Megválaszolatlan hozzászólások | Aktív témák Pontos idő: pén. márc. 29, 2024 5:54



Hozzászólás a témához  [ 774 hozzászólás ]  Oldal Előző  1, 2, 3, 4, 5, 6, 7, 8 ... 16  Következő
STELL Segit 
Szerző Üzenet
arany tag

Csatlakozott: szomb. feb. 23, 2013 15:01
Hozzászólások: 122
Hozzászólás Re: STELL Segit
ComboFix 13-02-23.01 - Andi 013.02.24. 13:26:14.6.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.36.1038.18.2534.1278 [GMT 1:00]
Running from: c:\users\Andi\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\SysWow64\muzapp.exe
.
Infected copy of c:\windows\system32\samsrv.dll was found and disinfected
Restored copy from - c:\windows\winsxs\amd64_microsoft-windows-directory-services-sam_31bf3856ad364e35_6.1.7601.17514_none_10145eccb79418a5\samsrv.dll
.
.
((((((((((((((((((((((((( Files Created from 2013-01-24 to 2013-02-24 )))))))))))))))))))))))))))))))
.
.
2013-02-24 12:13 . 2013-02-24 12:13 -------- d-----w- C:\_OTL
2013-02-24 10:29 . 2013-02-24 10:29 -------- d-----w- C:\rsit
2013-02-23 18:11 . 2013-02-23 18:11 -------- d-----w- c:\windows\ERUNT
2013-02-23 18:10 . 2013-02-23 18:10 -------- d-----w- C:\JRT
2013-02-23 17:53 . 2013-02-23 17:53 -------- d-----w- c:\windows\system32\%LOCALAPPDATA%
2013-02-23 15:00 . 2013-02-23 15:00 -------- d-----w- c:\programdata\Malwarebytes
2013-02-22 21:03 . 2013-02-22 21:03 76232 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{4EDF5DFD-8E51-4525-88D2-FB46FC111B24}\offreg.dll
2013-02-22 08:08 . 2013-02-08 00:28 9162192 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{4EDF5DFD-8E51-4525-88D2-FB46FC111B24}\mpengine.dll
2013-02-13 20:45 . 2013-01-09 01:10 996352 ----a-w- c:\program files\Common Files\Microsoft Shared\VGX\VGX.dll
2013-02-13 20:45 . 2013-01-08 22:01 768000 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\VGX\VGX.dll
2013-02-13 06:53 . 2013-01-05 05:53 5553512 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-02-13 06:53 . 2013-01-05 05:00 3967848 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-02-13 06:53 . 2013-01-05 05:00 3913064 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-02-13 06:53 . 2013-01-04 03:26 3153408 ----a-w- c:\windows\system32\win32k.sys
2013-02-13 06:53 . 2013-01-04 05:46 215040 ----a-w- c:\windows\system32\winsrv.dll
2013-02-13 06:52 . 2013-01-04 02:47 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2013-02-13 06:52 . 2013-01-04 02:47 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2013-02-13 06:52 . 2013-01-04 02:47 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2013-02-13 06:52 . 2013-01-04 04:51 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2013-02-13 06:52 . 2013-01-04 02:47 2048 ----a-w- c:\windows\SysWow64\user.exe
2013-02-13 06:52 . 2013-01-03 06:00 1913192 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-02-13 06:52 . 2013-01-03 06:00 288088 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2013-02-12 20:54 . 2013-02-12 20:54 -------- d-----w- c:\users\Andi\AppData\Roaming\OpenOffice.org
2013-02-12 20:38 . 2013-02-12 20:38 -------- d-----w- c:\program files (x86)\OpenOffice.org 3
2013-02-06 17:06 . 2013-02-23 21:24 -------- d-----w- c:\users\Andi\AppData\Roaming\Skype
2013-02-06 17:06 . 2013-02-06 17:06 -------- d-----w- c:\program files (x86)\Common Files\Skype
2013-02-06 17:06 . 2013-02-06 17:06 -------- d-----r- c:\program files (x86)\Skype
2013-02-06 17:06 . 2013-02-06 17:06 -------- d-----w- c:\programdata\Skype
2013-02-06 15:28 . 2013-02-06 15:28 310688 ----a-w- c:\windows\system32\javaws.exe
2013-02-06 15:28 . 2013-02-06 15:28 963488 ----a-w- c:\windows\system32\deployJava1.dll
2013-02-06 15:28 . 2013-02-06 15:28 1085344 ----a-w- c:\windows\system32\npDeployJava1.dll
2013-02-06 15:28 . 2013-02-06 15:28 108448 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2013-02-06 15:28 . 2013-02-06 15:28 188832 ----a-w- c:\windows\system32\javaw.exe
2013-02-06 15:28 . 2013-02-06 15:28 188320 ----a-w- c:\windows\system32\java.exe
2013-02-06 15:28 . 2013-02-06 15:28 -------- d-----w- c:\program files\Java
2013-02-06 14:37 . 2013-02-06 15:40 -------- d-----w- c:\windows\SysWow64\Adobe
2013-02-04 14:59 . 2013-02-04 15:00 -------- d-----w- c:\program files (x86)\PhotoScape
2013-02-04 11:04 . 2013-02-04 11:04 -------- d-----w- c:\users\Andi\AppData\Local\Apple Computer
2013-01-29 20:09 . 2013-01-29 20:09 -------- d-----w- c:\users\Andi\AppData\Roaming\ExpressFiles
2013-01-26 06:51 . 2013-01-26 06:51 -------- d-----w- c:\users\Andi\AppData\Local\BVRP Software
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-02-14 10:34 . 2012-07-14 16:29 691568 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-02-14 10:34 . 2011-12-03 14:07 71024 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-02-13 20:51 . 2011-12-01 16:49 70004024 ----a-w- c:\windows\system32\MRT.exe
2013-01-17 00:28 . 2010-11-21 03:27 273840 ------w- c:\windows\system32\MpSigStub.exe
2013-01-08 20:40 . 2013-01-08 20:40 424448 ----a-w- c:\windows\system32\KernelBase.dll
2013-01-08 20:40 . 2013-01-08 20:40 362496 ----a-w- c:\windows\system32\wow64win.dll
2013-01-08 20:40 . 2013-01-08 20:40 338432 ----a-w- c:\windows\system32\conhost.exe
2013-01-08 20:40 . 2013-01-08 20:40 274944 ----a-w- c:\windows\SysWow64\KernelBase.dll
2013-01-08 20:40 . 2013-01-08 20:40 243200 ----a-w- c:\windows\system32\wow64.dll
2013-01-08 20:40 . 2013-01-08 20:40 16384 ----a-w- c:\windows\system32\ntvdm64.dll
2013-01-08 20:40 . 2013-01-08 20:40 13312 ----a-w- c:\windows\system32\wow64cpu.dll
2013-01-08 20:40 . 2013-01-08 20:40 1161216 ----a-w- c:\windows\system32\kernel32.dll
2013-01-08 20:40 . 2013-01-08 20:40 6144 ---ha-w- c:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 5120 ---ha-w- c:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3584 ---ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3072 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3072 ---ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3072 ---ha-w- c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3584 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3584 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3584 ---ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3584 ---ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3072 ---ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3072 ---ha-w- c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3072 ---ha-w- c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-01-08 20:40 . 2013-01-08 20:40 3072 ---ha-w- c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-01-08 20:38 . 2013-01-08 20:38 68608 ----a-w- c:\windows\system32\taskhost.exe
2013-01-08 20:38 . 2013-01-08 20:38 800768 ----a-w- c:\windows\system32\usp10.dll
2013-01-08 20:38 . 2013-01-08 20:38 626688 ----a-w- c:\windows\SysWow64\usp10.dll
2013-01-08 20:38 . 2013-01-08 20:38 55296 ----a-w- c:\windows\SysWow64\cero.rs
2013-01-08 20:38 . 2013-01-08 20:38 55296 ----a-w- c:\windows\system32\cero.rs
2013-01-08 20:38 . 2013-01-08 20:38 51712 ----a-w- c:\windows\SysWow64\esrb.rs
2013-01-08 20:38 . 2013-01-08 20:38 51712 ----a-w- c:\windows\system32\esrb.rs
2013-01-08 20:38 . 2013-01-08 20:38 46592 ----a-w- c:\windows\SysWow64\fpb.rs
2013-01-08 20:38 . 2013-01-08 20:38 46592 ----a-w- c:\windows\system32\fpb.rs
2013-01-08 20:38 . 2013-01-08 20:38 45568 ----a-w- c:\windows\SysWow64\oflc-nz.rs
2013-01-08 20:38 . 2013-01-08 20:38 45568 ----a-w- c:\windows\system32\oflc-nz.rs
2013-01-08 20:38 . 2013-01-08 20:38 44544 ----a-w- c:\windows\SysWow64\pegibbfc.rs
2013-01-08 20:38 . 2013-01-08 20:38 44544 ----a-w- c:\windows\system32\pegibbfc.rs
2013-01-08 20:38 . 2013-01-08 20:38 441856 ----a-w- c:\windows\system32\Wpc.dll
2013-01-08 20:38 . 2013-01-08 20:38 43520 ----a-w- c:\windows\SysWow64\csrr.rs
2013-01-08 20:38 . 2013-01-08 20:38 43520 ----a-w- c:\windows\system32\csrr.rs
2013-01-08 20:38 . 2013-01-08 20:38 40960 ----a-w- c:\windows\SysWow64\cob-au.rs
2013-01-08 20:38 . 2013-01-08 20:38 40960 ----a-w- c:\windows\system32\cob-au.rs
2013-01-08 20:38 . 2013-01-08 20:38 308736 ----a-w- c:\windows\SysWow64\Wpc.dll
2013-01-08 20:38 . 2013-01-08 20:38 30720 ----a-w- c:\windows\SysWow64\usk.rs
2013-01-08 20:38 . 2013-01-08 20:38 30720 ----a-w- c:\windows\system32\usk.rs
2013-01-08 20:38 . 2013-01-08 20:38 2746368 ----a-w- c:\windows\system32\gameux.dll
2013-01-08 20:38 . 2013-01-08 20:38 2576384 ----a-w- c:\windows\SysWow64\gameux.dll
2013-01-08 20:38 . 2013-01-08 20:38 23552 ----a-w- c:\windows\SysWow64\oflc.rs
2013-01-08 20:38 . 2013-01-08 20:38 23552 ----a-w- c:\windows\system32\oflc.rs
2013-01-08 20:38 . 2013-01-08 20:38 21504 ----a-w- c:\windows\SysWow64\grb.rs
2013-01-08 20:38 . 2013-01-08 20:38 21504 ----a-w- c:\windows\system32\grb.rs
2013-01-08 20:38 . 2013-01-08 20:38 20480 ----a-w- c:\windows\SysWow64\pegi.rs
2013-01-08 20:38 . 2013-01-08 20:38 20480 ----a-w- c:\windows\SysWow64\pegi-pt.rs
2013-01-08 20:38 . 2013-01-08 20:38 20480 ----a-w- c:\windows\SysWow64\pegi-fi.rs
2013-01-08 20:38 . 2013-01-08 20:38 20480 ----a-w- c:\windows\system32\pegi.rs
2013-01-08 20:38 . 2013-01-08 20:38 20480 ----a-w- c:\windows\system32\pegi-pt.rs
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2012-11-11 19:36 220632 ----a-w- c:\users\Andi\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2012-11-11 19:36 220632 ----a-w- c:\users\Andi\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2012-11-11 19:36 220632 ----a-w- c:\users\Andi\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\users\Andi\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\users\Andi\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\users\Andi\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-10-25 343168]
"avast"="d:\install\Avast\avastUI.exe" [2012-10-30 4297136]
.
c:\users\Andi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Andi\AppData\Roaming\Dropbox\bin\Dropbox.exe [2013-1-20 28539272]
OpenOffice.org 3.4.1.lnk - c:\program files (x86)\OpenOffice.org 3\program\quickstart.exe [2012-8-13 1199104]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-01-08 161536]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [2009-04-06 13352]
R3 Prot6Flt;Prot6Flt;c:\windows\system32\DRIVERS\Prot6Flt.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-12-16 19456]
R3 s0017bus;Sony Ericsson Device 0017 driver (WDM);c:\windows\system32\DRIVERS\s0017bus.sys [2008-10-21 113704]
R3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s0017mdfl.sys [2008-10-21 19496]
R3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s0017mdm.sys [2008-10-21 152616]
R3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s0017mgmt.sys [2008-10-21 133160]
R3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS);c:\windows\system32\DRIVERS\s0017nd5.sys [2008-10-21 34856]
R3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s0017obex.sys [2008-10-21 128552]
R3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM);c:\windows\system32\DRIVERS\s0017unic.sys [2008-10-21 145960]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-12-16 57856]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2012-12-16 30208]
R3 WatAdminSvc;Windows aktiválási technológiák szolgáltatás;c:\windows\system32\Wat\WatAdminSvc.exe [2012-12-16 1255736]
R3 WinRing0_1_2_0;WinRing0_1_2_0; [x]
S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys [2011-04-16 79488]
S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys [2011-04-16 40064]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 aswKbd;aswKbd; [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2011-10-26 204288]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-10-25 361984]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-10-30 71600]
S2 Freemake Improver;Freemake Improver;c:\programdata\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2012-06-06 100864]
S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2010-03-25 490280]
S2 NitroReaderDriverReadSpool2;NitroPDFReaderDriverCreatorReadSpool2;c:\program files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe [2012-06-25 216080]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2011-03-30 114704]
S3 b57xdbd;Broadcom xD Picture Bus Driver Service;c:\windows\system32\DRIVERS\b57xdbd.sys [2011-01-20 67624]
S3 b57xdmp;Broadcom xD Picture vstorp client drv;c:\windows\system32\DRIVERS\b57xdmp.sys [2011-01-20 19496]
S3 bScsiMSa;bScsiMSa;c:\windows\system32\DRIVERS\bScsiMSa.sys [2011-04-12 51240]
S3 bScsiSDa;bScsiSDa;c:\windows\system32\DRIVERS\bScsiSDa.sys [2011-01-13 85544]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [2011-03-24 412712]
S3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\DRIVERS\seehcri.sys [2008-01-09 34032]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [2010-12-15 47232]
.
.
Contents of the 'Scheduled Tasks' folder
.
2013-02-24 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-07-14 10:34]
.
2013-02-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06 15:41]
.
2013-02-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06 15:41]
.
2013-02-23 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000Core.job
- c:\users\Andi\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-22 11:54]
.
2013-02-24 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000UA.job
- c:\users\Andi\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-22 11:54]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2012-11-11 19:36 244696 ----a-w- c:\users\Andi\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2012-11-11 19:36 244696 ----a-w- c:\users\Andi\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2012-11-11 19:36 244696 ----a-w- c:\users\Andi\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-10-30 22:50 133400 ----a-w- d:\install\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 162552 ----a-w- c:\users\Andi\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 162552 ----a-w- c:\users\Andi\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 162552 ----a-w- c:\users\Andi\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 162552 ----a-w- c:\users\Andi\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.myfreezoo.hu/index/logout/#_ ... n=32603170
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportálás a Microsoft Excel programba - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 212.24.187.210 212.24.160.1
FF - ProfilePath - c:\users\Andi\AppData\Roaming\Mozilla\Firefox\Profiles\w8fznygo.default\
FF - prefs.js: browser.startup.homepage - hxxps://mail.google.com/mail/u/0/?shva= ... 3&p=989621#p989621|http://www.myfreezoo.hu/index/logout/
.
- - - - ORPHANS REMOVED - - - -
.
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-2233398410-2206852678-135025787-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\UserChoice]
@Denied: (2) (S-1-5-21-2233398410-2206852678-135025787-1000)
@Denied: (2) (LocalSystem)
"Progid"="IE.AssocFile.HTM"
.
[HKEY_USERS\S-1-5-21-2233398410-2206852678-135025787-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\UserChoice]
@Denied: (2) (S-1-5-21-2233398410-2206852678-135025787-1000)
@Denied: (2) (LocalSystem)
"Progid"="IE.AssocFile.HTM"
.
[HKEY_USERS\S-1-5-21-2233398410-2206852678-135025787-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\UserChoice]
@Denied: (2) (S-1-5-21-2233398410-2206852678-135025787-1000)
@Denied: (2) (LocalSystem)
"Progid"="FirefoxHTML"
.
[HKEY_USERS\S-1-5-21-2233398410-2206852678-135025787-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.svg\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="SafariHTML"
.
[HKEY_USERS\S-1-5-21-2233398410-2206852678-135025787-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xht\UserChoice]
@Denied: (2) (S-1-5-21-2233398410-2206852678-135025787-1000)
@Denied: (2) (LocalSystem)
"Progid"="Opera.HTML"
.
[HKEY_USERS\S-1-5-21-2233398410-2206852678-135025787-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xhtml\UserChoice]
@Denied: (2) (S-1-5-21-2233398410-2206852678-135025787-1000)
@Denied: (2) (LocalSystem)
"Progid"="Opera.HTML"
.
[HKEY_USERS\S-1-5-21-2233398410-2206852678-135025787-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="SafariHTML"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_149_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_149_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_149_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_149_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_149.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_149.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_149.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_149.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0\Alias]
@=""
"0"="ActionsPane Schema for Add-Ins"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
d:\install\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
.
**************************************************************************
.
Completion time: 2013-02-24 13:40:09 - machine was rebooted
ComboFix-quarantined-files.txt 2013-02-24 12:40
.
Pre-Run: 3 953 364 992 bájt szabad
Post-Run: 3 881 357 312 bájt szabad
.
- - End Of File - - 22DF0BDDB04E0B047F24ED9CA26690AF


