sys
20:32:26.0090 0384 s1039mdm - ok
20:32:26.0120 0384 [ 2649CA09585A7531126DCC116AD1F88C ] s1039mgmt C:\Windows\system32\DRIVERS\s1039mgmt.sys
20:32:26.0140 0384 s1039mgmt - ok
20:32:26.0180 0384 [ 6D3F549EFD6DAEDD7D12F3DE2175053F ] s1039nd5 C:\Windows\system32\DRIVERS\s1039nd5.sys
20:32:26.0210 0384 s1039nd5 - ok
20:32:26.0220 0384 [ 305E3E3ACA0037AF2E2C1B50A383C91B ] s1039obex C:\Windows\system32\DRIVERS\s1039obex.sys
20:32:26.0240 0384 s1039obex - ok
20:32:26.0250 0384 [ 7DD02A58277C84C043442561589914F4 ] s1039unic C:\Windows\system32\DRIVERS\s1039unic.sys
20:32:26.0260 0384 s1039unic - ok
20:32:26.0280 0384 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
20:32:26.0300 0384 s3cap - ok
20:32:26.0320 0384 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
20:32:26.0340 0384 SamSs - ok
20:32:26.0400 0384 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:32:26.0420 0384 sbp2port - ok
20:32:26.0460 0384 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:32:26.0470 0384 SCardSvr - ok
20:32:26.0500 0384 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:32:26.0500 0384 scfilter - ok
20:32:26.0580 0384 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
20:32:26.0610 0384 Schedule - ok
20:32:26.0640 0384 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:32:26.0640 0384 SCPolicySvc - ok
20:32:26.0670 0384 [ 0328BE1C7F1CBA23848179F8762E391C ] sdbus C:\Windows\system32\drivers\sdbus.sys
20:32:26.0690 0384 sdbus - ok
20:32:26.0720 0384 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:32:26.0720 0384 SDRSVC - ok
20:32:26.0780 0384 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:32:26.0800 0384 secdrv - ok
20:32:26.0840 0384 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
20:32:26.0880 0384 seclogon - ok
20:32:26.0930 0384 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
20:32:26.0940 0384 SENS - ok
20:32:26.0950 0384 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:32:26.0960 0384 SensrSvc - ok
20:32:26.0970 0384 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:32:26.0980 0384 Serenum - ok
20:32:27.0000 0384 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:32:27.0020 0384 Serial - ok
20:32:27.0040 0384 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:32:27.0060 0384 sermouse - ok
20:32:27.0090 0384 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
20:32:27.0090 0384 SessionEnv - ok
20:32:27.0160 0384 [ 8B7C1768D2CDE2E02E09A66563DDFD16 ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
20:32:27.0160 0384 SFEP - ok
20:32:27.0200 0384 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
20:32:27.0230 0384 sffdisk - ok
20:32:27.0240 0384 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:32:27.0270 0384 sffp_mmc - ok
20:32:27.0280 0384 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
20:32:27.0300 0384 sffp_sd - ok
20:32:27.0330 0384 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:32:27.0360 0384 sfloppy - ok
20:32:27.0400 0384 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:32:27.0410 0384 SharedAccess - ok
20:32:27.0440 0384 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:32:27.0440 0384 ShellHWDetection - ok
20:32:27.0490 0384 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
20:32:27.0540 0384 sisagp - ok
20:32:27.0580 0384 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:32:27.0610 0384 SiSRaid2 - ok
20:32:27.0620 0384 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:32:27.0660 0384 SiSRaid4 - ok
20:32:27.0730 0384 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
20:32:27.0740 0384 SkypeUpdate - ok
20:32:27.0800 0384 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:32:27.0810 0384 Smb - ok
20:32:27.0860 0384 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:32:27.0870 0384 SNMPTRAP - ok
20:32:27.0880 0384 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
20:32:27.0890 0384 spldr - ok
20:32:27.0940 0384 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe
20:32:27.0950 0384 Spooler - ok
20:32:28.0160 0384 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
20:32:28.0180 0384 sppsvc - ok
20:32:28.0210 0384 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:32:28.0220 0384 sppuinotify - ok
20:32:28.0260 0384 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
20:32:28.0300 0384 srv - ok
20:32:28.0330 0384 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:32:28.0350 0384 srv2 - ok
20:32:28.0600 0384 [ E02D7ACFA0795C77CAF6D8E75F064484 ] SrvAd C:\Users\jacec\AppData\Roaming\Microsoft\Windows\AdvService.exe
20:32:28.0610 0384 SrvAd - ok
20:32:28.0640 0384 [ E00FDFAFF025E94F9821153750C35A6D ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL3.SYS
20:32:28.0650 0384 SrvHsfHDA - ok
20:32:28.0680 0384 [ CEB4E3B6890E1E42DCA6694D9E59E1A0 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV3.SYS
20:32:28.0760 0384 SrvHsfV92 - ok
20:32:28.0790 0384 [ BC0C7EA89194C299F051C24119000E17 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
20:32:28.0840 0384 SrvHsfWinac - ok
20:32:28.0890 0384 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:32:28.0920 0384 srvnet - ok
20:32:28.0970 0384 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:32:29.0010 0384 SSDPSRV - ok
20:32:29.0030 0384 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:32:29.0040 0384 SstpSvc - ok
20:32:29.0080 0384 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:32:29.0100 0384 stexstor - ok
20:32:29.0210 0384 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
20:32:29.0220 0384 StiSvc - ok
20:32:29.0240 0384 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
20:32:29.0270 0384 storflt - ok
20:32:29.0290 0384 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys
20:32:29.0310 0384 storvsc - ok
20:32:29.0340 0384 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
20:32:29.0350 0384 swenum - ok
20:32:29.0400 0384 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
20:32:29.0400 0384 swprv - ok
20:32:29.0430 0384 Synth3dVsc - ok
20:32:29.0580 0384 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
20:32:29.0610 0384 SysMain - ok
20:32:29.0650 0384 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:32:29.0650 0384 TabletInputService - ok
20:32:29.0670 0384 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
20:32:29.0680 0384 TapiSrv - ok
20:32:29.0700 0384 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
20:32:29.0700 0384 TBS - ok
20:32:29.0790 0384 [ E23A56F843E2AEBBB209D0ACCA73C640 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:32:29.0860 0384 Tcpip - ok
20:32:29.0930 0384 [ E23A56F843E2AEBBB209D0ACCA73C640 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:32:29.0940 0384 TCPIP6 - ok
20:32:29.0960 0384 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:32:30.0000 0384 tcpipreg - ok
20:32:30.0030 0384 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:32:30.0060 0384 TDPIPE - ok
20:32:30.0090 0384 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:32:30.0110 0384 TDTCP - ok
20:32:30.0130 0384 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:32:30.0160 0384 tdx - ok
20:32:30.0200 0384 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
20:32:30.0210 0384 TermDD - ok
20:32:30.0260 0384 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
20:32:30.0290 0384 TermService - ok
20:32:30.0320 0384 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
20:32:30.0320 0384 Themes - ok
20:32:30.0330 0384 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
20:32:30.0330 0384 THREADORDER - ok
20:32:30.0430 0384 [ EFEF22B9577E5051057FDE1AE381B50C ] TomTomHOMEService C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
20:32:30.0430 0384 TomTomHOMEService - ok
20:32:30.0470 0384 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
20:32:30.0470 0384 TrkWks - ok
20:32:30.0590 0384 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:32:30.0590 0384 TrustedInstaller - ok
20:32:30.0610 0384 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:32:30.0660 0384 tssecsrv - ok
20:32:30.0710 0384 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:32:30.0730 0384 TsUsbFlt - ok
20:32:30.0750 0384 tsusbhub - ok
20:32:30.0820 0384 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:32:30.0830 0384 tunnel - ok
20:32:30.0860 0384 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:32:30.0880 0384 uagp35 - ok
20:32:30.0920 0384 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:32:30.0960 0384 udfs - ok
20:32:30.0990 0384 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:32:31.0040 0384 UI0Detect - ok
20:32:31.0070 0384 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:32:31.0080 0384 uliagpkx - ok
20:32:31.0120 0384 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
20:32:31.0130 0384 umbus - ok
20:32:31.0140 0384 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:32:31.0160 0384 UmPass - ok
20:32:31.0200 0384 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll
20:32:31.0200 0384 UmRdpService - ok
20:32:31.0230 0384 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
20:32:31.0240 0384 upnphost - ok
20:32:31.0300 0384 [ 8BF5D980CDCE35FB26F05047144BB57E ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
20:32:31.0320 0384 USBAAPL - ok
20:32:31.0400 0384 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:32:31.0470 0384 usbccgp - ok
20:32:31.0490 0384 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:32:31.0510 0384 usbcir - ok
20:32:31.0530 0384 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:32:31.0550 0384 usbehci - ok
20:32:31.0590 0384 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:32:31.0610 0384 usbhub - ok
20:32:31.0620 0384 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:32:31.0640 0384 usbohci - ok
20:32:31.0680 0384 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:32:31.0700 0384 usbprint - ok
20:32:31.0740 0384 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:32:31.0770 0384 USBSTOR - ok
20:32:31.0780 0384 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
20:32:31.0790 0384 usbuhci - ok
20:32:31.0860 0384 [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
20:32:31.0860 0384 usbvideo - ok
20:32:31.0900 0384 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
20:32:31.0930 0384 UxSms - ok
20:32:31.0950 0384 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
20:32:31.0950 0384 VaultSvc - ok
20:32:31.0990 0384 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:32:32.0010 0384 vdrvroot - ok
20:32:32.0050 0384 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
20:32:32.0060 0384 vds - ok
20:32:32.0110 0384 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:32:32.0120 0384 vga - ok
20:32:32.0130 0384 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
20:32:32.0160 0384 VgaSave - ok
20:32:32.0190 0384 VGPU - ok
20:32:32.0210 0384 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:32:32.0230 0384 vhdmp - ok
20:32:32.0250 0384 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
20:32:32.0260 0384 viaagp - ok
20:32:32.0280 0384 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
20:32:32.0300 0384 ViaC7 - ok
20:32:32.0320 0384 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
20:32:32.0330 0384 viaide - ok
20:32:32.0380 0384 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys
20:32:32.0410 0384 vmbus - ok
20:32:32.0420 0384 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
20:32:32.0420 0384 VMBusHID - ok
20:32:32.0440 0384 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:32:32.0470 0384 volmgr - ok
20:32:32.0520 0384 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:32:32.0550 0384 volmgrx - ok
20:32:32.0570 0384 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:32:32.0600 0384 volsnap - ok
20:32:32.0660 0384 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:32:32.0680 0384 vsmraid - ok
20:32:32.0790 0384 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
20:32:32.0860 0384 VSS - ok
20:32:32.0880 0384 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
20:32:32.0900 0384 vwifibus - ok
20:32:32.0960 0384 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
20:32:33.0020 0384 W32Time - ok
20:32:33.0062 0384 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:32:33.0092 0384 WacomPen - ok
20:32:33.0152 0384 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:32:33.0162 0384 WANARP - ok
20:32:33.0172 0384 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:32:33.0182 0384 Wanarpv6 - ok
20:32:33.0312 0384 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
20:32:33.0372 0384 WatAdminSvc - ok
20:32:33.0422 0384 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
20:32:33.0502 0384 wbengine - ok
20:32:33.0552 0384 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:32:33.0602 0384 WbioSrvc - ok
20:32:33.0652 0384 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:32:33.0662 0384 wcncsvc - ok
20:32:33.0682 0384 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:32:33.0682 0384 WcsPlugInService - ok
20:32:33.0722 0384 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:32:33.0732 0384 Wd - ok
20:32:33.0792 0384 [ D6EFAF429FD30C5DF613D220E344CCE7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam.sys
20:32:33.0802 0384 WDC_SAM - ok
20:32:33.0872 0384 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:32:33.0912 0384 Wdf01000 - ok
20:32:33.0952 0384 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:32:33.0992 0384 WdiServiceHost - ok
20:32:34.0022 0384 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:32:34.0022 0384 WdiSystemHost - ok
20:32:34.0052 0384 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
20:32:34.0062 0384 WebClient - ok
20:32:34.0072 0384 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:32:34.0082 0384 Wecsvc - ok
20:32:34.0102 0384 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:32:34.0112 0384 wercplsupport - ok
20:32:34.0132 0384 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
20:32:34.0132 0384 WerSvc - ok
20:32:34.0182 0384 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:32:34.0202 0384 WfpLwf - ok
20:32:34.0212 0384 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:32:34.0232 0384 WIMMount - ok
20:32:34.0342 0384 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
20:32:34.0382 0384 WinDefend - ok
20:32:34.0392 0384 WinHttpAutoProxySvc - ok
20:32:34.0502 0384 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:32:34.0512 0384 Winmgmt - ok
20:32:34.0582 0384 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
20:32:34.0642 0384 WinRM - ok
20:32:34.0702 0384 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:32:34.0712 0384 WinUsb - ok
20:32:34.0782 0384 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
20:32:34.0842 0384 Wlansvc - ok
20:32:34.0862 0384 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:32:34.0892 0384 WmiAcpi - ok
20:32:34.0922 0384 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:32:34.0932 0384 wmiApSrv - ok
20:32:35.0032 0384 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
20:32:35.0062 0384 WMPNetworkSvc - ok
20:32:35.0092 0384 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:32:35.0102 0384 WPCSvc - ok
20:32:35.0132 0384 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:32:35.0132 0384 WPDBusEnum - ok
20:32:35.0182 0384 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:32:35.0232 0384 ws2ifsl - ok
20:32:35.0262 0384 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\System32\wscsvc.dll
20:32:35.0262 0384 wscsvc - ok
20:32:35.0272 0384 WSearch - ok
20:32:35.0472 0384 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
20:32:35.0532 0384 wuauserv - ok
20:32:35.0582 0384 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:32:35.0592 0384 WudfPf - ok
20:32:35.0632 0384 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:32:35.0642 0384 WUDFRd - ok
20:32:35.0672 0384 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:32:35.0672 0384 wudfsvc - ok
20:32:35.0742 0384 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
20:32:35.0752 0384 WwanSvc - ok
20:32:35.0842 0384 [ B07C5B7EFDF936FF93D4F540938725BE ] yukonw7 C:\Windows\system32\DRIVERS\yk62x86.sys
20:32:35.0882 0384 yukonw7 - ok
20:32:35.0942 0384 ================ Scan global ===============================
20:32:35.0992 0384 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
20:32:36.0083 0384 [ 48CB4FDBCAAEAC7BCE2F5941545FF071 ] C:\Windows\system32\winsrv.dll
20:32:36.0083 0384 [ 48CB4FDBCAAEAC7BCE2F5941545FF071 ] C:\Windows\system32\winsrv.dll
20:32:36.0143 0384 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
20:32:36.0173 0384 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
20:32:36.0173 0384 [Global] - ok
20:32:36.0173 0384 ================ Scan MBR ==================================
20:32:36.0203 0384 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:32:36.0593 0384 \Device\Harddisk0\DR0 - ok
20:32:36.0593 0384 [ 65E858A8A0293BE11A920B0BC99D695E ] \Device\Harddisk1\DR1
20:32:37.0063 0384 \Device\Harddisk1\DR1 - ok
20:32:37.0063 0384 ================ Scan VBR ==================================
20:32:37.0073 0384 [ 33E90EDCF431C0FFEAD2E68E038868A8 ] \Device\Harddisk0\DR0\Partition1
20:32:37.0083 0384 \Device\Harddisk0\DR0\Partition1 - ok
20:32:37.0093 0384 [ EAE899A80A4ABC0FB4E76C7CE614536E ] \Device\Harddisk0\DR0\Partition2
20:32:37.0153 0384 \Device\Harddisk0\DR0\Partition2 - ok
20:32:37.0153 0384 [ D444CA44AC9A13D97A156DA4D386DA42 ] \Device\Harddisk1\DR1\Partition1
20:32:37.0153 0384 \Device\Harddisk1\DR1\Partition1 - ok
20:32:37.0153 0384 ============================================================
20:32:37.0153 0384 Scan finished
20:32:37.0153 0384 ============================================================
20:32:37.0163 0632 Detected object count: 0
20:32:37.0163 0632 Actual detected object count: 0
20:32:49.0039 2572 ============================================================
20:32:49.0039 2572 Scan started
20:32:49.0039 2572 Mode: Manual;
20:32:49.0039 2572 ============================================================
20:32:49.0249 2572 ================ Scan system memory ========================
20:32:49.0249 2572 System memory - ok
20:32:49.0249 2572 ================ Scan services =============================
20:32:49.0439 2572 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:32:49.0439 2572 1394ohci - ok
20:32:49.0489 2572 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:32:49.0499 2572 ACPI - ok
20:32:49.0529 2572 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:32:49.0529 2572 AcpiPmi - ok
20:32:49.0639 2572 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:32:49.0639 2572 adp94xx - ok
20:32:49.0659 2572 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:32:49.0669 2572 adpahci - ok
20:32:49.0679 2572 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:32:49.0679 2572 adpu320 - ok
20:32:49.0719 2572 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:32:49.0719 2572 AeLookupSvc - ok
20:32:49.0759 2572 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
20:32:49.0759 2572 AFD - ok
20:32:49.0799 2572 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
20:32:49.0799 2572 agp440 - ok
20:32:49.0829 2572 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
20:32:49.0849 2572 aic78xx - ok
20:32:49.0869 2572 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
20:32:49.0869 2572 ALG - ok
20:32:49.0879 2572 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
20:32:49.0899 2572 aliide - ok
20:32:49.0939 2572 [ B19505648F033393E907E2E419FDE8B3 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
20:32:49.0949 2572 AMD External Events Utility - ok
20:32:49.0969 2572 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
20:32:49.0969 2572 amdagp - ok
20:32:50.0029 2572 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
20:32:50.0029 2572 amdide - ok
20:32:50.0089 2572 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:32:50.0089 2572 AmdK8 - ok
20:32:50.0099 2572 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:32:50.0129 2572 AmdPPM - ok
20:32:50.0149 2572 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:32:50.0149 2572 amdsata - ok
20:32:50.0189 2572 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:32:50.0189 2572 amdsbs - ok
20:32:50.0209 2572 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:32:50.0209 2572 amdxata - ok
20:32:50.0259 2572 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
20:32:50.0259 2572 AppID - ok
20:32:50.0299 2572 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:32:50.0309 2572 AppIDSvc - ok
20:32:50.0359 2572 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
20:32:50.0359 2572 Appinfo - ok
20:32:50.0539 2572 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:32:50.0539 2572 Apple Mobile Device - ok
20:32:50.0569 2572 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
20:32:50.0569 2572 AppMgmt - ok
20:32:50.0629 2572 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
20:32:50.0629 2572 arc - ok
20:32:50.0649 2572 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:32:50.0649 2572 arcsas - ok
20:32:50.0669 2572 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:32:50.0669 2572 AsyncMac - ok
20:32:50.0729 2572 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
20:32:50.0729 2572 atapi - ok
20:32:51.0039 2572 [ 04F09923A393E4E0E8453A8F78361E73 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
20:32:51.0069 2572 atikmdag - ok
20:32:51.0139 2572 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:32:51.0139 2572 AudioEndpointBuilder - ok
20:32:51.0169 2572 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
20:32:51.0179 2572 Audiosrv - ok
20:32:51.0219 2572 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:32:51.0219 2572 AxInstSV - ok
20:32:51.0269 2572 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
20:32:51.0269 2572 b06bdrv - ok
20:32:51.0329 2572 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
20:32:51.0329 2572 b57nd60x - ok
20:32:51.0379 2572 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
20:32:51.0389 2572 BDESVC - ok
20:32:51.0399 2572 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
20:32:51.0399 2572 Beep - ok
20:32:51.0429 2572 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
20:32:51.0439 2572 BFE - ok
20:32:51.0489 2572 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll
20:32:51.0489 2572 BITS - ok
20:32:51.0509 2572 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:32:51.0509 2572 blbdrive - ok
20:32:51.0619 2572 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:32:51.0619 2572 Bonjour Service - ok
20:32:51.0659 2572 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:32:51.0669 2572 bowser - ok
20:32:51.0679 2572 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:32:51.0679 2572 BrFiltLo - ok
20:32:51.0729 2572 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:32:51.0729 2572 BrFiltUp - ok
20:32:51.0779 2572 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
20:32:51.0779 2572 Browser - ok
20:32:51.0829 2572 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:32:51.0829 2572 Brserid - ok
20:32:51.0869 2572 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:32:51.0869 2572 BrSerWdm - ok
20:32:51.0899 2572 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:32:51.0899 2572 BrUsbMdm - ok
20:32:51.0919 2572 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:32:51.0919 2572 BrUsbSer - ok
20:32:51.0969 2572 [ 2865A5C8E98C70C605F417908CEBB3A4 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
20:32:51.0969 2572 BthEnum - ok
20:32:51.0999 2572 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:32:52.0009 2572 BTHMODEM - ok
20:32:52.0049 2572 [ AD1872E5829E8A2C3B5B4B641C3EAB0E ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
20:32:52.0049 2572 BthPan - ok
20:32:52.0109 2572 [ 1153DE2E4F5941E10C399CB5592F78A1 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
20:32:52.0109 2572 BTHPORT - ok
20:32:52.0149 2572 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
20:32:52.0149 2572 bthserv - ok
20:32:52.0199 2572 [ C81E9413A25A439F436B1D4B6A0CF9E9 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
20:32:52.0199 2572 BTHUSB - ok
20:32:52.0241 2572 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:32:52.0241 2572 cdfs - ok
20:32:52.0281 2572 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:32:52.0281 2572 cdrom - ok
20:32:52.0328 2572 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
20:32:52.0328 2572 CertPropSvc - ok
20:32:52.0359 2572 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:32:52.0359 2572 circlass - ok
20:32:52.0390 2572 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
20:32:52.0390 2572 CLFS - ok
20:32:52.0557 2572 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:32:52.0557 2572 clr_optimization_v2.0.50727_32 - ok
20:32:52.0657 2572 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:32:52.0657 2572 clr_optimization_v4.0.30319_32 - ok
20:32:52.0677 2572 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:32:52.0677 2572 CmBatt - ok
20:32:52.0697 2572 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:32:52.0697 2572 cmdide - ok
20:32:52.0767 2572 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
20:32:52.0787 2572 CNG - ok
20:32:52.0827 2572 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:32:52.0827 2572 Compbatt - ok
20:32:52.0857 2572 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
20:32:52.0857 2572 CompositeBus - ok
20:32:52.0867 2572 COMSysApp - ok
20:32:52.0907 2572 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:32:52.0907 2572 crcdisk - ok
20:32:52.0987 2572 [ 96C0E38905CFD788313BE8E11DAE3F2F ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:32:52.0987 2572 CryptSvc - ok
20:32:53.0037 2572 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys
20:32:53.0037 2572 CSC - ok
20:32:53.0087 2572 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll
20:32:53.0087 2572 CscService - ok
20:32:53.0147 2572 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
20:32:53.0147 2572 DcomLaunch - ok
20:32:53.0287 2572 [ 9AC09551F559A1EEAFC0B19F624C233E ] DCService.exe C:\ProgramData\DatacardService\DCService.exe
20:32:53.0287 2572 DCService.exe - ok
20:32:53.0347 2572 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
20:32:53.0347 2572 defragsvc - ok
20:32:53.0387 2572 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:32:53.0397 2572 DfsC - ok
20:32:53.0447 2572 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
20:32:53.0447 2572 Dhcp - ok
20:32:53.0487 2572 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
20:32:53.0507 2572 discache - ok
20:32:53.0537 2572 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:32:53.0537 2572 Disk - ok
20:32:53.0587 2572 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:32:53.0587 2572 Dnscache - ok
20:32:53.0647 2572 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
20:32:53.0647 2572 dot3svc - ok
20:32:53.0657 2572 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
20:32:53.0657 2572 DPS - ok
20:32:53.0697 2572 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:32:53.0697 2572 drmkaud - ok
20:32:53.0767 2572 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:32:53.0767 2572 DXGKrnl - ok
20:32:53.0807 2572 [ AF82DC664E3D8E2CBA3B95E68F6448A7 ] eamon C:\Windows\system32\DRIVERS\eamon.sys
20:32:53.0807 2572 eamon - ok
20:32:53.0847 2572 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
20:32:53.0847 2572 EapHost - ok
20:32:53.0987 2572 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
20:32:54.0007 2572 ebdrv - ok
20:32:54.0037 2572 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
20:32:54.0037 2572 EFS - ok
20:32:54.0057 2572 [ 686A799C1BF1B18941994DAF9F45DB06 ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
20:32:54.0057 2572 ehdrv - ok
20:32:54.0167 2572 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:32:54.0177 2572 ehRecvr - ok
20:32:54.0227 2572 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
20:32:54.0227 2572 ehSched - ok
20:32:54.0307 2572 [ 9329BA45C8B97485926A171E34C2ABB8 ] EhttpSrv C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
20:32:54.0307 2572 EhttpSrv - ok
20:32:54.0367 2572 [ 3543C6195D5ED4EDA0316D3E1BA0E6EE ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
20:32:54.0367 2572 ekrn - ok
20:32:54.0457 2572 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:32:54.0457 2572 elxstor - ok
20:32:54.0507 2572 [ 8700EADC8BDFA27D948FCC43EE0AE434 ] epfwwfpr C:\Windows\system32\DRIVERS\epfwwfpr.sys
20:32:54.0507 2572 epfwwfpr - ok
20:32:54.0552 2572 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:32:54.0552 2572 ErrDev - ok
20:32:54.0599 2572 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
20:32:54.0599 2572 EventSystem - ok
20:32:54.0659 2572 [ 95BCB4321962028799EB2EA53319BB0C ] ewusbnet C:\Windows\system32\DRIVERS\ewusbnet.sys
20:32:54.0669 2572 ewusbnet - ok
20:32:54.0689 2572 [ 57C171EA22F0A7F068FCB0CAEDD1E8E7 ] ew_hwusbdev C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
20:32:54.0689 2572 ew_hwusbdev - ok
20:32:54.0709 2572 [ 61A973F60E94A551BA7B15F3460444FB ] ew_usbenumfilter C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys
20:32:54.0719 2572 ew_usbenumfilter - ok
20:32:54.0749 2572 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
20:32:54.0749 2572 exfat - ok
20:32:54.0779 2572 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:32:54.0779 2572 fastfat - ok
20:32:54.0879 2572 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
20:32:54.0879 2572 Fax - ok
20:32:54.0909 2572 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:32:54.0909 2572 fdc - ok
20:32:54.0969 2572 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
20:32:54.0969 2572 fdPHost - ok
20:32:54.0989 2572 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
20:32:54.0989 2572 FDResPub - ok
20:32:54.0999 2572 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:32:55.0019 2572 FileInfo - ok
20:32:55.0049 2572 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:32:55.0069 2572 Filetrace - ok
20:32:55.0079 2572 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:32:55.0099 2572 flpydisk - ok
20:32:55.0149 2572 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:32:55.0169 2572 FltMgr - ok
20:32:55.0249 2572 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
20:32:55.0259 2572 FontCache - ok
20:32:55.0359 2572 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
20:32:55.0359 2572 FontCache3.0.0.0 - ok
20:32:55.0369 2572 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:32:55.0369 2572 FsDepends - ok
20:32:55.0429 2572 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:32:55.0429 2572 Fs_Rec - ok
20:32:55.0469 2572 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:32:55.0509 2572 fvevol - ok
20:32:55.0539 2572 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:32:55.0539 2572 gagp30kx - ok
20:32:55.0579 2572 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
20:32:55.0579 2572 GEARAspiWDM - ok
20:32:55.0659 2572 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
20:32:55.0659 2572 gpsvc - ok
20:32:55.0689 2572 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:32:55.0689 2572 hcw85cir - ok
20:32:55.0789 2572 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:32:55.0789 2572 HdAudAddService - ok
20:32:55.0809 2572 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
20:32:55.0809 2572 HDAudBus - ok
20:32:55.0859 2572 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:32:55.0859 2572 HidBatt - ok
20:32:55.0879 2572 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:32:55.0879 2572 HidBth - ok
20:32:55.0919 2572 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:32:55.0939 2572 HidIr - ok
20:32:55.0979 2572 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
20:32:55.0979 2572 hidserv - ok
20:32:55.0989 2572 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\drivers\hidusb.sys
20:32:55.0989 2572 HidUsb - ok
20:32:56.0019 2572 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:32:56.0019 2572 hkmsvc - ok
20:32:56.0079 2572 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:32:56.0089 2572 HomeGroupListener - ok
20:32:56.0159 2572 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:32:56.0159 2572 HomeGroupProvider - ok
20:32:56.0199 2572 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:32:56.0229 2572 HpSAMD - ok
20:32:56.0289 2572 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:32:56.0289 2572 HTTP - ok
20:32:56.0339 2572 [ 92548543D50C9BCCDB31FFB7EC39249D ] huawei_enumerator C:\Windows\system32\DRIVERS\ew_jubusenum.sys
20:32:56.0339 2572 huawei_enumerator - ok
20:32:56.0379 2572 [ A89423D0132C8AB69BA621B6CE191714 ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
20:32:56.0379 2572 hwdatacard - ok
20:32:56.0419 2572 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:32:56.0419 2572 hwpolicy - ok
20:32:56.0429 2572 hwusbfake - ok
20:32:56.0479 2572 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:32:56.0479 2572 i8042prt - ok
20:32:56.0509 2572 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:32:56.0509 2572 iaStorV - ok
20:32:56.0609 2572 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:32:56.0609 2572 idsvc - ok
20:32:56.0669 2572 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:32:56.0669 2572 iirsp - ok
20:32:56.0729 2572 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
20:32:56.0739 2572 IKEEXT - ok
20:32:56.0749 2572 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
20:32:56.0749 2572 intelide - ok
20:32:56.0779 2572 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:32:56.0789 2572 intelppm - ok
20:32:56.0839 2572 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:32:56.0839 2572 IPBusEnum - ok
20:32:56.0859 2572 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:32:56.0859 2572 IpFilterDriver - ok
20:32:56.0949 2572 [ 58F67245D041FBE7AF88F4EAF79DF0FA ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:32:56.0959 2572 iphlpsvc - ok
20:32:56.0999 2572 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:32:56.0999 2572 IPMIDRV - ok
20:32:57.0029 2572 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:32:57.0029 2572 IPNAT - ok
20:32:57.0149 2572 [ EF1C51222117B37AFBFF8F4642EA8C62 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:32:57.0149 2572 iPod Service - ok
20:32:57.0189 2572 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:32:57.0189 2572 IRENUM - ok
20:32:57.0209 2572 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:32:57.0209 2572 isapnp - ok
20:32:57.0260 2572 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:32:57.0260 2572 iScsiPrt - ok
20:32:57.0270 2572 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
20:32:57.0270 2572 kbdclass - ok
20:32:57.0300 2572 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
20:32:57.0300 2572 kbdhid - ok
20:32:57.0320 2572 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
20:32:57.0320 2572 KeyIso - ok
20:32:57.0370 2572 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:32:57.0370 2572 KSecDD - ok
20:32:57.0400 2572 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:32:57.0430 2572 KSecPkg - ok
20:32:57.0490 2572 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
20:32:57.0490 2572 KtmRm - ok
20:32:57.0550 2572 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
20:32:57.0550 2572 LanmanServer - ok
20:32:57.0570 2572 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:32:57.0580 2572 LanmanWorkstation - ok
20:32:57.0620 2572 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:32:57.0620 2572 lltdio - ok
20:32:57.0640 2572 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:32:57.0640 2572 lltdsvc - ok
20:32:57.0670 2572 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
20:32:57.0670 2572 lmhosts - ok
20:32:57.0690 2572 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:32:57.0690 2572 LSI_FC - ok
20:32:57.0700 2572 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:32:57.0700 2572 LSI_SAS - ok
20:32:57.0730 2572 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:32:57.0730 2572 LSI_SAS2 - ok
20:32:57.0770 2572 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:32:57.0790 2572 LSI_SCSI - ok
20:32:57.0810 2572 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
20:32:57.0810 2572 luafv - ok
20:32:57.0860 2572 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:32:57.0860 2572 Mcx2Svc - ok
20:32:57.0900 2572 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:32:57.0900 2572 megasas - ok
20:32:57.0930 2572 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:32:57.0930 2572 MegaSR - ok
20:32:57.0980 2572 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
20:32:57.0980 2572 MMCSS - ok
20:32:58.0070 2572 [ 1EE12E08960682DDF05F6C3FDCCBC713 ] Mobile Partner. RunOuc C:\Program Files\Mobile Partner\UpdateDog\ouc.exe
20:32:58.0080 2572 Mobile Partner. RunOuc - ok
20:32:58.0100 2572 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
20:32:58.0100 2572 Modem - ok
20:32:58.0150 2572 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:32:58.0150 2572 monitor - ok
20:32:58.0180 2572 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\drivers\mouclass.sys
20:32:58.0180 2572 mouclass - ok
20:32:58.0200 2572 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:32:58.0200 2572 mouhid - ok
20:32:58.0250 2572 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:32:58.0260 2572 mountmgr - ok
20:32:58.0337 2572 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
20:32:58.0337 2572 MozillaMaintenance - ok
20:32:58.0353 2572 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
20:32:58.0353 2572 mpio - ok
20:32:58.0388 2572 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:32:58.0388 2572 mpsdrv - ok
20:32:58.0438 2572 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:32:58.0438 2572 MpsSvc - ok
20:32:58.0498 2572 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:32:58.0498 2572 MRxDAV - ok
20:32:58.0538 2572 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:32:58.0538 2572 mrxsmb - ok
20:32:58.0608 2572 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:32:58.0628 2572 mrxsmb10 - ok
20:32:58.0648 2572 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:32:58.0648 2572 mrxsmb20 - ok
20:32:58.0688 2572 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
20:32:58.0688 2572 msahci - ok
20:32:58.0738 2572 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:32:58.0738 2572 msdsm - ok
20:32:58.0788 2572 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
20:32:58.0788 2572 MSDTC - ok
20:32:58.0838 2572 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:32:58.0838 2572 Msfs - ok
20:32:58.0858 2572 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:32:58.0858 2572 mshidkmdf - ok
20:32:58.0888 2572 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:32:58.0898 2572 msisadrv - ok
20:32:58.0958 2572 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:32:58.0958 2572 MSiSCSI - ok
20:32:58.0968 2572 msiserver - ok
20:32:59.0018 2572 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:32:59.0018 2572 MSKSSRV - ok
20:32:59.0038 2572 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:32:59.0038 2572 MSPCLOCK - ok
20:32:59.0048 2572 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:32:59.0048 2572 MSPQM - ok
20:32:59.0068 2572 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:32:59.0068 2572 MsRPC - ok
20:32:59.0128 2572 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
20:32:59.0138 2572 mssmbios - ok
20:32:59.0158 2572 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:32:59.0158 2572 MSTEE - ok
20:32:59.0178 2572 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:32:59.0178 2572 MTConfig - ok
20:32:59.0198 2572 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
20:32:59.0198 2572 Mup - ok
20:32:59.0238 2572 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
20:32:59.0238 2572 napagent - ok
20:32:59.0268 2572 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:32:59.0268 2572 NativeWifiP - ok
20:32:59.0368 2572 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:32:59.0368 2572 NDIS - ok
20:32:59.0398 2572 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:32:59.0398 2572 NdisCap - ok
20:32:59.0428 2572 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:32:59.0428 2572 NdisTapi - ok
20:32:59.0468 2572 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:32:59.0468 2572 Ndisuio - ok
20:32:59.0508 2572 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:32:59.0508 2572 NdisWan - ok
20:32:59.0538 2572 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:32:59.0538 2572 NDProxy - ok
20:32:59.0568 2572 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:32:59.0568 2572 NetBIOS - ok
20:32:59.0628 2572 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:32:59.0628 2572 NetBT - ok
20:32:59.0648 2572 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
20:32:59.0658 2572 Netlogon - ok
20:32:59.0718 2572 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
20:32:59.0718 2572 Netman - ok
20:32:59.0748 2572 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
20:32:59.0748 2572 netprofm - ok
20:32:59.0798 2572 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:32:59.0798 2572 NetTcpPortSharing - ok
20:33:00.0058 2572 [ 58218EC6B61B1169CF54AAB0D00F5FE2 ] netw5v32 C:\Windows\system32\DRIVERS\netw5v32.sys
20:33:00.0098 2572 netw5v32 - ok
20:33:00.0158 2572 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:33:00.0158 2572 nfrd960 - ok
20:33:00.0238 2572 [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc C:\Windows\System32\nlasvc.dll
20:33:00.0248 2572 NlaSvc - ok
20:33:00.0268 2572 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:33:00.0268 2572 Npfs - ok
20:33:00.0318 2572 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
20:33:00.0318 2572 nsi - ok
20:33:00.0328 2572 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:33:00.0328 2572 nsiproxy - ok
20:33:00.0468 2572 [ 0D87503986BB3DFED58E343FE39DDE13 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:33:00.0478 2572 Ntfs - ok
20:33:00.0528 2572 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
20:33:00.0528 2572 Null - ok
20:33:00.0578 2572 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:33:00.0578 2572 nvraid - ok
20:33:00.0598 2572 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:33:00.0598 2572 nvstor - ok
20:33:00.0618 2572 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:33:00.0618 2572 nv_agp - ok
20:33:00.0638 2572 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:33:00.0638 2572 ohci1394 - ok
20:33:00.0708 2572 [ DA345DE3B450E9E1691E7B9956D8FFC3 ] OMSI download service C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
20:33:00.0708 2572 OMSI download service - ok
20:33:00.0748 2572 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:33:00.0768 2572 p2pimsvc - ok
20:33:00.0818 2572 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
20:33:00.0828 2572 p2psvc - ok
20:33:00.0878 2572 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:33:00.0878 2572 Parport - ok
20:33:00.0918 2572 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:33:00.0918 2572 partmgr - ok
20:33:00.0948 2572 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
20:33:00.0948 2572 Parvdm - ok
20:33:00.0978 2572 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:33:00.0978 2572 PcaSvc - ok
20:33:01.0028 2572 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
20:33:01.0028 2572 pci - ok
20:33:01.0048 2572 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
20:33:01.0048 2572 pciide - ok
20:33:01.0078 2572 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:33:01.0088 2572 pcmcia - ok
20:33:01.0108 2572 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
20:33:01.0108 2572 pcw - ok
20:33:01.0218 2572 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:33:01.0218 2572 PEAUTH - ok
20:33:01.0378 2572 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
20:33:01.0398 2572 PeerDistSvc - ok
20:33:01.0508 2572 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
20:33:01.0518 2572 pla - ok
20:33:01.0568 2572 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:33:01.0568 2572 PlugPlay - ok
20:33:01.0598 2572 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:33:01.0598 2572 PNRPAutoReg - ok
20:33:01.0618 2572 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:33:01.0618 2572 PNRPsvc - ok
20:33:01.0688 2572 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:33:01.0688 2572 PolicyAgent - ok
20:33:01.0728 2572 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
20:33:01.0728 2572 Power - ok
20:33:01.0768 2572 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:33:01.0768 2572 PptpMiniport - ok
20:33:01.0798 2572 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:33:01.0798 2572 Processor - ok
20:33:01.0868 2572 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
20:33:01.0868 2572 ProfSvc - ok
20:33:01.0898 2572 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:33:01.0898 2572 ProtectedStorage - ok
20:33:01.0918 2572 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:33:01.0918 2572 Psched - ok
20:33:02.0038 2572 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:33:02.0048 2572 ql2300 - ok
20:33:02.0068 2572 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:33:02.0068 2572 ql40xx - ok
20:33:02.0138 2572 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
20:33:02.0138 2572 QWAVE - ok
20:33:02.0158 2572 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:33:02.0178 2572 QWAVEdrv - ok
20:33:02.0198 2572 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:33:02.0198 2572 RasAcd - ok
20:33:02.0248 2572 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:33:02.0248 2572 RasAgileVpn - ok
20:33:02.0258 2572 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
20:33:02.0258 2572 RasAuto - ok
20:33:02.0308 2572 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:33:02.0308 2572 Rasl2tp - ok
20:33:02.0398 2572 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
20:33:02.0398 2572 RasMan - ok
20:33:02.0418 2572 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:33:02.0438 2572 RasPppoe - ok
20:33:02.0458 2572 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:33:02.0458 2572 RasSstp - ok
20:33:02.0488 2572 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:33:02.0488 2572 rdbss - ok
20:33:02.0528 2572 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:33:02.0548 2572 rdpbus - ok
20:33:02.0588 2572 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:33:02.0588 2572 RDPCDD - ok
20:33:02.0608 2572 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
20:33:02.0618 2572 RDPDR - ok
20:33:02.0678 2572 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:33:02.0678 2572 RDPENCDD - ok
20:33:02.0708 2572 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:33:02.0708 2572 RDPREFMP - ok
20:33:02.0758 2572 [ 68A0387F58E226DEEE23D9715955572A ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
20:33:02.0758 2572 RdpVideoMiniport - ok
20:33:02.0818 2572 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:33:02.0818 2572 RDPWD - ok
20:33:02.0888 2572 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:33:02.0888 2572 rdyboost - ok
20:33:02.0938 2572 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
20:33:02.0938 2572 RemoteAccess - ok
20:33:02.0988 2572 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:33:02.0988 2572 RemoteRegistry - ok
20:33:03.0008 2572 [ CB928D9E6DAF51879DD6BA8D02F01321 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
20:33:03.0008 2572 RFCOMM - ok
20:33:03.0028 2572 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:33:03.0028 2572 RpcEptMapper - ok
20:33:03.0078 2572 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
20:33:03.0078 2572 RpcLocator - ok
20:33:03.0098 2572 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
20:33:03.0108 2572 RpcSs - ok
20:33:03.0148 2572 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:33:03.0148 2572 rspndr - ok
20:33:03.0188 2572 [ 1C5C2CB892553D2CF3F45A4BB323FCD6 ] s1018bus C:\Windows\system32\DRIVERS\s1018bus.sys
20:33:03.0198 2572 s1018bus - ok
20:33:03.0228 2572 [ 38F5EA219593F19B6B3A1B9C169E3B61 ] s1018mdfl C:\Windows\system32\DRIVERS\s1018mdfl.sys
20:33:03.0228 2572 s1018mdfl - ok
20:33:03.0258 2572 [ 666AF6B64FC7DF92D3CA4819EA91631D ] s1018mdm C:\Windows\system32\DRIVERS\s1018mdm.sys
20:33:03.0268 2572 s1018mdm - ok
20:33:03.0288 2572 [ F4CEDA6E2DDFF2AF8BD745615A7CA9C0 ] s1018mgmt C:\Windows\system32\DRIVERS\s1018mgmt.sys
20:33:03.0298 2572 s1018mgmt - ok
20:33:03.0329 2572 [ 3622D9FF2253DCBE885B10736609A4CA ] s1018nd5 C:\Windows\system32\DRIVERS\s1018nd5.sys
20:33:03.0349 2572 s1018nd5 - ok
20:33:03.0369 2572 [ 49431EFDA842B474531C29FFAE9F5D09 ] s1018obex C:\Windows\system32\DRIVERS\s1018obex.sys
20:33:03.0379 2572 s1018obex - ok
20:33:03.0409 2572 [ AC6B514CB4474F4C867D7CDC9CD54F05 ] s1018unic C:\Windows\system32\DRIVERS\s1018unic.sys
20:33:03.0409 2572 s1018unic - ok
20:33:03.0459 2572 [ D0EEDC88876B20D42157CDCCA3E647F3 ] s1039bus C:\Windows\system32\DRIVERS\s1039bus.sys
20:33:03.0469 2572 s1039bus - ok
20:33:03.0559 2572 [ 7B35091A7BB597C86262C589B0B57D06 ] s1039mdfl C:\Windows\system32\DRIVERS\s1039mdfl.sys
20:33:03.0559 2572 s1039mdfl - ok
20:33:03.0639 2572 [ 4CB1AB13C9813CBF3E4C6406F8043EC2 ] s1039mdm C:\Windows\system32\DRIVERS\s1039mdm.sys
20:33:03.0659 2572 s1039mdm - ok
20:33:03.0669 2572 [ 2649CA09585A7531126DCC116AD1F88C ] s1039mgmt C:\Windows\system32\DRIVERS\s1039mgmt.sys
20:33:03.0669 2572 s1039mgmt - ok
20:33:03.0699 2572 [ 6D3F549EFD6DAEDD7D12F3DE2175053F ] s1039nd5 C:\Windows\system32\DRIVERS\s1039nd5.sys
20:33:03.0699 2572 s1039nd5 - ok
20:33:03.0729 2572 [ 305E3E3ACA0037AF2E2C1B50A383C91B ] s1039obex C:\Windows\system32\DRIVERS\s1039obex.sys
20:33:03.0729 2572 s1039obex - ok
20:33:03.0759 2572 [ 7DD02A58277C84C043442561589914F4 ] s1039unic C:\Windows\system32\DRIVERS\s1039unic.sys
20:33:03.0759 2572 s1039unic - ok
20:33:03.0809 2572 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
20:33:03.0819 2572 s3cap - ok
20:33:03.0839 2572 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
20:33:03.0839 2572 SamSs - ok
20:33:03.0869 2572 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:33:03.0869 2572 sbp2port - ok
20:33:03.0909 2572 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:33:03.0909 2572 SCardSvr - ok
20:33:03.0929 2572 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:33:03.0939 2572 scfilter - ok
20:33:04.0019 2572 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
20:33:04.0019 2572 Schedule - ok
20:33:04.0049 2572 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:33:04.0049 2572 SCPolicySvc - ok
20:33:04.0089 2572 [ 0328BE1C7F1CBA23848179F8762E391C ] sdbus C:\Windows\system32\drivers\sdbus.sys
20:33:04.0109 2572 sdbus - ok
20:33:04.0169 2572 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:33:04.0169 2572 SDRSVC - ok
20:33:04.0199 2572 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:33:04.0209 2572 secdrv - ok
20:33:04.0239 2572 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
20:33:04.0239 2572 seclogon - ok
20:33:04.0269 2572 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
20:33:04.0269 2572 SENS - ok
20:33:04.0299 2572 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:33:04.0309 2572 SensrSvc - ok
20:33:04.0329 2572 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:33:04.0329 2572 Serenum - ok
20:33:04.0349 2572 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:33:04.0349 2572 Serial - ok
20:33:04.0389 2572 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:33:04.0389 2572 sermouse - ok
20:33:04.0459 2572 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
20:33:04.0459 2572 SessionEnv - ok
20:33:04.0519 2572 [ 8B7C1768D2CDE2E02E09A66563DDFD16 ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
20:33:04.0519 2572 SFEP - ok
20:33:04.0549 2572 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
20:33:04.0549 2572 sffdisk - ok
20:33:04.0569 2572 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:33:04.0569 2572 sffp_mmc - ok
20:33:04.0589 2572 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
20:33:04.0589 2572 sffp_sd - ok
20:33:04.0659 2572 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:33:04.0659 2572 sfloppy - ok
20:33:04.0699 2572 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:33:04.0709 2572 SharedAccess - ok
20:33:04.0769 2572 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:33:04.0779 2572 ShellHWDetection - ok
20:33:04.0809 2572 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
20:33:04.0829 2572 sisagp - ok
20:33:04.0859 2572 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:33:04.0859 2572 SiSRaid2 - ok
20:33:04.0869 2572 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:33:04.0869 2572 SiSRaid4 - ok
20:33:04.0909 2572 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
20:33:04.0909 2572 SkypeUpdate - ok
20:33:04.0929 2572 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:33:04.0949 2572 Smb - ok
20:33:04.0989 2572 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:33:04.0989 2572 SNMPTRAP - ok
20:33:05.0009 2572 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
20:33:05.0009 2572 spldr - ok
20:33:05.0109 2572 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe
20:33:05.0119 2572 Spooler - ok
20:33:05.0289 2572 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
20:33:05.0309 2572 sppsvc - ok
20:33:05.0359 2572 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:33:05.0359 2572 sppuinotify - ok
20:33:05.0419 2572 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
20:33:05.0429 2572 srv - ok
20:33:05.0449 2572 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:33:05.0449 2572 srv2 - ok
20:33:05.0709 2572 [ E02D7ACFA0795C77CAF6D8E75F064484 ] SrvAd C:\Users\jacec\AppData\Roaming\Microsoft\Windows\AdvService.exe
20:33:05.0709 2572 SrvAd - ok
20:33:05.0749 2572 [ E00FDFAFF025E94F9821153750C35A6D ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL3.SYS
20:33:05.0749 2572 SrvHsfHDA - ok
20:33:05.0839 2572 [ CEB4E3B6890E1E42DCA6694D9E59E1A0 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV3.SYS
20:33:05.0839 2572 SrvHsfV92 - ok
20:33:05.0909 2572 [ BC0C7EA89194C299F051C24119000E17 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
20:33:05.0909 2572 SrvHsfWinac - ok
20:33:05.0949 2572 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:33:05.0949 2572 srvnet - ok
20:33:05.0999 2572 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:33:05.0999 2572 SSDPSRV - ok
20:33:06.0029 2572 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:33:06.0029 2572 SstpSvc - ok
20:33:06.0059 2572 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:33:06.0069 2572 stexstor - ok
20:33:06.0129 2572 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
20:33:06.0139 2572 StiSvc - ok
20:33:06.0149 2572 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
20:33:06.0149 2572 storflt - ok
20:33:06.0199 2572 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys
20:33:06.0199 2572 storvsc - ok
20:33:06.0249 2572 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
20:33:06.0269 2572 swenum - ok
20:33:06.0349 2572 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
20:33:06.0349 2572 swprv - ok
20:33:06.0359 2572 Synth3dVsc - ok
20:33:06.0469 2572 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
20:33:06.0479 2572 SysMain - ok
20:33:06.0529 2572 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:33:06.0529 2572 TabletInputService - ok
20:33:06.0589 2572 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
20:33:06.0599 2572 TapiSrv - ok
20:33:06.0619 2572 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
20:33:06.0619 2572 TBS - ok
20:33:06.0729 2572 [ E23A56F843E2AEBBB209D0ACCA73C640 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:33:06.0739 2572 Tcpip - ok
20:33:06.0819 2572 [ E23A56F843E2AEBBB209D0ACCA73C640 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:33:06.0819 2572 TCPIP6 - ok
20:33:06.0869 2572 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:33:06.0869 2572 tcpipreg - ok
20:33:06.0909 2572 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:33:06.0929 2572 TDPIPE - ok
20:33:06.0959 2572 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:33:06.0959 2572 TDTCP - ok
20:33:06.0979 2572 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:33:06.0989 2572 tdx - ok
20:33:07.0019 2572 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
20:33:07.0019 2572 TermDD - ok
20:33:07.0119 2572 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
20:33:07.0119 2572 TermService - ok
20:33:07.0199 2572 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
20:33:07.0199 2572 Themes - ok
20:33:07.0229 2572 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
20:33:07.0229 2572 THREADORDER - ok
20:33:07.0319 2572 [ EFEF22B9577E5051057FDE1AE381B50C ] TomTomHOMEService C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
20:33:07.0319 2572 TomTomHOMEService - ok
20:33:07.0359 2572 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
20:33:07.0369 2572 TrkWks - ok
20:33:07.0449 2572 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:33:07.0449 2572 TrustedInstaller - ok
20:33:07.0489 2572 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:33:07.0489 2572 tssecsrv - ok
20:33:07.0529 2572 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:33:07.0529 2572 TsUsbFlt - ok
20:33:07.0539 2572 tsusbhub - ok
20:33:07.0589 2572 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:33:07.0589 2572 tunnel - ok
20:33:07.0639 2572 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:33:07.0649 2572 uagp35 - ok
20:33:07.0709 2572 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:33:07.0709 2572 udfs - ok
20:33:07.0749 2572 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:33:07.0749 2572 UI0Detect - ok
20:33:07.0779 2572 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:33:07.0779 2572 uliagpkx - ok
20:33:07.0799 2572 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
20:33:07.0799 2572 umbus - ok
20:33:07.0819 2572 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:33:07.0819 2572 UmPass - ok
20:33:07.0879 2572 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll
20:33:07.0879 2572 UmRdpService - ok
20:33:07.0909 2572 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
20:33:07.0909 2572 upnphost - ok
20:33:07.0949 2572 [ 8BF5D980CDCE35FB26F05047144BB57E ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
20:33:07.0949 2572 USBAAPL - ok
20:33:07.0979 2572 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:33:07.0979 2572 usbccgp - ok
20:33:08.0039 2572 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:33:08.0039 2572 usbcir - ok
20:33:08.0069 2572 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:33:08.0069 2572 usbehci - ok
20:33:08.0089 2572 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:33:08.0109 2572 usbhub - ok
20:33:08.0129 2572 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:33:08.0129 2572 usbohci - ok
20:33:08.0189 2572 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:33:08.0189 2572 usbprint - ok
20:33:08.0229 2572 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:33:08.0229 2572 USBSTOR - ok
20:33:08.0259 2572 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
20:33:08.0259 2572 usbuhci - ok
20:33:08.0289 2572 [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
20:33:08.0289 2572 usbvideo - ok
20:33:08.0339 2572 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
20:33:08.0339 2572 UxSms - ok
20:33:08.0349 2572 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
20:33:08.0359 2572 VaultSvc - ok
20:33:08.0379 2572 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:33:08.0389 2572 vdrvroot - ok
20:33:08.0489 2572 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
20:33:08.0489 2572 vds - ok
20:33:08.0539 2572 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:33:08.0539 2572 vga - ok
20:33:08.0569 2572 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
20:33:08.0569 2572 VgaSave - ok
20:33:08.0579 2572 VGPU - ok
20:33:08.0639 2572 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:33:08.0659 2572 vhdmp - ok
20:33:08.0669 2572 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
20:33:08.0669 2572 viaagp - ok
20:33:08.0709 2572 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
20:33:08.0719 2572 ViaC7 - ok
20:33:08.0739 2572 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
20:33:08.0739 2572 viaide - ok
20:33:08.0779 2572 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys
20:33:08.0779 2572 vmbus - ok
20:33:08.0799 2572 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
20:33:08.0799 2572 VMBusHID - ok
20:33:08.0819 2572 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:33:08.0819 2572 volmgr - ok
20:33:08.0869 2572 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:33:08.0869 2572 volmgrx - ok
20:33:08.0889 2572 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:33:08.0889 2572 volsnap - ok
20:33:08.0949 2572 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:33:08.0949 2572 vsmraid - ok
20:33:09.0069 2572 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
20:33:09.0079 2572 VSS - ok
20:33:09.0109 2572 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
20:33:09.0109 2572 vwifibus - ok
20:33:09.0159 2572 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
20:33:09.0159 2572 W32Time - ok
20:33:09.0179 2572 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:33:09.0179 2572 WacomPen - ok
20:33:09.0229 2572 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:33:09.0229 2572 WANARP - ok
20:33:09.0239 2572 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:33:09.0239 2572 Wanarpv6 - ok
20:33:09.0379 2572 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
20:33:09.0389 2572 WatAdminSvc - ok
20:33:09.0449 2572 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
20:33:09.0459 2572 wbengine - ok
20:33:09.0519 2572 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:33:09.0529 2572 WbioSrvc - ok
20:33:09.0559 2572 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:33:09.0559 2572 wcncsvc - ok
20:33:09.0569 2572 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:33:09.0569 2572 WcsPlugInService - ok
20:33:09.0629 2572 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:33:09.0629 2572 Wd - ok
20:33:09.0679 2572 [ D6EFAF429FD30C5DF613D220E344CCE7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam.sys
20:33:09.0679 2572 WDC_SAM - ok
20:33:09.0729 2572 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:33:09.0739 2572 Wdf01000 - ok
20:33:09.0759 2572 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:33:09.0759 2572 WdiServiceHost - ok
20:33:09.0779 2572 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:33:09.0779 2572 WdiSystemHost - ok
20:33:09.0839 2572 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
20:33:09.0839 2572 WebClient - ok
20:33:09.0889 2572 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:33:09.0889 2572 Wecsvc - ok
20:33:09.0909 2572 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:33:09.0919 2572 wercplsupport - ok
20:33:09.0939 2572 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
20:33:09.0939 2572 WerSvc - ok
20:33:09.0979 2572 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:33:09.0989 2572 WfpLwf - ok
20:33:10.0009 2572 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:33:10.0009 2572 WIMMount - ok
20:33:10.0139 2572 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
20:33:10.0139 2572 WinDefend - ok
20:33:10.0149 2572 WinHttpAutoProxySvc - ok
20:33:10.0259 2572 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:33:10.0259 2572 Winmgmt - ok
20:33:10.0339 2572 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
20:33:10.0339 2572 WinRM - ok
20:33:10.0419 2572 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:33:10.0419 2572 WinUsb - ok
20:33:10.0479 2572 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
20:33:10.0489 2572 Wlansvc - ok
20:33:10.0509 2572 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:33:10.0509 2572 WmiAcpi - ok
20:33:10.0559 2572 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:33:10.0559 2572 wmiApSrv - ok
20:33:10.0639 2572 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
20:33:10.0649 2572 WMPNetworkSvc - ok
20:33:10.0659 2572 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:33:10.0659 2572 WPCSvc - ok
20:33:10.0699 2572 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:33:10.0699 2572 WPDBusEnum - ok
20:33:10.0739 2572 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:33:10.0739 2572 ws2ifsl - ok
20:33:10.0749 2572 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\System32\wscsvc.dll
20:33:10.0759 2572 wscsvc - ok
20:33:10.0759 2572 WSearch - ok
20:33:10.0849 2572 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
20:33:10.0899 2572 wuauserv - ok
20:33:10.0989 2572 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:33:10.0989 2572 WudfPf - ok
20:33:11.0149 2572 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:33:11.0149 2572 WUDFRd - ok
20:33:11.0369 2572 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:33:11.0369 2572 wudfsvc - ok
20:33:11.0499 2572 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
20:33:11.0499 2572 WwanSvc - ok
20:33:11.0749 2572 [ B07C5B7EFDF936FF93D4F540938725BE ] yukonw7 C:\Windows\system32\DRIVERS\yk62x86.sys
20:33:11.0749 2572 yukonw7 - ok
20:33:11.0784 2572 ================ Scan global ===============================
20:33:11.0914 2572 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
20:33:12.0079 2572 [ 48CB4FDBCAAEAC7BCE2F5941545FF071 ] C:\Windows\system32\winsrv.dll
20:33:12.0154 2572 [ 48CB4FDBCAAEAC7BCE2F5941545FF071 ] C:\Windows\system32\winsrv.dll
20:33:12.0249 2572 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
20:33:12.0539 2572 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
20:33:12.0544 2572 [Global] - ok
20:33:12.0544 2572 ================ Scan MBR ==================================
20:33:12.0589 2572 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:33:13.0164 2572 \Device\Harddisk0\DR0 - ok
20:33:13.0164 2572 [ 65E858A8A0293BE11A920B0BC99D695E ] \Device\Harddisk1\DR1
20:33:13.0644 2572 \Device\Harddisk1\DR1 - ok
20:33:13.0644 2572 ================ Scan VBR ==================================
20:33:13.0644 2572 [ 33E90EDCF431C0FFEAD2E68E038868A8 ] \Device\Harddisk0\DR0\Partition1
20:33:13.0684 2572 \Device\Harddisk0\DR0\Partition1 - ok
20:33:13.0714 2572 [ EAE899A80A4ABC0FB4E76C7CE614536E ] \Device\Harddisk0\DR0\Partition2
20:33:13.0724 2572 \Device\Harddisk0\DR0\Partition2 - ok
20:33:13.0724 2572 [ D444CA44AC9A13D97A156DA4D386DA42 ] \Device\Harddisk1\DR1\Partition1
20:33:13.0724 2572 \Device\Harddisk1\DR1\Partition1 - ok
20:33:13.0734 2572 ============================================================
20:33:13.0734 2572 Scan finished
20:33:13.0734 2572 ============================================================
20:33:13.0734 1116 Detected object count: 0
20:33:13.0734 1116 Actual detected object count: 0
20:33:17.0065 3392 Deinitialize success