vas. feb. 24, 2013 13:46
Profil Privát üzenet küldése
arany tag

Csatlakozott: szomb. feb. 23, 2013 15:01
Hozzászólások: 122
Hozzászólás Re: STELL Segit
All processes killed
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmartRAM\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccleaner\ not found.
========== FILES ==========
d:\install\Advanced SystemCare 6\Update folder moved successfully.
d:\install\Advanced SystemCare 6\Toolbox_Download folder moved successfully.
d:\install\Advanced SystemCare 6\SecurityHole_Backup folder moved successfully.
d:\install\Advanced SystemCare 6\LatestNews folder moved successfully.
d:\install\Advanced SystemCare 6\BrowerProtect\images folder moved successfully.
d:\install\Advanced SystemCare 6\BrowerProtect folder moved successfully.
d:\install\Advanced SystemCare 6\BootTimeLog folder moved successfully.
d:\install\Advanced SystemCare 6\ASCServiceLog folder moved successfully.
d:\install\Advanced SystemCare 6 folder moved successfully.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Andi
->Temp folder emptied: 3600074 bytes
->Temporary Internet Files folder emptied: 1830258 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 122555896 bytes
->Google Chrome cache emptied: 67165375 bytes
->Apple Safari cache emptied: 0 bytes
->Flash cache emptied: 1122 bytes

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 532352 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 187,00 mb

Restore point Set: OTL Restore Point

OTL by OldTimer - Version 3.2.69.0 log created on 02242013_131302

Files\Folders moved on Reboot...
C:\Users\Andi\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File\Folder C:\Users\Andi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\01EHFZTX\ADSAdClient31[10].htm not found!
File\Folder C:\Users\Andi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\01EHFZTX\ADSAdClient31[2].htm not found!
File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...