[/log]
[log]23:35:00.0616 3588 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
23:35:00.0631 3588 ============================================================
23:35:00.0631 3588 Current date / time: 2012/12/11 23:35:00.0631
23:35:00.0631 3588 SystemInfo:
23:35:00.0631 3588
23:35:00.0631 3588 OS Version: 6.1.7601 ServicePack: 1.0
23:35:00.0631 3588 Product type: Workstation
23:35:00.0631 3588 ComputerName: ONLYMINE
23:35:00.0631 3588 UserName: jacec
23:35:00.0631 3588 Windows directory: C:\Windows
23:35:00.0631 3588 System windows directory: C:\Windows
23:35:00.0631 3588 Processor architecture: Intel x86
23:35:00.0631 3588 Number of processors: 2
23:35:00.0631 3588 Page size: 0x1000
23:35:00.0631 3588 Boot type: Normal boot
23:35:00.0631 3588 ============================================================
23:35:01.0926 3588 Drive \Device\Harddisk0\DR0 - Size: 0x5D27216000 (372.61 Gb), SectorSize: 0x200, Cylinders: 0xBE01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
23:35:01.0926 3588 ============================================================
23:35:01.0926 3588 \Device\Harddisk0\DR0:
23:35:01.0926 3588 MBR partitions:
23:35:01.0926 3588 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xCAF05FF
23:35:01.0942 3588 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xCAF067D, BlocksNum 0x21E47644
23:35:01.0942 3588 ============================================================
23:35:01.0942 3588 C: <-> \Device\Harddisk0\DR0\Partition1
23:35:01.0957 3588 D: <-> \Device\Harddisk0\DR0\Partition2
23:35:01.0957 3588 ============================================================
23:35:01.0957 3588 Initialize success
23:35:01.0957 3588 ============================================================
23:35:09.0913 3440 ============================================================
23:35:09.0913 3440 Scan started
23:35:09.0913 3440 Mode: Manual;
23:35:09.0913 3440 ============================================================
23:35:10.0506 3440 ================ Scan system memory ========================
23:35:10.0506 3440 System memory - ok
23:35:10.0506 3440 ================ Scan services =============================
23:35:10.0709 3440 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
23:35:10.0709 3440 1394ohci - ok
23:35:10.0771 3440 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
23:35:10.0771 3440 ACPI - ok
23:35:10.0802 3440 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
23:35:10.0802 3440 AcpiPmi - ok
23:35:10.0865 3440 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
23:35:10.0880 3440 adp94xx - ok
23:35:10.0912 3440 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
23:35:10.0912 3440 adpahci - ok
23:35:10.0958 3440 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
23:35:10.0958 3440 adpu320 - ok
23:35:11.0005 3440 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:35:11.0005 3440 AeLookupSvc - ok
23:35:11.0068 3440 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
23:35:11.0068 3440 AFD - ok
23:35:11.0083 3440 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
23:35:11.0114 3440 agp440 - ok
23:35:11.0130 3440 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
23:35:11.0146 3440 aic78xx - ok
23:35:11.0177 3440 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
23:35:11.0177 3440 ALG - ok
23:35:11.0224 3440 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
23:35:11.0270 3440 aliide - ok
23:35:11.0333 3440 [ B19505648F033393E907E2E419FDE8B3 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
23:35:11.0348 3440 AMD External Events Utility - ok
23:35:11.0364 3440 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
23:35:11.0395 3440 amdagp - ok
23:35:11.0411 3440 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
23:35:11.0411 3440 amdide - ok
23:35:11.0458 3440 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
23:35:11.0458 3440 AmdK8 - ok
23:35:11.0473 3440 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
23:35:11.0473 3440 AmdPPM - ok
23:35:11.0504 3440 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
23:35:11.0520 3440 amdsata - ok
23:35:11.0536 3440 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
23:35:11.0551 3440 amdsbs - ok
23:35:11.0567 3440 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
23:35:11.0582 3440 amdxata - ok
23:35:11.0614 3440 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
23:35:11.0645 3440 AppID - ok
23:35:11.0692 3440 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
23:35:11.0692 3440 AppIDSvc - ok
23:35:11.0723 3440 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
23:35:11.0723 3440 Appinfo - ok
23:35:11.0863 3440 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
23:35:11.0863 3440 Apple Mobile Device - ok
23:35:11.0894 3440 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
23:35:11.0910 3440 AppMgmt - ok
23:35:11.0957 3440 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
23:35:11.0957 3440 arc - ok
23:35:11.0972 3440 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
23:35:12.0019 3440 arcsas - ok
23:35:12.0035 3440 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:35:12.0050 3440 AsyncMac - ok
23:35:12.0082 3440 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
23:35:12.0082 3440 atapi - ok
23:35:12.0331 3440 [ 04F09923A393E4E0E8453A8F78361E73 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
23:35:12.0362 3440 atikmdag - ok
23:35:12.0409 3440 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:35:12.0409 3440 AudioEndpointBuilder - ok
23:35:12.0440 3440 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
23:35:12.0440 3440 Audiosrv - ok
23:35:12.0487 3440 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
23:35:12.0503 3440 AxInstSV - ok
23:35:12.0565 3440 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
23:35:12.0565 3440 b06bdrv - ok
23:35:12.0596 3440 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
23:35:12.0596 3440 b57nd60x - ok
23:35:12.0643 3440 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
23:35:12.0643 3440 BDESVC - ok
23:35:12.0659 3440 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
23:35:12.0659 3440 Beep - ok
23:35:12.0690 3440 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
23:35:12.0690 3440 BFE - ok
23:35:12.0768 3440 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll
23:35:12.0784 3440 BITS - ok
23:35:12.0862 3440 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
23:35:12.0862 3440 blbdrive - ok
23:35:12.0971 3440 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
23:35:12.0986 3440 Bonjour Service - ok
23:35:13.0064 3440 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:35:13.0064 3440 bowser - ok
23:35:13.0080 3440 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:35:13.0080 3440 BrFiltLo - ok
23:35:13.0127 3440 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:35:13.0127 3440 BrFiltUp - ok
23:35:13.0174 3440 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
23:35:13.0174 3440 Browser - ok
23:35:13.0408 3440 [ 52C724DAC8ADDC50F593E331A9863979 ] Browser Defender Update Service C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe
23:35:13.0408 3440 Browser Defender Update Service - ok
23:35:13.0454 3440 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
23:35:13.0454 3440 Brserid - ok
23:35:13.0486 3440 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
23:35:13.0486 3440 BrSerWdm - ok
23:35:13.0501 3440 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
23:35:13.0501 3440 BrUsbMdm - ok
23:35:13.0501 3440 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
23:35:13.0517 3440 BrUsbSer - ok
23:35:13.0564 3440 [ 2865A5C8E98C70C605F417908CEBB3A4 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
23:35:13.0626 3440 BthEnum - ok
23:35:13.0642 3440 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
23:35:13.0642 3440 BTHMODEM - ok
23:35:13.0673 3440 [ AD1872E5829E8A2C3B5B4B641C3EAB0E ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
23:35:13.0673 3440 BthPan - ok
23:35:13.0735 3440 [ 1153DE2E4F5941E10C399CB5592F78A1 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
23:35:13.0751 3440 BTHPORT - ok
23:35:13.0798 3440 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
23:35:13.0798 3440 bthserv - ok
23:35:13.0844 3440 [ C81E9413A25A439F436B1D4B6A0CF9E9 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
23:35:13.0891 3440 BTHUSB - ok
23:35:13.0922 3440 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:35:13.0922 3440 cdfs - ok
23:35:13.0985 3440 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
23:35:13.0985 3440 cdrom - ok
23:35:14.0047 3440 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
23:35:14.0047 3440 CertPropSvc - ok
23:35:14.0078 3440 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
23:35:14.0078 3440 circlass - ok
23:35:14.0110 3440 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
23:35:14.0110 3440 CLFS - ok
23:35:14.0188 3440 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:35:14.0203 3440 clr_optimization_v2.0.50727_32 - ok
23:35:14.0266 3440 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:35:14.0266 3440 clr_optimization_v4.0.30319_32 - ok
23:35:14.0312 3440 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
23:35:14.0344 3440 CmBatt - ok
23:35:14.0359 3440 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
23:35:14.0375 3440 cmdide - ok
23:35:14.0422 3440 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
23:35:14.0422 3440 CNG - ok
23:35:14.0453 3440 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
23:35:14.0453 3440 Compbatt - ok
23:35:14.0500 3440 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
23:35:14.0500 3440 CompositeBus - ok
23:35:14.0531 3440 COMSysApp - ok
23:35:14.0546 3440 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
23:35:14.0546 3440 crcdisk - ok
23:35:14.0609 3440 [ 96C0E38905CFD788313BE8E11DAE3F2F ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:35:14.0609 3440 CryptSvc - ok
23:35:14.0656 3440 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys
23:35:14.0656 3440 CSC - ok
23:35:14.0702 3440 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll
23:35:14.0718 3440 CscService - ok
23:35:14.0765 3440 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
23:35:14.0780 3440 DcomLaunch - ok
23:35:14.0921 3440 [ 9AC09551F559A1EEAFC0B19F624C233E ] DCService.exe C:\ProgramData\DatacardService\DCService.exe
23:35:14.0921 3440 DCService.exe - ok
23:35:14.0968 3440 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
23:35:14.0983 3440 defragsvc - ok
23:35:15.0030 3440 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:35:15.0061 3440 DfsC - ok
23:35:15.0124 3440 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
23:35:15.0124 3440 Dhcp - ok
23:35:15.0170 3440 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
23:35:15.0217 3440 discache - ok
23:35:15.0248 3440 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
23:35:15.0248 3440 Disk - ok
23:35:15.0295 3440 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:35:15.0295 3440 Dnscache - ok
23:35:15.0326 3440 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
23:35:15.0342 3440 dot3svc - ok
23:35:15.0389 3440 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
23:35:15.0389 3440 DPS - ok
23:35:15.0436 3440 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:35:15.0436 3440 drmkaud - ok
23:35:15.0498 3440 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:35:15.0623 3440 DXGKrnl - ok
23:35:15.0701 3440 [ AF82DC664E3D8E2CBA3B95E68F6448A7 ] eamon C:\Windows\system32\DRIVERS\eamon.sys
23:35:15.0701 3440 eamon - ok
23:35:15.0763 3440 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
23:35:15.0763 3440 EapHost - ok
23:35:15.0935 3440 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
23:35:15.0982 3440 ebdrv - ok
23:35:16.0013 3440 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
23:35:16.0013 3440 EFS - ok
23:35:16.0028 3440 [ 686A799C1BF1B18941994DAF9F45DB06 ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
23:35:16.0028 3440 ehdrv - ok
23:35:16.0106 3440 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
23:35:16.0122 3440 ehRecvr - ok
23:35:16.0153 3440 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
23:35:16.0169 3440 ehSched - ok
23:35:16.0262 3440 [ 9329BA45C8B97485926A171E34C2ABB8 ] EhttpSrv C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
23:35:16.0262 3440 EhttpSrv - ok
23:35:16.0340 3440 [ 3543C6195D5ED4EDA0316D3E1BA0E6EE ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
23:35:16.0356 3440 ekrn - ok
23:35:16.0418 3440 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
23:35:16.0434 3440 elxstor - ok
23:35:16.0465 3440 [ 8700EADC8BDFA27D948FCC43EE0AE434 ] epfwwfpr C:\Windows\system32\DRIVERS\epfwwfpr.sys
23:35:16.0465 3440 epfwwfpr - ok
23:35:16.0496 3440 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
23:35:16.0512 3440 ErrDev - ok
23:35:16.0574 3440 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
23:35:16.0590 3440 EventSystem - ok
23:35:16.0652 3440 [ 95BCB4321962028799EB2EA53319BB0C ] ewusbnet C:\Windows\system32\DRIVERS\ewusbnet.sys
23:35:16.0684 3440 ewusbnet - ok
23:35:16.0699 3440 [ 57C171EA22F0A7F068FCB0CAEDD1E8E7 ] ew_hwusbdev C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
23:35:16.0699 3440 ew_hwusbdev - ok
23:35:16.0715 3440 [ 61A973F60E94A551BA7B15F3460444FB ] ew_usbenumfilter C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys
23:35:16.0715 3440 ew_usbenumfilter - ok
23:35:16.0730 3440 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
23:35:16.0730 3440 exfat - ok
23:35:16.0762 3440 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:35:16.0762 3440 fastfat - ok
23:35:16.0808 3440 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
23:35:16.0824 3440 Fax - ok
23:35:16.0855 3440 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
23:35:16.0855 3440 fdc - ok
23:35:16.0871 3440 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
23:35:16.0871 3440 fdPHost - ok
23:35:16.0871 3440 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
23:35:16.0886 3440 FDResPub - ok
23:35:16.0886 3440 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:35:16.0902 3440 FileInfo - ok
23:35:16.0918 3440 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:35:16.0933 3440 Filetrace - ok
23:35:16.0949 3440 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
23:35:16.0949 3440 flpydisk - ok
23:35:16.0996 3440 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
23:35:16.0996 3440 FltMgr - ok
23:35:17.0074 3440 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
23:35:17.0089 3440 FontCache - ok
23:35:17.0167 3440 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
23:35:17.0183 3440 FontCache3.0.0.0 - ok
23:35:17.0198 3440 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
23:35:17.0198 3440 FsDepends - ok
23:35:17.0245 3440 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
23:35:17.0245 3440 Fs_Rec - ok
23:35:17.0308 3440 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
23:35:17.0354 3440 fvevol - ok
23:35:17.0401 3440 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
23:35:17.0401 3440 gagp30kx - ok
23:35:17.0432 3440 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:35:17.0448 3440 GEARAspiWDM - ok
23:35:17.0495 3440 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
23:35:17.0510 3440 gpsvc - ok
23:35:17.0510 3440 guno - ok
23:35:17.0588 3440 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
23:35:17.0588 3440 gupdate - ok
23:35:17.0604 3440 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
23:35:17.0604 3440 gupdatem - ok
23:35:17.0620 3440 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
23:35:17.0651 3440 hcw85cir - ok
23:35:17.0713 3440 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:35:17.0729 3440 HdAudAddService - ok
23:35:17.0776 3440 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
23:35:17.0791 3440 HDAudBus - ok
23:35:17.0838 3440 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
23:35:17.0838 3440 HidBatt - ok
23:35:17.0869 3440 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
23:35:17.0869 3440 HidBth - ok
23:35:17.0900 3440 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
23:35:17.0916 3440 HidIr - ok
23:35:17.0932 3440 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
23:35:17.0932 3440 hidserv - ok
23:35:17.0963 3440 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\drivers\hidusb.sys
23:35:17.0994 3440 HidUsb - ok
23:35:18.0025 3440 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
23:35:18.0025 3440 hkmsvc - ok
23:35:18.0056 3440 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:35:18.0072 3440 HomeGroupListener - ok
23:35:18.0119 3440 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:35:18.0119 3440 HomeGroupProvider - ok
23:35:18.0166 3440 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
23:35:18.0228 3440 HpSAMD - ok
23:35:18.0290 3440 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
23:35:18.0353 3440 HTTP - ok
23:35:18.0384 3440 [ 92548543D50C9BCCDB31FFB7EC39249D ] huawei_enumerator C:\Windows\system32\DRIVERS\ew_jubusenum.sys
23:35:18.0384 3440 huawei_enumerator - ok
23:35:18.0462 3440 [ A89423D0132C8AB69BA621B6CE191714 ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
23:35:18.0462 3440 hwdatacard - ok
23:35:18.0493 3440 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
23:35:18.0493 3440 hwpolicy - ok
23:35:18.0524 3440 hwusbfake - ok
23:35:18.0587 3440 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
23:35:18.0587 3440 i8042prt - ok
23:35:18.0618 3440 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
23:35:18.0618 3440 iaStorV - ok
23:35:18.0696 3440 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
23:35:18.0712 3440 idsvc - ok
23:35:18.0743 3440 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
23:35:18.0743 3440 iirsp - ok
23:35:18.0790 3440 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
23:35:18.0805 3440 IKEEXT - ok
23:35:18.0821 3440 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
23:35:18.0868 3440 intelide - ok
23:35:18.0899 3440 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
23:35:18.0914 3440 intelppm - ok
23:35:18.0961 3440 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
23:35:18.0961 3440 IPBusEnum - ok
23:35:18.0992 3440 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:35:19.0039 3440 IpFilterDriver - ok
23:35:19.0102 3440 [ 58F67245D041FBE7AF88F4EAF79DF0FA ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
23:35:19.0102 3440 iphlpsvc - ok
23:35:19.0148 3440 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
23:35:19.0164 3440 IPMIDRV - ok
23:35:19.0180 3440 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
23:35:19.0242 3440 IPNAT - ok
23:35:19.0304 3440 [ EF1C51222117B37AFBFF8F4642EA8C62 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
23:35:19.0320 3440 iPod Service - ok
23:35:19.0382 3440 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
23:35:19.0414 3440 IRENUM - ok
23:35:19.0445 3440 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
23:35:19.0476 3440 isapnp - ok
23:35:19.0492 3440 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
23:35:19.0492 3440 iScsiPrt - ok
23:35:19.0523 3440 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
23:35:19.0538 3440 kbdclass - ok
23:35:19.0554 3440 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
23:35:19.0554 3440 kbdhid - ok
23:35:19.0570 3440 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
23:35:19.0570 3440 KeyIso - ok
23:35:19.0601 3440 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
23:35:19.0601 3440 KSecDD - ok
23:35:19.0632 3440 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
23:35:19.0632 3440 KSecPkg - ok
23:35:19.0694 3440 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
23:35:19.0694 3440 KtmRm - ok
23:35:19.0741 3440 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
23:35:19.0741 3440 LanmanServer - ok
23:35:19.0757 3440 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:35:19.0772 3440 LanmanWorkstation - ok
23:35:19.0819 3440 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
23:35:19.0819 3440 lltdio - ok
23:35:19.0850 3440 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
23:35:19.0850 3440 lltdsvc - ok
23:35:19.0866 3440 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
23:35:19.0882 3440 lmhosts - ok
23:35:19.0913 3440 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
23:35:19.0913 3440 LSI_FC - ok
23:35:19.0928 3440 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
23:35:19.0960 3440 LSI_SAS - ok
23:35:19.0975 3440 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:35:19.0975 3440 LSI_SAS2 - ok
23:35:19.0991 3440 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:35:20.0038 3440 LSI_SCSI - ok
23:35:20.0053 3440 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
23:35:20.0069 3440 luafv - ok
23:35:20.0100 3440 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
23:35:20.0100 3440 Mcx2Svc - ok
23:35:20.0131 3440 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
23:35:20.0162 3440 megasas - ok
23:35:20.0178 3440 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
23:35:20.0178 3440 MegaSR - ok
23:35:20.0209 3440 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
23:35:20.0209 3440 MMCSS - ok
23:35:20.0272 3440 [ 1EE12E08960682DDF05F6C3FDCCBC713 ] Mobile Partner. RunOuc C:\Program Files\Mobile Partner\UpdateDog\ouc.exe
23:35:20.0287 3440 Mobile Partner. RunOuc - ok
23:35:20.0303 3440 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
23:35:20.0350 3440 Modem - ok
23:35:20.0381 3440 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
23:35:20.0381 3440 monitor - ok
23:35:20.0428 3440 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\drivers\mouclass.sys
23:35:20.0428 3440 mouclass - ok
23:35:20.0459 3440 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
23:35:20.0490 3440 mouhid - ok
23:35:20.0521 3440 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
23:35:20.0537 3440 mountmgr - ok
23:35:20.0677 3440 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
23:35:20.0693 3440 MozillaMaintenance - ok
23:35:20.0708 3440 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
23:35:20.0724 3440 mpio - ok
23:35:20.0740 3440 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
23:35:20.0740 3440 mpsdrv - ok
23:35:20.0818 3440 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
23:35:20.0833 3440 MpsSvc - ok
23:35:20.0864 3440 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
23:35:20.0864 3440 MRxDAV - ok
23:35:20.0927 3440 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
23:35:20.0927 3440 mrxsmb - ok
23:35:20.0989 3440 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:35:21.0036 3440 mrxsmb10 - ok
23:35:21.0052 3440 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:35:21.0067 3440 mrxsmb20 - ok
23:35:21.0083 3440 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
23:35:21.0083 3440 msahci - ok
23:35:21.0114 3440 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
23:35:21.0130 3440 msdsm - ok
23:35:21.0161 3440 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
23:35:21.0161 3440 MSDTC - ok
23:35:21.0208 3440 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
23:35:21.0208 3440 Msfs - ok
23:35:21.0223 3440 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
23:35:21.0223 3440 mshidkmdf - ok
23:35:21.0239 3440 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
23:35:21.0239 3440 msisadrv - ok
23:35:21.0286 3440 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
23:35:21.0286 3440 MSiSCSI - ok
23:35:21.0301 3440 msiserver - ok
23:35:21.0317 3440 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
23:35:21.0317 3440 MSKSSRV - ok
23:35:21.0317 3440 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
23:35:21.0317 3440 MSPCLOCK - ok
23:35:21.0332 3440 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
23:35:21.0332 3440 MSPQM - ok
23:35:21.0348 3440 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
23:35:21.0348 3440 MsRPC - ok
23:35:21.0379 3440 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
23:35:21.0379 3440 mssmbios - ok
23:35:21.0395 3440 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
23:35:21.0395 3440 MSTEE - ok
23:35:21.0410 3440 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
23:35:21.0426 3440 MTConfig - ok
23:35:21.0442 3440 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
23:35:21.0442 3440 Mup - ok
23:35:21.0504 3440 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
23:35:21.0520 3440 napagent - ok
23:35:21.0582 3440 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
23:35:21.0598 3440 NativeWifiP - ok
23:35:21.0676 3440 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\Windows\system32\drivers\ndis.sys
23:35:21.0722 3440 NDIS - ok
23:35:21.0722 3440 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
23:35:21.0722 3440 NdisCap - ok
23:35:21.0754 3440 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
23:35:21.0754 3440 NdisTapi - ok
23:35:21.0785 3440 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
23:35:21.0785 3440 Ndisuio - ok
23:35:21.0832 3440 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
23:35:21.0832 3440 NdisWan - ok
23:35:21.0847 3440 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
23:35:21.0847 3440 NDProxy - ok
23:35:21.0878 3440 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
23:35:21.0910 3440 NetBIOS - ok
23:35:21.0956 3440 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
23:35:21.0956 3440 NetBT - ok
23:35:21.0988 3440 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
23:35:21.0988 3440 Netlogon - ok
23:35:22.0050 3440 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
23:35:22.0066 3440 Netman - ok
23:35:22.0097 3440 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
23:35:22.0097 3440 netprofm - ok
23:35:22.0112 3440 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
23:35:22.0112 3440 NetTcpPortSharing - ok
23:35:22.0300 3440 [ 58218EC6B61B1169CF54AAB0D00F5FE2 ] netw5v32 C:\Windows\system32\DRIVERS\netw5v32.sys
23:35:22.0331 3440 netw5v32 - ok
23:35:22.0378 3440 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
23:35:22.0378 3440 nfrd960 - ok
23:35:22.0424 3440 [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc C:\Windows\System32\nlasvc.dll
23:35:22.0424 3440 NlaSvc - ok
23:35:22.0440 3440 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
23:35:22.0456 3440 Npfs - ok
23:35:22.0471 3440 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
23:35:22.0471 3440 nsi - ok
23:35:22.0487 3440 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
23:35:22.0502 3440 nsiproxy - ok
23:35:22.0596 3440 [ 0D87503986BB3DFED58E343FE39DDE13 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
23:35:22.0612 3440 Ntfs - ok
23:35:22.0627 3440 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
23:35:22.0627 3440 Null - ok
23:35:22.0690 3440 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
23:35:22.0721 3440 nvraid - ok
23:35:22.0736 3440 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
23:35:22.0752 3440 nvstor - ok
23:35:22.0768 3440 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
23:35:22.0783 3440 nv_agp - ok
23:35:22.0783 3440 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
23:35:22.0783 3440 ohci1394 - ok
23:35:22.0861 3440 [ DA345DE3B450E9E1691E7B9956D8FFC3 ] OMSI download service C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
23:35:22.0861 3440 OMSI download service - ok
23:35:22.0908 3440 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
23:35:22.0908 3440 p2pimsvc - ok
23:35:22.0939 3440 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
23:35:22.0939 3440 p2psvc - ok
23:35:22.0986 3440 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
23:35:23.0017 3440 Parport - ok
23:35:23.0048 3440 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
23:35:23.0048 3440 partmgr - ok
23:35:23.0080 3440 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
23:35:23.0080 3440 Parvdm - ok
23:35:23.0111 3440 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
23:35:23.0111 3440 PcaSvc - ok
23:35:23.0158 3440 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
23:35:23.0158 3440 pci - ok
23:35:23.0189 3440 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
23:35:23.0204 3440 pciide - ok
23:35:23.0236 3440 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
23:35:23.0251 3440 pcmcia - ok
23:35:23.0298 3440 [ 9DCE45B0DC51EBB7CD7063F8C3B086D0 ] PCTBD C:\Windows\system32\Drivers\PCTBD.sys
23:35:23.0298 3440 PCTBD - ok
23:35:23.0314 3440 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
23:35:23.0345 3440 pcw - ok
23:35:23.0376 3440 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
23:35:23.0392 3440 PEAUTH - ok
23:35:23.0485 3440 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
23:35:23.0501 3440 PeerDistSvc - ok
23:35:23.0626 3440 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
23:35:23.0641 3440 pla - ok
23:35:23.0704 3440 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
23:35:23.0704 3440 PlugPlay - ok
23:35:23.0719 3440 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
23:35:23.0719 3440 PNRPAutoReg - ok
23:35:23.0750 3440 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
23:35:23.0750 3440 PNRPsvc - ok
23:35:23.0782 3440 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
23:35:23.0782 3440 PolicyAgent - ok
23:35:23.0797 3440 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
23:35:23.0797 3440 Power - ok
23:35:23.0860 3440 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
23:35:23.0860 3440 PptpMiniport - ok
23:35:23.0875 3440 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
23:35:23.0906 3440 Processor - ok
23:35:23.0969 3440 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
23:35:23.0969 3440 ProfSvc - ok
23:35:24.0000 3440 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
23:35:24.0000 3440 ProtectedStorage - ok
23:35:24.0031 3440 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
23:35:24.0031 3440 Psched - ok
23:35:24.0109 3440 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
23:35:24.0125 3440 ql2300 - ok
23:35:24.0140 3440 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
23:35:24.0140 3440 ql40xx - ok
23:35:24.0172 3440 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
23:35:24.0187 3440 QWAVE - ok
23:35:24.0203 3440 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
23:35:24.0203 3440 QWAVEdrv - ok
23:35:24.0234 3440 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
23:35:24.0234 3440 RasAcd - ok
23:35:24.0281 3440 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
23:35:24.0281 3440 RasAgileVpn - ok
23:35:24.0296 3440 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
23:35:24.0296 3440 RasAuto - ok
23:35:24.0343 3440 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
23:35:24.0359 3440 Rasl2tp - ok
23:35:24.0437 3440 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
23:35:24.0437 3440 RasMan - ok
23:35:24.0452 3440 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
23:35:24.0452 3440 RasPppoe - ok
23:35:24.0484 3440 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
23:35:24.0484 3440 RasSstp - ok
23:35:24.0499 3440 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
23:35:24.0546 3440 rdbss - ok
23:35:24.0562 3440 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
23:35:24.0577 3440 rdpbus - ok
23:35:24.0608 3440 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
23:35:24.0608 3440 RDPCDD - ok
23:35:24.0624 3440 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
23:35:24.0624 3440 RDPDR - ok
23:35:24.0686 3440 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
23:35:24.0686 3440 RDPENCDD - ok
23:35:24.0702 3440 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
23:35:24.0702 3440 RDPREFMP - ok
23:35:24.0796 3440 [ 68A0387F58E226DEEE23D9715955572A ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
23:35:24.0827 3440 RdpVideoMiniport - ok
23:35:24.0858 3440 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
23:35:24.0889 3440 RDPWD - ok
23:35:24.0936 3440 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
23:35:24.0936 3440 rdyboost - ok
23:35:24.0983 3440 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
23:35:24.0983 3440 RemoteAccess - ok
23:35:25.0014 3440 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
23:35:25.0030 3440 RemoteRegistry - ok
23:35:25.0045 3440 [ CB928D9E6DAF51879DD6BA8D02F01321 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
23:35:25.0061 3440 RFCOMM - ok
23:35:25.0076 3440 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
23:35:25.0092 3440 RpcEptMapper - ok
23:35:25.0108 3440 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
23:35:25.0108 3440 RpcLocator - ok
23:35:25.0139 3440 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
23:35:25.0139 3440 RpcSs - ok
23:35:25.0186 3440 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
23:35:25.0186 3440 rspndr - ok
23:35:25.0248 3440 [ 1C5C2CB892553D2CF3F45A4BB323FCD6 ] s1018bus C:\Windows\system32\DRIVERS\s1018bus.sys
23:35:25.0264 3440 s1018bus - ok
23:35:25.0310 3440 [ 38F5EA219593F19B6B3A1B9C169E3B61 ] s1018mdfl C:\Windows\system32\DRIVERS\s1018mdfl.sys
23:35:25.0357 3440 s1018mdfl - ok
23:35:25.0373 3440 [ 666AF6B64FC7DF92D3CA4819EA91631D ] s1018mdm C:\Windows\system32\DRIVERS\s1018mdm.sys
23:35:25.0373 3440 s1018mdm - ok
23:35:25.0373 3440 [ F4CEDA6E2DDFF2AF8BD745615A7CA9C0 ] s1018mgmt C:\Windows\system32\DRIVERS\s1018mgmt.sys
23:35:25.0388 3440 s1018mgmt - ok
23:35:25.0388 3440 [ 3622D9FF2253DCBE885B10736609A4CA ] s1018nd5 C:\Windows\system32\DRIVERS\s1018nd5.sys
23:35:25.0404 3440 s1018nd5 - ok
23:35:25.0420 3440 [ 49431EFDA842B474531C29FFAE9F5D09 ] s1018obex C:\Windows\system32\DRIVERS\s1018obex.sys
23:35:25.0420 3440 s1018obex - ok
23:35:25.0435 3440 [ AC6B514CB4474F4C867D7CDC9CD54F05 ] s1018unic C:\Windows\system32\DRIVERS\s1018unic.sys
23:35:25.0451 3440 s1018unic - ok
23:35:25.0513 3440 [ D0EEDC88876B20D42157CDCCA3E647F3 ] s1039bus C:\Windows\system32\DRIVERS\s1039bus.sys
23:35:25.0560 3440 s1039bus - ok
23:35:25.0607 3440 [ 7B35091A7BB597C86262C589B0B57D06 ] s1039mdfl C:\Windows\system32\DRIVERS\s1039mdfl.sys
23:35:25.0607 3440 s1039mdfl - ok
23:35:25.0622 3440 [ 4CB1AB13C9813CBF3E4C6406F8043EC2 ] s1039mdm C:\Windows\system32\DRIVERS\s1039mdm.sys
23:35:25.0669 3440 s1039mdm - ok
23:35:25.0685 3440 [ 2649CA09585A7531126DCC116AD1F88C ] s1039mgmt C:\Windows\system32\DRIVERS\s1039mgmt.sys
23:35:25.0685 3440 s1039mgmt - ok
23:35:25.0732 3440 [ 6D3F549EFD6DAEDD7D12F3DE2175053F ] s1039nd5 C:\Windows\system32\DRIVERS\s1039nd5.sys
23:35:25.0732 3440 s1039nd5 - ok
23:35:25.0732 3440 [ 305E3E3ACA0037AF2E2C1B50A383C91B ] s1039obex C:\Windows\system32\DRIVERS\s1039obex.sys
23:35:25.0763 3440 s1039obex - ok
23:35:25.0778 3440 [ 7DD02A58277C84C043442561589914F4 ] s1039unic C:\Windows\system32\DRIVERS\s1039unic.sys
23:35:25.0778 3440 s1039unic - ok
23:35:25.0810 3440 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
23:35:25.0810 3440 s3cap - ok
23:35:25.0825 3440 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
23:35:25.0825 3440 SamSs - ok
23:35:25.0856 3440 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
23:35:25.0872 3440 sbp2port - ok
23:35:25.0888 3440 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
23:35:25.0903 3440 SCardSvr - ok
23:35:25.0919 3440 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
23:35:25.0919 3440 scfilter - ok
23:35:25.0981 3440 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
23:35:25.0997 3440 Schedule - ok
23:35:26.0028 3440 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
23:35:26.0028 3440 SCPolicySvc - ok
23:35:26.0090 3440 [ 0328BE1C7F1CBA23848179F8762E391C ] sdbus C:\Windows\system32\drivers\sdbus.sys
23:35:26.0137 3440 sdbus - ok
23:35:26.0168 3440 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
23:35:26.0168 3440 SDRSVC - ok
23:35:26.0200 3440 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
23:35:26.0215 3440 secdrv - ok
23:35:26.0262 3440 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
23:35:26.0262 3440 seclogon - ok
23:35:26.0293 3440 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
23:35:26.0309 3440 SENS - ok
23:35:26.0340 3440 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
23:35:26.0340 3440 SensrSvc - ok
23:35:26.0356 3440 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
23:35:26.0356 3440 Serenum - ok
23:35:26.0387 3440 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
23:35:26.0387 3440 Serial - ok
23:35:26.0434 3440 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
23:35:26.0434 3440 sermouse - ok
23:35:26.0465 3440 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
23:35:26.0480 3440 SessionEnv - ok
23:35:26.0527 3440 [ 8B7C1768D2CDE2E02E09A66563DDFD16 ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
23:35:26.0527 3440 SFEP - ok
23:35:26.0558 3440 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
23:35:26.0590 3440 sffdisk - ok
23:35:26.0605 3440 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
23:35:26.0605 3440 sffp_mmc - ok
23:35:26.0636 3440 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
23:35:26.0636 3440 sffp_sd - ok
23:35:26.0668 3440 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
23:35:26.0668 3440 sfloppy - ok
23:35:26.0714 3440 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
23:35:26.0730 3440 SharedAccess - ok
23:35:26.0746 3440 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:35:26.0761 3440 ShellHWDetection - ok
23:35:26.0777 3440 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
23:35:26.0777 3440 sisagp - ok
23:35:26.0808 3440 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
23:35:26.0855 3440 SiSRaid2 - ok
23:35:26.0870 3440 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
23:35:26.0870 3440 SiSRaid4 - ok
23:35:26.0917 3440 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
23:35:26.0933 3440 SkypeUpdate - ok
23:35:26.0980 3440 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
23:35:27.0011 3440 Smb - ok
23:35:27.0073 3440 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
23:35:27.0089 3440 SNMPTRAP - ok
23:35:27.0104 3440 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
23:35:27.0104 3440 spldr - ok
23:35:27.0167 3440 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe
23:35:27.0182 3440 Spooler - ok
23:35:27.0338 3440 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
23:35:27.0354 3440 sppsvc - ok
23:35:27.0385 3440 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
23:35:27.0385 3440 sppuinotify - ok
23:35:27.0432 3440 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
23:35:27.0432 3440 srv - ok
23:35:27.0463 3440 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
23:35:27.0463 3440 srv2 - ok
23:35:27.0604 3440 [ E02D7ACFA0795C77CAF6D8E75F064484 ] SrvAd C:\Users\jacec\AppData\Roaming\Microsoft\Windows\AdvService.exe
23:35:27.0619 3440 SrvAd - ok
23:35:27.0682 3440 [ E00FDFAFF025E94F9821153750C35A6D ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL3.SYS
23:35:27.0682 3440 SrvHsfHDA - ok
23:35:27.0744 3440 [ CEB4E3B6890E1E42DCA6694D9E59E1A0 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV3.SYS
23:35:27.0760 3440 SrvHsfV92 - ok
23:35:27.0791 3440 [ BC0C7EA89194C299F051C24119000E17 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
23:35:27.0806 3440 SrvHsfWinac - ok
23:35:27.0838 3440 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
23:35:27.0838 3440 srvnet - ok
23:35:27.0884 3440 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
23:35:27.0884 3440 SSDPSRV - ok
23:35:27.0900 3440 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
23:35:27.0900 3440 SstpSvc - ok
23:35:27.0931 3440 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
23:35:27.0962 3440 stexstor - ok
23:35:28.0009 3440 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
23:35:28.0009 3440 StiSvc - ok
23:35:28.0040 3440 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
23:35:28.0056 3440 storflt - ok
23:35:28.0087 3440 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys
23:35:28.0087 3440 storvsc - ok
23:35:28.0118 3440 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
23:35:28.0134 3440 swenum - ok
23:35:28.0150 3440 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
23:35:28.0150 3440 swprv - ok
23:35:28.0196 3440 Synth3dVsc - ok
23:35:28.0290 3440 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
23:35:28.0306 3440 SysMain - ok
23:35:28.0337 3440 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:35:28.0337 3440 TabletInputService - ok
23:35:28.0384 3440 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
23:35:28.0384 3440 TapiSrv - ok
23:35:28.0430 3440 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
23:35:28.0446 3440 TBS - ok
23:35:28.0524 3440 [ E23A56F843E2AEBBB209D0ACCA73C640 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
23:35:28.0540 3440 Tcpip - ok
23:35:28.0618 3440 [ E23A56F843E2AEBBB209D0ACCA73C640 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
23:35:28.0633 3440 TCPIP6 - ok
23:35:28.0664 3440 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
23:35:28.0680 3440 tcpipreg - ok
23:35:28.0727 3440 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
23:35:28.0742 3440 TDPIPE - ok
23:35:28.0774 3440 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
23:35:28.0774 3440 TDTCP - ok
23:35:28.0805 3440 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
23:35:28.0805 3440 tdx - ok
23:35:28.0820 3440 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
23:35:28.0820 3440 TermDD - ok
23:35:28.0883 3440 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
23:35:28.0898 3440 TermService - ok
23:35:28.0914 3440 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
23:35:28.0914 3440 Themes - ok
23:35:28.0930 3440 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
23:35:28.0930 3440 THREADORDER - ok
23:35:29.0023 3440 [ EFEF22B9577E5051057FDE1AE381B50C ] TomTomHOMEService C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
23:35:29.0023 3440 TomTomHOMEService - ok
23:35:29.0086 3440 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
23:35:29.0086 3440 TrkWks - ok
23:35:29.0164 3440 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:35:29.0179 3440 TrustedInstaller - ok
23:35:29.0195 3440 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
23:35:29.0195 3440 tssecsrv - ok
23:35:29.0242 3440 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
23:35:29.0242 3440 TsUsbFlt - ok
23:35:29.0257 3440 tsusbhub - ok
23:35:29.0320 3440 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
23:35:29.0320 3440 tunnel - ok
23:35:29.0366 3440 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
23:35:29.0366 3440 uagp35 - ok
23:35:29.0413 3440 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
23:35:29.0413 3440 udfs - ok
23:35:29.0460 3440 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
23:35:29.0460 3440 UI0Detect - ok
23:35:29.0491 3440 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
23:35:29.0491 3440 uliagpkx - ok
23:35:29.0522 3440 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
23:35:29.0522 3440 umbus - ok
23:35:29.0569 3440 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
23:35:29.0569 3440 UmPass - ok
23:35:29.0616 3440 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll
23:35:29.0616 3440 UmRdpService - ok
23:35:29.0647 3440 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
23:35:29.0647 3440 upnphost - ok
23:35:29.0678 3440 [ 8BF5D980CDCE35FB26F05047144BB57E ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
23:35:29.0710 3440 USBAAPL - ok
23:35:29.0741 3440 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
23:35:29.0788 3440 usbccgp - ok
23:35:29.0803 3440 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
23:35:29.0803 3440 usbcir - ok
23:35:29.0834 3440 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
23:35:29.0850 3440 usbehci - ok
23:35:29.0897 3440 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
23:35:29.0912 3440 usbhub - ok
23:35:29.0928 3440 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\drivers\usbohci.sys
23:35:29.0928 3440 usbohci - ok
23:35:29.0975 3440 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
23:35:30.0006 3440 usbprint - ok
23:35:30.0053 3440 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:35:30.0068 3440 USBSTOR - ok
23:35:30.0084 3440 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
23:35:30.0100 3440 usbuhci - ok
23:35:30.0162 3440 [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
23:35:30.0162 3440 usbvideo - ok
23:35:30.0209 3440 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
23:35:30.0224 3440 UxSms - ok
23:35:30.0240 3440 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
23:35:30.0240 3440 VaultSvc - ok
23:35:30.0287 3440 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
23:35:30.0287 3440 vdrvroot - ok
23:35:30.0334 3440 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
23:35:30.0349 3440 vds - ok
23:35:30.0396 3440 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
23:35:30.0396 3440 vga - ok
23:35:30.0427 3440 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
23:35:30.0427 3440 VgaSave - ok
23:35:30.0474 3440 VGPU - ok
23:35:30.0521 3440 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
23:35:30.0552 3440 vhdmp - ok
23:35:30.0568 3440 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
23:35:30.0568 3440 viaagp - ok
23:35:30.0599 3440 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
23:35:30.0614 3440 ViaC7 - ok
23:35:30.0646 3440 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
23:35:30.0661 3440 viaide - ok
23:35:30.0677 3440 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys
23:35:30.0677 3440 vmbus - ok
23:35:30.0692 3440 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
23:35:30.0708 3440 VMBusHID - ok
23:35:30.0724 3440 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
23:35:30.0724 3440 volmgr - ok
23:35:30.0739 3440 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
23:35:30.0770 3440 volmgrx - ok
23:35:30.0802 3440 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
23:35:30.0802 3440 volsnap - ok
23:35:30.0864 3440 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
23:35:30.0864 3440 vsmraid - ok
23:35:30.0942 3440 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
23:35:30.0973 3440 VSS - ok
23:35:30.0989 3440 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
23:35:30.0989 3440 vwifibus - ok
23:35:31.0067 3440 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
23:35:31.0082 3440 W32Time - ok
23:35:31.0098 3440 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
23:35:31.0098 3440 WacomPen - ok
23:35:31.0160 3440 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
23:35:31.0160 3440 WANARP - ok
23:35:31.0160 3440 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
23:35:31.0160 3440 Wanarpv6 - ok
23:35:31.0316 3440 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
23:35:31.0332 3440 WatAdminSvc - ok
23:35:31.0410 3440 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
23:35:31.0441 3440 wbengine - ok
23:35:31.0472 3440 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
23:35:31.0488 3440 WbioSrvc - ok
23:35:31.0519 3440 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
23:35:31.0519 3440 wcncsvc - ok
23:35:31.0550 3440 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:35:31.0550 3440 WcsPlugInService - ok
23:35:31.0582 3440 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
23:35:31.0582 3440 Wd - ok
23:35:31.0644 3440 [ D6EFAF429FD30C5DF613D220E344CCE7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam.sys
23:35:31.0644 3440 WDC_SAM - ok
23:35:31.0691 3440 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
23:35:31.0706 3440 Wdf01000 - ok
23:35:31.0722 3440 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
23:35:31.0722 3440 WdiServiceHost - ok
23:35:31.0722 3440 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
23:35:31.0738 3440 WdiSystemHost - ok
23:35:31.0769 3440 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
23:35:31.0769 3440 WebClient - ok
23:35:31.0816 3440 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
23:35:31.0816 3440 Wecsvc - ok
23:35:31.0847 3440 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
23:35:31.0847 3440 wercplsupport - ok
23:35:31.0878 3440 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
23:35:31.0894 3440 WerSvc - ok
23:35:31.0940 3440 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
23:35:31.0956 3440 WfpLwf - ok
23:35:31.0987 3440 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
23:35:31.0987 3440 WIMMount - ok
23:35:32.0065 3440 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
23:35:32.0081 3440 WinDefend - ok
23:35:32.0096 3440 WinHttpAutoProxySvc - ok
23:35:32.0159 3440 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
23:35:32.0174 3440 Winmgmt - ok
23:35:32.0252 3440 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
23:35:32.0268 3440 WinRM - ok
23:35:32.0330 3440 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
23:35:32.0330 3440 WinUsb - ok
23:35:32.0393 3440 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
23:35:32.0408 3440 Wlansvc - ok
23:35:32.0424 3440 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
23:35:32.0424 3440 WmiAcpi - ok
23:35:32.0455 3440 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
23:35:32.0471 3440 wmiApSrv - ok
23:35:32.0549 3440 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
23:35:32.0564 3440 WMPNetworkSvc - ok
23:35:32.0596 3440 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
23:35:32.0596 3440 WPCSvc - ok
23:35:32.0627 3440 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
23:35:32.0627 3440 WPDBusEnum - ok
23:35:32.0674 3440 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
23:35:32.0705 3440 ws2ifsl - ok
23:35:32.0705 3440 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\System32\wscsvc.dll
23:35:32.0720 3440 wscsvc - ok
23:35:32.0720 3440 WSearch - ok
23:35:32.0830 3440 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
23:35:32.0861 3440 wuauserv - ok
23:35:32.0892 3440 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
23:35:32.0892 3440 WudfPf - ok
23:35:32.0939 3440 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
23:35:32.0939 3440 WUDFRd - ok
23:35:32.0986 3440 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
23:35:32.0986 3440 wudfsvc - ok
23:35:33.0017 3440 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
23:35:33.0032 3440 WwanSvc - ok
23:35:33.0079 3440 [ B07C5B7EFDF936FF93D4F540938725BE ] yukonw7 C:\Windows\system32\DRIVERS\yk62x86.sys
23:35:33.0079 3440 yukonw7 - ok
23:35:33.0126 3440 ================ Scan global ===============================
23:35:33.0188 3440 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
23:35:33.0235 3440 [ 48CB4FDBCAAEAC7BCE2F5941545FF071 ] C:\Windows\system32\winsrv.dll
23:35:33.0251 3440 [ 48CB4FDBCAAEAC7BCE2F5941545FF071 ] C:\Windows\system32\winsrv.dll
23:35:33.0298 3440 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
23:35:33.0329 3440 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
23:35:33.0344 3440 [Global] - ok
23:35:33.0344 3440 ================ Scan MBR ==================================
23:35:33.0360 3440 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
23:35:33.0547 3440 \Device\Harddisk0\DR0 - ok
23:35:33.0547 3440 ================ Scan VBR ==================================
23:35:33.0547 3440 [ 33E90EDCF431C0FFEAD2E68E038868A8 ] \Device\Harddisk0\DR0\Partition1
23:35:33.0547 3440 \Device\Harddisk0\DR0\Partition1 - ok
23:35:33.0578 3440 [ EAE899A80A4ABC0FB4E76C7CE614536E ] \Device\Harddisk0\DR0\Partition2
23:35:33.0578 3440 \Device\Harddisk0\DR0\Partition2 - ok
23:35:33.0578 3440 ============================================================
23:35:33.0578 3440 Scan finished
23:35:33.0578 3440 ============================================================
23:35:33.0594 3908 Detected object count: 0
23:35:33.0594 3908 Actual detected object count: 0
23:35:40.0895 1520 ============================================================
23:35:40.0895 1520 Scan started
23:35:40.0895 1520 Mode: Manual;
23:35:40.0895 1520 ============================================================
23:35:41.0238 1520 ================ Scan system memory ========================
23:35:41.0238 1520 System memory - ok
23:35:41.0238 1520 ================ Scan services =============================
23:35:41.0410 1520 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
23:35:41.0410 1520 1394ohci - ok
23:35:41.0472 1520 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
23:35:41.0472 1520 ACPI - ok
23:35:41.0488 1520 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
23:35:41.0488 1520 AcpiPmi - ok
23:35:41.0534 1520 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
23:35:41.0550 1520 adp94xx - ok
23:35:41.0581 1520 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
23:35:41.0581 1520 adpahci - ok
23:35:41.0597 1520 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
23:35:41.0612 1520 adpu320 - ok
23:35:41.0659 1520 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:35:41.0659 1520 AeLookupSvc - ok
23:35:41.0706 1520 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
23:35:41.0722 1520 AFD - ok
23:35:41.0737 1520 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
23:35:41.0737 1520 agp440 - ok
23:35:41.0768 1520 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
23:35:41.0800 1520 aic78xx - ok
23:35:41.0815 1520 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
23:35:41.0815 1520 ALG - ok
23:35:41.0862 1520 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
23:35:41.0862 1520 aliide - ok
23:35:41.0909 1520 [ B19505648F033393E907E2E419FDE8B3 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
23:35:41.0909 1520 AMD External Events Utility - ok
23:35:41.0940 1520 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
23:35:41.0940 1520 amdagp - ok
23:35:41.0956 1520 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
23:35:41.0956 1520 amdide - ok
23:35:41.0987 1520 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
23:35:41.0987 1520 AmdK8 - ok
23:35:42.0002 1520 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
23:35:42.0065 1520 AmdPPM - ok
23:35:42.0080 1520 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
23:35:42.0080 1520 amdsata - ok
23:35:42.0096 1520 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
23:35:42.0096 1520 amdsbs - ok
23:35:42.0112 1520 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
23:35:42.0112 1520 amdxata - ok
23:35:42.0158 1520 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
23:35:42.0158 1520 AppID - ok
23:35:42.0190 1520 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
23:35:42.0205 1520 AppIDSvc - ok
23:35:42.0236 1520 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
23:35:42.0236 1520 Appinfo - ok
23:35:42.0361 1520 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
23:35:42.0361 1520 Apple Mobile Device - ok
23:35:42.0392 1520 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
23:35:42.0392 1520 AppMgmt - ok
23:35:42.0439 1520 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
23:35:42.0439 1520 arc - ok
23:35:42.0455 1520 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
23:35:42.0455 1520 arcsas - ok
23:35:42.0486 1520 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:35:42.0486 1520 AsyncMac - ok
23:35:42.0517 1520 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
23:35:42.0517 1520 atapi - ok
23:35:42.0736 1520 [ 04F09923A393E4E0E8453A8F78361E73 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
23:35:42.0767 1520 atikmdag - ok
23:35:42.0798 1520 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:35:42.0798 1520 AudioEndpointBuilder - ok
23:35:42.0829 1520 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
23:35:42.0829 1520 Audiosrv - ok
23:35:42.0876 1520 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
23:35:42.0876 1520 AxInstSV - ok
23:35:42.0907 1520 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
23:35:42.0907 1520 b06bdrv - ok
23:35:42.0954 1520 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
23:35:42.0954 1520 b57nd60x - ok
23:35:43.0001 1520 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
23:35:43.0001 1520 BDESVC - ok
23:35:43.0016 1520 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
23:35:43.0016 1520 Beep - ok
23:35:43.0048 1520 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
23:35:43.0048 1520 BFE - ok
23:35:43.0110 1520 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll
23:35:43.0126 1520 BITS - ok
23:35:43.0141 1520 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
23:35:43.0141 1520 blbdrive - ok
23:35:43.0204 1520 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
23:35:43.0219 1520 Bonjour Service - ok
23:35:43.0250 1520 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:35:43.0266 1520 bowser - ok
23:35:43.0266 1520 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:35:43.0282 1520 BrFiltLo - ok
23:35:43.0328 1520 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:35:43.0328 1520 BrFiltUp - ok
23:35:43.0375 1520 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
23:35:43.0375 1520 Browser - ok
23:35:43.0578 1520 [ 52C724DAC8ADDC50F593E331A9863979 ] Browser Defender Update Service C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe
23:35:43.0594 1520 Browser Defender Update Service - ok
23:35:43.0625 1520 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
23:35:43.0625 1520 Brserid - ok
23:35:43.0640 1520 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
23:35:43.0640 1520 BrSerWdm - ok
23:35:43.0687 1520 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
23:35:43.0687 1520 BrUsbMdm - ok
23:35:43.0718 1520 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
23:35:43.0718 1520 BrUsbSer - ok
23:35:43.0765 1520 [ 2865A5C8E98C70C605F417908CEBB3A4 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
23:35:43.0765 1520 BthEnum - ok
23:35:43.0796 1520 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
23:35:43.0828 1520 BTHMODEM - ok
23:35:43.0859 1520 [ AD1872E5829E8A2C3B5B4B641C3EAB0E ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
23:35:43.0859 1520 BthPan - ok
23:35:43.0906 1520 [ 1153DE2E4F5941E10C399CB5592F78A1 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
23:35:43.0906 1520 BTHPORT - ok
23:35:43.0952 1520 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
23:35:43.0952 1520 bthserv - ok
23:35:43.0999 1520 [ C81E9413A25A439F436B1D4B6A0CF9E9 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
23:35:43.0999 1520 BTHUSB - ok
23:35:44.0015 1520 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:35:44.0015 1520 cdfs - ok
23:35:44.0062 1520 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
23:35:44.0062 1520 cdrom - ok
23:35:44.0108 1520 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
23:35:44.0108 1520 CertPropSvc - ok
23:35:44.0155 1520 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
23:35:44.0155 1520 circlass - ok
23:35:44.0186 1520 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
23:35:44.0186 1520 CLFS - ok
23:35:44.0264 1520 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:35:44.0264 1520 clr_optimization_v2.0.50727_32 - ok
23:35:44.0327 1520 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:35:44.0342 1520 clr_optimization_v4.0.30319_32 - ok
23:35:44.0358 1520 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
23:35:44.0358 1520 CmBatt - ok
23:35:44.0374 1520 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
23:35:44.0389 1520 cmdide - ok
23:35:44.0420 1520 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
23:35:44.0420 1520 CNG - ok
23:35:44.0452 1520 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
23:35:44.0452 1520 Compbatt - ok
23:35:44.0483 1520 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
23:35:44.0483 1520 CompositeBus - ok
23:35:44.0483 1520 COMSysApp - ok
23:35:44.0530 1520 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
23:35:44.0530 1520 crcdisk - ok
23:35:44.0561 1520 [ 96C0E38905CFD788313BE8E11DAE3F2F ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:35:44.0576 1520 CryptSvc - ok
23:35:44.0608 1520 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys
23:35:44.0623 1520 CSC - ok
23:35:44.0670 1520 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll
23:35:44.0670 1520 CscService - ok
23:35:44.0717 1520 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
23:35:44.0717 1520 DcomLaunch - ok
23:35:44.0842 1520 [ 9AC09551F559A1EEAFC0B19F624C233E ] DCService.exe C:\ProgramData\DatacardService\DCService.exe
23:35:44.0857 1520 DCService.exe - ok
23:35:44.0904 1520 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
23:35:44.0904 1520 defragsvc - ok
23:35:44.0951 1520 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:35:44.0951 1520 DfsC - ok
23:35:44.0982 1520 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
23:35:44.0998 1520 Dhcp - ok
23:35:45.0044 1520 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
23:35:45.0044 1520 discache - ok
23:35:45.0076 1520 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
23:35:45.0076 1520 Disk - ok
23:35:45.0122 1520 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:35:45.0138 1520 Dnscache - ok
23:35:45.0185 1520 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
23:35:45.0185 1520 dot3svc - ok
23:35:45.0247 1520 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
23:35:45.0247 1520 DPS - ok
23:35:45.0278 1520 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:35:45.0278 1520 drmkaud - ok
23:35:45.0356 1520 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:35:45.0356 1520 DXGKrnl - ok
23:35:45.0403 1520 [ AF82DC664E3D8E2CBA3B95E68F6448A7 ] eamon C:\Windows\system32\DRIVERS\eamon.sys
23:35:45.0403 1520 eamon - ok
23:35:45.0434 1520 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
23:35:45.0450 1520 EapHost - ok
23:35:45.0590 1520 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
23:35:45.0637 1520 ebdrv - ok
23:35:45.0668 1520 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
23:35:45.0668 1520 EFS - ok
23:35:45.0684 1520 [ 686A799C1BF1B18941994DAF9F45DB06 ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
23:35:45.0700 1520 ehdrv - ok
23:35:45.0778 1520 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
23:35:45.0793 1520 ehRecvr - ok
23:35:45.0840 1520 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
23:35:45.0840 1520 ehSched - ok
23:35:45.0934 1520 [ 9329BA45C8B97485926A171E34C2ABB8 ] EhttpSrv C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
23:35:45.0949 1520 EhttpSrv - ok
23:35:46.0012 1520 [ 3543C6195D5ED4EDA0316D3E1BA0E6EE ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
23:35:46.0012 1520 ekrn - ok
23:35:46.0074 1520 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
23:35:46.0074 1520 elxstor - ok
23:35:46.0121 1520 [ 8700EADC8BDFA27D948FCC43EE0AE434 ] epfwwfpr C:\Windows\system32\DRIVERS\epfwwfpr.sys
23:35:46.0121 1520 epfwwfpr - ok
23:35:46.0168 1520 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
23:35:46.0168 1520 ErrDev - ok
23:35:46.0214 1520 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
23:35:46.0230 1520 EventSystem - ok
23:35:46.0277 1520 [ 95BCB4321962028799EB2EA53319BB0C ] ewusbnet C:\Windows\system32\DRIVERS\ewusbnet.sys
23:35:46.0324 1520 ewusbnet - ok
23:35:46.0339 1520 [ 57C171EA22F0A7F068FCB0CAEDD1E8E7 ] ew_hwusbdev C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
23:35:46.0339 1520 ew_hwusbdev - ok
23:35:46.0370 1520 [ 61A973F60E94A551BA7B15F3460444FB ] ew_usbenumfilter C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys
23:35:46.0370 1520 ew_usbenumfilter - ok
23:35:46.0370 1520 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
23:35:46.0386 1520 exfat - ok
23:35:46.0402 1520 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:35:46.0402 1520 fastfat - ok
23:35:46.0464 1520 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
23:35:46.0480 1520 Fax - ok
23:35:46.0511 1520 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
23:35:46.0511 1520 fdc - ok
23:35:46.0511 1520 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
23:35:46.0511 1520 fdPHost - ok
23:35:46.0526 1520 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
23:35:46.0526 1520 FDResPub - ok
23:35:46.0542 1520 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:35:46.0542 1520 FileInfo - ok
23:35:46.0558 1520 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:35:46.0573 1520 Filetrace - ok
23:35:46.0589 1520 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
23:35:46.0589 1520 flpydisk - ok
23:35:46.0604 1520 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
23:35:46.0620 1520 FltMgr - ok
23:35:46.0667 1520 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
23:35:46.0682 1520 FontCache - ok
23:35:46.0776 1520 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
23:35:46.0776 1520 FontCache3.0.0.0 - ok
23:35:46.0792 1520 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
23:35:46.0792 1520 FsDepends - ok
23:35:46.0838 1520 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
23:35:46.0838 1520 Fs_Rec - ok
23:35:46.0885 1520 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
23:35:46.0932 1520 fvevol - ok
23:35:46.0963 1520 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
23:35:46.0963 1520 gagp30kx - ok
23:35:46.0994 1520 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:35:47.0010 1520 GEARAspiWDM - ok
23:35:47.0057 1520 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
23:35:47.0072 1520 gpsvc - ok
23:35:47.0072 1520 guno - ok
23:35:47.0135 1520 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
23:35:47.0135 1520 gupdate - ok
23:35:47.0150 1520 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
23:35:47.0150 1520 gupdatem - ok
23:35:47.0182 1520 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
23:35:47.0182 1520 hcw85cir - ok
23:35:47.0244 1520 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:35:47.0244 1520 HdAudAddService - ok
23:35:47.0275 1520 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
23:35:47.0275 1520 HDAudBus - ok
23:35:47.0291 1520 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
23:35:47.0306 1520 HidBatt - ok
23:35:47.0322 1520 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
23:35:47.0338 1520 HidBth - ok
23:35:47.0369 1520 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
23:35:47.0369 1520 HidIr - ok
23:35:47.0400 1520 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
23:35:47.0400 1520 hidserv - ok
23:35:47.0431 1520 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\drivers\hidusb.sys
23:35:47.0431 1520 HidUsb - ok
23:35:47.0462 1520 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
23:35:47.0462 1520 hkmsvc - ok
23:35:47.0509 1520 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:35:47.0509 1520 HomeGroupListener - ok
23:35:47.0556 1520 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:35:47.0572 1520 HomeGroupProvider - ok
23:35:47.0618 1520 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
23:35:47.0618 1520 HpSAMD - ok
23:35:47.0665 1520 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
23:35:47.0681 1520 HTTP - ok
23:35:47.0712 1520 [ 92548543D50C9BCCDB31FFB7EC39249D ] huawei_enumerator C:\Windows\system32\DRIVERS\ew_jubusenum.sys
23:35:47.0712 1520 huawei_enumerator - ok
23:35:47.0743 1520 [ A89423D0132C8AB69BA621B6CE191714 ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
23:35:47.0743 1520 hwdatacard - ok
23:35:47.0790 1520 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
23:35:47.0790 1520 hwpolicy - ok
23:35:47.0790 1520 hwusbfake - ok
23:35:47.0837 1520 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
23:35:47.0837 1520 i8042prt - ok
23:35:47.0868 1520 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
23:35:47.0868 1520 iaStorV - ok
23:35:47.0946 1520 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
23:35:47.0962 1520 idsvc - ok
23:35:47.0993 1520 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
23:35:47.0993 1520 iirsp - ok
23:35:48.0024 1520 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
23:35:48.0040 1520 IKEEXT - ok
23:35:48.0055 1520 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
23:35:48.0055 1520 intelide - ok
23:35:48.0086 1520 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
23:35:48.0102 1520 intelppm - ok
23:35:48.0149 1520 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
23:35:48.0149 1520 IPBusEnum - ok
23:35:48.0180 1520 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:35:48.0180 1520 IpFilterDriver - ok
23:35:48.0227 1520 [ 58F67245D041FBE7AF88F4EAF79DF0FA ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
23:35:48.0242 1520 iphlpsvc - ok
23:35:48.0289 1520 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
23:35:48.0289 1520 IPMIDRV - ok
23:35:48.0320 1520 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
23:35:48.0320 1520 IPNAT - ok
23:35:48.0398 1520 [ EF1C51222117B37AFBFF8F4642EA8C62 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
23:35:48.0398 1520 iPod Service - ok
23:35:48.0445 1520 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
23:35:48.0445 1520 IRENUM - ok
23:35:48.0461 1520 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
23:35:48.0461 1520 isapnp - ok
23:35:48.0476 1520 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
23:35:48.0476 1520 iScsiPrt - ok
23:35:48.0492 1520 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
23:35:48.0492 1520 kbdclass - ok
23:35:48.0508 1520 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
23:35:48.0508 1520 kbdhid - ok
23:35:48.0523 1520 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
23:35:48.0523 1520 KeyIso - ok
23:35:48.0554 1520 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
23:35:48.0554 1520 KSecDD - ok
23:35:48.0586 1520 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
23:35:48.0586 1520 KSecPkg - ok
23:35:48.0632 1520 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
23:35:48.0648 1520 KtmRm - ok
23:35:48.0679 1520 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
23:35:48.0679 1520 LanmanServer - ok
23:35:48.0695 1520 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:35:48.0695 1520 LanmanWorkstation - ok
23:35:48.0742 1520 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
23:35:48.0742 1520 lltdio - ok
23:35:48.0757 1520 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
23:35:48.0773 1520 lltdsvc - ok
23:35:48.0788 1520 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
23:35:48.0788 1520 lmhosts - ok
23:35:48.0804 1520 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
23:35:48.0804 1520 LSI_FC - ok
23:35:48.0820 1520 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
23:35:48.0820 1520 LSI_SAS - ok
23:35:48.0835 1520 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:35:48.0835 1520 LSI_SAS2 - ok
23:35:48.0866 1520 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:35:48.0866 1520 LSI_SCSI - ok
23:35:48.0866 1520 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
23:35:48.0882 1520 luafv - ok
23:35:48.0913 1520 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
23:35:48.0913 1520 Mcx2Svc - ok
23:35:48.0929 1520 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
23:35:48.0929 1520 megasas - ok
23:35:48.0960 1520 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
23:35:48.0960 1520 MegaSR - ok
23:35:48.0991 1520 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
23:35:48.0991 1520 MMCSS - ok
23:35:49.0054 1520 [ 1EE12E08960682DDF05F6C3FDCCBC713 ] Mobile Partner. RunOuc C:\Program Files\Mobile Partner\UpdateDog\ouc.exe
23:35:49.0054 1520 Mobile Partner. RunOuc - ok
23:35:49.0069 1520 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
23:35:49.0069 1520 Modem - ok
23:35:49.0100 1520 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
23:35:49.0100 1520 monitor - ok
23:35:49.0116 1520 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\drivers\mouclass.sys
23:35:49.0116 1520 mouclass - ok
23:35:49.0132 1520 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
23:35:49.0132 1520 mouhid - ok
23:35:49.0163 1520 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
23:35:49.0163 1520 mountmgr - ok
23:35:49.0256 1520 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
23:35:49.0256 1520 MozillaMaintenance - ok
23:35:49.0272 1520 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
23:35:49.0272 1520 mpio - ok
23:35:49.0288 1520 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
23:35:49.0288 1520 mpsdrv - ok
23:35:49.0350 1520 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
23:35:49.0350 1520 MpsSvc - ok
23:35:49.0459 1520 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
23:35:49.0459 1520 MRxDAV - ok
23:35:49.0506 1520 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
23:35:49.0506 1520 mrxsmb - ok
23:35:49.0553 1520 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:35:49.0553 1520 mrxsmb10 - ok
23:35:49.0615 1520 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:35:49.0615 1520 mrxsmb20 - ok
23:35:49.0631 1520 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
23:35:49.0631 1520 msahci - ok
23:35:49.0646 1520 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
23:35:49.0646 1520 msdsm - ok
23:35:49.0678 1520 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
23:35:49.0678 1520 MSDTC - ok
23:35:49.0709 1520 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
23:35:49.0709 1520 Msfs - ok
23:35:49.0756 1520 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
23:35:49.0756 1520 mshidkmdf - ok
23:35:49.0771 1520 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
23:35:49.0787 1520 msisadrv - ok
23:35:49.0834 1520 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
23:35:49.0834 1520 MSiSCSI - ok
23:35:49.0849 1520 msiserver - ok
23:35:49.0896 1520 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
23:35:49.0896 1520 MSKSSRV - ok
23:35:49.0896 1520 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
23:35:49.0896 1520 MSPCLOCK - ok
23:35:49.0912 1520 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
23:35:49.0912 1520 MSPQM - ok
23:35:49.0943 1520 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
23:35:49.0943 1520 MsRPC - ok
23:35:49.0974 1520 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
23:35:49.0974 1520 mssmbios - ok
23:35:49.0990 1520 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
23:35:49.0990 1520 MSTEE - ok
23:35:50.0005 1520 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
23:35:50.0005 1520 MTConfig - ok
23:35:50.0036 1520 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
23:35:50.0036 1520 Mup - ok
23:35:50.0083 1520 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
23:35:50.0083 1520 napagent - ok
23:35:50.0114 1520 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
23:35:50.0114 1520 NativeWifiP - ok
23:35:50.0177 1520 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\Windows\system32\drivers\ndis.sys
23:35:50.0192 1520 NDIS - ok
23:35:50.0224 1520 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
23:35:50.0224 1520 NdisCap - ok
23:35:50.0239 1520 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
23:35:50.0239 1520 NdisTapi - ok
23:35:50.0270 1520 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
23:35:50.0270 1520 Ndisuio - ok
23:35:50.0302 1520 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
23:35:50.0302 1520 NdisWan - ok
23:35:50.0317 1520 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
23:35:50.0317 1520 NDProxy - ok
23:35:50.0333 1520 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
23:35:50.0333 1520 NetBIOS - ok
23:35:50.0380 1520 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
23:35:50.0380 1520 NetBT - ok
23:35:50.0411 1520 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
23:35:50.0411 1520 Netlogon - ok
23:35:50.0458 1520 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
23:35:50.0473 1520 Netman - ok
23:35:50.0504 1520 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
23:35:50.0504 1520 netprofm - ok
23:35:50.0551 1520 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
23:35:50.0551 1520 NetTcpPortSharing - ok
23:35:50.0738 1520 [ 58218EC6B61B1169CF54AAB0D00F5FE2 ] netw5v32 C:\Windows\system32\DRIVERS\netw5v32.sys
23:35:50.0785 1520 netw5v32 - ok
23:35:50.0832 1520 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
23:35:50.0832 1520 nfrd960 - ok
23:35:50.0863 1520 [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc C:\Windows\System32\nlasvc.dll
23:35:50.0879 1520 NlaSvc - ok
23:35:50.0894 1520 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
23:35:50.0894 1520 Npfs - ok
23:35:50.0941 1520 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
23:35:50.0941 1520 nsi - ok
23:35:50.0988 1520 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
23:35:50.0988 1520 nsiproxy - ok
23:35:51.0066 1520 [ 0D87503986BB3DFED58E343FE39DDE13 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
23:35:51.0097 1520 Ntfs - ok
23:35:51.0097 1520 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
23:35:51.0097 1520 Null - ok
23:35:51.0144 1520 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
23:35:51.0144 1520 nvraid - ok
23:35:51.0160 1520 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
23:35:51.0175 1520 nvstor - ok
23:35:51.0191 1520 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
23:35:51.0191 1520 nv_agp - ok
23:35:51.0222 1520 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
23:35:51.0222 1520 ohci1394 - ok
23:35:51.0269 1520 [ DA345DE3B450E9E1691E7B9956D8FFC3 ] OMSI download service C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
23:35:51.0284 1520 OMSI download service - ok
23:35:51.0316 1520 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
23:35:51.0316 1520 p2pimsvc - ok
23:35:51.0362 1520 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
23:35:51.0378 1520 p2psvc - ok
23:35:51.0409 1520 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
23:35:51.0425 1520 Parport - ok
23:35:51.0456 1520 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
23:35:51.0456 1520 partmgr - ok
23:35:51.0487 1520 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
23:35:51.0487 1520 Parvdm - ok
23:35:51.0503 1520 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
23:35:51.0518 1520 PcaSvc - ok
23:35:51.0565 1520 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
23:35:51.0565 1520 pci - ok
23:35:51.0581 1520 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
23:35:51.0581 1520 pciide - ok
23:35:51.0612 1520 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
23:35:51.0612 1520 pcmcia - ok
23:35:51.0659 1520 [ 9DCE45B0DC51EBB7CD7063F8C3B086D0 ] PCTBD C:\Windows\system32\Drivers\PCTBD.sys
23:35:51.0659 1520 PCTBD - ok
23:35:51.0674 1520 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
23:35:51.0674 1520 pcw - ok
23:35:51.0721 1520 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
23:35:51.0721 1520 PEAUTH - ok
23:35:51.0799 1520 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
23:35:51.0830 1520 PeerDistSvc - ok
23:35:51.0924 1520 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
23:35:51.0940 1520 pla - ok
23:35:51.0986 1520 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
23:35:52.0002 1520 PlugPlay - ok
23:35:52.0033 1520 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
23:35:52.0033 1520 PNRPAutoReg - ok
23:35:52.0064 1520 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
23:35:52.0080 1520 PNRPsvc - ok
23:35:52.0111 1520 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
23:35:52.0127 1520 PolicyAgent - ok
23:35:52.0158 1520 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
23:35:52.0174 1520 Power - ok
23:35:52.0205 1520 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
23:35:52.0205 1520 PptpMiniport - ok
23:35:52.0220 1520 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
23:35:52.0220 1520 Processor - ok
23:35:52.0267 1520 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
23:35:52.0283 1520 ProfSvc - ok
23:35:52.0298 1520 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
23:35:52.0298 1520 ProtectedStorage - ok
23:35:52.0330 1520 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
23:35:52.0330 1520 Psched - ok
23:35:52.0392 1520 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
23:35:52.0408 1520 ql2300 - ok
23:35:52.0439 1520 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
23:35:52.0439 1520 ql40xx - ok
23:35:52.0470 1520 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
23:35:52.0470 1520 QWAVE - ok
23:35:52.0501 1520 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
23:35:52.0501 1520 QWAVEdrv - ok
23:35:52.0501 1520 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
23:35:52.0501 1520 RasAcd - ok
23:35:52.0548 1520 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
23:35:52.0548 1520 RasAgileVpn - ok
23:35:52.0564 1520 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
23:35:52.0579 1520 RasAuto - ok
23:35:52.0610 1520 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
23:35:52.0626 1520 Rasl2tp - ok
23:35:52.0673 1520 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
23:35:52.0673 1520 RasMan - ok
23:35:52.0704 1520 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
23:35:52.0704 1520 RasPppoe - ok
23:35:52.0720 1520 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
23:35:52.0735 1520 RasSstp - ok
23:35:52.0751 1520 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
23:35:52.0751 1520 rdbss - ok
23:35:52.0766 1520 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
23:35:52.0766 1520 rdpbus - ok
23:35:52.0798 1520 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
23:35:52.0798 1520 RDPCDD - ok
23:35:52.0813 1520 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
23:35:52.0829 1520 RDPDR - ok
23:35:52.0844 1520 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
23:35:52.0844 1520 RDPENCDD - ok
23:35:52.0860 1520 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
23:35:52.0860 1520 RDPREFMP - ok
23:35:52.0891 1520 [ 68A0387F58E226DEEE23D9715955572A ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
23:35:52.0891 1520 RdpVideoMiniport - ok
23:35:52.0922 1520 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
23:35:52.0922 1520 RDPWD - ok
23:35:52.0969 1520 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
23:35:52.0969 1520 rdyboost - ok
23:35:53.0016 1520 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
23:35:53.0016 1520 RemoteAccess - ok
23:35:53.0063 1520 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
23:35:53.0063 1520 RemoteRegistry - ok
23:35:53.0094 1520 [ CB928D9E6DAF51879DD6BA8D02F01321 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
23:35:53.0094 1520 RFCOMM - ok
23:35:53.0125 1520 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
23:35:53.0125 1520 RpcEptMapper - ok
23:35:53.0141 1520 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
23:35:53.0141 1520 RpcLocator - ok
23:35:53.0172 1520 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
23:35:53.0172 1520 RpcSs - ok
23:35:53.0203 1520 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
23:35:53.0203 1520 rspndr - ok
23:35:53.0266 1520 [ 1C5C2CB892553D2CF3F45A4BB323FCD6 ] s1018bus C:\Windows\system32\DRIVERS\s1018bus.sys
23:35:53.0266 1520 s1018bus - ok
23:35:53.0297 1520 [ 38F5EA219593F19B6B3A1B9C169E3B61 ] s1018mdfl C:\Windows\system32\DRIVERS\s1018mdfl.sys
23:35:53.0297 1520 s1018mdfl - ok
23:35:53.0328 1520 [ 666AF6B64FC7DF92D3CA4819EA91631D ] s1018mdm C:\Windows\system32\DRIVERS\s1018mdm.sys
23:35:53.0328 1520 s1018mdm - ok
23:35:53.0375 1520 [ F4CEDA6E2DDFF2AF8BD745615A7CA9C0 ] s1018mgmt C:\Windows\system32\DRIVERS\s1018mgmt.sys
23:35:53.0390 1520 s1018mgmt - ok
23:35:53.0406 1520 [ 3622D9FF2253DCBE885B10736609A4CA ] s1018nd5 C:\Windows\system32\DRIVERS\s1018nd5.sys
23:35:53.0422 1520 s1018nd5 - ok
23:35:53.0468 1520 [ 49431EFDA842B474531C29FFAE9F5D09 ] s1018obex C:\Windows\system32\DRIVERS\s1018obex.sys
23:35:53.0468 1520 s1018obex - ok
23:35:53.0500 1520 [ AC6B514CB4474F4C867D7CDC9CD54F05 ] s1018unic C:\Windows\system32\DRIVERS\s1018unic.sys
23:35:53.0500 1520 s1018unic - ok
23:35:53.0531 1520 [ D0EEDC88876B20D42157CDCCA3E647F3 ] s1039bus C:\Windows\system32\DRIVERS\s1039bus.sys
23:35:53.0578 1520 s1039bus - ok
23:35:53.0609 1520 [ 7B35091A7BB597C86262C589B0B57D06 ] s1039mdfl C:\Windows\system32\DRIVERS\s1039mdfl.sys
23:35:53.0609 1520 s1039mdfl - ok
23:35:53.0624 1520 [ 4CB1AB13C9813CBF3E4C6406F8043EC2 ] s1039mdm C:\Windows\system32\DRIVERS\s1039mdm.sys
23:35:53.0624 1520 s1039mdm - ok
23:35:53.0656 1520 [ 2649CA09585A7531126DCC116AD1F88C ] s1039mgmt C:\Windows\system32\DRIVERS\s1039mgmt.sys
23:35:53.0656 1520 s1039mgmt - ok
23:35:53.0687 1520 [ 6D3F549EFD6DAEDD7D12F3DE2175053F ] s1039nd5 C:\Windows\system32\DRIVERS\s1039nd5.sys
23:35:53.0687 1520 s1039nd5 - ok
23:35:53.0702 1520 [ 305E3E3ACA0037AF2E2C1B50A383C91B ] s1039obex C:\Windows\system32\DRIVERS\s1039obex.sys
23:35:53.0702 1520 s1039obex - ok
23:35:53.0718 1520 [ 7DD02A58277C84C043442561589914F4 ] s1039unic C:\Windows\system32\DRIVERS\s1039unic.sys
23:35:53.0734 1520 s1039unic - ok
23:35:53.0749 1520 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
23:35:53.0780 1520 s3cap - ok
23:35:53.0796 1520 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
23:35:53.0796 1520 SamSs - ok
23:35:53.0812 1520 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
23:35:53.0812 1520 sbp2port - ok
23:35:53.0843 1520 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
23:35:53.0843 1520 SCardSvr - ok
23:35:53.0858 1520 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
23:35:53.0858 1520 scfilter - ok
23:35:53.0905 1520 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
23:35:53.0921 1520 Schedule - ok
23:35:53.0921 1520 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
23:35:53.0921 1520 SCPolicySvc - ok
23:35:53.0952 1520 [ 0328BE1C7F1CBA23848179F8762E391C ] sdbus C:\Windows\system32\drivers\sdbus.sys
23:35:53.0952 1520 sdbus - ok
23:35:53.0983 1520 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
23:35:53.0999 1520 SDRSVC - ok
23:35:54.0030 1520 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
23:35:54.0030 1520 secdrv - ok
23:35:54.0061 1520 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
23:35:54.0061 1520 seclogon - ok
23:35:54.0077 1520 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
23:35:54.0077 1520 SENS - ok
23:35:54.0092 1520 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
23:35:54.0092 1520 SensrSvc - ok
23:35:54.0108 1520 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
23:35:54.0108 1520 Serenum - ok
23:35:54.0124 1520 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
23:35:54.0139 1520 Serial - ok
23:35:54.0155 1520 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
23:35:54.0155 1520 sermouse - ok
23:35:54.0186 1520 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
23:35:54.0186 1520 SessionEnv - ok
23:35:54.0233 1520 [ 8B7C1768D2CDE2E02E09A66563DDFD16 ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
23:35:54.0233 1520 SFEP - ok
23:35:54.0233 1520 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
23:35:54.0233 1520 sffdisk - ok
23:35:54.0264 1520 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
23:35:54.0264 1520 sffp_mmc - ok
23:35:54.0280 1520 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
23:35:54.0280 1520 sffp_sd - ok
23:35:54.0295 1520 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
23:35:54.0295 1520 sfloppy - ok
23:35:54.0342 1520 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
23:35:54.0342 1520 SharedAccess - ok
23:35:54.0373 1520 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:35:54.0389 1520 ShellHWDetection - ok
23:35:54.0404 1520 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
23:35:54.0404 1520 sisagp - ok
23:35:54.0451 1520 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
23:35:54.0451 1520 SiSRaid2 - ok
23:35:54.0482 1520 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
23:35:54.0482 1520 SiSRaid4 - ok
23:35:54.0514 1520 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
23:35:54.0514 1520 SkypeUpdate - ok
23:35:54.0545 1520 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
23:35:54.0560 1520 Smb - ok
23:35:54.0607 1520 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
23:35:54.0623 1520 SNMPTRAP - ok
23:35:54.0623 1520 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
23:35:54.0623 1520 spldr - ok
23:35:54.0670 1520 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe
23:35:54.0685 1520 Spooler - ok
23:35:54.0841 1520 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
23:35:54.0857 1520 sppsvc - ok
23:35:54.0872 1520 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
23:35:54.0888 1520 sppuinotify - ok
23:35:54.0919 1520 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
23:35:54.0919 1520 srv - ok
23:35:54.0966 1520 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
23:35:54.0966 1520 srv2 - ok
23:35:55.0091 1520 [ E02D7ACFA0795C77CAF6D8E75F064484 ] SrvAd C:\Users\jacec\AppData\Roaming\Microsoft\Windows\AdvService.exe
23:35:55.0106 1520 SrvAd - ok
23:35:55.0138 1520 [ E00FDFAFF025E94F9821153750C35A6D ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL3.SYS
23:35:55.0138 1520 SrvHsfHDA - ok
23:35:55.0169 1520 [ CEB4E3B6890E1E42DCA6694D9E59E1A0 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV3.SYS
23:35:55.0184 1520 SrvHsfV92 - ok
23:35:55.0216 1520 [ BC0C7EA89194C299F051C24119000E17 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
23:35:55.0216 1520 SrvHsfWinac - ok
23:35:55.0247 1520 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
23:35:55.0247 1520 srvnet - ok
23:35:55.0278 1520 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
23:35:55.0278 1520 SSDPSRV - ok
23:35:55.0309 1520 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
23:35:55.0309 1520 SstpSvc - ok
23:35:55.0340 1520 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
23:35:55.0340 1520 stexstor - ok
23:35:55.0403 1520 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
23:35:55.0418 1520 StiSvc - ok
23:35:55.0434 1520 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
23:35:55.0434 1520 storflt - ok
23:35:55.0465 1520 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys
23:35:55.0465 1520 storvsc - ok
23:35:55.0496 1520 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
23:35:55.0496 1520 swenum - ok
23:35:55.0528 1520 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
23:35:55.0543 1520 swprv - ok
23:35:55.0543 1520 Synth3dVsc - ok
23:35:55.0637 1520 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
23:35:55.0652 1520 SysMain - ok
23:35:55.0668 1520 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:35:55.0668 1520 TabletInputService - ok
23:35:55.0715 1520 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
23:35:55.0730 1520 TapiSrv - ok
23:35:55.0762 1520 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
23:35:55.0777 1520 TBS - ok
23:35:55.0871 1520 [ E23A56F843E2AEBBB209D0ACCA73C640 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
23:35:55.0886 1520 Tcpip - ok
23:35:55.0933 1520 [ E23A56F843E2AEBBB209D0ACCA73C640 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
23:35:55.0949 1520 TCPIP6 - ok
23:35:55.0964 1520 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
23:35:55.0964 1520 tcpipreg - ok
23:35:56.0011 1520 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
23:35:56.0011 1520 TDPIPE - ok
23:35:56.0042 1520 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
23:35:56.0058 1520 TDTCP - ok
23:35:56.0074 1520 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
23:35:56.0074 1520 tdx - ok
23:35:56.0105 1520 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
23:35:56.0105 1520 TermDD - ok
23:35:56.0136 1520 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
23:35:56.0152 1520 TermService - ok
23:35:56.0183 1520 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
23:35:56.0198 1520 Themes - ok
23:35:56.0198 1520 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
23:35:56.0214 1520 THREADORDER - ok
23:35:56.0292 1520 [ EFEF22B9577E5051057FDE1AE381B50C ] TomTomHOMEService C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
23:35:56.0292 1520 TomTomHOMEService - ok
23:35:56.0292 1520 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
23:35:56.0308 1520 TrkWks - ok
23:35:56.0370 1520 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:35:56.0370 1520 TrustedInstaller - ok
23:35:56.0417 1520 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
23:35:56.0417 1520 tssecsrv - ok
23:35:56.0448 1520 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
23:35:56.0448 1520 TsUsbFlt - ok
23:35:56.0464 1520 tsusbhub - ok
23:35:56.0510 1520 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
23:35:56.0510 1520 tunnel - ok
23:35:56.0557 1520 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
23:35:56.0557 1520 uagp35 - ok
23:35:56.0604 1520 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
23:35:56.0604 1520 udfs - ok
23:35:56.0651 1520 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
23:35:56.0651 1520 UI0Detect - ok
23:35:56.0666 1520 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
23:35:56.0666 1520 uliagpkx - ok
23:35:56.0682 1520 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
23:35:56.0682 1520 umbus - ok
23:35:56.0698 1520 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
23:35:56.0698 1520 UmPass - ok
23:35:56.0744 1520 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll
23:35:56.0744 1520 UmRdpService - ok
23:35:56.0776 1520 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
23:35:56.0776 1520 upnphost - ok
23:35:56.0807 1520 [ 8BF5D980CDCE35FB26F05047144BB57E ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
23:35:56.0822 1520 USBAAPL - ok
23:35:56.0854 1520 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
23:35:56.0854 1520 usbccgp - ok
23:35:56.0885 1520 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
23:35:56.0885 1520 usbcir - ok
23:35:56.0900 1520 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
23:35:56.0900 1520 usbehci - ok
23:35:56.0932 1520 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
23:35:56.0932 1520 usbhub - ok
23:35:56.0947 1520 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\drivers\usbohci.sys
23:35:56.0947 1520 usbohci - ok
23:35:56.0994 1520 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
23:35:56.0994 1520 usbprint - ok
23:35:57.0041 1520 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:35:57.0041 1520 USBSTOR - ok
23:35:57.0072 1520 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
23:35:57.0072 1520 usbuhci - ok
23:35:57.0088 1520 [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
23:35:57.0088 1520 usbvideo - ok
23:35:57.0134 1520 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
23:35:57.0134 1520 UxSms - ok
23:35:57.0150 1520 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
23:35:57.0150 1520 VaultSvc - ok
23:35:57.0166 1520 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
23:35:57.0166 1520 vdrvroot - ok
23:35:57.0212 1520 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
23:35:57.0228 1520 vds - ok
23:35:57.0244 1520 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
23:35:57.0244 1520 vga - ok
23:35:57.0259 1520 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
23:35:57.0259 1520 VgaSave - ok
23:35:57.0259 1520 VGPU - ok
23:35:57.0306 1520 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
23:35:57.0353 1520 vhdmp - ok
23:35:57.0368 1520 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
23:35:57.0368 1520 viaagp - ok
23:35:57.0400 1520 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
23:35:57.0400 1520 ViaC7 - ok
23:35:57.0415 1520 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
23:35:57.0415 1520 viaide - ok
23:35:57.0446 1520 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys
23:35:57.0446 1520 vmbus - ok
23:35:57.0478 1520 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
23:35:57.0478 1520 VMBusHID - ok
23:35:57.0493 1520 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
23:35:57.0493 1520 volmgr - ok
23:35:57.0540 1520 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
23:35:57.0540 1520 volmgrx - ok
23:35:57.0571 1520 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
23:35:57.0571 1520 volsnap - ok
23:35:57.0602 1520 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
23:35:57.0618 1520 vsmraid - ok
23:35:57.0696 1520 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
23:35:57.0712 1520 VSS - ok
23:35:57.0743 1520 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
23:35:57.0743 1520 vwifibus - ok
23:35:57.0790 1520 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
23:35:57.0805 1520 W32Time - ok
23:35:57.0836 1520 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
23:35:57.0852 1520 WacomPen - ok
23:35:57.0899 1520 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
23:35:57.0899 1520 WANARP - ok
23:35:57.0899 1520 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
23:35:57.0914 1520 Wanarpv6 - ok
23:35:58.0008 1520 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
23:35:58.0024 1520 WatAdminSvc - ok
23:35:58.0070 1520 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
23:35:58.0086 1520 wbengine - ok
23:35:58.0102 1520 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
23:35:58.0102 1520 WbioSrvc - ok
23:35:58.0133 1520 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
23:35:58.0148 1520 wcncsvc - ok
23:35:58.0180 1520 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:35:58.0180 1520 WcsPlugInService - ok
23:35:58.0211 1520 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
23:35:58.0211 1520 Wd - ok
23:35:58.0242 1520 [ D6EFAF429FD30C5DF613D220E344CCE7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam.sys
23:35:58.0242 1520 WDC_SAM - ok
23:35:58.0304 1520 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
23:35:58.0304 1520 Wdf01000 - ok
23:35:58.0320 1520 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
23:35:58.0320 1520 WdiServiceHost - ok
23:35:58.0336 1520 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
23:35:58.0336 1520 WdiSystemHost - ok
23:35:58.0382 1520 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
23:35:58.0398 1520 WebClient - ok
23:35:58.0414 1520 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
23:35:58.0429 1520 Wecsvc - ok
23:35:58.0429 1520 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
23:35:58.0445 1520 wercplsupport - ok
23:35:58.0445 1520 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
23:35:58.0445 1520 WerSvc - ok
23:35:58.0492 1520 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
23:35:58.0507 1520 WfpLwf - ok
23:35:58.0538 1520 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
23:35:58.0538 1520 WIMMount - ok
23:35:58.0616 1520 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
23:35:58.0632 1520 WinDefend - ok
23:35:58.0648 1520 WinHttpAutoProxySvc - ok
23:35:58.0710 1520 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
23:35:58.0710 1520 Winmgmt - ok
23:35:58.0788 1520 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
23:35:58.0819 1520 WinRM - ok
23:35:58.0850 1520 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
23:35:58.0850 1520 WinUsb - ok
23:35:58.0928 1520 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
23:35:58.0944 1520 Wlansvc - ok
23:35:58.0960 1520 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
23:35:58.0960 1520 WmiAcpi - ok
23:35:58.0975 1520 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
23:35:58.0975 1520 wmiApSrv - ok
23:35:59.0053 1520 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
23:35:59.0069 1520 WMPNetworkSvc - ok
23:35:59.0100 1520 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
23:35:59.0100 1520 WPCSvc - ok
23:35:59.0131 1520 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
23:35:59.0131 1520 WPDBusEnum - ok
23:35:59.0178 1520 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
23:35:59.0178 1520 ws2ifsl - ok
23:35:59.0194 1520 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\System32\wscsvc.dll
23:35:59.0194 1520 wscsvc - ok
23:35:59.0194 1520 WSearch - ok
23:35:59.0303 1520 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
23:35:59.0318 1520 wuauserv - ok
23:35:59.0365 1520 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
23:35:59.0365 1520 WudfPf - ok
23:35:59.0396 1520 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
23:35:59.0396 1520 WUDFRd - ok
23:35:59.0428 1520 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
23:35:59.0428 1520 wudfsvc - ok
23:35:59.0474 1520 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
23:35:59.0474 1520 WwanSvc - ok
23:35:59.0521 1520 [ B07C5B7EFDF936FF93D4F540938725BE ] yukonw7 C:\Windows\system32\DRIVERS\yk62x86.sys
23:35:59.0521 1520 yukonw7 - ok
23:35:59.0552 1520 ================ Scan global ===============================
23:35:59.0584 1520 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
23:35:59.0646 1520 [ 48CB4FDBCAAEAC7BCE2F5941545FF071 ] C:\Windows\system32\winsrv.dll
23:35:59.0662 1520 [ 48CB4FDBCAAEAC7BCE2F5941545FF071 ] C:\Windows\system32\winsrv.dll
23:35:59.0693 1520 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
23:35:59.0724 1520 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
23:35:59.0740 1520 [Global] - ok
23:35:59.0740 1520 ================ Scan MBR ==================================
23:35:59.0755 1520 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
23:35:59.0958 1520 \Device\Harddisk0\DR0 - ok
23:35:59.0958 1520 ================ Scan VBR ==================================
23:35:59.0974 1520 [ 33E90EDCF431C0FFEAD2E68E038868A8 ] \Device\Harddisk0\DR0\Partition1
23:35:59.0974 1520 \Device\Harddisk0\DR0\Partition1 - ok
23:35:59.0989 1520 [ EAE899A80A4ABC0FB4E76C7CE614536E ] \Device\Harddisk0\DR0\Partition2
23:36:00.0005 1520 \Device\Harddisk0\DR0\Partition2 - ok
23:36:00.0005 1520 ============================================================
23:36:00.0005 1520 Scan finished
23:36:00.0005 1520 ============================================================
23:36:00.0005 2020 Detected object count: 0
23:36:00.0005 2020 Actual detected object count: 0
23:36:11.0767 3884 Deinitialize success