Combofix is mindjárt jön ...


vas. feb. 24, 2013 13:19
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Csak ezt csinald amit mosrt irok.
Tolds le az OTL.exe programot, Futtasd, az ablakjaba masold be ezt a scriptet, es klik RunFix, a naplojat tedd ide.
http://oldtimer.geekstogo.com/OTL.exe
Kód:
:reg
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmartRAM]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccleaner]
:Files
d:\install\advanced systemcare 6
:Commands
[resethosts]
[emptytemp]
[clearallrestorepoints]

Naplojat tedd ide.

Aztan futtasd meg le az Combofixet, a naplojat tedd szinten ide.
http://www.bleepingcomputer.com/combofi ... t-combofix


vas. feb. 24, 2013 13:09
Profil Privát üzenet küldése Honlap
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Varjal, irok egy scriptet, mert ez a csoda szemet beirta magat a registerbe is.


vas. feb. 24, 2013 12:58
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: szomb. feb. 23, 2013 15:01
Hozzászólások: 122
Hozzászólás Re: STELL Segit
stell írta:
Josolni?/>.na meg nemsikerult megtanulnom.
Ezt a KINAI csoda szemetet, lekel szedni a geprol
d:\install\advanced systemcare 6\


Nincs uninstall.... :hm: csak töröljem simán?


vas. feb. 24, 2013 12:31
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Josolni?/>.na meg nemsikerult megtanulnom.
Ezt a KINAI csoda szemetet, lekel szedni a geprol
d:\install\advanced systemcare 6\

Na most Futtasd ezt a programot
C:\Program Files\trend micro\Andi.exe
Ez az Hijack.

Futasd es klik Scan, aztan ezkhez a kulcsokhoz tegyel pipat
Es aztan Klik FIXChecked.
ok,ok,ok
Es utana bezarod.
Aztan tegyel ide uj RSIT naplot.
Kód:
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.myfreezoo.hu/index/logout/#_ ... n=32603170
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Install\Avast\aswWebRepIE.dll
O2 - BHO: Microsoft-fiók bejelentkezési segédje - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Install\Avast\aswWebRepIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [Google Update] "C:\Users\Andi\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe


vas. feb. 24, 2013 11:43
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: szomb. feb. 23, 2013 15:01
Hozzászólások: 122
Hozzászólás Re: STELL Segit
Miért nem tudsz jósolni? :D !-F

Logfile of random's system information tool 1.09 (written by random/random)
Run by Andi at 2013-02-24 11:29:01
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 4 GB (10%) free of 41 GB
Total RAM: 2534 MB (65% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:29:08, on 2013.02.24.
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16464)
Boot mode: Normal

Running processes:
C:\Users\Andi\AppData\Roaming\Dropbox\bin\Dropbox.exe
D:\Install\Avast\AvastUI.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files\trend micro\Andi.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.myfreezoo.hu/index/logout/#_ ... n=32603170
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Install\Avast\aswWebRepIE.dll
O2 - BHO: Microsoft-fiók bejelentkezési segédje - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Install\Avast\aswWebRepIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [avast] "D:\Install\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [Google Update] "C:\Users\Andi\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - Startup: Dropbox.lnk = Andi\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: OpenOffice.org 3.4.1.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportálás a Microsoft Excel programba - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/ms ... b56986.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/So ... b56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/Messenger ... E_UNO1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Me ... b56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/Mi ... b56986.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: avast! Antivirus - AVAST Software - D:\Install\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Google frissítés Szolgáltatás (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google frissítés Szolgáltatás (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: NitroPDFReaderDriverCreatorReadSpool2 (NitroReaderDriverReadSpool2) - Nitro PDF Software - C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: PDAgent - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDAgent.exe
O23 - Service: PDEngine - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDEngine.exe
O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

--
End of file - 22836 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\system32\WLANExt.exe 1547472
\??\C:\Windows\system32\conhost.exe "-1538751304-933336786198899220017956928201914612717-8961925101308981111-1235323548
"D:\Install\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Windows\System32\StikyNot.exe"
"C:\Users\Andi\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"D:\Install\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" -quickstart
"C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe"
"C:\Program Files\Raxco\PerfectDisk\PDAgent.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" "-quickstart" "-env:OOO_CWD=2C:\\Program Files (x86)\\OpenOffice.org 3\\program"
WLIDSvcM.exe 3068
"C:\Program Files\Raxco\PerfectDisk\PDEngine.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Raxco\PerfectDisk\PDAgentS1.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe4_ Global\UsGthrCtrlFltPipeMssGthrPipe4 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
"C:\Users\Andi\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\CheckDriveBackgroundGuard.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2233398410-2206852678-135025787-1000UA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Andi\AppData\Roaming\Mozilla\Firefox\Profiles\w8fznygo.default

prefs.js - "browser.startup.homepage" - "https://mail.google.com/mail/u/0/?shva=1#inbox|http://forum.wikitech.hu/viewtopic.php?f=15&t=38893&p=989621#p989621|http://www.myfreezoo.hu/index/logout/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.6.602.168 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_168.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=D:\Install\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_33]
"Description"=
"Path"=C:\Windows\SysWOW64\npdeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nitropdf.com/NitroPDF]
"Description"=NitroPDF Web Browser Plugin
"Path"=C:\Program Files (x86)\Nitro PDF\Reader 2\npnitromozilla.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.6.602.168 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_168.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.13.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.13.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL

C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}

C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsIQTScriptablePlugin.xpt

C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
NPOFF12.DLL
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
creativecommons.xml
eBay-hu.xml
google.xml
sztaki-en-hu.xml
vatera.xml
wikipedia-hu.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - D:\Install\Avast\aswWebRepIE64.dll [2012-10-30 1502288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-02-06 551840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-02-06 253584]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-02-06 209824]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2012-07-09 329480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - D:\Install\Avast\aswWebRepIE.dll [2012-10-30 1227736]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Microsoft-fiók bejelentkezési segédje - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-02-06 192144]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2012-07-09 59144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - D:\Install\Avast\aswWebRepIE64.dll [2012-10-30 1502288]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-02-06 253584]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - D:\Install\Avast\aswWebRepIE.dll [2012-10-30 1227736]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-02-06 192144]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-11-18 2478888]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Andi\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-03 136176]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2009-07-14 427520]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2011-09-27 59240]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
c:\program files (x86)\microsoft office\office14\bcssync.exe [2010-03-13 91520]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
c:\program files (x86)\common files\ahead\lib\nmbgmonitor.exe [2007-06-27 152872]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccleaner]
C:\Program Files\CCleaner\CCleaner64.exe [2013-01-23 5629720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-11-10 3514176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Andi\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-03 136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
c:\program files (x86)\windows live\messenger\msnmsgr.exe [2012-09-12 4272640]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBAgent]
C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [2010-03-26 1234216]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ProgLauncher]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RESTART_STICKY_NOTES]
c:\windows\system32\stikynot.exe [2009-07-14 427520]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
c:\program files (x86)\skype\phone\skype.exe [2013-01-08 18705664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmartRAM]
d:\install\advanced systemcare 6\suo10_smartram.exe /m []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Andi^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2010 Screen Clipper and Launcher.lnk]
C:\PROGRA~2\MICROS~1\Office14\ONENOTEM.EXE [2011-09-02 227712]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-10-25 343168]
"avast"=D:\Install\Avast\avastUI.exe [2012-10-30 4297136]

C:\Users\Andi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Andi\AppData\Roaming\Dropbox\bin\Dropbox.exe
OpenOffice.org 3.4.1.lnk - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2011-12-01 249344]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2013-02-24 11:29:01 ----D---- C:\rsit
2013-02-23 19:11:15 ----D---- C:\Windows\ERUNT
2013-02-23 19:10:37 ----D---- C:\JRT
2013-02-23 19:05:52 ----A---- C:\Windows\ntbtlog.txt
2013-02-23 18:53:45 ----D---- C:\Windows\system32\%LOCALAPPDATA%
2013-02-23 18:17:50 ----A---- C:\AdwCleaner[S1].txt
2013-02-23 16:35:12 ----A---- C:\TDSSKiller.2.8.16.0_23.02.2013_16.35.12_log.txt
2013-02-23 16:00:26 ----D---- C:\ProgramData\Malwarebytes
2013-02-13 21:42:26 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-02-13 21:42:26 ----A---- C:\Windows\system32\mshtmled.dll
2013-02-13 21:42:25 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-02-13 21:42:24 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-02-13 21:42:24 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-02-13 21:42:24 ----A---- C:\Windows\system32\ieUnatt.exe
2013-02-13 21:42:24 ----A---- C:\Windows\system32\ieui.dll
2013-02-13 21:42:23 ----A---- C:\Windows\SYSWOW64\url.dll
2013-02-13 21:42:23 ----A---- C:\Windows\system32\url.dll
2013-02-13 21:42:22 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-02-13 21:42:22 ----A---- C:\Windows\system32\urlmon.dll
2013-02-13 21:42:21 ----A---- C:\Windows\system32\jscript9.dll
2013-02-13 21:42:20 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-02-13 21:42:20 ----A---- C:\Windows\system32\msfeeds.dll
2013-02-13 21:42:19 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-02-13 21:42:18 ----A---- C:\Windows\system32\wininet.dll
2013-02-13 21:42:18 ----A---- C:\Windows\system32\jsproxy.dll
2013-02-13 21:42:17 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-02-13 21:42:17 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-02-13 21:42:16 ----A---- C:\Windows\system32\vbscript.dll
2013-02-13 21:42:16 ----A---- C:\Windows\system32\jscript.dll
2013-02-13 21:42:16 ----A---- C:\Windows\system32\iertutil.dll
2013-02-13 21:42:15 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-02-13 21:42:14 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-02-13 21:42:12 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-02-13 21:42:09 ----A---- C:\Windows\system32\mshtml.dll
2013-02-13 21:42:07 ----A---- C:\Windows\system32\ieframe.dll
2013-02-13 21:42:06 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-02-13 07:53:11 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-02-13 07:53:10 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-02-13 07:53:09 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-02-13 07:53:02 ----A---- C:\Windows\system32\win32k.sys
2013-02-13 07:53:00 ----A---- C:\Windows\system32\winsrv.dll
2013-02-13 07:52:59 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-02-13 07:52:59 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-02-13 07:52:59 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-02-13 07:52:58 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-02-13 07:52:55 ----A---- C:\Windows\SYSWOW64\user.exe
2013-02-13 07:52:53 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-02-13 07:52:53 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2013-02-12 21:54:57 ----D---- C:\Users\Andi\AppData\Roaming\OpenOffice.org
2013-02-12 21:38:45 ----D---- C:\Program Files (x86)\OpenOffice.org 3
2013-02-06 18:06:53 ----D---- C:\Users\Andi\AppData\Roaming\Skype
2013-02-06 18:06:39 ----RD---- C:\Program Files (x86)\Skype
2013-02-06 18:06:35 ----D---- C:\ProgramData\Skype
2013-02-06 16:41:51 ----D---- C:\ProgramData\Google
2013-02-06 16:28:30 ----A---- C:\Windows\system32\npDeployJava1.dll
2013-02-06 16:28:30 ----A---- C:\Windows\system32\javaws.exe
2013-02-06 16:28:30 ----A---- C:\Windows\system32\deployJava1.dll
2013-02-06 16:28:18 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2013-02-06 16:28:18 ----A---- C:\Windows\system32\javaw.exe
2013-02-06 16:28:18 ----A---- C:\Windows\system32\java.exe
2013-02-06 16:28:04 ----D---- C:\Program Files\Java
2013-02-06 15:37:31 ----D---- C:\Windows\SYSWOW64\Adobe
2013-02-06 09:54:34 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-02-04 15:59:55 ----D---- C:\Program Files (x86)\PhotoScape
2013-01-29 21:09:32 ----D---- C:\Users\Andi\AppData\Roaming\ExpressFiles

======List of files/folders modified in the last 1 month======

2013-02-24 11:29:06 ----D---- C:\Windows\temp
2013-02-24 11:29:04 ----D---- C:\Program Files\trend micro
2013-02-24 10:02:38 ----D---- C:\Windows\system32\config
2013-02-24 09:52:33 ----D---- C:\Users\Andi\AppData\Roaming\Dropbox
2013-02-23 21:43:49 ----D---- C:\Users\Andi\AppData\Roaming\Nitro PDF
2013-02-23 19:44:51 ----D---- C:\Windows\system32\Tasks
2013-02-23 19:11:15 ----D---- C:\Windows
2013-02-23 18:53:45 ----D---- C:\Windows\System32
2013-02-23 18:18:06 ----RD---- C:\Program Files (x86)
2013-02-23 18:18:06 ----D---- C:\Program Files (x86)\Common Files
2013-02-23 18:18:05 ----D---- C:\ProgramData
2013-02-23 16:35:13 ----D---- C:\Windows\system32\drivers
2013-02-23 15:11:15 ----D---- C:\Windows\Prefetch
2013-02-23 08:37:34 ----SHD---- C:\System Volume Information
2013-02-16 13:58:18 ----SHD---- C:\Windows\Installer
2013-02-16 13:58:17 ----SHD---- C:\Config.Msi
2013-02-14 13:19:17 ----D---- C:\Windows\Microsoft.NET
2013-02-14 13:19:16 ----RSD---- C:\Windows\assembly
2013-02-14 11:36:10 ----D---- C:\ProgramData\Adobe
2013-02-14 11:34:27 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-02-14 08:18:19 ----D---- C:\Windows\winsxs
2013-02-14 08:15:44 ----D---- C:\Windows\SysWOW64
2013-02-14 08:15:43 ----D---- C:\Windows\AppPatch
2013-02-14 08:15:42 ----D---- C:\Windows\SYSWOW64\migration
2013-02-14 08:15:42 ----D---- C:\Program Files (x86)\Internet Explorer
2013-02-14 08:15:41 ----D---- C:\Windows\system32\migration
2013-02-14 08:15:41 ----D---- C:\Program Files\Internet Explorer
2013-02-13 21:56:31 ----D---- C:\ProgramData\Microsoft Help
2013-02-13 21:51:07 ----D---- C:\Windows\debug
2013-02-13 21:51:02 ----A---- C:\Windows\system32\MRT.exe
2013-02-13 21:49:26 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-02-13 21:49:25 ----D---- C:\Windows\inf
2013-02-13 21:45:52 ----D---- C:\Windows\system32\catroot
2013-02-13 21:42:57 ----D---- C:\Windows\system32\catroot2
2013-02-12 21:38:59 ----RSD---- C:\Windows\Fonts
2013-02-12 17:19:43 ----D---- C:\Windows\Tasks
2013-02-11 16:02:57 ----D---- C:\Users\Andi\AppData\Roaming\Winamp
2013-02-07 08:16:41 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-02-06 17:38:24 ----D---- C:\Program Files\CCleaner
2013-02-06 16:42:07 ----D---- C:\Program Files\Google
2013-02-06 16:42:07 ----D---- C:\Program Files (x86)\Google
2013-02-06 16:28:04 ----RD---- C:\Program Files
2013-02-06 15:37:35 ----D---- C:\Windows\Downloaded Program Files
2013-02-05 13:49:50 ----D---- C:\Windows\Minidump
2013-02-05 12:18:38 ----D---- C:\Program Files (x86)\Opera
2013-02-05 12:18:37 ----D---- C:\Users\Andi\AppData\Roaming\Opera
2013-02-05 09:28:32 ----D---- C:\Users\Andi\AppData\Roaming\Mozilla
2013-01-26 08:07:35 ----D---- C:\ProgramData\Sony Ericsson
2013-01-26 08:07:34 ----D---- C:\Program Files (x86)\Sony Ericsson
2013-01-26 07:51:33 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-01-26 07:45:06 ----D---- C:\Users\Andi\AppData\Roaming\IObit

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2011-04-16 79488]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2011-04-16 40064]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-12-03 530488]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2012-10-30 21136]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2012-10-15 54072]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2012-10-30 984144]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2012-10-30 370288]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2012-10-30 59728]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2012-10-30 25232]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2012-10-30 71600]
R2 DefragFS;DefragFS; C:\Windows\system32\drivers\DefragFS.sys [2010-06-17 138256]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-10-26 10496512]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-10-26 326656]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2011-03-30 114704]
R3 b57xdbd;Broadcom xD Picture Bus Driver Service; C:\Windows\system32\DRIVERS\b57xdbd.sys [2011-01-20 67624]
R3 b57xdmp;Broadcom xD Picture vstorp client drv; C:\Windows\system32\DRIVERS\b57xdmp.sys [2011-01-20 19496]
R3 BCM43XX;Broadcom 802.11 hálózati adapter illesztőprogramja; C:\Windows\system32\DRIVERS\bcmwl664.sys [2011-12-01 4720704]
R3 bScsiMSa;bScsiMSa; C:\Windows\system32\DRIVERS\bScsiMSa.sys [2011-04-12 51240]
R3 bScsiSDa;bScsiSDa; C:\Windows\system32\DRIVERS\bScsiSDa.sys [2011-01-13 85544]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2011-03-24 412712]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\Windows\system32\DRIVERS\seehcri.sys [2008-01-09 34032]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-11-18 1401392]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2010-12-15 47232]
S3 azxd2hww;azxd2hww; C:\Windows\system32\drivers\azxd2hww.sys []
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 catchme;catchme; C:\Windows\system32\drivers\catchme.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-09-12 57856]
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2009-04-06 13352]
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2009-04-06 27176]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 Prot6Flt;Prot6Flt; C:\Windows\system32\DRIVERS\Prot6Flt.sys []
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-12-16 19456]
S3 s0017bus;Sony Ericsson Device 0017 driver (WDM); C:\Windows\system32\DRIVERS\s0017bus.sys [2008-10-21 113704]
S3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s0017mdfl.sys [2008-10-21 19496]
S3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s0017mdm.sys [2008-10-21 152616]
S3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s0017mgmt.sys [2008-10-21 133160]
S3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS); C:\Windows\system32\DRIVERS\s0017nd5.sys [2008-10-21 34856]
S3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s0017obex.sys [2008-10-21 128552]
S3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM); C:\Windows\system32\DRIVERS\s0017unic.sys [2008-10-21 145960]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-12-16 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-12-16 30208]
S3 WinRing0_1_2_0;WinRing0_1_2_0; C:\Windows\system32\drivers\WinRing0_1_2_0.sys []
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-10-26 204288]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-10-25 361984]
R2 avast! Antivirus;avast! Antivirus; D:\Install\Avast\AvastSvc.exe [2012-10-30 44808]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-03-25 490280]
R2 NitroReaderDriverReadSpool2;NitroPDFReaderDriverCreatorReadSpool2; C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe [2012-06-25 216080]
R2 PDAgent;PDAgent; C:\Program Files\Raxco\PerfectDisk\PDAgent.exe [2011-03-15 2610952]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
R3 PDEngine;PDEngine; C:\Program Files\Raxco\PerfectDisk\PDEngine.exe [2011-03-15 2266376]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 Freemake Improver;Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2012-06-06 100864]
S2 gupdate;Google frissítés Szolgáltatás (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06 136176]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-01-08 161536]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-14 251248]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-09-12 1512448]
S3 gupdatem;Google frissítés Szolgáltatás (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06 136176]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-02-06 194032]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-02-06 115608]
S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-12-16 1255736]