[/log]

Natsuki Kuga
komentarz
komentarz

Do OTL wklej:
[code]
:OTL
SRV - [2012-10-23 17:40:06 | 000,580,728 | ---- | M] (Threat Expert Ltd.) [Auto | Running] -- C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe -- (Browser Defender Update Service)
DRV - [2012-10-23 17:40:32 | 000,062,688 | ---- | M] (PC Tools) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PCTBD.sys -- (PCTBD)
FF - prefs.js..browser.startup.homepage: "http://search.conduit.com/?ctid=CT3242340&SearchSource=13&CUI=SB_CUI"
FF - prefs.js..extensions.enabledAddons: %7B0a3bed8d-198d-42a9-a7d1-983e6581f422%7D:10.13.40.15
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1
FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.aspx?ctid=CT3242340&SearchSource=2&q="
CHR - plugin: Babylon ToolBar (Enabled) = C:\Users\jacec\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0\BabylonChromeToolBar.dll
CHR - Extension: Babylon Toolbar = C:\Users\jacec\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0\
O2 - BHO: (PC Tools Browser Guard BHO) - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files\PC Tools\PC Tools Security\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)
O3 - HKLM\..\Toolbar: (PC Tools Browser Guard) - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files\PC Tools\PC Tools Security\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)

:Files
C:\Program Files\PC Tools
C:\Windows\System32\drivers\PCTBD.sys
C:\Windows\SGDetectionTool.dll
C:\Windows\PCTBDCore.dll
C:\Windows\PCTBDRes.dll
C:\Program Files\PC Tools
C:\Users\jacec\AppData\Roaming\TestApp
C:\Windows\System32\drivers\PCTSD.sys
C:\ProgramData\PC Tools
C:\Users\jacec\Desktop\sdsetup.exe
C:\Users\jacec\AppData\Roaming\NBT

:Services
Browser Defender Update Service
PCTBD
PCTSD
[/code]
[b]Wykonaj skrypt,[/b] pokaż raport.

Po wykonaniu pokaż nowy zestaw logów.

  • Dobra wypowiedź 1
swiatek94
komentarz
komentarz

[log]========== OTL ==========
Service Browser Defender Update Service stopped successfully!
Service Browser Defender Update Service deleted successfully!
C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe moved successfully.
Service PCTBD stopped successfully!
Service PCTBD deleted successfully!
C:\Windows\System32\drivers\PCTBD.sys moved successfully.
Prefs.js: "http://search.conduit.com/?ctid=CT3242340&SearchSource=13&CUI=SB_CUI" removed from browser.startup.homepage
Prefs.js: %7B0a3bed8d-198d-42a9-a7d1-983e6581f422%7D:10.13.40.15 removed from extensions.enabledAddons
Prefs.js: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1 removed from extensions.enabledAddons
Prefs.js: "http://search.conduit.com/ResultsExt.aspx?ctid=CT3242340&SearchSource=2&q=" removed from keyword.URL
C:\Users\jacec\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0\BabylonChromeToolBar.dll moved successfully.
C:\Users\jacec\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0 folder moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2A0F3D1B-0909-4FF4-B272-609CCE6054E7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2A0F3D1B-0909-4FF4-B272-609CCE6054E7}\ deleted successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\PCTBrowserDefender.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{472734EA-242A-422B-ADF8-83D1E48CC825} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{472734EA-242A-422B-ADF8-83D1E48CC825}\ deleted successfully.
File C:\Program Files\PC Tools\PC Tools Security\BDT\PCTBrowserDefender.dll not found.
========== FILES ==========
C:\Program Files\PC Tools\PC Tools Security\TFEngine folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\WCID folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\WINNT_x86-msvc\components folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\WINNT_x86-msvc folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\Linux_x86_64-gcc3\components folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\Linux_x86_64-gcc3 folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\Linux_x86-gcc3\components folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\Linux_x86-gcc3 folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\9\WINNT_x86-msvc\components folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\9\WINNT_x86-msvc folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\9 folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\8\WINNT_x86-msvc\components folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\8\WINNT_x86-msvc folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\8 folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\7\WINNT_x86-msvc\components folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\7\WINNT_x86-msvc folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\7 folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\6\WINNT_x86-msvc\components folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\6\WINNT_x86-msvc folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\6 folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\5\WINNT_x86-msvc\components folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\5\WINNT_x86-msvc folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\5 folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\16\WINNT_x86-msvc\components folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\16\WINNT_x86-msvc folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\16 folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\15\WINNT_x86-msvc\components folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\15\WINNT_x86-msvc folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\15 folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\14\WINNT_x86-msvc\components folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\14\WINNT_x86-msvc folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\14 folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\13\WINNT_x86-msvc\components folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\13\WINNT_x86-msvc folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\13 folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\12\WINNT_x86-msvc\components folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\12\WINNT_x86-msvc folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\12 folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\11\WINNT_x86-msvc\components folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\11\WINNT_x86-msvc folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\11 folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\10\WINNT_x86-msvc\components folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\10\WINNT_x86-msvc folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform\10 folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\platform folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\data folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\components folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\chrome folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT\DRM folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security\BDT folder moved successfully.
C:\Program Files\PC Tools\PC Tools Security folder moved successfully.
C:\Program Files\PC Tools folder moved successfully.
File\Folder C:\Windows\System32\drivers\PCTBD.sys not found.
C:\Windows\SGDetectionTool.dll moved successfully.
C:\Windows\PCTBDCore.dll moved successfully.
C:\Windows\PCTBDRes.dll moved successfully.
File\Folder C:\Program Files\PC Tools not found.
C:\Users\jacec\AppData\Roaming\TestApp folder moved successfully.
C:\Windows\System32\drivers\PCTSD.sys moved successfully.
C:\ProgramData\PC Tools\DownloadManager\SecurityScanner folder moved successfully.
C:\ProgramData\PC Tools\DownloadManager\SecurityPackage folder moved successfully.
C:\ProgramData\PC Tools\DownloadManager\SecurityLanguageFiles folder moved successfully.
C:\ProgramData\PC Tools\DownloadManager\SecurityDatabase folder moved successfully.
C:\ProgramData\PC Tools\DownloadManager\Security\7.0.0.0\SD\NRM\1 folder moved successfully.
C:\ProgramData\PC Tools\DownloadManager\Security\7.0.0.0\SD\NRM folder moved successfully.
C:\ProgramData\PC Tools\DownloadManager\Security\7.0.0.0\SD folder moved successfully.
C:\ProgramData\PC Tools\DownloadManager\Security\7.0.0.0 folder moved successfully.
C:\ProgramData\PC Tools\DownloadManager\Security folder moved successfully.
C:\ProgramData\PC Tools\DownloadManager folder moved successfully.
C:\ProgramData\PC Tools folder moved successfully.
C:\Users\jacec\Desktop\sdsetup.exe moved successfully.
C:\Users\jacec\AppData\Roaming\NBT folder moved successfully.
========== SERVICES/DRIVERS ==========
Error: No service named Browser Defender Update Service was found to stop!
Service\Driver key Browser Defender Update Service not found.
Error: No service named PCTBD was found to stop!
Service\Driver key PCTBD not found.
Error: No service named PCTSD was found to stop!
Service\Driver key PCTSD not found.

OTL by OldTimer - Version 3.2.69.0 log created on 12282012_155915

[/log]

Proszę

Natsuki Kuga
komentarz
komentarz

Jeszcze nowy log z OTL ;)

  • Dobra wypowiedź 1
swiatek94
komentarz
komentarz (edytowane)

Będzie za minutkę ;)

[log]OTL logfile created on: 2012-12-28 21:37:48 - Run 4
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\jacec\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Poland | Language: PLK | Date Format: yyyy-MM-dd

2,97 Gb Total Physical Memory | 1,84 Gb Available Physical Memory | 61,86% Memory free
5,93 Gb Paging File | 4,78 Gb Available in Paging File | 80,55% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 101,47 Gb Total Space | 60,99 Gb Free Space | 60,11% Space Free | Partition Type: NTFS
Drive D: | 271,14 Gb Total Space | 44,30 Gb Free Space | 16,34% Space Free | Partition Type: NTFS

Computer Name: ONLYMINE | User Name: jacec | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2012-12-26 04:52:38 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\jacec\Desktop\OTL.exe
PRC - [2012-12-18 11:55:19 | 000,916,960 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012-12-18 11:55:18 | 000,016,864 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
PRC - [2012-11-29 00:49:26 | 000,151,952 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunesHelper.exe
PRC - [2012-11-29 00:49:00 | 000,552,848 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe
PRC - [2012-08-11 16:43:06 | 000,055,184 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PRC - [2012-04-04 06:53:50 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012-02-11 06:37:49 | 000,317,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spoolsv.exe
PRC - [2011-11-17 06:29:50 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lsass.exe
PRC - [2011-08-30 22:05:02 | 000,390,504 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2011-05-04 05:28:31 | 000,427,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchIndexer.exe
PRC - [2011-05-04 05:28:31 | 000,164,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchProtocolHost.exe
PRC - [2011-05-04 05:28:31 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchFilterHost.exe
PRC - [2011-04-22 13:21:10 | 000,247,728 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
PRC - [2011-04-22 13:21:10 | 000,092,592 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
PRC - [2011-02-25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2011-02-09 17:26:34 | 000,203,776 | ---- | M] () -- C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe
PRC - [2010-11-20 13:17:56 | 001,121,792 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
PRC - [2010-11-20 13:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winlogon.exe
PRC - [2010-11-20 13:17:48 | 000,204,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\servicing\TrustedInstaller.exe
PRC - [2010-11-20 13:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2010-11-20 13:17:41 | 001,174,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Sidebar\sidebar.exe
PRC - [2010-11-20 13:17:30 | 003,179,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppsvc.exe
PRC - [2010-11-20 13:17:16 | 000,267,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lsm.exe
PRC - [2010-11-20 13:16:54 | 000,100,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\audiodg.exe
PRC - [2010-09-29 02:33:40 | 000,249,856 | ---- | M] () -- C:\ProgramData\DatacardService\DCService.exe
PRC - [2010-09-29 02:33:34 | 000,228,352 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\ProgramData\DatacardService\DCSHelper.exe
PRC - [2009-12-08 14:51:52 | 000,774,144 | ---- | M] (Sony Ericsson Mobile Communications AB) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe
PRC - [2009-11-16 09:04:30 | 000,735,960 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2009-11-16 09:03:32 | 002,054,360 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2009-08-18 01:36:36 | 000,348,160 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2009-08-18 01:36:08 | 000,176,128 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2009-07-14 02:14:45 | 000,096,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wininit.exe
PRC - [2009-07-14 02:14:43 | 000,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UI0Detect.exe
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:39 | 000,069,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\smss.exe
PRC - [2009-07-14 02:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\services.exe
PRC - [2009-07-14 02:14:19 | 000,092,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwm.exe
PRC - [2009-07-14 02:14:16 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\csrss.exe
PRC - [2009-04-30 11:23:26 | 000,090,112 | ---- | M] () -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
PRC - [2007-09-02 12:58:52 | 000,495,616 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.exe


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2012-12-26 04:52:38 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\jacec\Desktop\OTL.exe
MOD - [2012-12-18 11:55:19 | 004,220,896 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\gkmedias.dll
MOD - [2012-12-18 11:55:19 | 002,397,152 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012-12-18 11:55:19 | 000,916,960 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
MOD - [2012-12-18 11:55:19 | 000,810,976 | ---- | M] (sqlite.org) -- C:\Program Files\Mozilla Firefox\mozsqlite3.dll
MOD - [2012-12-18 11:55:19 | 000,638,432 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nss3.dll
MOD - [2012-12-18 11:55:19 | 000,370,656 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssckbi.dll
MOD - [2012-12-18 11:55:19 | 000,262,112 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
MOD - [2012-12-18 11:55:19 | 000,258,528 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\freebl3.dll
MOD - [2012-12-18 11:55:19 | 000,172,000 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nspr4.dll
MOD - [2012-12-18 11:55:19 | 000,124,896 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\mozglue.dll
MOD - [2012-12-18 11:55:19 | 000,015,840 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\mozalloc.dll
MOD - [2012-12-18 11:55:18 | 000,155,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\softokn3.dll
MOD - [2012-12-18 11:55:18 | 000,145,376 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\ssl3.dll
MOD - [2012-12-18 11:55:18 | 000,096,224 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssdbm3.dll
MOD - [2012-12-18 11:55:18 | 000,092,640 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssutil3.dll
MOD - [2012-12-18 11:55:18 | 000,091,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\smime3.dll
MOD - [2012-12-18 11:55:18 | 000,021,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\plc4.dll
MOD - [2012-12-18 11:55:18 | 000,020,960 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\plds4.dll
MOD - [2012-12-18 11:55:18 | 000,016,864 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
MOD - [2012-12-18 11:55:17 | 015,112,160 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\xul.dll
MOD - [2012-12-18 11:55:17 | 000,019,424 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\xpcom.dll
MOD - [2012-12-05 17:24:18 | 000,163,256 | ---- | M] (Microsoft Corporation) -- C:\Users\jacec\AppData\Roaming\Mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\plugins\np-mswmp.dll
MOD - [2012-11-29 01:23:00 | 000,041,360 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunesHelper.Resources\pl.lproj\iTunesHelperLocalized.dll
MOD - [2012-11-29 00:49:26 | 000,151,952 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunesHelper.exe
MOD - [2012-11-29 00:49:26 | 000,148,368 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunesHelper.dll
MOD - [2012-11-29 00:49:26 | 000,039,824 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll
MOD - [2012-11-28 14:13:30 | 000,124,816 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll
MOD - [2012-11-28 14:13:28 | 000,043,408 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll
MOD - [2012-11-28 14:13:20 | 001,079,184 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll
MOD - [2012-11-28 14:13:16 | 000,075,664 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
MOD - [2012-11-14 03:48:26 | 012,320,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.dll
MOD - [2012-11-14 03:14:59 | 009,738,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieframe.dll
MOD - [2012-11-14 03:09:22 | 001,800,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
MOD - [2012-11-14 02:57:44 | 001,103,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\urlmon.dll
MOD - [2012-11-14 02:57:37 | 001,129,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wininet.dll
MOD - [2012-11-14 02:52:27 | 000,194,560 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\ieproxy.dll
MOD - [2012-11-14 02:49:19 | 000,717,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
MOD - [2012-11-14 02:48:27 | 000,420,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
MOD - [2012-11-14 02:46:38 | 001,793,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iertutil.dll
MOD - [2012-10-09 18:40:31 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll
MOD - [2012-10-04 17:43:05 | 000,868,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kernel32.dll
MOD - [2012-10-04 17:43:05 | 000,293,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KernelBase.dll
MOD - [2012-10-03 17:42:26 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nlaapi.dll
MOD - [2012-09-29 19:54:26 | 000,080,968 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll
MOD - [2012-09-25 23:47:43 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\synceng.dll
MOD - [2012-08-24 17:57:48 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wintrust.dll
MOD - [2012-08-11 16:43:16 | 001,447,824 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
MOD - [2012-07-18 10:10:25 | 000,770,384 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\msvcr100.dll
MOD - [2012-07-18 10:10:25 | 000,421,200 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\msvcp100.dll
MOD - [2012-06-09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shell32.dll
MOD - [2012-06-06 06:05:52 | 001,390,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml6.dll
MOD - [2012-06-06 06:05:52 | 001,236,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml3.dll
MOD - [2012-06-02 05:40:39 | 000,225,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\schannel.dll
MOD - [2012-06-02 05:36:29 | 001,159,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\crypt32.dll
MOD - [2012-05-30 19:06:48 | 000,087,912 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2012-05-30 19:06:34 | 000,456,552 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll
MOD - [2012-05-30 19:06:30 | 001,292,136 | ---- | M] (The ICU Project) -- C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll
MOD - [2012-05-30 19:06:30 | 001,242,512 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2012-05-30 19:06:30 | 000,923,496 | ---- | M] (The ICU Project) -- C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll
MOD - [2012-05-30 19:06:28 | 016,303,976 | ---- | M] (The ICU Project) -- C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll
MOD - [2012-05-30 19:06:20 | 002,463,632 | ---- | M] (Apple, Inc.) -- C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll
MOD - [2012-04-21 05:21:01 | 001,625,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
MOD - [2012-04-07 12:26:29 | 002,342,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msi.dll
MOD - [2012-03-03 06:31:19 | 001,077,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
MOD - [2012-03-01 06:33:23 | 000,159,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imagehlp.dll
MOD - [2012-01-04 09:58:41 | 000,442,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntshrui.dll
MOD - [2012-01-01 20:47:54 | 000,811,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\user32.dll
MOD - [2011-12-30 06:27:56 | 000,478,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl
MOD - [2011-12-16 08:52:58 | 000,690,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcrt.dll
MOD - [2011-11-19 00:28:14 | 000,353,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
MOD - [2011-11-19 00:28:14 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
MOD - [2011-11-19 00:28:14 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
MOD - [2011-11-17 06:38:39 | 001,288,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntdll.dll
MOD - [2011-11-17 06:35:02 | 000,314,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\webio.dll
MOD - [2011-11-17 06:34:55 | 000,100,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspicli.dll
MOD - [2011-11-17 06:34:52 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secur32.dll
MOD - [2011-08-30 22:05:04 | 000,073,064 | ---- | M] (Apple Inc.) -- C:\Windows\System32\dnssd.dll
MOD - [2011-08-30 22:05:02 | 000,121,704 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mdnsNSP.dll
MOD - [2011-08-27 05:26:27 | 000,571,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oleaut32.dll
MOD - [2011-08-27 05:26:27 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oleacc.dll
MOD - [2011-06-16 05:33:18 | 000,180,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xmllite.dll
MOD - [2011-06-15 17:02:29 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
MOD - [2011-06-15 17:02:27 | 001,093,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll
MOD - [2011-06-15 17:02:24 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
MOD - [2011-06-15 17:02:24 | 000,554,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
MOD - [2011-05-28 22:04:56 | 000,140,288 | ---- | M] (Alexander Roshal) -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2011-05-17 08:27:52 | 000,413,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
MOD - [2011-05-04 05:34:43 | 001,549,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll
MOD - [2011-05-04 05:32:02 | 000,666,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mssvp.dll
MOD - [2011-05-04 05:28:31 | 000,164,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchProtocolHost.exe
MOD - [2011-05-04 05:28:31 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchFilterHost.exe
MOD - [2011-04-22 13:21:10 | 000,247,728 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
MOD - [2011-03-03 06:38:01 | 000,270,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dnsapi.dll
MOD - [2011-02-25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
MOD - [2011-02-19 07:30:50 | 000,739,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
MOD - [2011-01-17 06:47:13 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
MOD - [2010-11-20 13:21:39 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscapi.dll
MOD - [2010-11-20 13:21:39 | 000,040,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wtsapi32.dll
MOD - [2010-11-20 13:21:39 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wshbth.dll
MOD - [2010-11-20 13:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ws2_32.dll
MOD - [2010-11-20 13:21:38 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WPDShServiceObj.dll
MOD - [2010-11-20 13:21:37 | 011,410,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmp.dll
MOD - [2010-11-20 13:21:36 | 001,010,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecs.dll
MOD - [2010-11-20 13:21:36 | 000,351,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winhttp.dll
MOD - [2010-11-20 13:21:36 | 000,269,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wldap32.dll
MOD - [2010-11-20 13:21:36 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winmm.dll
MOD - [2010-11-20 13:21:36 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winsta.dll
MOD - [2010-11-20 13:21:36 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wkscli.dll
MOD - [2010-11-20 13:21:35 | 001,063,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\werconcpl.dll
MOD - [2010-11-20 13:21:35 | 000,381,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wer.dll
MOD - [2010-11-20 13:21:35 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wdscore.dll
MOD - [2010-11-20 13:21:34 | 001,128,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vssapi.dll
MOD - [2010-11-20 13:21:33 | 002,983,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UIRibbon.dll
MOD - [2010-11-20 13:21:33 | 000,626,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\usp10.dll
MOD - [2010-11-20 13:21:33 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\userenv.dll
MOD - [2010-11-20 13:21:32 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\twext.dll
MOD - [2010-11-20 13:21:30 | 000,082,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\thumbcache.dll
MOD - [2010-11-20 13:21:28 | 000,505,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
MOD - [2010-11-20 13:21:27 | 002,146,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SyncCenter.dll
MOD - [2010-11-20 13:21:27 | 000,380,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sxs.dll
MOD - [2010-11-20 13:21:27 | 000,159,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\syncui.dll
MOD - [2010-11-20 13:21:27 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
MOD - [2010-11-20 13:21:26 | 000,228,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\stobject.dll
MOD - [2010-11-20 13:21:26 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srvcli.dll
MOD - [2010-11-20 13:21:25 | 000,301,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srchadmin.dll
MOD - [2010-11-20 13:21:24 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spp.dll
MOD - [2010-11-20 13:21:23 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SndVolSSO.dll
MOD - [2010-11-20 13:21:19 | 000,350,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shlwapi.dll
MOD - [2010-11-20 13:21:15 | 000,179,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shdocvw.dll
MOD - [2010-11-20 13:21:15 | 000,108,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shacct.dll
MOD - [2010-11-20 13:21:14 | 001,667,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\setupapi.dll
MOD - [2010-11-20 13:21:03 | 000,653,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rpcrt4.dll
MOD - [2010-11-20 13:21:03 | 000,046,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RpcRtRemote.dll
MOD - [2010-11-20 13:21:03 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rtutils.dll
MOD - [2010-11-20 13:21:00 | 000,080,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\QUTIL.DLL
MOD - [2010-11-20 13:20:57 | 000,988,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\propsys.dll
MOD - [2010-11-20 13:20:57 | 000,171,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\QAGENT.DLL
MOD - [2010-11-20 13:20:57 | 000,165,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\provsvc.dll
MOD - [2010-11-20 13:20:56 | 000,395,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\prnfldr.dll
MOD - [2010-11-20 13:20:55 | 001,750,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnidui.dll
MOD - [2010-11-20 13:20:55 | 000,547,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll
MOD - [2010-11-20 13:20:49 | 001,414,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ole32.dll
MOD - [2010-11-20 13:20:49 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\olepro32.dll
MOD - [2010-11-20 13:20:29 | 002,494,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netshell.dll
MOD - [2010-11-20 13:20:29 | 001,661,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\networkexplorer.dll
MOD - [2010-11-20 13:20:29 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netutils.dll
MOD - [2010-11-20 13:19:56 | 000,232,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mswsock.dll
MOD - [2010-11-20 13:19:55 | 000,120,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvfw32.dll
MOD - [2010-11-20 13:19:54 | 000,167,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msutb.dll
MOD - [2010-11-20 13:19:47 | 000,592,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msftedit.dll
MOD - [2010-11-20 13:19:45 | 000,481,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscms.dll
MOD - [2010-11-20 13:19:45 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msasn1.dll
MOD - [2010-11-20 13:19:39 | 000,213,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MMDevAPI.dll
MOD - [2010-11-20 13:19:32 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mapi32.dll
MOD - [2010-11-20 13:19:23 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IPHLPAPI.DLL
MOD - [2010-11-20 13:19:22 | 000,118,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imm32.dll
MOD - [2010-11-20 13:19:21 | 000,392,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imapi2.dll
MOD - [2010-11-20 13:19:10 | 000,312,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hgcpl.dll
MOD - [2010-11-20 13:19:05 | 002,576,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
MOD - [2010-11-20 13:19:05 | 000,304,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gdi32.dll
MOD - [2010-11-20 13:19:03 | 000,216,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
MOD - [2010-11-20 13:19:03 | 000,206,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\framedynos.dll
MOD - [2010-11-20 13:19:01 | 001,493,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll
MOD - [2010-11-20 13:18:38 | 000,128,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\EhStorAPI.dll
MOD - [2010-11-20 13:18:36 | 000,508,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
MOD - [2010-11-20 13:18:36 | 000,399,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DXP.dll
MOD - [2010-11-20 13:18:35 | 001,371,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmcore.dll
MOD - [2010-11-20 13:18:35 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmredir.dll
MOD - [2010-11-20 13:18:27 | 000,854,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dbghelp.dll
MOD - [2010-11-20 13:18:25 | 001,171,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
MOD - [2010-11-20 13:18:25 | 001,003,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptui.dll
MOD - [2010-11-20 13:18:25 | 000,418,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cscui.dll
MOD - [2010-11-20 13:18:25 | 000,219,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
MOD - [2010-11-20 13:18:25 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cscobj.dll
MOD - [2010-11-20 13:18:25 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cscapi.dll
MOD - [2010-11-20 13:18:25 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cscdll.dll
MOD - [2010-11-20 13:18:24 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\credssp.dll
MOD - [2010-11-20 13:18:23 | 000,530,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
MOD - [2010-11-20 13:18:23 | 000,485,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\comdlg32.dll
MOD - [2010-11-20 13:18:12 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cfgmgr32.dll
MOD - [2010-11-20 13:18:06 | 000,740,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\batmeter.dll
MOD - [2010-11-20 13:18:05 | 001,792,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
MOD - [2010-11-20 13:18:05 | 000,195,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AudioSes.dll
MOD - [2010-11-20 13:18:03 | 000,295,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\apphelp.dll
MOD - [2010-11-20 13:18:02 | 000,640,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\advapi32.dll
MOD - [2010-11-20 13:18:01 | 000,744,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ActionCenter.dll
MOD - [2010-11-20 13:18:01 | 000,309,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\actxprxy.dll
MOD - [2010-11-20 13:18:01 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\acppage.dll
MOD - [2010-11-20 13:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
MOD - [2010-11-20 13:17:41 | 001,174,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Sidebar\sidebar.exe
MOD - [2010-11-20 13:16:50 | 000,692,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bthprops.cpl
MOD - [2010-11-20 13:16:50 | 000,320,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winspool.drv
MOD - [2010-11-20 13:16:50 | 000,172,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wdmaud.drv
MOD - [2010-11-20 13:08:44 | 012,625,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
MOD - [2010-11-20 12:55:09 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
MOD - [2010-11-05 02:58:19 | 000,297,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscoree.dll
MOD - [2010-09-29 02:33:34 | 000,228,352 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\ProgramData\DatacardService\DCSHelper.exe
MOD - [2010-08-17 13:36:04 | 005,969,360 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32.dll
MOD - [2010-04-05 13:50:00 | 000,011,080 | R--- | M] (WinZip Computing, S.L.) -- C:\Program Files\WinZip\WZSHLSTB.DLL
MOD - [2010-03-15 16:57:02 | 000,053,024 | ---- | M] (Open Source Software community project) -- C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll
MOD - [2009-12-08 14:51:52 | 000,774,144 | ---- | M] (Sony Ericsson Mobile Communications AB) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe
MOD - [2009-12-04 12:52:14 | 000,327,680 | ---- | M] (Avanquest Software) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\ModemWiz.dll
MOD - [2009-11-24 16:31:32 | 000,549,888 | ---- | M] (Avanquest Software) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\NewUI.dll
MOD - [2009-11-16 09:20:20 | 000,291,000 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiUpdate.dll
MOD - [2009-11-16 09:17:30 | 000,183,880 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll
MOD - [2009-11-16 09:16:42 | 000,097,360 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiMailPlugins.dll
MOD - [2009-11-16 09:08:48 | 000,307,480 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiScan.dll
MOD - [2009-11-16 09:06:32 | 000,904,880 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiEpfw.dll
MOD - [2009-11-16 09:03:32 | 002,054,360 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
MOD - [2009-11-16 09:02:04 | 000,109,720 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiEmon.dll
MOD - [2009-11-16 09:00:14 | 000,101,480 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiDmon.dll
MOD - [2009-11-16 08:57:16 | 000,142,680 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiAmon.dll
MOD - [2009-08-18 01:31:32 | 002,469,888 | ---- | M] (ATI Technologies Inc. ) -- C:\Windows\System32\atidxx32.dll
MOD - [2009-07-14 02:17:54 | 000,242,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rsaenh.dll
MOD - [2009-07-14 02:16:21 | 000,284,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WWanAPI.dll
MOD - [2009-07-14 02:16:21 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wwapi.dll
MOD - [2009-07-14 02:16:20 | 000,095,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscinterop.dll
MOD - [2009-07-14 02:16:20 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wsock32.dll
MOD - [2009-07-14 02:16:20 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wshqos.dll
MOD - [2009-07-14 02:16:20 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wship6.dll
MOD - [2009-07-14 02:16:20 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WSHTCPIP.DLL
MOD - [2009-07-14 02:16:19 | 000,108,544 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Sidebar\wlsrvc.dll
MOD - [2009-07-14 02:16:19 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanapi.dll
MOD - [2009-07-14 02:16:19 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winrnr.dll
MOD - [2009-07-14 02:16:19 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winnsi.dll
MOD - [2009-07-14 02:16:19 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanutil.dll
MOD - [2009-07-14 02:16:18 | 000,262,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wevtapi.dll
MOD - [2009-07-14 02:16:18 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wercplsupport.dll
MOD - [2009-07-14 02:16:17 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\uxtheme.dll
MOD - [2009-07-14 02:16:17 | 000,099,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UIAnimation.dll
MOD - [2009-07-14 02:16:17 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vsstrace.dll
MOD - [2009-07-14 02:16:17 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\version.dll
MOD - [2009-07-14 02:16:16 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll
MOD - [2009-07-14 02:16:16 | 000,239,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\uDWM.dll
MOD - [2009-07-14 02:16:15 | 000,192,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tapi32.dll
MOD - [2009-07-14 02:16:15 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Syncreg.dll
MOD - [2009-07-14 02:16:15 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srclient.dll
MOD - [2009-07-14 02:16:15 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\slc.dll
MOD - [2009-07-14 02:16:14 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sfc_os.dll
MOD - [2009-07-14 02:16:14 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shfolder.dll
MOD - [2009-07-14 02:16:13 | 000,129,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SensorsApi.dll
MOD - [2009-07-14 02:16:13 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sechost.dll
MOD - [2009-07-14 02:16:13 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\samlib.dll
MOD - [2009-07-14 02:16:13 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SensApi.dll
MOD - [2009-07-14 02:16:12 | 000,325,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasapi32.dll
MOD - [2009-07-14 02:16:12 | 000,159,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll
MOD - [2009-07-14 02:16:12 | 000,145,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\powrprof.dll
MOD - [2009-07-14 02:16:12 | 000,139,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PeerDist.dll
MOD - [2009-07-14 02:16:12 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PlaySndSrv.dll
MOD - [2009-07-14 02:16:12 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasman.dll
MOD - [2009-07-14 02:16:12 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnrpnsp.dll
MOD - [2009-07-14 02:16:12 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\profapi.dll
MOD - [2009-07-14 02:16:12 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasadhlp.dll
MOD - [2009-07-14 02:16:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\psapi.dll
MOD - [2009-07-14 02:16:11 | 000,121,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntmarta.dll
MOD - [2009-07-14 02:16:11 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\npmproxy.dll
MOD - [2009-07-14 02:16:11 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nsi.dll
MOD - [2009-07-14 02:16:03 | 000,360,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netprofm.dll
MOD - [2009-07-14 02:16:03 | 000,313,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\newdev.dll
MOD - [2009-07-14 02:16:02 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NapiNSP.dll
MOD - [2009-07-14 02:15:50 | 000,406,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcp60.dll
MOD - [2009-07-14 02:15:48 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mssprxy.dll
MOD - [2009-07-14 02:15:47 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msshooks.dll
MOD - [2009-07-14 02:15:44 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msimtf.dll
MOD - [2009-07-14 02:15:44 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msiltcfg.dll
MOD - [2009-07-14 02:15:44 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msidle.dll
MOD - [2009-07-14 02:15:44 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msimg32.dll
MOD - [2009-07-14 02:15:43 | 000,828,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msctf.dll
MOD - [2009-07-14 02:15:43 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MsCtfMonitor.dll
MOD - [2009-07-14 02:15:42 | 000,072,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msacm32.dll
MOD - [2009-07-14 02:15:41 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mpr.dll
MOD - [2009-07-14 02:15:40 | 000,177,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mlang.dll
MOD - [2009-07-14 02:15:40 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\midimap.dll
MOD - [2009-07-14 02:15:39 | 000,352,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
MOD - [2009-07-14 02:15:36 | 000,226,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\LocationApi.dll
MOD - [2009-07-14 02:15:36 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lpk.dll
MOD - [2009-07-14 02:15:36 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\linkinfo.dll
MOD - [2009-07-14 02:15:35 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ksuser.dll
MOD - [2009-07-14 02:15:27 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IconCodecService.dll
MOD - [2009-07-14 02:15:24 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hcproviders.dll
MOD - [2009-07-14 02:15:24 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hid.dll
MOD - [2009-07-14 02:15:22 | 000,848,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSST.dll
MOD - [2009-07-14 02:15:21 | 000,227,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSAPI.dll
MOD - [2009-07-14 02:15:20 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\feclient.dll
MOD - [2009-07-14 02:15:19 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\es.dll
MOD - [2009-07-14 02:15:14 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\EhStorShell.dll
MOD - [2009-07-14 02:15:14 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehSSO.dll
MOD - [2009-07-14 02:15:13 | 000,717,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dui70.dll
MOD - [2009-07-14 02:15:13 | 000,453,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dsound.dll
MOD - [2009-07-14 02:15:13 | 000,181,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\duser.dll
MOD - [2009-07-14 02:15:13 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmapi.dll
MOD - [2009-07-14 02:15:13 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dsrole.dll
MOD - [2009-07-14 02:15:11 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devobj.dll
MOD - [2009-07-14 02:15:11 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc.dll
MOD - [2009-07-14 02:15:11 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devrtl.dll
MOD - [2009-07-14 02:15:11 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dimsjob.dll
MOD - [2009-07-14 02:15:10 | 000,531,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ddraw.dll
MOD - [2009-07-14 02:15:10 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ddrawex.dll
MOD - [2009-07-14 02:15:09 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
MOD - [2009-07-14 02:15:08 | 000,817,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3dim700.dll
MOD - [2009-07-14 02:15:07 | 001,030,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
MOD - [2009-07-14 02:15:07 | 000,190,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
MOD - [2009-07-14 02:15:07 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptsp.dll
MOD - [2009-07-14 02:15:07 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptbase.dll
MOD - [2009-07-14 02:15:03 | 000,522,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\clbcatq.dll
MOD - [2009-07-14 02:14:58 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avrt.dll
MOD - [2009-07-14 02:14:57 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\authz.dll
MOD - [2009-07-14 02:14:57 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\atl.dll
MOD - [2009-07-14 02:14:53 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AltTab.dll
MOD - [2009-07-14 02:14:19 | 000,092,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwm.exe
MOD - [2009-07-14 02:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscript.ocx
MOD - [2009-07-14 02:14:10 | 000,064,000 | ---- | M] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codeca.acm
MOD - [2009-07-14 02:14:09 | 001,140,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscui.cpl
MOD - [2009-07-14 02:14:08 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msacm32.drv
MOD - [2009-07-14 02:10:22 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sfc.dll
MOD - [2009-07-14 02:09:00 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\normaliz.dll
MOD - [2009-07-14 02:05:30 | 000,925,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSRESM.dll
MOD - [2009-06-24 09:32:20 | 000,262,144 | ---- | M] (Avanquest Software) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\bvrpctln.dll
MOD - [2009-06-17 12:09:12 | 000,356,352 | ---- | M] (Avanquest Software) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\RasCnxMngr.dll
MOD - [2009-06-17 09:28:04 | 000,317,440 | ---- | M] (BVRP Software) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\MExplorer.dll
MOD - [2009-05-15 16:14:34 | 000,114,688 | ---- | M] (BVRP Software) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\WUNPACLN.dll
MOD - [2009-04-02 14:57:42 | 000,278,528 | ---- | M] (BVRP Software) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\WFP1N.dll
MOD - [2009-02-05 13:25:38 | 000,049,152 | ---- | M] (Avanquest Software) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\bvrpnac.dll
MOD - [2008-12-05 15:05:56 | 000,073,728 | ---- | M] (Avanquest Software) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\Comm.dll
MOD - [2007-09-02 12:58:52 | 000,495,616 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.exe
MOD - [2007-09-02 12:57:36 | 000,069,632 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.dll
MOD - [2007-02-07 14:31:36 | 000,036,864 | ---- | M] (Sony Ericsson Mobile Communications AB) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\ModExch.dll