-----------------EOF-----------------


vas. feb. 24, 2013 11:30
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Na josolni nem tudok, tedd ide az RSIT naplojat.
http://virus-stell.blogspot.sk/2010/04/rsit.html


vas. feb. 24, 2013 11:21
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: szomb. feb. 23, 2013 15:01
Hozzászólások: 122
Hozzászólás Re: STELL Segit
eltűntettem a rejtett fájlokat :D (ügyi voltam :D )
Sokkal-sokkal jobb! nem tudom nem e volt gyorsabb, de mindenesetre sokkal jobb! Felesleges dolgok, vagy olyan ami esetleg visszatarthatja van még rajta?


vas. feb. 24, 2013 10:10
Profil Privát üzenet küldése
arany tag

Csatlakozott: szomb. feb. 23, 2013 15:01
Hozzászólások: 122
Hozzászólás Re: STELL Segit
Rendben :) akkor holnap!


szomb. feb. 23, 2013 20:21
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
kapcsold ki a rejtet fajlok megjeleniteset,
es majd holnap ird meg mi van.
Ma mar nem akkarodzik, gondolkozni.


szomb. feb. 23, 2013 20:16
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: szomb. feb. 23, 2013 15:01
Hozzászólások: 122
Hozzászólás Re: STELL Segit
Jaj tényleg Remove.... na akkkor megnyugodtam, mert már nem tudtam másképp csinálni. :D
Az asztalon most lett egy csomó talán rejtett fájl....azt eltűntetjük majd?
és köszi;)


szomb. feb. 23, 2013 20:13
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
:D
Nar dehogy most mar jo ,es nast muttat.
Mode : Remove -- Date : 02/23/2013 20:01:47
| ARK || FAK || MBR |

Ok, Akkor most igy hagyjuk, probald ki a gepet es holnap ird meg hogy mi az ujsag.


szomb. feb. 23, 2013 20:09
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: szomb. feb. 23, 2013 15:01
Hozzászólások: 122
Hozzászólás Re: STELL Segit
Hát nem értem..tényleg a delete után volt...megcsináltam mégegyszer és lényegében amire utaltál ugyanazt mutatja, hogy megint nem deletéztem pedig igen :o


RogueKiller V8.5.2 [Feb 23 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/fi ... guekiller/
Website : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Andi [Admin rights]
Mode : Remove -- Date : 02/23/2013 20:01:47
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

127.0.0.1 localhost


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: Hitachi HTS543232A7A384 SATA Disk Device +++++
--- User ---
[MBR] aa0d7916d2813721df9a7b3f002ba93e
[BSP] 76481e61ac3c5d100c390219f7994ed9 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 40939 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 83843235 | Size: 264303 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[6]_D_02232013_02d2001.txt >>
RKreport[1]_S_02232013_02d1944.txt ; RKreport[2]_D_02232013_02d1945.txt ; RKreport[3]_S_02232013_02d1957.txt ; RKreport[4]_D_02232013_02d1958.txt ; RKreport[5]_D_02232013_02d1959.txt ;
RKreport[6]_D_02232013_02d2001.txt


szomb. feb. 23, 2013 20:05
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Started in : Normal mode
User : Andi [Admin rights]
Mode : Scan -- Date : 02/23/2013 19:44:44
| ARK || FAK || MBR |

Na nem igen,
Futtasd ujbol, igy jobb klik es futtasd mint rendszegazda, es KLIK DELETE


szomb. feb. 23, 2013 19:54
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: szomb. feb. 23, 2013 15:01
Hozzászólások: 122
Hozzászólás Re: STELL Segit
ezt a delete után kaptam


szomb. feb. 23, 2013 19:52
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
na klikelj DELETE


szomb. feb. 23, 2013 19:49
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: szomb. feb. 23, 2013 15:01
Hozzászólások: 122
Hozzászólás Re: STELL Segit
RogueKiller V8.5.2 [Feb 23 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/fi ... guekiller/
Website : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Andi [Admin rights]
Mode : Scan -- Date : 02/23/2013 19:44:44
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 11 ¤¤¤
[TASK][ROGUE ST] 0 : c:\program files (x86)\internet explorer\iexplore.exe -> FOUND
[TASK][ROGUE ST] 4561 : wscript.exe C:\Users\Andi\AppData\Local\Temp\launchie.vbs //B -> FOUND
[HJPOL] HKCU\[...]\System : DisableTaskMgr (0) -> FOUND
[HJPOL] HKCU\[...]\System : disableregistrytools (0) -> FOUND
[HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND
[HJPOL] HKLM\[...]\Wow6432Node\System : DisableRegistryTools (0) -> FOUND
[HJ SMENU] HKCU\[...]\Advanced : Start_ShowUser (0) -> FOUND
[HJ SMENU] HKCU\[...]\Advanced : Start_ShowPrinters (0) -> FOUND
[HJ SMENU] HKCU\[...]\Advanced : Start_ShowSetProgramAccessAndDefaults (0) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

127.0.0.1 localhost


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: Hitachi HTS543232A7A384 SATA Disk Device +++++
--- User ---
[MBR] aa0d7916d2813721df9a7b3f002ba93e
[BSP] 76481e61ac3c5d100c390219f7994ed9 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 40939 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 83843235 | Size: 264303 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[1]_S_02232013_02d1944.txt >>
RKreport[1]_S_02232013_02d1944.txt


szomb. feb. 23, 2013 19:47
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Akkor scan, vard meg a veget, es rogton klik DELETE


szomb. feb. 23, 2013 19:42
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: szomb. feb. 23, 2013 15:01
Hozzászólások: 122
Hozzászólás Re: STELL Segit
stell írta:
DELETE

az nem aktív :hm:


szomb. feb. 23, 2013 19:40
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
DELETE


szomb. feb. 23, 2013 19:37
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: szomb. feb. 23, 2013 15:01
Hozzászólások: 122
Hozzászólás Re: STELL Segit
elindítottam ...elfogadtam ami kiugrott...most mire klikkeljek? a Scan-re?


szomb. feb. 23, 2013 19:35
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Na meg az RogueKillert futtasd es meglatom ha ez is talal e valamit,


szomb. feb. 23, 2013 19:33
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: szomb. feb. 23, 2013 15:01
Hozzászólások: 122
Hozzászólás Re: STELL Segit
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.6.5 (02.18.2013:1)
OS: Windows 7 Home Premium x64
Ran by Andi on 2013.02.23. at 19:11:29,58
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] hkey_current_user\software

\sweetim
Successfully deleted: [Registry Key] hkey_local_machine\software

\sweetim
Successfully deleted: [Registry Key] hkey_current_user\software

\microsoft\internet explorer\searchscopes\{6a1806cd-94d4-4689-ba73

-e35ea1ea9990}
Successfully deleted: [Registry Key] hkey_local_machine\software

\microsoft\internet explorer\searchscopes\{6a1806cd-94d4-4689-ba73

-e35ea1ea9990}



~~~ Files



~~~ Folders



~~~ FireFox

Successfully deleted the following from C:\Users\Andi\AppData

\Roaming\mozilla\firefox\profiles\w8fznygo.default\prefs.js

user_pref("browser.newtabpage.blocked",

"{\"UzHyjDj6r0Ehwuofh0iGTg==\":1,\"GkOOoLYO/GEa4x5hOsQpZg==\":1,

\"wKYX5wnpyi7GZFPcTP1bQw==\":1,\"VYGEogZqExRzYKRAmukNZw==\":1,

\"bwPLGs3
Emptied folder: C:\Users\Andi\AppData\Roaming\mozilla\firefox

\profiles\w8fznygo.default\minidumps [124 files]



~~~ Chrome

Successfully deleted: [Folder] C:\Users\Andi\appdata\local\Google

\Chrome\User Data\Default\Extensions

\jcdgjdiieiljkfkdcloehkohchhpekkn



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 2013.02.23. at 19:27:29,52
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~


szomb. feb. 23, 2013 19:30
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
igen a TFC osze szok akadni a virusvedelemel, ezert eszt a programot futtasd csokkentet modban.


szomb. feb. 23, 2013 19:02
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: szomb. feb. 23, 2013 15:01
Hozzászólások: 122
Hozzászólás Re: STELL Segit
hopsz....TFC közben Windows súlyos hibát észlelt és befejezés előtt újraindult a gép...mehet azért újból?


szomb. feb. 23, 2013 19:00
Profil Privát üzenet küldése
arany tag

Csatlakozott: szomb. feb. 23, 2013 15:01
Hozzászólások: 122
Hozzászólás Re: STELL Segit
RKILL:

Rkill 2.4.7 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 02/23/2013 06:50:26 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe (PID: 1940) [AU-HEUR]

1 proccess terminated!

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* HOSTS file entries found:

127.0.0.1 localhost

Program finished at: 02/23/2013 06:50:54 PM
Execution time: 0 hours(s), 0 minute(s), and 27 seconds(s)


szomb. feb. 23, 2013 18:52
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Fu ha ,igen a szamitogep tele van Adware-val, egy vagonal mar az ADWcleaner kitorolt. :D
1:Futtasd az RKILL programot,
http://download.bleepingcomputer.com/grinler/rkill.com
Naplojat Tedd ide.

2:Futtasd az TFCleanert.
http://oldtimer.geekstogo.com/TFC.exe
3:Ruttasd az Junkware removalrt
http://thisisudax.org/downloads/JRT.exe

3:Futtasd az RogueKillert DELETE az naplojat tedd ide.
http://www.viruskasino.com/2010/12/prog ... ogueKiller

Ezek a programok gyorsan lefutnak.


szomb. feb. 23, 2013 18:36
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: szomb. feb. 23, 2013 15:01
Hozzászólások: 122
Hozzászólás Re: STELL Segit
# AdwCleaner v2.112 - Logfile created 02/23/2013 at 18:17:50
# Updated 10/02/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Andi - ANDI-PC
# Boot Mode : Normal
# Running from : C:\Users\Andi\Desktop\adwcleaner0.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Program Files (x86)\Common Files\spigot
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\Optimizer Pro
Folder Deleted : C:\Program Files (x86)\SweetIM
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\ProgramData\Trymedia
Folder Deleted : C:\Users\Andi\AppData\Local\APN
Folder Deleted : C:\Users\Andi\AppData\Local\Conduit
Folder Deleted : C:\Users\Andi\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Folder Deleted : C:\Users\Andi\AppData\LocalLow\Ashampoo_HU
Folder Deleted : C:\Users\Andi\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Andi\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\Andi\AppData\Roaming\Mozilla\Firefox\Profiles\pq1lfspd.default\Smartbar
Folder Deleted : C:\Users\Andi\AppData\Roaming\OpenCandy

***** [Registry] *****

Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\AppDataLow\Software\Ashampoo_HU
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\Software\Ashampoo_HU
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Deleted : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
Key Deleted : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASMANCS
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\pmlghpafmmnmmkjdhacccolfgnkiboco
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3DB3CE7F-2BE2-4AFB-8B11-6F4746252958}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{85304ED7-C8C7-41F8-95F1-3D15508A467B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EF56A35-13A0-4571-AA84-9303D9F41BDD}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2F603A45-D956-496B-81B5-50D782424976}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B85C4CB2-B352-4BD8-818C-BCE353599107}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{2F603A45-D956-496B-81B5-50D782424976}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B85C4CB2-B352-4BD8-818C-BCE353599107}
Key Deleted : HKLM\SOFTWARE\Tarma Installer
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{6EF56A35-13A0-4571-AA84-9303D9F41BDD}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16464

[OK] Registry is clean.

-\\ Mozilla Firefox v18.0.2 (hu)

File : C:\Users\Andi\AppData\Roaming\Mozilla\Firefox\Profiles\w8fznygo.default\prefs.js

C:\Users\Andi\AppData\Roaming\Mozilla\Firefox\Profiles\w8fznygo.default\user.js ... Deleted !

Deleted : user_pref("browser.startup.homepage", "hxxps://mail.google.com/mail/u/0/?shva=1#inbox|hxxp://forum.w[...]

-\\ Google Chrome v25.0.1364.97

File : C:\Users\Andi\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted [l.34] : keyword = "search.sweetim.com",
Deleted [l.37] : search_url = "hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}&crg=3.1010000.10011&[...]

*************************

AdwCleaner[S1].txt - [6138 octets] - [23/02/2013 18:17:50]

########## EOF - C:\AdwCleaner[S1].txt - [6198 octets] ##########


szomb. feb. 23, 2013 18:28
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Ok, Rootkitet nem latok, az a suspicious renben van az a Daemon, alcohol drivere.

Tolds le, utana zard be mindent ami ki van nyitva, a Bongeszoket.
Futtasd le az ADWcleanert, Futtatod mint admin es klik DELETE gombra anaplojat tedd ide.
http://www.viruskasino.com/2012/09/adwcleaner.html


szomb. feb. 23, 2013 18:06
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: szomb. feb. 23, 2013 15:01
Hozzászólások: 122
Hozzászólás Re: STELL Segit
16:42:47.0816 2444 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
16:42:47.0826 2444 W32Time - ok
16:42:47.0851 2444 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
16:42:47.0851 2444 WacomPen - ok
16:42:47.0886 2444 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
16:42:47.0886 2444 WANARP - ok
16:42:47.0891 2444 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:42:47.0896 2444 Wanarpv6 - ok
16:42:47.0946 2444 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
16:42:47.0956 2444 WatAdminSvc - ok
16:42:48.0016 2444 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
16:42:48.0031 2444 wbengine - ok
16:42:48.0051 2444 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
16:42:48.0061 2444 WbioSrvc - ok
16:42:48.0086 2444 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:42:48.0091 2444 wcncsvc - ok
16:42:48.0106 2444 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:42:48.0111 2444 WcsPlugInService - ok
16:42:48.0136 2444 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
16:42:48.0136 2444 Wd - ok
16:42:48.0181 2444 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:42:48.0186 2444 Wdf01000 - ok
16:42:48.0201 2444 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:42:48.0206 2444 WdiServiceHost - ok
16:42:48.0211 2444 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:42:48.0216 2444 WdiSystemHost - ok
16:42:48.0246 2444 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
16:42:48.0256 2444 WebClient - ok
16:42:48.0271 2444 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:42:48.0276 2444 Wecsvc - ok
16:42:48.0291 2444 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:42:48.0296 2444 wercplsupport - ok
16:42:48.0316 2444 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
16:42:48.0321 2444 WerSvc - ok
16:42:48.0346 2444 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
16:42:48.0351 2444 WfpLwf - ok
16:42:48.0366 2444 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
16:42:48.0371 2444 WIMMount - ok
16:42:48.0391 2444 WinDefend - ok
16:42:48.0396 2444 WinHttpAutoProxySvc - ok
16:42:48.0456 2444 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:42:48.0461 2444 Winmgmt - ok
16:42:48.0461 2444 WinRing0_1_2_0 - ok
16:42:48.0541 2444 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
16:42:48.0561 2444 WinRM - ok
16:42:48.0586 2444 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
16:42:48.0591 2444 WinUsb - ok
16:42:48.0621 2444 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
16:42:48.0631 2444 Wlansvc - ok
16:42:48.0731 2444 [ 357CABBF155AFD1D3926E62539D2A3A7 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:42:48.0746 2444 wlidsvc - ok
16:42:48.0766 2444 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
16:42:48.0766 2444 WmiAcpi - ok
16:42:48.0796 2444 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:42:48.0796 2444 wmiApSrv - ok
16:42:48.0821 2444 WMPNetworkSvc - ok
16:42:48.0846 2444 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:42:48.0851 2444 WPCSvc - ok
16:42:48.0866 2444 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:42:48.0871 2444 WPDBusEnum - ok
16:42:48.0901 2444 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:42:48.0901 2444 ws2ifsl - ok
16:42:48.0936 2444 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
16:42:48.0941 2444 wscsvc - ok
16:42:48.0946 2444 WSearch - ok
16:42:49.0021 2444 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
16:42:49.0041 2444 wuauserv - ok
16:42:49.0061 2444 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
16:42:49.0061 2444 WudfPf - ok
16:42:49.0081 2444 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
16:42:49.0086 2444 WUDFRd - ok
16:42:49.0106 2444 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:42:49.0111 2444 wudfsvc - ok
16:42:49.0141 2444 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
16:42:49.0146 2444 WwanSvc - ok
16:42:49.0161 2444 ================ Scan global ===============================
16:42:49.0176 2444 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
16:42:49.0201 2444 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
16:42:49.0211 2444 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
16:42:49.0236 2444 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
16:42:49.0261 2444 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
16:42:49.0266 2444 [Global] - ok
16:42:49.0266 2444 ================ Scan MBR ==================================
16:42:49.0276 2444 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:42:49.0751 2444 \Device\Harddisk0\DR0 - ok
16:42:49.0751 2444 ================ Scan VBR ==================================
16:42:49.0791 2444 [ 7AAD9F5822E0CB00E7FB75A15BA47585 ] \Device\Harddisk0\DR0\Partition1
16:42:49.0791 2444 \Device\Harddisk0\DR0\Partition1 - ok
16:42:49.0806 2444 [ 1E3DEA0970CDC488A60A87DB4DDB553C ] \Device\Harddisk0\DR0\Partition2
16:42:49.0811 2444 \Device\Harddisk0\DR0\Partition2 - ok
16:42:49.0811 2444 ============================================================
16:42:49.0811 2444 Scan finished
16:42:49.0811 2444 ============================================================
16:42:49.0821 1236 Detected object count: 1
16:42:49.0821 1236 Actual detected object count: 1
16:45:21.0257 1236 sptd ( LockedFile.Multi.Generic ) - skipped by user
16:45:21.0257 1236 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
17:31:32.0257 3644 Deinitialize success