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV - [2012-12-18 11:55:19 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012-07-13 12:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012-04-04 06:53:50 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012-01-01 20:47:34 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2011-04-22 13:21:10 | 000,092,592 | ---- | M] (TomTom) [Auto | Running] -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe -- (TomTomHOMEService)
SRV - [2011-02-09 17:26:34 | 000,203,776 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Mobile Partner\UpdateDog\ouc.exe -- (Mobile Partner. RunOuc)
SRV - [2010-09-29 02:33:40 | 000,249,856 | ---- | M] () [Auto | Running] -- C:\ProgramData\DatacardService\DCService.exe -- (DCService.exe)
SRV - [2009-11-16 09:12:54 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2009-11-16 09:04:30 | 000,735,960 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2009-08-18 01:36:08 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2009-07-14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009-07-14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009-07-14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009-04-30 11:23:26 | 000,090,112 | ---- | M] () [Auto | Running] -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe -- (OMSI download service)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\tsusbhub.sys -- (tsusbhub)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\synth3dvsc.sys -- (Synth3dVsc)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ewusbfake.sys -- (hwusbfake)
DRV - [2011-02-09 17:26:36 | 000,208,896 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ewusbnet.sys -- (ewusbnet)
DRV - [2011-02-09 17:26:36 | 000,106,880 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2011-02-09 17:26:36 | 000,102,784 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ew_hwusbdev.sys -- (ew_hwusbdev)
DRV - [2011-02-09 17:26:36 | 000,072,832 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ew_jubusenum.sys -- (huawei_enumerator)
DRV - [2011-02-09 17:26:36 | 000,011,136 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ew_usbenumfilter.sys -- (ew_usbenumfilter)
DRV - [2010-11-20 13:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010-11-20 13:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010-11-20 13:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010-11-20 11:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010-11-20 11:21:14 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2010-11-20 10:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010-11-20 10:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010-11-20 10:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010-03-15 08:38:44 | 000,124,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1039mdm.sys -- (s1039mdm)
DRV - [2010-03-15 08:38:44 | 000,123,504 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1039unic.sys -- (s1039unic)
DRV - [2010-03-15 08:38:44 | 000,117,872 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1039mgmt.sys -- (s1039mgmt)
DRV - [2010-03-15 08:38:44 | 000,113,904 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1039obex.sys -- (s1039obex)
DRV - [2010-03-15 08:38:44 | 000,098,672 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1039bus.sys -- (s1039bus)
DRV - [2010-03-15 08:38:44 | 000,025,456 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1039nd5.sys -- (s1039nd5)
DRV - [2010-03-15 08:38:44 | 000,014,960 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1039mdfl.sys -- (s1039mdfl)
DRV - [2009-11-16 09:06:52 | 000,095,896 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\epfwwfpr.sys -- (epfwwfpr)
DRV - [2009-11-16 09:03:36 | 000,108,792 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\System32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2009-11-16 08:56:12 | 000,116,520 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\Windows\System32\drivers\eamon.sys -- (eamon)
DRV - [2009-08-18 02:48:06 | 004,994,560 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2009-07-14 00:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2009-07-13 23:02:53 | 000,311,296 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\yk62x86.sys -- (yukonw7)
DRV - [2009-07-13 23:02:51 | 004,231,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netw5v32.sys -- (netw5v32)
DRV - [2009-03-25 16:48:00 | 000,114,728 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018mdm.sys -- (s1018mdm)
DRV - [2009-03-25 16:48:00 | 000,109,864 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018unic.sys -- (s1018unic)
DRV - [2009-03-25 16:48:00 | 000,106,208 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018mgmt.sys -- (s1018mgmt)
DRV - [2009-03-25 16:48:00 | 000,104,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018obex.sys -- (s1018obex)
DRV - [2009-03-25 16:48:00 | 000,086,824 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018bus.sys -- (s1018bus)
DRV - [2009-03-25 16:48:00 | 000,026,024 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018nd5.sys -- (s1018nd5)
DRV - [2009-03-25 16:48:00 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018mdfl.sys -- (s1018mdfl)
DRV - [2008-05-06 15:06:00 | 000,011,520 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wdcsam.sys -- (WDC_SAM)
DRV - [2007-08-03 04:36:10 | 000,009,344 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SFEP.sys -- (SFEP)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\..\SearchScopes,DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [url="http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC"]http://www.bing.com/...ms}&FORM=IE8SRC[/url]


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-666643132-1411173658-3390636905-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
IE - HKU\S-1-5-21-666643132-1411173658-3390636905-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP =
IE - HKU\S-1-5-21-666643132-1411173658-3390636905-1000\..\URLSearchHook: {472734EA-242A-422b-ADF8-83D1E48CC825} - No CLSID value found
IE - HKU\S-1-5-21-666643132-1411173658-3390636905-1000\..\SearchScopes,DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKU\S-1-5-21-666643132-1411173658-3390636905-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-666643132-1411173658-3390636905-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..CT3242340.browser.search.defaultthis.engineName: true
FF - prefs.js..browser.search.defaultengine: ""
FF - prefs.js..browser.search.defaultenginename: ""
FF - prefs.js..browser.search.defaultthis.engineName: ""
FF - prefs.js..browser.search.defaulturl: ""
FF - prefs.js..browser.search.order.1: ""
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.suggest.enabled: false
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://search.conduit.com/?ctid=CT3242340&SearchSource=13&CUI=SB_CUI"
FF - prefs.js..extensions.enabledAddons: %7B0a3bed8d-198d-42a9-a7d1-983e6581f422%7D:10.13.40.15
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1
FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.aspx?ctid=CT3242340&SearchSource=2&q="


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@SonyCreativeSoftware.com/Media Go,version=1.0: c:\Program Files\Sony\Media Go\npmediago.dll (Sony Creative Software Inc)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.4: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{5cea9a87-a3a5-4c2a-b08d-8a1876d4931c}: C:\Users\jacec\AppData\Roaming\Mozilla\FireFox\{5cea9a87-a3a5-4c2a-b08d-8a1876d4931c}
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{cb84136f-9c44-433a-9048-c5cd9df1dc16}: C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-12-18 11:55:19 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-12-19 14:46:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2012-01-02 22:31:25 | 000,000,000 | ---D | M]

[2011-04-11 20:11:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jacec\AppData\Roaming\mozilla\Extensions
[2011-04-11 20:11:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jacec\AppData\Roaming\mozilla\Extensions\home2@tomtom.com
[2012-12-10 21:58:45 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions
[2012-12-10 21:58:45 | 000,000,000 | ---D | M] (WiseConvert 1.6) -- C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}
[2011-06-11 22:11:46 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2012-12-10 21:46:16 | 000,000,000 | ---D | M] (VideoDownloadConverter) -- C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\4zffxtbr@VideoDownloadConverter_4z.com
[2012-12-10 22:13:25 | 000,001,060 | ---- | M] () -- C:\Users\jacec\AppData\Roaming\mozilla\firefox\profiles\ozbth2gs.default\searchplugins\wiseconvert-16-customized-web-search.xml
[2012-12-18 11:55:04 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012-12-18 11:55:19 | 000,262,112 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2010-08-14 01:32:47 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2012-02-05 15:31:25 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2012-02-05 15:31:25 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2012-02-05 15:31:25 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2012-02-05 15:31:25 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2012-02-05 15:31:25 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2012-02-05 15:31:25 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml

[color=#E56717]========== Chrome ==========[/color]

CHR - homepage:
CHR - homepage:
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\23.0.1271.95\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\23.0.1271.95\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\23.0.1271.95\pdf.dll
CHR - plugin: Babylon ToolBar (Enabled) = C:\Users\jacec\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0\BabylonChromeToolBar.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.210.7 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U21 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.2.183.23\npGoogleOneClick8.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files\VideoLAN\VLC\npvlc.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Media Go Detector (Enabled) = c:\Program Files\Sony\Media Go\npmediago.dll
CHR - Extension: Dysk Google = C:\Users\jacec\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\
CHR - Extension: YouTube = C:\Users\jacec\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Szukaj w Google = C:\Users\jacec\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Gmail = C:\Users\jacec\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012-01-02 22:21:31 | 000,000,098 | ---- | M]) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKU\S-1-5-21-666643132-1411173658-3390636905-1000..\Run: [Mobile Partner] C:\Program Files\Mobile Partner\Mobile Partner.exe ()
O4 - HKU\S-1-5-21-666643132-1411173658-3390636905-1000..\Run: [RocketDock] C:\Program Files\RocketDock\RocketDock.exe ()
O4 - HKU\S-1-5-21-666643132-1411173658-3390636905-1000..\Run: [Sony Ericsson PC Companion] C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe (Sony Ericsson Mobile Communications AB)
O4 - HKU\S-1-5-21-666643132-1411173658-3390636905-1000..\Run: [TomTomHOME.exe] C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe (TomTom)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 2
O7 - HKU\S-1-5-21-666643132-1411173658-3390636905-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisallowRun = 1
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_21)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} [url="http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab"]http://fpdownload2.m...ash/swflash.cab[/url] (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 172.22.1.13 8.8.8.8 172.22.1.13 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6B3B45B6-0391-490C-AC97-43CC218062C1}: NameServer = 80.251.201.177 80.251.201.178
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{74A74C83-4DE6-477B-A1CD-D62C7D0FC04F}: NameServer = 80.251.201.177 80.251.201.178
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{854D390F-C082-4532-AF8E-BAF7DEE3F948}: DhcpNameServer = 172.22.1.13 8.8.8.8 172.22.1.13 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{914CD710-D399-492E-9B0E-A0C8867069BC}: DhcpNameServer = 83.255.245.11 193.150.193.150
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C2140604-F271-4019-865D-E623A344362D}: NameServer = 80.251.201.177 80.251.201.178
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F3F5FA7B-A4B8-486C-ADA8-9998579E0232}: NameServer = 80.251.201.177 80.251.201.178
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{22ae3d62-2bc9-11e0-86a6-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{22ae3d62-2bc9-11e0-86a6-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{2a39ab88-a9c8-11df-ae52-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{2a39ab88-a9c8-11df-ae52-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{2a39ab98-a9c8-11df-ae52-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{2a39ab98-a9c8-11df-ae52-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{2ec4b55d-d61a-11e0-9c09-8d3c7fbb2f92}\Shell - "" = AutoRun
O33 - MountPoints2\{2ec4b55d-d61a-11e0-9c09-8d3c7fbb2f92}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{488f11bc-a20e-11e0-a3b8-8555dca48493}\Shell - "" = AutoRun
O33 - MountPoints2\{488f11bc-a20e-11e0-a3b8-8555dca48493}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{4fd2e168-45bb-11e0-8910-fc218274819a}\Shell - "" = AutoRun
O33 - MountPoints2\{4fd2e168-45bb-11e0-8910-fc218274819a}\Shell\AutoRun\command - "" = I:\Startme.exe
O33 - MountPoints2\{5c2ab361-cabf-11e1-8430-001e101f82a7}\Shell - "" = AutoRun
O33 - MountPoints2\{5c2ab361-cabf-11e1-8430-001e101f82a7}\Shell\AutoRun\command - "" = F:\windows\Data\setup.exe
O33 - MountPoints2\{5f3371f9-f9b3-11e0-91e5-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{5f3371f9-f9b3-11e0-91e5-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{5f850b90-3b61-11e0-8d25-001dbaad9030}\Shell - "" = AutoRun
O33 - MountPoints2\{5f850b90-3b61-11e0-8d25-001dbaad9030}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{6d89b563-80a4-11e0-9b4f-9e27d4cbe2a7}\Shell - "" = AutoRun
O33 - MountPoints2\{6d89b563-80a4-11e0-9b4f-9e27d4cbe2a7}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a
O33 - MountPoints2\{85eea45d-2b0f-11e0-bec9-001dbaad9030}\Shell - "" = AutoRun
O33 - MountPoints2\{85eea45d-2b0f-11e0-bec9-001dbaad9030}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{ad0c364a-0159-11df-a922-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{ad0c364a-0159-11df-a922-806e6f6e6963}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{ad0c3681-0159-11df-a922-001dbaad9030}\Shell - "" = AutoRun
O33 - MountPoints2\{ad0c3681-0159-11df-a922-001dbaad9030}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{c30f6daf-3305-11e0-8832-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{c30f6daf-3305-11e0-8832-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{c30f6dbb-3305-11e0-8832-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{c30f6dbb-3305-11e0-8832-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{f0bbaeeb-2ad4-11e0-8758-001dbaad9030}\Shell - "" = AutoRun
O33 - MountPoints2\{f0bbaeeb-2ad4-11e0-8758-001dbaad9030}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{f0bbaef9-2ad4-11e0-8758-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{f0bbaef9-2ad4-11e0-8758-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{f7f761db-a965-11df-aaa9-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{f7f761db-a965-11df-aaa9-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{f7f761f6-a965-11df-aaa9-00214fbc7df6}\Shell - "" = AutoRun
O33 - MountPoints2\{f7f761f6-a965-11df-aaa9-00214fbc7df6}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\H\Shell - "" = AutoRun
O33 - MountPoints2\H\Shell\AutoRun\command - "" = H:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

MsConfig - StartUpReg: [b]Adobe ARM[/b] - hkey= - key= - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
MsConfig - StartUpReg: [b]Adobe Reader Speed Launcher[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]avast[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]SunJavaUpdateSched[/b] - hkey= - key= - C:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
MsConfig - State: "startup" - 2

SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: NTDS - File not found
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vmms - Service
SafeBootMin: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: Messenger - File not found
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: NTDS - File not found
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vmms - Service
SafeBootNet: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2012-12-27 12:45:52 | 000,000,000 | ---D | C] -- C:\_OTL
[2012-12-26 05:27:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2012-12-26 05:12:40 | 000,000,000 | ---D | C] -- C:\rsit
[2012-12-26 04:52:34 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\jacec\Desktop\OTL.exe
[2012-12-19 14:45:21 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2012-12-19 14:45:21 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2012-12-19 14:44:55 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2012-12-18 11:55:01 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2012-12-11 00:18:51 | 000,000,000 | -HSD | C] -- C:\found.000
[2012-12-10 21:58:51 | 000,000,000 | ---D | C] -- C:\Users\jacec\AppData\Local\VideoDownloadConverter_4z
[2012-12-10 21:46:39 | 003,155,928 | ---- | C] (VideoDownloadConverter) -- C:\Users\jacec\Desktop\VideoDownloadConvertSetup2.5.11.3.^HJ^fox000^^.exe
[2012-12-10 21:05:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2012-12-10 21:02:52 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2012-12-09 17:56:15 | 010,669,952 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\jacec\Desktop\mbam-setup-1.65.1.1000.exe
[2012-12-02 08:57:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012-12-02 08:56:22 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2012-12-02 08:56:21 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2012-12-02 08:56:21 | 000,000,000 | ---D | C] -- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
[2012-12-02 08:50:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2012-12-02 08:50:44 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2012-11-27 22:25:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2011-03-03 19:27:34 | 000,148,736 | ---- | C] (Avanquest Software) -- C:\ProgramData\hpe5FDC.dll

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2012-12-28 21:32:43 | 000,000,880 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012-12-28 21:32:08 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012-12-28 21:32:03 | 2389,995,520 | -HS- | M] () -- C:\hiberfil.sys
[2012-12-28 20:16:06 | 000,014,416 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012-12-28 20:16:06 | 000,014,416 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012-12-28 15:55:54 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012-12-27 13:00:30 | 000,139,264 | ---- | M] () -- C:\Users\jacec\Desktop\SystemLook.exe
[2012-12-26 05:27:17 | 000,000,931 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2012-12-26 05:11:58 | 001,404,060 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2012-12-26 05:11:58 | 001,331,902 | ---- | M] () -- C:\Windows\System32\perfh01D.dat
[2012-12-26 05:11:58 | 001,330,342 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012-12-26 05:11:58 | 000,380,370 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2012-12-26 05:11:58 | 000,369,270 | ---- | M] () -- C:\Windows\System32\perfc01D.dat
[2012-12-26 05:11:58 | 000,351,918 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012-12-26 04:52:38 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\jacec\Desktop\OTL.exe
[2012-12-26 04:52:16 | 000,781,383 | ---- | M] () -- C:\Users\jacec\Desktop\RSIT.exe
[2012-12-25 11:44:03 | 000,291,040 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012-12-19 14:45:31 | 000,001,955 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2012-12-18 12:24:35 | 000,002,286 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2012-12-18 10:35:16 | 012,119,797 | ---- | M] () -- C:\Users\jacec\Desktop\Remove WAT 2.2.6.0.rar
[2012-12-15 21:12:25 | 000,128,512 | ---- | M] () -- C:\Users\jacec\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-12-10 21:46:45 | 003,155,928 | ---- | M] (VideoDownloadConverter) -- C:\Users\jacec\Desktop\VideoDownloadConvertSetup2.5.11.3.^HJ^fox000^^.exe
[2012-12-10 21:05:16 | 000,002,185 | ---- | M] () -- C:\Users\jacec\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012-12-10 20:40:48 | 002,077,421 | ---- | M] () -- C:\Windows\System32\drivers\Cat.DB
[2012-12-09 17:57:36 | 000,001,033 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012-12-09 17:56:46 | 010,669,952 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\jacec\Desktop\mbam-setup-1.65.1.1000.exe
[2012-12-09 17:55:21 | 000,579,176 | ---- | M] () -- C:\Users\jacec\Desktop\Malwarebytes-AntiMalware(13117).exe
[2012-12-02 08:57:12 | 000,001,719 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012-12-02 08:50:53 | 000,001,781 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2012-11-27 22:25:44 | 000,000,990 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2012-12-27 13:00:29 | 000,139,264 | ---- | C] () -- C:\Users\jacec\Desktop\SystemLook.exe
[2012-12-26 05:27:17 | 000,000,931 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2012-12-26 04:52:11 | 000,781,383 | ---- | C] () -- C:\Users\jacec\Desktop\RSIT.exe
[2012-12-19 14:45:31 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2012-12-19 14:45:31 | 000,001,955 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2012-12-10 21:05:16 | 000,002,286 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2012-12-10 21:05:16 | 000,002,185 | ---- | C] () -- C:\Users\jacec\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012-12-10 21:03:11 | 000,000,884 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012-12-10 21:03:04 | 000,000,880 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012-12-10 20:59:46 | 000,769,144 | ---- | C] () -- C:\Windows\BDTSupport.dll
[2012-12-10 20:59:44 | 000,003,488 | ---- | C] () -- C:\Windows\UDB.zip
[2012-12-10 20:59:44 | 000,000,882 | ---- | C] () -- C:\Windows\RegSDImport.xml
[2012-12-10 20:59:44 | 000,000,879 | ---- | C] () -- C:\Windows\RegISSImport.xml
[2012-12-10 20:59:44 | 000,000,131 | ---- | C] () -- C:\Windows\IDB.zip
[2012-12-10 20:40:19 | 002,077,421 | ---- | C] () -- C:\Windows\System32\drivers\Cat.DB
[2012-12-09 17:55:10 | 000,579,176 | ---- | C] () -- C:\Users\jacec\Desktop\Malwarebytes-AntiMalware(13117).exe
[2012-12-02 08:57:12 | 000,001,719 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012-12-02 08:50:53 | 000,001,781 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2012-11-28 03:02:09 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2012-11-28 03:01:40 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2012-11-27 22:25:44 | 000,000,990 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2011-09-12 10:49:13 | 000,080,896 | ---- | C] () -- C:\Windows\System32\RDVGHelper.exe
[2011-09-12 10:47:22 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2010-08-22 10:16:25 | 000,033,134 | ---- | C] () -- C:\Users\jacec\AppData\Roaming\UserTile.png
[2010-08-18 06:24:01 | 000,128,512 | ---- | C] () -- C:\Users\jacec\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-08-17 19:37:40 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2009-07-14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012-06-09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009-07-14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[color=#E56717]========== LOP Check ==========[/color]

[2010-08-17 08:31:01 | 000,000,000 | ---D | M] -- C:\Users\jacec\AppData\Roaming\Ashampoo
[2010-08-17 09:01:24 | 000,000,000 | ---D | M] -- C:\Users\jacec\AppData\Roaming\OpenOffice.org
[2011-03-03 19:28:39 | 000,000,000 | ---D | M] -- C:\Users\jacec\AppData\Roaming\Sony
[2011-03-03 19:17:12 | 000,000,000 | ---D | M] -- C:\Users\jacec\AppData\Roaming\Sony Setup
[2011-04-11 20:11:49 | 000,000,000 | ---D | M] -- C:\Users\jacec\AppData\Roaming\TomTom
[2010-08-17 08:23:55 | 000,000,000 | ---D | M] -- C:\Users\jacec\AppData\Roaming\Uniblue
[2011-06-18 17:39:47 | 000,000,000 | ---D | M] -- C:\Users\jacec\AppData\Roaming\uTorrent
[2010-08-14 01:56:18 | 000,000,000 | ---D | M] -- C:\Users\jacec\AppData\Roaming\Win7codecs

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]

[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2009-06-10 22:42:20 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
[2010-11-20 13:40:07 | 000,383,786 | RHS- | M] () -- C:\bootmgr
[2010-01-14 22:00:08 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2009-06-10 22:42:20 | 000,000,010 | ---- | M] () -- C:\config.sys
[2012-12-28 21:32:03 | 2389,995,520 | -HS- | M] () -- C:\hiberfil.sys
[2012-04-03 21:08:33 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2012-04-03 21:08:33 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2012-12-28 21:32:05 | 3186,663,424 | -HS- | M] () -- C:\pagefile.sys
[2012-12-10 20:33:17 | 000,268,142 | ---- | M] () -- C:\TDSSKiller.2.8.15.0_10.12.2012_20.31.48_log.txt
[2012-12-11 23:36:11 | 000,269,128 | ---- | M] () -- C:\TDSSKiller.2.8.15.0_11.12.2012_23.35.00_log.txt
[2010-01-14 22:12:50 | 000,171,136 | RHS- | M] () -- C:\w7ldr

[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2009-07-14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\drivers\AGP440.sys
[2009-07-14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_a97a2a0d0fbc6696\AGP440.sys
[2009-07-14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\AGP440.sys
[2009-07-14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\AGP440.sys

[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2009-07-14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009-07-14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_fab873f3e8a3315c\atapi.sys
[2009-07-14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys
[2009-07-14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\atapi.sys

[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]
[2009-07-14 00:45:01 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=505506526A9D467307B3C393DEDAF858 -- C:\Windows\System32\drivers\beep.sys
[2009-07-14 00:45:01 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=505506526A9D467307B3C393DEDAF858 -- C:\Windows\winsxs\x86_microsoft-windows-beepsys_31bf3856ad364e35_6.1.7600.16385_none_c3f6f77668f0ddcc\beep.sys

[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2009-07-14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_5f7fb206051affbb\cdrom.sys
[2010-11-20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\drivers\cdrom.sys
[2010-11-20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_6381e09675524225\cdrom.sys
[2010-11-20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_61b0c5ce02098355\cdrom.sys

[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2012-08-22 18:05:16 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=15B74B6283CEBCCE3054C1001CA01B5E -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.22097_none_aa0491cf93ad1c31\ndis.sys
[2009-07-14 02:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_a79d81ea7d62a289\ndis.sys
[2012-08-22 18:16:46 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=8C9C922D71F1CD4DEF73F186416B7896 -- C:\Windows\System32\drivers\ndis.sys
[2012-08-22 18:16:46 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=8C9C922D71F1CD4DEF73F186416B7896 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17939_none_a9bdfee47a5cd154\ndis.sys
[2010-11-20 13:30:06 | 000,712,576 | ---- | M] (Microsoft Corporation) MD5=E7C54812A2AAF43316EB6930C1FFA108 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_a9ce95b27a512623\ndis.sys

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2009-10-28 07:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_6fc699643622d177\winlogon.exe
[2009-10-28 06:52:08 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=3BABE6767C78FBF5FB8435FEED187F30 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_703394514f56f7c2\winlogon.exe
[2010-11-20 13:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\System32\winlogon.exe
[2010-11-20 13:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe
[2012-09-29 19:54:26 | 000,218,184 | ---- | M] () MD5=8846E87210AD131CF71E3E2E49F647B0 -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2009-07-14 02:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:DFC5A2B2
@Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:430C6D84

< End of report >

[/log]
[log]OTL Extras logfile created on: 2012-12-28 21:37:48 - Run 4
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\jacec\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Poland | Language: PLK | Date Format: yyyy-MM-dd

2,97 Gb Total Physical Memory | 1,84 Gb Available Physical Memory | 61,86% Memory free
5,93 Gb Paging File | 4,78 Gb Available in Paging File | 80,55% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 101,47 Gb Total Space | 60,99 Gb Free Space | 60,11% Space Free | Partition Type: NTFS
Drive D: | 271,14 Gb Total Space | 44,30 Gb Free Space | 16,34% Space Free | Partition Type: NTFS

Computer Name: ONLYMINE | User Name: jacec | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-666643132-1411173658-3390636905-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[color=#E56717]========== Authorized Applications List ==========[/color]