szomb. feb. 23, 2013 18:02
Profil Privát üzenet küldése
arany tag

Csatlakozott: szomb. feb. 23, 2013 15:01
Hozzászólások: 122
Hozzászólás Re: STELL Segit
16:38:57.0756 1452 ================ Scan global ===============================
16:38:57.0788 1452 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
16:38:57.0803 1452 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
16:38:57.0819 1452 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
16:38:57.0834 1452 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
16:38:57.0866 1452 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
16:38:57.0866 1452 [Global] - ok
16:38:57.0866 1452 ================ Scan MBR ==================================
16:38:57.0881 1452 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:38:58.0318 1452 \Device\Harddisk0\DR0 - ok
16:38:58.0318 1452 ================ Scan VBR ==================================
16:38:58.0427 1452 [ 7AAD9F5822E0CB00E7FB75A15BA47585 ] \Device\Harddisk0\DR0\Partition1
16:38:58.0427 1452 \Device\Harddisk0\DR0\Partition1 - ok
16:38:58.0443 1452 [ 1E3DEA0970CDC488A60A87DB4DDB553C ] \Device\Harddisk0\DR0\Partition2
16:38:58.0443 1452 \Device\Harddisk0\DR0\Partition2 - ok
16:38:58.0443 1452 ============================================================
16:38:58.0443 1452 Scan finished
16:38:58.0443 1452 ============================================================
16:38:58.0458 4912 Detected object count: 1
16:38:58.0458 4912 Actual detected object count: 1
16:42:30.0606 4912 sptd ( LockedFile.Multi.Generic ) - skipped by user
16:42:30.0606 4912 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
16:42:34.0826 2444 ============================================================
16:42:34.0826 2444 Scan started
16:42:34.0826 2444 Mode: Manual;
16:42:34.0826 2444 ============================================================
16:42:34.0981 2444 ================ Scan system memory ========================
16:42:34.0981 2444 System memory - ok
16:42:34.0981 2444 ================ Scan services =============================
16:42:35.0226 2444 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
16:42:35.0226 2444 1394ohci - ok
16:42:35.0261 2444 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
16:42:35.0261 2444 ACPI - ok
16:42:35.0291 2444 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
16:42:35.0296 2444 AcpiPmi - ok
16:42:35.0406 2444 [ 563CDCFEEAEF97163E206AF71A61AA6E ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:42:35.0406 2444 AdobeFlashPlayerUpdateSvc - ok
16:42:35.0436 2444 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
16:42:35.0436 2444 adp94xx - ok
16:42:35.0481 2444 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
16:42:35.0481 2444 adpahci - ok
16:42:35.0501 2444 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
16:42:35.0506 2444 adpu320 - ok
16:42:35.0536 2444 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:42:35.0541 2444 AeLookupSvc - ok
16:42:35.0576 2444 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
16:42:35.0581 2444 AFD - ok
16:42:35.0611 2444 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
16:42:35.0616 2444 agp440 - ok
16:42:35.0646 2444 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
16:42:35.0646 2444 ALG - ok
16:42:35.0661 2444 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
16:42:35.0661 2444 aliide - ok
16:42:35.0691 2444 [ 812349D328EB406815183A5D17B49E7C ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:42:35.0691 2444 AMD External Events Utility - ok
16:42:35.0761 2444 AMD FUEL Service - ok
16:42:35.0791 2444 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
16:42:35.0791 2444 amdide - ok
16:42:35.0806 2444 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
16:42:35.0806 2444 amdiox64 - ok
16:42:35.0826 2444 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
16:42:35.0826 2444 AmdK8 - ok
16:42:36.0036 2444 [ 0415FFE1B6A6EA141FEAFCA57567F57F ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
16:42:36.0106 2444 amdkmdag - ok
16:42:36.0141 2444 [ DC24D6F38F17C0D643D9AA8A6852F8D0 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
16:42:36.0146 2444 amdkmdap - ok
16:42:36.0176 2444 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
16:42:36.0176 2444 AmdPPM - ok
16:42:36.0206 2444 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
16:42:36.0206 2444 amdsata - ok
16:42:36.0231 2444 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
16:42:36.0231 2444 amdsbs - ok
16:42:36.0251 2444 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
16:42:36.0256 2444 amdxata - ok
16:42:36.0286 2444 [ F9D46B6B322708BD5AFCC8767EBDC901 ] amd_sata C:\Windows\system32\DRIVERS\amd_sata.sys
16:42:36.0286 2444 amd_sata - ok
16:42:36.0291 2444 [ 329CC9C7E20DEEBCD4CD10816193EF14 ] amd_xata C:\Windows\system32\DRIVERS\amd_xata.sys
16:42:36.0296 2444 amd_xata - ok
16:42:36.0321 2444 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
16:42:36.0326 2444 AppID - ok
16:42:36.0346 2444 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
16:42:36.0346 2444 AppIDSvc - ok
16:42:36.0361 2444 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
16:42:36.0361 2444 Appinfo - ok
16:42:36.0381 2444 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
16:42:36.0381 2444 arc - ok
16:42:36.0401 2444 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
16:42:36.0406 2444 arcsas - ok
16:42:36.0431 2444 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
16:42:36.0431 2444 aswFsBlk - ok
16:42:36.0446 2444 [ 6B91E6D483AADB3FC4E13E2355200611 ] aswKbd C:\Windows\system32\drivers\aswKbd.sys
16:42:36.0446 2444 aswKbd - ok
16:42:36.0466 2444 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
16:42:36.0466 2444 aswMonFlt - ok
16:42:36.0506 2444 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
16:42:36.0506 2444 aswRdr - ok
16:42:36.0541 2444 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
16:42:36.0551 2444 aswSnx - ok
16:42:36.0571 2444 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\Windows\system32\drivers\aswSP.sys
16:42:36.0576 2444 aswSP - ok
16:42:36.0581 2444 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
16:42:36.0581 2444 aswTdi - ok
16:42:36.0601 2444 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:42:36.0606 2444 AsyncMac - ok
16:42:36.0626 2444 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
16:42:36.0631 2444 atapi - ok
16:42:36.0661 2444 [ CBD14F698DEF12EE3557604B726CB8EB ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
16:42:36.0661 2444 AtiHDAudioService - ok
16:42:36.0711 2444 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:42:36.0716 2444 AudioEndpointBuilder - ok
16:42:36.0726 2444 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
16:42:36.0731 2444 AudioSrv - ok
16:42:36.0836 2444 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus D:\Install\Avast\AvastSvc.exe
16:42:36.0836 2444 avast! Antivirus - ok
16:42:36.0841 2444 avast! Firewall - ok
16:42:36.0861 2444 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
16:42:36.0866 2444 AxInstSV - ok
16:42:36.0906 2444 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
16:42:36.0911 2444 b06bdrv - ok
16:42:36.0931 2444 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
16:42:36.0931 2444 b57nd60a - ok
16:42:36.0966 2444 [ A424CB46A145E5AABF15621550976DF2 ] b57xdbd C:\Windows\system32\DRIVERS\b57xdbd.sys
16:42:36.0966 2444 b57xdbd - ok
16:42:36.0976 2444 [ BE4E6FD5A898812B85D5817AD9754A9F ] b57xdmp C:\Windows\system32\DRIVERS\b57xdmp.sys
16:42:36.0976 2444 b57xdmp - ok
16:42:37.0096 2444 [ 85111026F1C5A1C4CCE3697F0DA7BC1A ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
16:42:37.0131 2444 BCM43XX - ok
16:42:37.0156 2444 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
16:42:37.0156 2444 BDESVC - ok
16:42:37.0176 2444 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
16:42:37.0176 2444 Beep - ok
16:42:37.0206 2444 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
16:42:37.0211 2444 BFE - ok
16:42:37.0256 2444 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
16:42:37.0266 2444 BITS - ok
16:42:37.0301 2444 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
16:42:37.0301 2444 blbdrive - ok
16:42:37.0331 2444 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:42:37.0336 2444 bowser - ok
16:42:37.0356 2444 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
16:42:37.0356 2444 BrFiltLo - ok
16:42:37.0371 2444 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
16:42:37.0371 2444 BrFiltUp - ok
16:42:37.0396 2444 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
16:42:37.0396 2444 BridgeMP - ok
16:42:37.0421 2444 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
16:42:37.0421 2444 Browser - ok
16:42:37.0446 2444 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
16:42:37.0446 2444 Brserid - ok
16:42:37.0471 2444 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
16:42:37.0471 2444 BrSerWdm - ok
16:42:37.0491 2444 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
16:42:37.0491 2444 BrUsbMdm - ok
16:42:37.0496 2444 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
16:42:37.0496 2444 BrUsbSer - ok
16:42:37.0526 2444 [ 413DD8AB0BB30B9C4F5E6A34977A1C34 ] bScsiMSa C:\Windows\system32\DRIVERS\bScsiMSa.sys
16:42:37.0531 2444 bScsiMSa - ok
16:42:37.0566 2444 [ 9F880F03F4A72215C8B77FD51322C297 ] bScsiSDa C:\Windows\system32\DRIVERS\bScsiSDa.sys
16:42:37.0566 2444 bScsiSDa - ok
16:42:37.0576 2444 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
16:42:37.0576 2444 BTHMODEM - ok
16:42:37.0611 2444 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
16:42:37.0611 2444 bthserv - ok
16:42:37.0616 2444 catchme - ok
16:42:37.0636 2444 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:42:37.0636 2444 cdfs - ok
16:42:37.0656 2444 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
16:42:37.0661 2444 cdrom - ok
16:42:37.0681 2444 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
16:42:37.0681 2444 CertPropSvc - ok
16:42:37.0701 2444 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
16:42:37.0706 2444 circlass - ok
16:42:37.0726 2444 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
16:42:37.0731 2444 CLFS - ok
16:42:37.0796 2444 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:42:37.0801 2444 clr_optimization_v2.0.50727_32 - ok