[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0BFB7654-809E-416A-80DA-B396B7D87E8C}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{24155281-1B52-43C6-B2C1-0B9C2434862E}" = lport=139 | protocol=6 | dir=in | app=system |
"{2F5CDE2A-9E88-430F-A9B6-6EAF46C9AD2D}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{3093EB7C-3CD2-4BB8-AE91-BC5E95B58109}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{320F5D96-61E5-4FE0-9D2E-518DB31B92EC}" = rport=445 | protocol=6 | dir=out | app=system |
"{42B45FBE-A7C8-412C-86B2-2B87934DEB94}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{4489D824-00E6-451F-854E-A6CD79A6D947}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{48E52388-0CEF-444F-A3B0-053C2A1BDD2C}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{5459C17A-BFCC-4DEC-9473-250A761DEE2A}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{57064AAC-9DE2-4638-983C-ADD3E4807BED}" = rport=138 | protocol=17 | dir=out | app=system |
"{5ECE6014-31DC-4DA2-9CD4-DE9999EC8A15}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{6A48A77D-1B4D-4196-BB6D-C2F0CAF97A74}" = lport=445 | protocol=6 | dir=in | app=system |
"{8C15333F-2551-4E25-8C21-856FB23F42C6}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{AC33EEE7-4640-4519-841B-A3B6E16170BB}" = rport=139 | protocol=6 | dir=out | app=system |
"{B1E08FDC-900D-432F-B1D4-185FBEF5E3D7}" = rport=137 | protocol=17 | dir=out | app=system |
"{BFDD3473-3112-4DD3-AFAC-BA9E86081CCA}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{C3D30CA9-5B91-4860-A301-0CC254F2C24D}" = lport=138 | protocol=17 | dir=in | app=system |
"{C6000274-3606-4FF2-9942-6F46E1F611AD}" = lport=137 | protocol=17 | dir=in | app=system |
"{C638A619-74FB-4FCB-966B-5E85EAB73178}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{DB2755E4-D25B-439D-8631-83DD40C5D03A}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{E4EE026F-2BF9-4023-8D9B-525C8645E399}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{F26462F8-0F46-48BF-B4CD-6CBA7A6CF2AF}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{026E3C53-0610-4A64-B170-3ED5207F48EA}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{2627D34E-3E01-4DCA-A7F6-3C03C9BAA5AA}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{5F83CE25-5E53-4D52-A8B7-D0304DF5A53B}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{62DEE134-BFB3-4C2B-B457-03738F2246A5}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{6F7A9F87-D2EC-447D-970C-5F187E7FDE65}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{77DAB998-9FDF-479B-8CEE-DBDDC823053D}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{7F9FC2A0-1FAA-4187-8E46-BB078CE4D943}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{83239EE1-0A51-4A50-854D-890512BC9A7A}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{B9C69D3A-1CC0-4653-B6C8-0569ED0C4AE4}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{C1AAADAC-4ED7-4A72-8240-AC2D41D63F4C}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{C31AE23F-0F4D-4A1C-821E-E8C167426675}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{E3FBC957-21B1-4D3A-89AE-BD11F25D84E8}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{FAC3DDAE-9DCD-4F13-B794-012CAE4E1941}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"TCP Query User{1E4FA66A-1273-4F53-A8AC-6BC3AFC3DE0F}D:\programy\vlc\vlc.exe" = protocol=6 | dir=in | app=d:\programy\vlc\vlc.exe |
"TCP Query User{55783CB8-5408-4590-8027-3A23D46125AD}C:\program files\ares\chatserver.exe" = protocol=6 | dir=in | app=c:\program files\ares\chatserver.exe |
"TCP Query User{89FD309F-65D2-4F4C-A1A3-9E25CF727EB2}C:\users\jacec\appdata\local\screamer radio\screamer.exe" = protocol=6 | dir=in | app=c:\users\jacec\appdata\local\screamer radio\screamer.exe |
"TCP Query User{985E029F-883A-4F03-B359-F648B7DD1CE1}D:\programy\vlc\vlc.exe" = protocol=6 | dir=in | app=d:\programy\vlc\vlc.exe |
"TCP Query User{A5EEC1C2-6CCE-4D8E-86D2-5810064C79C6}C:\program files\ares\ares.exe" = protocol=6 | dir=in | app=c:\program files\ares\ares.exe |
"TCP Query User{CF5906C9-A8B3-4298-AE9F-BAEF4E323237}C:\program files\ares\ares.exe" = protocol=6 | dir=in | app=c:\program files\ares\ares.exe |
"UDP Query User{10FC27AF-43F9-4B44-A71D-A41585EA5E7A}C:\program files\ares\ares.exe" = protocol=17 | dir=in | app=c:\program files\ares\ares.exe |
"UDP Query User{373A80D7-CEE7-4413-839A-15562A365EC0}D:\programy\vlc\vlc.exe" = protocol=17 | dir=in | app=d:\programy\vlc\vlc.exe |
"UDP Query User{8973DC24-7449-4A75-96B6-D1883D2E8DC1}C:\program files\ares\ares.exe" = protocol=17 | dir=in | app=c:\program files\ares\ares.exe |
"UDP Query User{ADF950EF-6562-4FDA-8B89-E6EEE035735D}D:\programy\vlc\vlc.exe" = protocol=17 | dir=in | app=d:\programy\vlc\vlc.exe |
"UDP Query User{AEB52375-0E3D-4513-9D5F-FEB2A9510E62}C:\program files\ares\chatserver.exe" = protocol=17 | dir=in | app=c:\program files\ares\chatserver.exe |
"UDP Query User{C8E9B2FB-068E-495C-96F6-7094813299A6}C:\users\jacec\appdata\local\screamer radio\screamer.exe" = protocol=17 | dir=in | app=c:\users\jacec\appdata\local\screamer radio\screamer.exe |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}" = PlayStation®Store
"{1871FE54-36AA-478F-B374-A46BA54474CC}" = ESET NOD32 Antivirus
"{1B6C0E95-182C-48E0-9C4B-4F916308249C}" = iTunes
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java™ 6 Update 21
"{2FFE93F0-BB72-4E52-8761-354D1AAA9387}" = Sony Ericsson PC Suite 6.011.00
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{459699C3-9430-4381-964B-4248D87B49F9}" = Apple Mobile Device Support
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{8727531E-6C58-4852-A90B-39CF45E269A9}" = OpenOffice.org 3.2
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C0CAA7A-3272-4991-A808-2C7559DE3409}" = Win7codecs
"{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AB05F2C8-F608-403b-95E1-FD8ADFACD31E}" = Windows 7 Upgrade Advisor
"{AC76BA86-7AD7-1045-7B44-AA1000000001}" = Adobe Reader X (10.1.3) - Polish
"{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}" = QuickTime
"{B6659DD8-00A7-4A24-BBFB-C1F6982E5D66}" = PlayStation®Network Downloader
"{CCE825DB-347A-4004-A186-5F4A6FDD8547}" = Obsługa programów Apple
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240BD}" = WinZip 14.5
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony Ericsson PC Companion 1.60.13
"{FBE5AA96-22F0-4C4A-8E92-4BE3498D4CCB}" = Media Go
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Ares" = Ares 2.1.6
"Browser Defender_is1" = Browser Guard 4.0
"CCleaner" = CCleaner
"Google Chrome" = Google Chrome
"KLiteCodecPack_is1" = K-Lite Codec Pack 6.4.0 (Full)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware wersja 1.65.1.1000
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Mobile Partner" = Mobile Partner
"Mozilla Firefox 17.0.1 (x86 pl)" = Mozilla Firefox 17.0.1 (x86 pl)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"RocketDock_is1" = RocketDock 1.3.5
"TomTom HOME" = TomTom HOME 2.8.2.2264
"VLC media player" = VLC media player 2.0.4
"WinRAR archiver" = WinRAR 4.01 (32-bitowy)

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-666643132-1411173658-3390636905-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"NBT" = NBT
"Video Player" = Video Player

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2012-12-28 12:59:30 | Computer Name = onlymine | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 7426

Error - 2012-12-28 12:59:31 | Computer Name = onlymine | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 2012-12-28 12:59:31 | Computer Name = onlymine | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 8736

Error - 2012-12-28 12:59:31 | Computer Name = onlymine | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 8736

Error - 2012-12-28 12:59:32 | Computer Name = onlymine | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 2012-12-28 12:59:32 | Computer Name = onlymine | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 9938

Error - 2012-12-28 12:59:32 | Computer Name = onlymine | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 9938

Error - 2012-12-28 12:59:34 | Computer Name = onlymine | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 2012-12-28 12:59:34 | Computer Name = onlymine | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 11981

Error - 2012-12-28 12:59:34 | Computer Name = onlymine | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 11981

[ System Events ]
Error - 2012-12-28 13:05:40 | Computer Name = onlymine | Source = atikmdag | ID = 43029
Description = Display is not active

Error - 2012-12-28 15:11:16 | Computer Name = onlymine | Source = atikmdag | ID = 52236
Description = CPLIB :: General - Invalid Parameter

Error - 2012-12-28 15:11:16 | Computer Name = onlymine | Source = atikmdag | ID = 43029
Description = Display is not active

Error - 2012-12-28 15:11:27 | Computer Name = onlymine | Source = Service Control Manager | ID = 7009
Description = Uplynal limit czasu (30000 ms) podczas oczekiwania na polaczenie sie
z usluga Mobile Partner. OUC.

Error - 2012-12-28 15:11:27 | Computer Name = onlymine | Source = Service Control Manager | ID = 7000
Description = Nie mozna uruchomic uslugi Mobile Partner. OUC z powodu nastepujacego
bledu: %%1053

Error - 2012-12-28 15:12:16 | Computer Name = onlymine | Source = NetBT | ID = 4321
Description = Nie mozna zarejestrowac nazwy „WORKGROUP :1d” w interfejsie o
adresie IP 10.3.35.89. Komputer o adresie IP 10.3.35.85 nie zezwolil na przejecie
tej nazwy przez ten komputer.

Error - 2012-12-28 16:32:08 | Computer Name = onlymine | Source = atikmdag | ID = 52236
Description = CPLIB :: General - Invalid Parameter

Error - 2012-12-28 16:32:08 | Computer Name = onlymine | Source = atikmdag | ID = 43029
Description = Display is not active

Error - 2012-12-28 16:32:17 | Computer Name = onlymine | Source = Service Control Manager | ID = 7009
Description = Uplynal limit czasu (30000 ms) podczas oczekiwania na polaczenie sie
z usluga Mobile Partner. OUC.

Error - 2012-12-28 16:32:17 | Computer Name = onlymine | Source = Service Control Manager | ID = 7000
Description = Nie mozna uruchomic uslugi Mobile Partner. OUC z powodu nastepujacego
bledu: %%1053


< End of report >

[/log]

Proszę bardzo, dodam jeszcze tylko, że na pasku są jeszcze dwa toolbary, jeden z videoconverter, a drugi szwedzki, jeśli dałbyś radę je usunąć, byłoby bardzo dobrze

up

Natsuki Kuga
komentarz
komentarz

Nie widzę w logach toolbara o szwedzkiej nazwie, możesz mniej więcej napisać który to?

Do OTL wklej:
[code]
:OTL
IE - HKU\S-1-5-21-666643132-1411173658-3390636905-1000\..\URLSearchHook: {472734EA-242A-422b-ADF8-83D1E48CC825} - No CLSID value found
IE - HKU\S-1-5-21-666643132-1411173658-3390636905-1000\..\SearchScopes,DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
FF - prefs.js..browser.startup.homepage: "http://search.conduit.com/?ctid=CT3242340&SearchSource=13&CUI=SB_CUI"
FF - prefs.js..extensions.enabledAddons: %7B0a3bed8d-198d-42a9-a7d1-983e6581f422%7D:10.13.40.15
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1
FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.aspx?ctid=CT3242340&SearchSource=2&q="
[2012-12-10 21:58:45 | 000,000,000 | ---D | M] (WiseConvert 1.6) -- C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}
[2012-12-10 21:46:16 | 000,000,000 | ---D | M] (VideoDownloadConverter) -- C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\4zffxtbr@VideoDownloadConverter_4z.com
[2012-12-10 22:13:25 | 000,001,060 | ---- | M] () -- C:\Users\jacec\AppData\Roaming\mozilla\firefox\profiles\ozbth2gs.default\searchplugins\wiseconvert-16-customized-web-search.xml
CHR - plugin: Babylon ToolBar (Enabled) = C:\Users\jacec\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0\BabylonChromeToolBar.dll
@Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:DFC5A2B2
@Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:430C6D84
[/code]
[b]Wykonaj skrypt,[/b] pokaż raport.

  • Dobra wypowiedź 1
swiatek94
komentarz
komentarz

Tylko włączę laptopa i za 2 minuty podaję

search.conduit.com - to wyświetla się podczas pierwszej strony

a ten pasek to chyba - WiseConvert 1.6 Communityverkttygsfalt Tak jest napisane

[log]========== OTL ==========
Registry value HKEY_USERS\S-1-5-21-666643132-1411173658-3390636905-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{472734EA-242A-422b-ADF8-83D1E48CC825} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{472734EA-242A-422b-ADF8-83D1E48CC825}\ not found.
HKEY_USERS\S-1-5-21-666643132-1411173658-3390636905-1000\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Prefs.js: "http://search.conduit.com/?ctid=CT3242340&SearchSource=13&CUI=SB_CUI" removed from browser.startup.homepage
Prefs.js: %7B0a3bed8d-198d-42a9-a7d1-983e6581f422%7D:10.13.40.15 removed from extensions.enabledAddons
Prefs.js: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1 removed from extensions.enabledAddons
Prefs.js: "http://search.conduit.com/ResultsExt.aspx?ctid=CT3242340&SearchSource=2&q=" removed from keyword.URL
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\Plugins folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\modules folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\META-INF folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\lib folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\defaults\preferences folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\defaults folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\sl folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\lib\jquery.alerts\images folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\lib\jquery.alerts folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\lib folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\core folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\WEATHER\js folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\WEATHER\css folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\WEATHER folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\TWITTER\resources folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\TWITTER\js folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\TWITTER\img folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\TWITTER folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\SEARCH_IN_NEW_TAB folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\SEARCH\view\style\rsx folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\SEARCH\view\style folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\SEARCH\view\script folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\SEARCH\view folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\SEARCH\resources folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\SEARCH\js folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\SEARCH\Css folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\SEARCH\buildSettings folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\SEARCH folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\RADIO_PLAYER\js\resources folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\RADIO_PLAYER\js folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\RADIO_PLAYER\css\custom-theme folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\RADIO_PLAYER\css folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\RADIO_PLAYER folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\PRICE_GONG\menu_dlg folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\PRICE_GONG\images folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\PRICE_GONG\css\custom-theme folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\PRICE_GONG\css folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\PRICE_GONG\agreement folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\PRICE_GONG folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\Optimizer\js folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\Optimizer folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\NOTIFICATION\js folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\NOTIFICATION\images\light folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\NOTIFICATION\images\dark folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\NOTIFICATION\images folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\NOTIFICATION\css folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\NOTIFICATION folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\MULTI_RSS\js\resources folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\MULTI_RSS\js folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\MULTI_RSS\img folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\MULTI_RSS\css folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\MULTI_RSS folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\HIGHLIGHTER\js folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\HIGHLIGHTER\css folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\HIGHLIGHTER folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\EMAIL_NOTIFIER\js\plugins folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\EMAIL_NOTIFIER\js folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\EMAIL_NOTIFIER\css folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\EMAIL_NOTIFIER folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\APPLICATION_BUTTON\resources folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\APPLICATION_BUTTON\Js folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\APPLICATION_BUTTON folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa\404 folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\wa folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\ui\menu\js folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\ui\menu\img folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\ui\menu\css folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\ui\menu folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\ui\gf\img folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\ui\gf\css folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\ui\gf folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\ui\gadgetFrame folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\ui\dlg\ftd\images folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\ui\dlg\ftd folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\ui\dlg folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\ui folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\sp\spsd\images folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\sp\spsd folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\sp\spbd\images folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\sp\spbd folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\sp\js folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\sp folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\options\js\resources folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\options\js folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\options\images folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\options\css folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\options folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\msd folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\features\js\resources folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\features\js folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\features folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\api folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\ac\res folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\ac\img folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\ac\css folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\ac folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\aboutBox\js folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\aboutBox\images folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al\aboutBox folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb\al folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content\tb folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340\content folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome\CT3242340 folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422}\chrome folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\{0a3bed8d-198d-42a9-a7d1-983e6581f422} folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\4zffxtbr@VideoDownloadConverter_4z.com\META-INF folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\4zffxtbr@VideoDownloadConverter_4z.com\chrome folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\Firefox\Profiles\ozbth2gs.default\extensions\4zffxtbr@VideoDownloadConverter_4z.com folder moved successfully.
C:\Users\jacec\AppData\Roaming\mozilla\firefox\profiles\ozbth2gs.default\searchplugins\wiseconvert-16-customized-web-search.xml moved successfully.
File C:\Users\jacec\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0\BabylonChromeToolBar.dll not found.
ADS C:\ProgramData\TEMP:DFC5A2B2 deleted successfully.
ADS C:\ProgramData\TEMP:430C6D84 deleted successfully.

OTL by OldTimer - Version 3.2.69.0 log created on 12302012_135519

[/log]

Dobra to był ten WiseConvert, bo już go nie mam, dziękuje bardzo !

Dodam jeszcze tylko, że w "Odinstaluj lub zmień program" nadal widnieje NBT, które jak się go włączy przekierowuje na jakąś stronę, lecz NOD32 od razu zabrania mu dostepu, dodatkowo pokazał się Browser Guard 4.0 od Pc Tools i to chyba wszystkie "złe" programy

Natsuki Kuga
komentarz
komentarz

Do SystemLook wklej:
[code]
:regfind
NBT

:filefind
NBT
[/code]
[b]Look,[/b] pokaż raport.

I to do OTL:
[code]
:OTL
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{cb84136f-9c44-433a-9048-c5cd9df1dc16}: C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\

:Files
C:\Program Files\PC Tools
C:\Users\jacec\AppData\Local\VideoDownloadConverter_4z
C:\Users\jacec\Desktop\VideoDownloadConvertSetup2.5.11.3.^HJ^fox000^^.exe
[/code]
[b]Wykonaj skrypt,[/b] pokaż raport.

Czy search.conduit.com i Browser Guard 4.0 po tym nadal się pojawiają?

  • Dobra wypowiedź 1
swiatek94
komentarz
komentarz (edytowane)

[log]SystemLook 30.07.11 by jpshortstuff
Log created at 14:24 on 30/12/2012 by jacec
Administrator - Elevation successful

========== regfind ==========

Searching for "NBT"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\NBT]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\NBT]
"DisplayName"="NBT"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\NBT]
"UninstallString"="explorer.exe [url="http://NewBrandTest.com/data/newbrandtest/uninstaller/NBTUninstall.exe"]http://NewBrandTest.com/data/newbrandtest/uninstaller/NBTUninstall.exe"[/url]
[HKEY_CURRENT_USER\Software\NBT]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2E483DC9-7E4D-4861-B496-7E00B7FA184F}]
@="NbTextLayoutPageText Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2E483DC9-7E4D-4861-B496-7E00B7FA184F}\ProgID]
@="NbTextLayout.NbTextLayoutPageText.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2E483DC9-7E4D-4861-B496-7E00B7FA184F}\VersionIndependentProgID]
@="NbTextLayout.NbTextLayoutPageText"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{76DC8129-0A40-45eb-B0DC-09E8C6CDDE9D}]
@="NbTextLayoutPageProp Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{76DC8129-0A40-45eb-B0DC-09E8C6CDDE9D}\ProgID]
@="NbTextLayout.NbTextLayoutPageProp.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{76DC8129-0A40-45eb-B0DC-09E8C6CDDE9D}\VersionIndependentProgID]
@="NbTextLayout.NbTextLayoutPageProp"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AFE0D06B-E242-47ea-A987-74EB2D1030E6}]
@="NbTextLayoutPage Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AFE0D06B-E242-47ea-A987-74EB2D1030E6}\ProgID]
@="NbTextLayout.NbTextLayoutPage.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AFE0D06B-E242-47ea-A987-74EB2D1030E6}\VersionIndependentProgID]
@="NbTextLayout.NbTextLayoutPage"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\NbTextLayout.NbTextLayoutPage]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\NbTextLayout.NbTextLayoutPage]
@="NbTextLayoutPage Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\NbTextLayout.NbTextLayoutPage\CurVer]
@="NbTextLayout.NbTextLayoutPage.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\NbTextLayout.NbTextLayoutPage.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\NbTextLayout.NbTextLayoutPage.1]
@="NbTextLayoutPage Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\NbTextLayout.NbTextLayoutPageProp]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\NbTextLayout.NbTextLayoutPageProp]
@="NbTextLayoutPageProp Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\NbTextLayout.NbTextLayoutPageProp\CurVer]
@="NbTextLayout.NbTextLayoutPageProp.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\NbTextLayout.NbTextLayoutPageProp.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\NbTextLayout.NbTextLayoutPageProp.1]
@="NbTextLayoutPageProp Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\NbTextLayout.NbTextLayoutPageText]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\NbTextLayout.NbTextLayoutPageText]
@="NbTextLayoutPageText Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\NbTextLayout.NbTextLayoutPageText\CurVer]
@="NbTextLayout.NbTextLayoutPageText.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\NbTextLayout.NbTextLayoutPageText.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\NbTextLayout.NbTextLayoutPageText.1]
@="NbTextLayoutPageText Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\Nbt_RASAPI32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\Nbt_RASMANCS]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\x86_microsoft-windows-nbtstat.resources_31bf3856ad364e35_en-us_f16caff8dae520ed]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\x86_microsoft-windows-nbtstat.resources_31bf3856ad364e35_pl-pl_e54d7bd823fcdc4a]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\x86_microsoft-windows-nbtstat.resources_31bf3856ad364e35_sv-se_6de3b2be7d8aae7b]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SideBySide\Winners\x86_microsoft-windows-nbtstat_31bf3856ad364e35_none_36fd7d3685409f20]
[HKEY_USERS\S-1-5-21-666643132-1411173658-3390636905-1000\Software\Microsoft\Windows\CurrentVersion\Uninstall\NBT]
[HKEY_USERS\S-1-5-21-666643132-1411173658-3390636905-1000\Software\Microsoft\Windows\CurrentVersion\Uninstall\NBT]
"DisplayName"="NBT"
[HKEY_USERS\S-1-5-21-666643132-1411173658-3390636905-1000\Software\Microsoft\Windows\CurrentVersion\Uninstall\NBT]
"UninstallString"="explorer.exe [url="http://NewBrandTest.com/data/newbrandtest/uninstaller/NBTUninstall.exe"]http://NewBrandTest.com/data/newbrandtest/uninstaller/NBTUninstall.exe"[/url]
[HKEY_USERS\S-1-5-21-666643132-1411173658-3390636905-1000\Software\NBT]

========== filefind ==========

Searching for "NBT"
No files found.

-= EOF =-
[/log]

[log]========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{cb84136f-9c44-433a-9048-c5cd9df1dc16} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{cb84136f-9c44-433a-9048-c5cd9df1dc16}\ not found.
File C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox not found.
========== FILES ==========
File\Folder C:\Program Files\PC Tools not found.
C:\Users\jacec\AppData\Local\VideoDownloadConverter_4z folder moved successfully.
C:\Users\jacec\Desktop\VideoDownloadConvertSetup2.5.11.3.^HJ^fox000^^.exe moved successfully.

OTL by OldTimer - Version 3.2.69.0 log created on 12302012_142724

[/log]

search... nie ma już na pasku, zaś browser jest tylko w dodaj usuń programy i oczywiście plik NBT. Mogę spróbować browser usunąć ręcznie, ale NBT niestety się nie da

up

Natsuki Kuga
komentarz
komentarz

Do OTL:
[code]
:Reg
[-HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\NBT]
[-HKEY_USERS\S-1-5-21-666643132-1411173658-3390636905-1000\Software\Microsoft\Windows\CurrentVersion\Uninstall\NBT]
[-HKEY_CURRENT_USER\Software\NBT]
[-HKEY_USERS\S-1-5-21-666643132-1411173658-3390636905-1000\Software\NBT]
[/code]
Pokaż raport.

Użyj [url="http://download.bleepingcomputer.com/dl/1e5bdaa465f479e8f8e0d58ce650e203/50e1462e/windows/security/security-utilities/a/adwcleaner/AdwCleaner.exe"][b]AdwCleaner[/b][/url] z opcji [b]Deletion.[/b] Pokaż raport.

  • Dobra wypowiedź 1
swiatek94
komentarz
komentarz

[log]========== REGISTRY ==========
Registry key HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\NBT\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-666643132-1411173658-3390636905-1000\Software\Microsoft\Windows\CurrentVersion\Uninstall\NBT\ not found.
Registry key HKEY_CURRENT_USER\Software\NBT\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-666643132-1411173658-3390636905-1000\Software\NBT\ not found.

OTL by OldTimer - Version 3.2.69.0 log created on 12312012_145904

[/log]

[log]# AdwCleaner v2.104 - Logfile created 12/31/2012 at 15:02:07
# Updated 29/12/2012 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (32 bits)
# User : jacec - ONLYMINE
# Boot Mode : Normal
# Running from : C:\Users\jacec\Desktop\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\Users\jacec\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Folder Deleted : C:\Users\jacec\AppData\Roaming\Mozilla\Firefox\Profiles\ozbth2gs.default\Conduit
Folder Deleted : C:\Users\jacec\AppData\Roaming\Mozilla\Firefox\Profiles\ozbth2gs.default\ConduitCommon
Folder Deleted : C:\Users\jacec\AppData\Roaming\Mozilla\Firefox\Profiles\ozbth2gs.default\Smartbar

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\NetNucleous
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\BabylonToolbar
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\BabylonToolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{A8ECB19D-6458-4C31-82B2-60CF30440483}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\b
Key Deleted : HKLM\SOFTWARE\Classes\Babylon.dskBnd
Key Deleted : HKLM\SOFTWARE\Classes\Babylon.dskBnd.1
Key Deleted : HKLM\SOFTWARE\Classes\bbylnApp.appCore
Key Deleted : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Key Deleted : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc
Key Deleted : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2475029
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16457

[OK] Registry is clean.

-\\ Mozilla Firefox v17.0.1 (pl)

File : C:\Users\jacec\AppData\Roaming\Mozilla\Firefox\Profiles\ozbth2gs.default\prefs.js

C:\Users\jacec\AppData\Roaming\Mozilla\Firefox\Profiles\ozbth2gs.default\user.js ... Deleted !

Deleted : user_pref("CT2475029..clientLogIsEnabled", false);
Deleted : user_pref("CT2475029..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
Deleted : user_pref("CT2475029..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
Deleted : user_pref("CT2475029.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Deleted : user_pref("CT2475029.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Deleted : user_pref("CT2475029.BrowserCompStateIsOpen_129469752568363385", true);
Deleted : user_pref("CT2475029.CT2481020.CommunityChanged", true);
Deleted : user_pref("CT2475029.CT2481020.alertChannelId", "874426");
Deleted : user_pref("CT2475029.CT2481024.CommunityChanged", true);
Deleted : user_pref("CT2475029.CT2481024.alertChannelId", "874430");
Deleted : user_pref("CT2475029.CT2481025.CommunityChanged", true);
Deleted : user_pref("CT2475029.CT2481025.alertChannelId", "874431");
Deleted : user_pref("CT2475029.CT2481029.CommunityChanged", true);
Deleted : user_pref("CT2475029.CT2481029.alertChannelId", "874435");
Deleted : user_pref("CT2475029.CT2481031.CommunityChanged", true);
Deleted : user_pref("CT2475029.CT2481031.alertChannelId", "874437");
Deleted : user_pref("CT2475029.CT2481032.CommunityChanged", true);
Deleted : user_pref("CT2475029.CT2481032.alertChannelId", "874438");
Deleted : user_pref("CT2475029.CT2481033.AppTrackingLastCheckTime", "Mon Jul 18 2011 23:29:45 GMT+0200 (Europa[...]
Deleted : user_pref("CT2475029.CT2481033.CommunityChanged", true);
Deleted : user_pref("CT2475029.CT2481033.DialogsAlignMode", "LTR");
Deleted : user_pref("CT2475029.CT2481033.GroupingInvalidateCache", false);
Deleted : user_pref("CT2475029.CT2481033.GroupingLastCheckTime", "Thu Dec 29 2011 01:08:42 GMT+0100");
Deleted : user_pref("CT2475029.CT2481033.GroupingLastErrorCode", "");
Deleted : user_pref("CT2475029.CT2481033.GroupingLastResponse", true);
Deleted : user_pref("CT2475029.CT2481033.GroupingLastServerUpdateTime", "129695500590000000");
Deleted : user_pref("CT2475029.CT2481033.InvalidateCache", false);
Deleted : user_pref("CT2475029.CT2481033.LanguagePackLastCheckTime", "Sun Jan 01 2012 10:20:11 GMT+0100");
Deleted : user_pref("CT2475029.CT2481033.Locale", "pl-pl");
Deleted : user_pref("CT2475029.CT2481033.RadioLastCheckTime", "Thu Dec 29 2011 01:08:43 GMT+0100");
Deleted : user_pref("CT2475029.CT2481033.RadioLastUpdateIPServer", "3");
Deleted : user_pref("CT2475029.CT2481033.RadioLastUpdateServer", "3");
Deleted : user_pref("CT2475029.CT2481033.SearchInNewTabLastCheckTime", "Thu Dec 29 2011 01:08:43 GMT+0100");
Deleted : user_pref("CT2475029.CT2481033.SettingsLastCheckTime", "Sun Jan 01 2012 21:39:22 GMT+0100");
Deleted : user_pref("CT2475029.CT2481033.SettingsLastUpdate", "1321973056");
Deleted : user_pref("CT2475029.CT2481033.ThirdPartyComponentsLastCheck", "Mon Dec 26 2011 17:36:34 GMT+0100");
Deleted : user_pref("CT2475029.CT2481033.ThirdPartyComponentsLastUpdate", "1254383982");
Deleted : user_pref("CT2475029.CT2481033.alertChannelId", "874439");
Deleted : user_pref("CT2475029.CT2481033.globalFirstTimeInfoLastCheckTime", "Thu Dec 29 2011 17:08:44 GMT+0100[...]
Deleted : user_pref("CT2475029.CT2481033.toolbarAppMetaDataLastCheckTime", "Thu Dec 29 2011 01:08:46 GMT+0100"[...]
Deleted : user_pref("CT2475029.CT2481033.toolbarContextMenuLastCheckTime", "Tue Dec 20 2011 16:38:28 GMT+0100"[...]
Deleted : user_pref("CT2475029.CT2481034.CommunityChanged", true);
Deleted : user_pref("CT2475029.CT2481034.alertChannelId", "874440");
Deleted : user_pref("CT2475029.CT2481035.CommunityChanged", true);
Deleted : user_pref("CT2475029.CT2481035.alertChannelId", "874441");
Deleted : user_pref("CT2475029.CT2481037.CommunityChanged", true);
Deleted : user_pref("CT2475029.CT2481037.alertChannelId", "874443");
Deleted : user_pref("CT2475029.CTID", "CT2481033");
Deleted : user_pref("CT2475029.CommunitiesChangesLastCheckTime", "Thu Dec 29 2011 16:32:51 GMT+0100");
Deleted : user_pref("CT2475029.CommunitiesChangesLastUrl", "hxxp://grouping.services.conduit.com/GroupingReque[...]
Deleted : user_pref("CT2475029.CommunitiesStatus.CT2481033", 0);
Deleted : user_pref("CT2475029.CommunityChanged", true);
Deleted : user_pref("CT2475029.CurrentServerDate", "1-1-2012");
Deleted : user_pref("CT2475029.DialogsAlignMode", "LTR");
Deleted : user_pref("CT2475029.DialogsGetterLastCheckTime", "Thu Dec 29 2011 17:36:39 GMT+0100");
Deleted : user_pref("CT2475029.DownloadDomainsCheckInterval", "168");
Deleted : user_pref("CT2475029.DownloadDomainsListLastCheckTime", "Thu Dec 29 2011 01:08:42 GMT+0100");
Deleted : user_pref("CT2475029.DownloadDomainsListLastServerUpdateTime", "1201069983");
Deleted : user_pref("CT2475029.DownloadReferralCookieData", "");
Deleted : user_pref("CT2475029.EMailNotifierPollDate", "Sat Jul 02 2011 09:30:31 GMT+0200 (Europa Zachodnia (c[...]
Deleted : user_pref("CT2475029.FeedLastCount129133095456874337", 0);
Deleted : user_pref("CT2475029.FeedLastCount6244576562585401993", 0);
Deleted : user_pref("CT2475029.FeedPollDate128975107603475850", "Tue Apr 12 2011 23:42:28 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129104903994210185", "Tue Apr 12 2011 23:42:28 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129125588542653211", "Tue Apr 12 2011 23:42:28 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129132307482029379", "Sun Apr 10 2011 22:32:31 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129132307482029381", "Sun Apr 10 2011 22:32:32 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129132307482029382", "Sun Apr 10 2011 22:32:32 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129133095459686870", "Sun Apr 10 2011 22:32:31 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129133095459686871", "Sun Apr 10 2011 22:32:31 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129137415288118473", "Tue Apr 12 2011 23:42:28 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129137415288118474", "Tue Apr 12 2011 23:42:29 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129137436798437243", "Tue Apr 12 2011 23:42:29 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129137436798437244", "Tue Apr 12 2011 23:42:29 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129137436798437245", "Tue Apr 12 2011 23:42:29 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129137437659687146", "Sun Apr 10 2011 22:32:31 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129137437659687147", "Sun Apr 10 2011 22:32:31 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129137437659687148", "Sun Apr 10 2011 22:32:31 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446269", "Mon Apr 11 2011 15:20:54 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446275", "Mon Apr 11 2011 15:20:54 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446281", "Mon Apr 11 2011 15:20:54 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446287", "Mon Apr 11 2011 15:20:54 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446293", "Mon Apr 11 2011 15:20:54 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446299", "Mon Apr 11 2011 15:20:54 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446305", "Mon Apr 11 2011 15:20:54 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446311", "Mon Apr 11 2011 15:20:54 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446317", "Mon Apr 11 2011 15:20:54 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446323", "Mon Apr 11 2011 15:20:55 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446329", "Mon Apr 11 2011 15:20:55 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446335", "Mon Apr 11 2011 15:20:55 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446341", "Mon Apr 11 2011 15:20:55 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446347", "Mon Apr 11 2011 15:20:55 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446353", "Mon Apr 11 2011 15:20:55 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446359", "Mon Apr 11 2011 15:20:55 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446365", "Mon Apr 11 2011 15:20:55 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446371", "Mon Apr 11 2011 15:20:55 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446377", "Mon Apr 11 2011 15:20:56 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446383", "Mon Apr 11 2011 15:20:56 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446389", "Mon Apr 11 2011 15:20:56 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446395", "Mon Apr 11 2011 15:20:56 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446401", "Mon Apr 11 2011 15:20:56 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446407", "Mon Apr 11 2011 15:20:56 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446413", "Mon Apr 11 2011 15:20:56 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446419", "Mon Apr 11 2011 15:20:56 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446425", "Mon Apr 11 2011 15:20:57 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446431", "Mon Apr 11 2011 15:20:57 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446437", "Sun Apr 10 2011 22:32:35 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446443", "Mon Apr 11 2011 15:20:57 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446449", "Mon Apr 11 2011 15:20:57 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446455", "Mon Apr 11 2011 15:20:57 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439446461", "Mon Apr 11 2011 15:20:57 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439602717", "Mon Apr 11 2011 15:20:57 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439602723", "Mon Apr 11 2011 15:20:57 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439602729", "Mon Apr 11 2011 15:20:57 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439602735", "Sun Apr 10 2011 22:32:36 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439602741", "Mon Apr 11 2011 15:20:57 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439602747", "Mon Apr 11 2011 13:20:57 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439602753", "Mon Apr 11 2011 15:20:58 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439602759", "Mon Apr 11 2011 15:20:58 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439602765", "Mon Apr 11 2011 15:20:58 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439602771", "Mon Apr 11 2011 15:20:58 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439602777", "Mon Apr 11 2011 15:20:58 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439602783", "Mon Apr 11 2011 15:20:58 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439602789", "Mon Apr 11 2011 15:20:58 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439602795", "Mon Apr 11 2011 15:20:58 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439602801", "Mon Apr 11 2011 15:20:58 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439602807", "Mon Apr 11 2011 15:20:58 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439602813", "Mon Apr 11 2011 15:20:59 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439602819", "Mon Apr 11 2011 15:20:59 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate129255179439602825", "Mon Apr 11 2011 15:20:59 GMT+0200 (Europa Zac[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757377779301063", "Tue Apr 12 2011 23:37:57 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757377961554609", "Tue Apr 12 2011 23:37:55 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757377979947076", "Tue Apr 12 2011 23:37:57 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757378132259586", "Tue Apr 12 2011 23:37:55 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757378265651739", "Tue Apr 12 2011 23:37:57 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757378449145277", "Tue Apr 12 2011 23:37:54 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757378705873295", "Tue Apr 12 2011 23:37:57 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757378902522699", "Tue Apr 12 2011 23:37:55 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757378968484097", "Tue Apr 12 2011 23:37:58 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757379044202234", "Tue Apr 12 2011 23:37:57 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757379219112080", "Tue Apr 12 2011 23:37:55 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757379310186023", "Tue Apr 12 2011 23:37:56 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757379320546978", "Tue Apr 12 2011 23:37:57 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757379400531926", "Tue Apr 12 2011 23:37:59 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757379497083274", "Tue Apr 12 2011 21:33:35 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757379497148810", "Tue Apr 12 2011 21:33:35 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757379497279882", "Tue Apr 12 2011 21:33:36 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757379644150784", "Tue Apr 12 2011 23:37:55 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757379646262407", "Tue Apr 12 2011 23:37:55 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757379767858421", "Tue Apr 12 2011 23:37:59 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757379797989042", "Tue Apr 12 2011 02:05:23 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757379883299006", "Tue Apr 12 2011 23:37:58 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757380108070872", "Tue Apr 12 2011 23:37:56 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757380344955611", "Tue Apr 12 2011 23:37:56 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757380390189978", "Tue Apr 12 2011 23:37:55 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757380412472059", "Tue Apr 12 2011 23:37:57 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757380467866928", "Tue Apr 12 2011 23:37:55 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757380521772385", "Tue Apr 12 2011 23:37:56 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757380616362201", "Tue Apr 12 2011 23:37:56 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757380727291645", "Tue Apr 12 2011 23:37:56 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757380767393172", "Tue Apr 12 2011 02:05:24 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757380868375745", "Tue Apr 12 2011 21:33:34 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757381043554700", "Tue Apr 12 2011 23:37:55 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757381080219037", "Tue Apr 12 2011 23:37:57 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757381151343676", "Tue Apr 12 2011 23:37:58 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757381247526121", "Tue Apr 12 2011 23:37:55 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757381247591657", "Tue Apr 12 2011 23:37:55 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757381372042911", "Tue Apr 12 2011 23:37:55 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757381453742514", "Tue Apr 12 2011 23:37:56 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757381520490197", "Tue Apr 12 2011 23:37:59 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757381582880127", "Tue Apr 12 2011 23:37:54 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757381641974229", "Tue Apr 12 2011 23:37:58 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757381669771831", "Tue Apr 12 2011 23:37:55 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757381670861676", "Tue Apr 12 2011 23:37:59 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757381749396397", "Tue Apr 12 2011 23:37:58 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757381869347434", "Tue Apr 12 2011 23:37:58 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757381908324302", "Tue Apr 12 2011 23:37:57 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757381919420428", "Tue Apr 12 2011 23:37:59 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757381932420313", "Tue Apr 12 2011 23:37:58 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757381975368474", "Tue Apr 12 2011 23:37:56 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757381979169315", "Tue Apr 12 2011 23:37:55 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedPollDate5609757381989950054", "Tue Apr 12 2011 23:37:58 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.FeedTTL128975107603475850", 40);
Deleted : user_pref("CT2475029.FeedTTL129104903994210185", 40);
Deleted : user_pref("CT2475029.FeedTTL129125588542653211", 40);
Deleted : user_pref("CT2475029.FeedTTL129132307482029379", 40);
Deleted : user_pref("CT2475029.FeedTTL129132307482029381", 40);
Deleted : user_pref("CT2475029.FeedTTL129132307482029382", 40);
Deleted : user_pref("CT2475029.FeedTTL129133095459686870", 40);
Deleted : user_pref("CT2475029.FeedTTL129133095459686871", 40);
Deleted : user_pref("CT2475029.FeedTTL129137415288118473", 40);
Deleted : user_pref("CT2475029.FeedTTL129137415288118474", 40);
Deleted : user_pref("CT2475029.FeedTTL129137436798437243", 40);
Deleted : user_pref("CT2475029.FeedTTL129137436798437244", 40);
Deleted : user_pref("CT2475029.FeedTTL129137436798437245", 40);
Deleted : user_pref("CT2475029.FeedTTL129137437659687146", 40);
Deleted : user_pref("CT2475029.FeedTTL129137437659687147", 40);
Deleted : user_pref("CT2475029.FeedTTL129137437659687148", 40);
Deleted : user_pref("CT2475029.FeedTTL129255179439446281", 15);
Deleted : user_pref("CT2475029.FeedTTL129255179439446293", 60);
Deleted : user_pref("CT2475029.FeedTTL129255179439446299", 10);
Deleted : user_pref("CT2475029.FeedTTL129255179439446347", 60);
Deleted : user_pref("CT2475029.FeedTTL129255179439446353", 15);
Deleted : user_pref("CT2475029.FeedTTL129255179439446359", 2);
Deleted : user_pref("CT2475029.FeedTTL129255179439446365", 15);
Deleted : user_pref("CT2475029.FeedTTL129255179439446377", 2);
Deleted : user_pref("CT2475029.FeedTTL129255179439446383", 5);
Deleted : user_pref("CT2475029.FeedTTL129255179439446389", 5);
Deleted : user_pref("CT2475029.FeedTTL129255179439446401", 5);
Deleted : user_pref("CT2475029.FeedTTL129255179439446413", 30);
Deleted : user_pref("CT2475029.FeedTTL129255179439446419", 30);
Deleted : user_pref("CT2475029.FeedTTL129255179439446425", 2);
Deleted : user_pref("CT2475029.FeedTTL129255179439446443", 15);
Deleted : user_pref("CT2475029.FeedTTL129255179439446455", 15);
Deleted : user_pref("CT2475029.FeedTTL129255179439446461", 15);
Deleted : user_pref("CT2475029.FeedTTL129255179439602717", 15);
Deleted : user_pref("CT2475029.FeedTTL129255179439602735", 1440);
Deleted : user_pref("CT2475029.FeedTTL129255179439602765", 10);
Deleted : user_pref("CT2475029.FeedTTL129255179439602783", 5);
Deleted : user_pref("CT2475029.FeedTTL5609757377779301063", 15);
Deleted : user_pref("CT2475029.FeedTTL5609757377979947076", 15);
Deleted : user_pref("CT2475029.FeedTTL5609757378132259586", 10);
Deleted : user_pref("CT2475029.FeedTTL5609757378265651739", 30);
Deleted : user_pref("CT2475029.FeedTTL5609757378705873295", 15);
Deleted : user_pref("CT2475029.FeedTTL5609757379310186023", 5);
Deleted : user_pref("CT2475029.FeedTTL5609757379320546978", 2);
Deleted : user_pref("CT2475029.FeedTTL5609757379400531926", 5);
Deleted : user_pref("CT2475029.FeedTTL5609757380108070872", 5);
Deleted : user_pref("CT2475029.FeedTTL5609757380412472059", 15);
Deleted : user_pref("CT2475029.FeedTTL5609757380467866928", 60);
Deleted : user_pref("CT2475029.FeedTTL5609757380521772385", 2);
Deleted : user_pref("CT2475029.FeedTTL5609757380727291645", 5);
Deleted : user_pref("CT2475029.FeedTTL5609757380767393172", 1440);
Deleted : user_pref("CT2475029.FeedTTL5609757381043554700", 2);
Deleted : user_pref("CT2475029.FeedTTL5609757381247526121", 15);
Deleted : user_pref("CT2475029.FeedTTL5609757381372042911", 60);
Deleted : user_pref("CT2475029.FeedTTL5609757381453742514", 15);
Deleted : user_pref("CT2475029.FeedTTL5609757381908324302", 30);
Deleted : user_pref("CT2475029.FeedTTL5609757381932420313", 10);
Deleted : user_pref("CT2475029.FeedTTL5609757381979169315", 15);
Deleted : user_pref("CT2475029.FirstServerDate", "10-4-2011");
Deleted : user_pref("CT2475029.FirstTime", true);
Deleted : user_pref("CT2475029.FirstTimeFF3", true);
Deleted : user_pref("CT2475029.FixPageNotFoundErrors", true);
Deleted : user_pref("CT2475029.GroupingLastCheckTime", "Thu Dec 29 2011 01:08:42 GMT+0100");
Deleted : user_pref("CT2475029.GroupingLastErrorCode", "");
Deleted : user_pref("CT2475029.GroupingLastResponse", true);
Deleted : user_pref("CT2475029.GroupingLastServerUpdateTime", "129664574563730000");
Deleted : user_pref("CT2475029.GroupingServerCheckInterval", 1440);
Deleted : user_pref("CT2475029.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Deleted : user_pref("CT2475029.HasUserGlobalKeys", true);
Deleted : user_pref("CT2475029.Initialize", true);
Deleted : user_pref("CT2475029.InitializeCommonPrefs", true);
Deleted : user_pref("CT2475029.InstallationAndCookieDataSentCount", 3);
Deleted : user_pref("CT2475029.InstallationId", "MyAshampoo.exe");
Deleted : user_pref("CT2475029.InstallationType", "ConduitIntegration");
Deleted : user_pref("CT2475029.InstalledDate", "Sun Apr 10 2011 22:32:31 GMT+0200 (Europa Zachodnia (czas letn[...]
Deleted : user_pref("CT2475029.InvalidateCache", false);
Deleted : user_pref("CT2475029.IsAlertDBUpdated", true);
Deleted : user_pref("CT2475029.IsGrouping", true);
Deleted : user_pref("CT2475029.IsMulticommunity", true);
Deleted : user_pref("CT2475029.IsOpenThankYouPage", false);
Deleted : user_pref("CT2475029.IsOpenUninstallPage", true);
Deleted : user_pref("CT2475029.LanguagePackLastCheckTime", "Sun Apr 10 2011 22:32:33 GMT+0200 (Europa Zachodni[...]
Deleted : user_pref("CT2475029.LanguagePackReloadIntervalMM", 1440);
Deleted : user_pref("CT2475029.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Deleted : user_pref("CT2475029.LastLogin_3.2.5.2", "Sat Jul 02 2011 09:25:31 GMT+0200 (Europa Zachodnia (czas [...]
Deleted : user_pref("CT2475029.LastLogin_3.5.0.12", "Sat Sep 03 2011 12:52:30 GMT+0200 (Europa Zachodnia (czas[...]
Deleted : user_pref("CT2475029.LastLogin_3.6.0.10", "Wed Oct 05 2011 21:32:48 GMT+0200 (Europa Zachodnia (czas[...]
Deleted : user_pref("CT2475029.LastLogin_3.7.0.6", "Tue Nov 08 2011 02:47:10 GMT+0100");
Deleted : user_pref("CT2475029.LastLogin_3.8.0.8", "Wed Dec 07 2011 02:02:10 GMT+0100");
Deleted : user_pref("CT2475029.LastLogin_3.8.1.0", "Sun Jan 01 2012 21:39:23 GMT+0100");
Deleted : user_pref("CT2475029.LatestVersion", "3.8.1.0");
Deleted : user_pref("CT2475029.Locale", "en");
Deleted : user_pref("CT2475029.MCDetectTooltipHeight", "83");
Deleted : user_pref("CT2475029.MCDetectTooltipShow", true);
Deleted : user_pref("CT2475029.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Deleted : user_pref("CT2475029.MCDetectTooltipWidth", "295");
Deleted : user_pref("CT2475029.MyStuffEnabledAtInstallation", true);
Deleted : user_pref("CT2475029.RadioIsPodcast", false);
Deleted : user_pref("CT2475029.RadioLastCheckTime", "Sun Apr 10 2011 22:32:31 GMT+0200 (Europa Zachodnia (czas[...]
Deleted : user_pref("CT2475029.RadioLastUpdateIPServer", "0");
Deleted : user_pref("CT2475029.RadioMediaID", "9962");
Deleted : user_pref("CT2475029.RadioMediaType", "Media Player");
Deleted : user_pref("CT2475029.RadioMenuSelectedID", "EBRadioMenu_CT24750299962");
Deleted : user_pref("CT2475029.RadioShrinkedFromSetup", false);
Deleted : user_pref("CT2475029.RadioStationName", "California%20Rock");
Deleted : user_pref("CT2475029.RadioStationURL", "hxxp://feedlive.net/california.asx");
Deleted : user_pref("CT2475029.SavedHomepage", "hxxp://www.onet.pl");
Deleted : user_pref("CT2475029.SearchFromAddressBarIsInit", true);
Deleted : user_pref("CT2475029.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT247[...]
Deleted : user_pref("CT2475029.SearchInNewTabEnabled", true);
Deleted : user_pref("CT2475029.SearchInNewTabIntervalMM", 1440);
Deleted : user_pref("CT2475029.SearchInNewTabLastCheckTime", "Sun Apr 10 2011 22:32:31 GMT+0200 (Europa Zachod[...]
Deleted : user_pref("CT2475029.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Deleted : user_pref("CT2475029.SearchInNewTabUsageUrl", "hxxp://usage.hosting.toolbar.conduit-services.com/usa[...]
Deleted : user_pref("CT2475029.ServiceMapLastCheckTime", "Sun Jan 01 2012 19:11:54 GMT+0100");
Deleted : user_pref("CT2475029.SettingsLastCheckTime", "Sun Apr 10 2011 22:32:30 GMT+0200 (Europa Zachodnia (c[...]
Deleted : user_pref("CT2475029.SettingsLastUpdate", "1301998073");
Deleted : user_pref("CT2475029.ThirdPartyComponentsInterval", 504);
Deleted : user_pref("CT2475029.ThirdPartyComponentsLastCheck", "Sun Apr 10 2011 22:32:30 GMT+0200 (Europa Zach[...]
Deleted : user_pref("CT2475029.ThirdPartyComponentsLastUpdate", "1246786978");
Deleted : user_pref("CT2475029.ToolbarShrinkedFromSetup", false);
Deleted : user_pref("CT2475029.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2475029");
Deleted : user_pref("CT2475029.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...]
Deleted : user_pref("CT2475029.UserID", "UN50361685947399831");
Deleted : user_pref("CT2475029.ValidationData_Search", 2);
Deleted : user_pref("CT2475029.ValidationData_Toolbar", 2);
Deleted : user_pref("CT2475029.WeatherNetwork", "");
Deleted : user_pref("CT2475029.WeatherPollDate", "Sat Jul 02 2011 09:25:32 GMT+0200 (Europa Zachodnia (czas le[...]
Deleted : user_pref("CT2475029.WeatherUnit", "C");
Deleted : user_pref("CT2475029.alertChannelId", "868510");
Deleted : user_pref("CT2475029.backendstorage._fb_dailyactivity", "31333032343637353537313432");
Deleted : user_pref("CT2475029.backendstorage._fb_lifetimesent", "54525545");
Deleted : user_pref("CT2475029.backendstorage.facebook_ctid_connect_send", "73656E646564");
Deleted : user_pref("CT2475029.backendstorage.fb_dailyactivity", "31333033383336363636353035");
Deleted : user_pref("CT2475029.backendstorage.fb_lifetimesent", "54525545");
Deleted : user_pref("CT2475029.components.1000080", true);
Deleted : user_pref("CT2475029.ct2481032.DialogsAlignMode", "LTR");
Deleted : user_pref("CT2475029.ct2481032.FeedLastCount129137415284993440", 348);
Deleted : user_pref("CT2475029.ct2481032.FeedLastCount1470371090506316425", 1877);
Deleted : user_pref("CT2475029.ct2481032.GroupingInvalidateCache", false);
Deleted : user_pref("CT2475029.ct2481032.GroupingLastCheckTime", "Tue Apr 12 2011 15:09:00 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.ct2481032.GroupingLastErrorCode", "");
Deleted : user_pref("CT2475029.ct2481032.GroupingLastResponse", true);
Deleted : user_pref("CT2475029.ct2481032.GroupingLastServerUpdateTime", "129469851600000000");
Deleted : user_pref("CT2475029.ct2481032.InvalidateCache", false);
Deleted : user_pref("CT2475029.ct2481032.LanguagePackLastCheckTime", "Tue Apr 12 2011 02:05:20 GMT+0200 (Europ[...]
Deleted : user_pref("CT2475029.ct2481032.Locale", "en");
Deleted : user_pref("CT2475029.ct2481032.RadioLastCheckTime", "Tue Apr 12 2011 02:05:20 GMT+0200 (Europa Zacho[...]
Deleted : user_pref("CT2475029.ct2481032.RadioLastUpdateIPServer", "3");
Deleted : user_pref("CT2475029.ct2481032.RadioLastUpdateServer", "3");
Deleted : user_pref("CT2475029.ct2481032.SearchInNewTabLastCheckTime", "Tue Apr 12 2011 02:05:20 GMT+0200 (Eur[...]
Deleted : user_pref("CT2475029.ct2481032.SettingsLastCheckTime", "Tue Apr 12 2011 23:37:53 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.ct2481032.SettingsLastUpdate", "1302500970");
Deleted : user_pref("CT2475029.ct2481032.ThirdPartyComponentsLastCheck", "Sun Apr 10 2011 22:32:31 GMT+0200 (E[...]
Deleted : user_pref("CT2475029.ct2481032.ThirdPartyComponentsLastUpdate", "1246786978");
Deleted : user_pref("CT2475029.ct2481032.toolbarAppMetaDataLastCheckTime", "Tue Apr 12 2011 02:05:20 GMT+0200 [...]
Deleted : user_pref("CT2475029.ct2481032.toolbarContextMenuLastCheckTime", "Sun Apr 10 2011 22:32:33 GMT+0200 [...]
Deleted : user_pref("CT2475029.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...]
Deleted : user_pref("CT2475029.homepageProtectorEnableByLogin", true);
Deleted : user_pref("CT2475029.initDone", true);
Deleted : user_pref("CT2475029.isAppTrackingManagerOn", true);
Deleted : user_pref("CT2475029.isFirstRadioInstallation", false);
Deleted : user_pref("CT2475029.myStuffEnabled", true);
Deleted : user_pref("CT2475029.myStuffPublihserMinWidth", 400);
Deleted : user_pref("CT2475029.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Deleted : user_pref("CT2475029.myStuffServiceIntervalMM", 1440);
Deleted : user_pref("CT2475029.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Deleted : user_pref("CT2475029.oldAppsList", "200,129058858447625954,129058858448094709,111,129469752568363385[...]
Deleted : user_pref("CT2475029.revertSettingsEnabled", true);
Deleted : user_pref("CT2475029.searchProtectorDialogDelayInSec", 10);
Deleted : user_pref("CT2475029.searchProtectorEnableByLogin", true);
Deleted : user_pref("CT2475029.testingCtid", "");
Deleted : user_pref("CT2475029.toolbarAppMetaDataLastCheckTime", "Sun Apr 10 2011 22:32:30 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.toolbarContextMenuLastCheckTime", "Sun Apr 10 2011 22:32:33 GMT+0200 (Europa Za[...]
Deleted : user_pref("CT2475029.usagesFlag", 2);
Deleted : user_pref("CT3242340.1000082.isDisplayHidden", "true");
Deleted : user_pref("CT3242340.1000082.state", "{\"state\":\"stopped\",\"text\":\"Californi...\",\"description[...]
Deleted : user_pref("CT3242340.1000234.TWC_TMP_city", "STOCKHOLM");
Deleted : user_pref("CT3242340.1000234.TWC_TMP_country", "SE");
Deleted : user_pref("CT3242340.1000234.TWC_locId", "SWXX0031");
Deleted : user_pref("CT3242340.1000234.TWC_location", "Stockholm, Sweden");
Deleted : user_pref("CT3242340.1000234.TWC_region", "OT");
Deleted : user_pref("CT3242340.1000234.TWC_temp_dis", "c");
Deleted : user_pref("CT3242340.1000234.TWC_wind_dis", "kmh");
Deleted : user_pref("CT3242340.1000234.weatherData", "{\"icon\":\"11.png\",\"temperature\":\"3°C\",\"temperatu[...]
Deleted : user_pref("CT3242340.CBOpenMAMSettings.enc", "MA==");
Deleted : user_pref("CT3242340.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Deleted : user_pref("CT3242340.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"tru[...]
Deleted : user_pref("CT3242340.FirstTime", "true");
Deleted : user_pref("CT3242340.FirstTimeFF3", "true");
Deleted : user_pref("CT3242340.LoginRevertSettingsEnabled", true);
Deleted : user_pref("CT3242340.RevertSettingsEnabled", true);
Deleted : user_pref("CT3242340.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT324[...]
Deleted : user_pref("CT3242340.UserID", "UN23974645362971492");
Deleted : user_pref("CT3242340.addressBarTakeOverEnabledInHidden", "true");
Deleted : user_pref("CT3242340.browser.search.defaultthis.engineName", true);
Deleted : user_pref("CT3242340.cb_experience_000.enc", "MQ==");
Deleted : user_pref("CT3242340.cb_firstuse0100.enc", "MQ==");
Deleted : user_pref("CT3242340.cbcountry_001.enc", "U0U=");
Deleted : user_pref("CT3242340.cbfirsttime.enc", "TW9uIERlYyAxMCAyMDEyIDIyOjEzOjIyIEdNVCswMTAw");
Deleted : user_pref("CT3242340.embeddedsData", "[{\"appId\":\"129888260721730429\",\"apiPermissions\":{\"cross[...]
Deleted : user_pref("CT3242340.enableAlerts", "always");
Deleted : user_pref("CT3242340.event_data.enc", "JTVCJTVE");
Deleted : user_pref("CT3242340.fired_events.enc", "AA==");
Deleted : user_pref("CT3242340.firstTimeDialogOpened", "true");
Deleted : user_pref("CT3242340.fixPageNotFoundErrorInHidden", "true");
Deleted : user_pref("CT3242340.fixUrls", true);
Deleted : user_pref("CT3242340.hxxp___www_socialgrowthtechnologies_com_couponbuddy_v001.APP_WIN_FEATURES.enc",[...]
Deleted : user_pref("CT3242340.installType", "Unknown");
Deleted : user_pref("CT3242340.isCheckedStartAsHidden", true);
Deleted : user_pref("CT3242340.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Deleted : user_pref("CT3242340.isFirstTimeToolbarLoading", "false");
Deleted : user_pref("CT3242340.isNewTabEnabled", true);
Deleted : user_pref("CT3242340.isPerformedSmartBarTransition", "true");
Deleted : user_pref("CT3242340.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Deleted : user_pref("CT3242340.isWelcomPage", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Deleted : user_pref("CT3242340.key_date.enc", "MzA=");
Deleted : user_pref("CT3242340.keyword", true);
Deleted : user_pref("CT3242340.migrateAppsAndComponents", true);
Deleted : user_pref("CT3242340.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"\",\"[...]
Deleted : user_pref("CT3242340.price-gong.bornDate", "{\"dataType\":\"string\",\"data\":\"{\\\"Response\\\":\\[...]
Deleted : user_pref("CT3242340.price-gong.isManagedApp", "true");
Deleted : user_pref("CT3242340.search.searchAppId", "129888260721730429");
Deleted : user_pref("CT3242340.search.searchCount", "0");
Deleted : user_pref("CT3242340.searchInNewTabEnabledInHidden", "true");
Deleted : user_pref("CT3242340.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Deleted : user_pref("CT3242340.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"d[...]
Deleted : user_pref("CT3242340.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\[...]
Deleted : user_pref("CT3242340.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"d[...]
Deleted : user_pref("CT3242340.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"strin[...]
Deleted : user_pref("CT3242340.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"strin[...]
Deleted : user_pref("CT3242340.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data[...]
Deleted : user_pref("CT3242340.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1356295902203");
Deleted : user_pref("CT3242340.serviceLayer_services_appsMetadata_lastUpdate", "1356706550964");
Deleted : user_pref("CT3242340.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1356432551989");
Deleted : user_pref("CT3242340.serviceLayer_services_login_10.13.40.15_lastUpdate", "1356726973736");
Deleted : user_pref("CT3242340.serviceLayer_services_menu_769c590835a76d075fe33b9a87a87786_lastUpdate", "13566[...]
Deleted : user_pref("CT3242340.serviceLayer_services_menu_d32f45618f5a02bd965c56155a643855_lastUpdate", "13566[...]
Deleted : user_pref("CT3242340.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1356432552071");
Deleted : user_pref("CT3242340.serviceLayer_services_searchAPI_lastUpdate", "1356706550264");
Deleted : user_pref("CT3242340.serviceLayer_services_serviceMap_lastUpdate", "1356706551004");
Deleted : user_pref("CT3242340.serviceLayer_services_toolbarContextMenu_lastUpdate", "1356432432135");
Deleted : user_pref("CT3242340.serviceLayer_services_toolbarSettings_lastUpdate", "1356726973302");
Deleted : user_pref("CT3242340.serviceLayer_services_translation_lastUpdate", "1356706551738");
Deleted : user_pref("CT3242340.serviceLayer_services_userApps1ec55dac-8dca-406b-9697-5d68893c1c0c_lastUpdate",[...]
Deleted : user_pref("CT3242340.serviceLayer_services_userApps_lastUpdate", "1356706552277");
Deleted : user_pref("CT3242340.settingsINI", true);
Deleted : user_pref("CT3242340.smartbar.CTID", "CT3242340");
Deleted : user_pref("CT3242340.smartbar.Uninstall", "0");
Deleted : user_pref("CT3242340.smartbar.homepage", true);
Deleted : user_pref("CT3242340.smartbar.toolbarName", "WiseConvert 1.6 ");
Deleted : user_pref("CT3242340.toolbarBornServerTime", "11-12-2012");
Deleted : user_pref("CT3242340.toolbarCurrentServerTime", "28-12-2012");
Deleted : user_pref("CT3242340.url_history0001.enc", "aHR0cDovL3d3dy5vZG5va2xhc3NuaWtpLnJ1L3Byb2ZpbGUvNTI4Mjg1[...]
Deleted : user_pref("CT3242340_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\"[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT2481033/CT2475029[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/868510/864310/SE", "\"0\"")[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/874426/870225/SE", "\"0\"")[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/874430/870228/SE", "\"0\"")[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/874431/870229/SE", "\"0\"")[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/874435/870233/SE", "\"0\"")[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/874437/870235/SE", "\"0\"")[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/874438/870236/SE", "\"0\"")[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/874439/870237/SE", "\"0\"")[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/874440/870238/SE", "\"0\"")[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/874441/870239/SE", "\"0\"")[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/874443/870241/SE", "\"0\"")[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/SE", "\"0\"")[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2475029", [...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2481033", [...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=ct2481032", [...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.5.[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.6.[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.7.[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.8.[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.8.[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2475029",[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/toolbar/", "\"63438026930213[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=0", "63[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=3/13/20[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-services.com/?ctid=CT2481033&octid=[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit.com/root/CT2475029/CT2475029[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit.com/root/CT2481033/CT2475029[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit.com/root/ct2481032/CT2475029[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Cornflower/equaliz[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Cornflower/minimiz[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Cornflower/play.gi[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Cornflower/stop.gi[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Cornflower/vol.gif[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=EB_LOCALE",[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"634[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=pl-pl", "\"[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://twitter.com/users/show/1344951.xml", "\"f63a6b872df92174b52c[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://twitter.com/users/show/16887175.xml", "\"2aab92ec4e5a2c9dfc4[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://twitter.com/users/show/17151925.xml", "\"2d236f520530745bc1e[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://twitter.com/users/show/20536157.xml", "\"1b04260d1531ddf7a83[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://twitter.com/users/show/30261067.xml", "\"6bb873b1a2f1acc8e7a[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://twitter.com/users/show/34655603.xml", "\"86e45b470bb17868a0a[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://twitter.com/users/show/428333.xml", "\"7e3578a26372a8bf00812[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://twitter.com/users/show/759251.xml", "\"0175780c1cda4e464251c[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://twitter.com/users/show/816653.xml", "\"64845dc39633bc8031ab2[...]
Deleted : user_pref("CommunityToolbar.EngineOwner", "");
Deleted : user_pref("CommunityToolbar.EngineOwnerGuid", "{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}");
Deleted : user_pref("CommunityToolbar.EngineOwnerToolbarId", "myashampoo");
Deleted : user_pref("CommunityToolbar.IsEngineShown", true);
Deleted : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Deleted : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\jacec\\AppData\\Roaming\\Mozilla\\F[...]
Deleted : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.8.1.0");
Deleted : user_pref("CommunityToolbar.OriginalEngineOwner", "CT2475029");
Deleted : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}");
Deleted : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "myashampoo");
Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT2475029");
Deleted : user_pref("CommunityToolbar.ToolbarsList2", "CT2475029");
Deleted : user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
Deleted : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Fri Jul 01 2011 17:56:57 GMT+0200 (Europ[...]
Deleted : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Deleted : user_pref("CommunityToolbar.alert.locale", "en");
Deleted : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Deleted : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Sat Jul 02 2011 01:22:53 GMT+0200 (Europa Za[...]
Deleted : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1305622559");
Deleted : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Deleted : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Deleted : user_pref("CommunityToolbar.alert.showTrayIcon", false);
Deleted : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Deleted : user_pref("CommunityToolbar.alert.userId", "7a51abb4-595e-418a-a5f4-d1ab40cf152e");
Deleted : user_pref("CommunityToolbar.globalUserId", "474b264a-1dd2-4463-b795-02cfd986bf05");
Deleted : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Deleted : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Deleted : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2475029");
Deleted : user_pref("CommunityToolbar.killedEngine", true);
Deleted : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Thu Dec 29 2011 11:43:3[...]
Deleted : user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440);
Deleted : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Sun Jan 01 2012 10:20:19 GMT+010[...]
Deleted : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
Deleted : user_pref("CommunityToolbar.notifications.locale", "en");
Deleted : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
Deleted : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Sun Jan 01 2012 19:11:54 GMT+0100");
Deleted : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
Deleted : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
Deleted : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
Deleted : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
Deleted : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
Deleted : user_pref("CommunityToolbar.notifications.userId", "12ff9dbd-fa9a-4268-97a6-650f7b7e5ced");
Deleted : user_pref("CommunityToolbar.twitter.user_1344951.LastCheckTime", "Tue Apr 12 2011 21:33:33 GMT+0200 [...]
Deleted : user_pref("CommunityToolbar.twitter.user_16887175.LastCheckTime", "Tue Apr 12 2011 21:33:33 GMT+0200[...]
Deleted : user_pref("CommunityToolbar.twitter.user_17151925.LastCheckTime", "Tue Apr 12 2011 21:33:33 GMT+0200[...]
Deleted : user_pref("CommunityToolbar.twitter.user_20536157.LastCheckTime", "Tue Apr 12 2011 21:33:33 GMT+0200[...]
Deleted : user_pref("CommunityToolbar.twitter.user_30261067.LastCheckTime", "Tue Apr 12 2011 21:33:33 GMT+0200[...]
Deleted : user_pref("CommunityToolbar.twitter.user_34655603.LastCheckTime", "Tue Apr 12 2011 21:33:33 GMT+0200[...]
Deleted : user_pref("CommunityToolbar.twitter.user_428333.LastCheckTime", "Tue Apr 12 2011 21:33:33 GMT+0200 ([...]
Deleted : user_pref("CommunityToolbar.twitter.user_759251.LastCheckTime", "Sun Apr 10 2011 22:32:34 GMT+0200 ([...]
Deleted : user_pref("CommunityToolbar.twitter.user_816653.LastCheckTime", "Tue Apr 12 2011 21:33:33 GMT+0200 ([...]
Deleted : user_pref("CommunityToolbar.undefined", "");
Deleted : user_pref("Smartbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT3242340&SearchSource=1[...]
Deleted : user_pref("Smartbar.ConduitSearchEngineList", "");
Deleted : user_pref("Smartbar.ConduitSearchUrlList", "");
Deleted : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "hxxp://search.babylon.com/?affID=110819&tt=19071[...]
Deleted : user_pref("Smartbar.keywordURLSelectedCTID", "CT3242340");
Deleted : user_pref("browser.babylon.HPOnNewTab", "search.babylon.com");
Deleted : user_pref("browser.bdtoolbar.orig_keyword_url", "hxxp://search.babylon.com/?affID=110819&tt=190712_n[...]
Deleted : user_pref("browser.newtab.url", "hxxp://search.babylon.com/?affID=110819&tt=190712_n_mont_3012_4&bab[...]
Deleted : user_pref("extensions.BabylonToolbar.admin", false);
Deleted : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Deleted : user_pref("extensions.BabylonToolbar.dfltLng", "en");
Deleted : user_pref("extensions.BabylonToolbar.excTlbr", false);
Deleted : user_pref("extensions.BabylonToolbar.id", "105a5d79000000000000001e101f859f");
Deleted : user_pref("extensions.BabylonToolbar.instlDay", "15545");
Deleted : user_pref("extensions.BabylonToolbar.instlRef", "sst");
Deleted : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Deleted : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Deleted : user_pref("extensions.BabylonToolbar.tlbrId", "tb9");
Deleted : user_pref("extensions.BabylonToolbar.tlbrSrchUrl", "hxxp://www.google.com/search?babsrc=TB_ggl&q=");
Deleted : user_pref("extensions.BabylonToolbar.vrsn", "1.5.29.1");
Deleted : user_pref("extensions.BabylonToolbar.vrsni", "1.5.29.1");
Deleted : user_pref("extensions.BabylonToolbar_i.babExt", "");
Deleted : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=110819&tt=190712_n_mont_3012_4");
Deleted : user_pref("extensions.BabylonToolbar_i.newTab", true);
Deleted : user_pref("extensions.BabylonToolbar_i.newTabUrl", "hxxp://search.babylon.com/?affID=110819&tt=19071[...]
Deleted : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Deleted : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Deleted : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.29.116:09:23");

-\\ Google Chrome v23.0.1271.97

File : C:\Users\jacec\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [57958 octets] - [31/12/2012 15:02:07]

########## EOF - C:\AdwCleaner[S1].txt - [58019 octets] ##########

[/log]

Proszę bardzo :)

Natsuki Kuga
komentarz
komentarz

Czy występują jeszcze jakieś problemy?

  • Dobra wypowiedź 1
swiatek94
komentarz
komentarz

Aktualnie nie zauważyłem, dlatego bardzo dziękuje Ci za pomoc i poświęcony czas.

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.