16:42:37.0851 2444 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:42:37.0851 2444 clr_optimization_v2.0.50727_64 - ok
16:42:37.0911 2444 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:42:37.0911 2444 clr_optimization_v4.0.30319_32 - ok
16:42:37.0946 2444 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:42:37.0946 2444 clr_optimization_v4.0.30319_64 - ok
16:42:37.0971 2444 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
16:42:37.0976 2444 CmBatt - ok
16:42:37.0991 2444 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
16:42:37.0991 2444 cmdide - ok
16:42:38.0031 2444 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
16:42:38.0036 2444 CNG - ok
16:42:38.0051 2444 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
16:42:38.0051 2444 Compbatt - ok
16:42:38.0066 2444 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
16:42:38.0071 2444 CompositeBus - ok
16:42:38.0076 2444 COMSysApp - ok
16:42:38.0091 2444 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
16:42:38.0096 2444 crcdisk - ok
16:42:38.0126 2444 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:42:38.0131 2444 CryptSvc - ok
16:42:38.0166 2444 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:42:38.0171 2444 DcomLaunch - ok
16:42:38.0201 2444 [ CEC7F24E28B40829C0FD2D523E72B5D3 ] DefragFS C:\Windows\system32\drivers\DefragFS.sys
16:42:38.0206 2444 DefragFS - ok
16:42:38.0231 2444 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
16:42:38.0236 2444 defragsvc - ok
16:42:38.0241 2444 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:42:38.0246 2444 DfsC - ok
16:42:38.0261 2444 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
16:42:38.0261 2444 Dhcp - ok
16:42:38.0291 2444 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
16:42:38.0291 2444 discache - ok
16:42:38.0301 2444 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
16:42:38.0306 2444 Disk - ok
16:42:38.0336 2444 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:42:38.0341 2444 Dnscache - ok
16:42:38.0366 2444 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
16:42:38.0371 2444 dot3svc - ok
16:42:38.0391 2444 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
16:42:38.0391 2444 DPS - ok
16:42:38.0416 2444 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:42:38.0421 2444 drmkaud - ok
16:42:38.0456 2444 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:42:38.0466 2444 DXGKrnl - ok
16:42:38.0496 2444 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
16:42:38.0496 2444 EapHost - ok
16:42:38.0576 2444 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
16:42:38.0601 2444 ebdrv - ok
16:42:38.0626 2444 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
16:42:38.0626 2444 EFS - ok
16:42:38.0701 2444 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:42:38.0711 2444 ehRecvr - ok
16:42:38.0731 2444 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
16:42:38.0731 2444 ehSched - ok
16:42:38.0776 2444 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
16:42:38.0776 2444 elxstor - ok
16:42:38.0806 2444 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
16:42:38.0806 2444 ErrDev - ok
16:42:38.0851 2444 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
16:42:38.0856 2444 EventSystem - ok
16:42:38.0876 2444 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
16:42:38.0876 2444 exfat - ok
16:42:38.0911 2444 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:42:38.0911 2444 fastfat - ok
16:42:38.0936 2444 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
16:42:38.0946 2444 Fax - ok
16:42:38.0961 2444 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
16:42:38.0961 2444 fdc - ok
16:42:38.0986 2444 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
16:42:38.0991 2444 fdPHost - ok
16:42:39.0001 2444 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
16:42:39.0006 2444 FDResPub - ok
16:42:39.0016 2444 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:42:39.0021 2444 FileInfo - ok
16:42:39.0031 2444 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:42:39.0031 2444 Filetrace - ok
16:42:39.0051 2444 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
16:42:39.0051 2444 flpydisk - ok
16:42:39.0076 2444 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:42:39.0076 2444 FltMgr - ok
16:42:39.0121 2444 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
16:42:39.0131 2444 FontCache - ok
16:42:39.0176 2444 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:42:39.0176 2444 FontCache3.0.0.0 - ok
16:42:39.0241 2444 [ 82F0F3554CE07CEDB749D79CBC5A599E ] Freemake Improver C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
16:42:39.0241 2444 Freemake Improver - ok
16:42:39.0281 2444 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
16:42:39.0281 2444 FsDepends - ok
16:42:39.0306 2444 [ B16B626996C74B564005BA855C5DEE90 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
16:42:39.0311 2444 fssfltr - ok
16:42:39.0406 2444 [ 812E1BA5C52A78F13EA6AA10DF708B1D ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
16:42:39.0416 2444 fsssvc - ok
16:42:39.0446 2444 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:42:39.0446 2444 Fs_Rec - ok
16:42:39.0471 2444 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
16:42:39.0471 2444 fvevol - ok
16:42:39.0501 2444 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
16:42:39.0501 2444 gagp30kx - ok
16:42:39.0531 2444 [ A4198F2BD8AA592CB90476277A81B5E1 ] ggflt C:\Windows\system32\DRIVERS\ggflt.sys
16:42:39.0531 2444 ggflt - ok
16:42:39.0551 2444 [ D266350BDAAB9EB6C1AEC370EEAAFF3A ] ggsemc C:\Windows\system32\DRIVERS\ggsemc.sys
16:42:39.0551 2444 ggsemc - ok
16:42:39.0596 2444 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
16:42:39.0601 2444 gpsvc - ok
16:42:39.0656 2444 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:42:39.0656 2444 gupdate - ok
16:42:39.0661 2444 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:42:39.0666 2444 gupdatem - ok
16:42:39.0711 2444 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
16:42:39.0711 2444 gusvc - ok
16:42:39.0746 2444 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
16:42:39.0746 2444 hcw85cir - ok
16:42:39.0781 2444 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:42:39.0786 2444 HdAudAddService - ok
16:42:39.0806 2444 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
16:42:39.0806 2444 HDAudBus - ok
16:42:39.0816 2444 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
16:42:39.0821 2444 HidBatt - ok
16:42:39.0841 2444 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
16:42:39.0841 2444 HidBth - ok
16:42:39.0846 2444 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
16:42:39.0846 2444 HidIr - ok
16:42:39.0876 2444 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
16:42:39.0881 2444 hidserv - ok
16:42:39.0906 2444 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:42:39.0911 2444 HidUsb - ok
16:42:39.0936 2444 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:42:39.0941 2444 hkmsvc - ok
16:42:39.0966 2444 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:42:39.0971 2444 HomeGroupListener - ok
16:42:40.0001 2444 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:42:40.0006 2444 HomeGroupProvider - ok
16:42:40.0026 2444 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
16:42:40.0026 2444 HpSAMD - ok
16:42:40.0061 2444 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:42:40.0066 2444 HTTP - ok
16:42:40.0091 2444 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
16:42:40.0091 2444 hwpolicy - ok
16:42:40.0106 2444 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
16:42:40.0106 2444 i8042prt - ok
16:42:40.0131 2444 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
16:42:40.0136 2444 iaStorV - ok
16:42:40.0201 2444 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:42:40.0206 2444 idsvc - ok
16:42:40.0241 2444 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
16:42:40.0241 2444 iirsp - ok
16:42:40.0281 2444 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
16:42:40.0291 2444 IKEEXT - ok
16:42:40.0306 2444 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
16:42:40.0311 2444 intelide - ok
16:42:40.0321 2444 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\drivers\intelppm.sys
16:42:40.0321 2444 intelppm - ok
16:42:40.0336 2444 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:42:40.0341 2444 IPBusEnum - ok
16:42:40.0356 2444 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:42:40.0361 2444 IpFilterDriver - ok
16:42:40.0406 2444 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:42:40.0411 2444 iphlpsvc - ok
16:42:40.0431 2444 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
16:42:40.0431 2444 IPMIDRV - ok
16:42:40.0451 2444 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
16:42:40.0451 2444 IPNAT - ok
16:42:40.0491 2444 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:42:40.0491 2444 IRENUM - ok
16:42:40.0516 2444 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:42:40.0516 2444 isapnp - ok
16:42:40.0546 2444 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
16:42:40.0546 2444 iScsiPrt - ok
16:42:40.0621 2444 [ 1D7AAB58F4E21697AF8F46EAA81823DD ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
16:42:40.0626 2444 k57nd60a - ok
16:42:40.0641 2444 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
16:42:40.0641 2444 kbdclass - ok
16:42:40.0661 2444 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
16:42:40.0661 2444 kbdhid - ok
16:42:40.0681 2444 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
16:42:40.0686 2444 KeyIso - ok
16:42:40.0711 2444 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:42:40.0711 2444 KSecDD - ok
16:42:40.0726 2444 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
16:42:40.0731 2444 KSecPkg - ok
16:42:40.0756 2444 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
16:42:40.0756 2444 ksthunk - ok
16:42:40.0806 2444 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
16:42:40.0811 2444 KtmRm - ok
16:42:40.0841 2444 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
16:42:40.0846 2444 LanmanServer - ok
16:42:40.0871 2444 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:42:40.0876 2444 LanmanWorkstation - ok
16:42:40.0891 2444 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:42:40.0891 2444 lltdio - ok
16:42:40.0916 2444 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:42:40.0921 2444 lltdsvc - ok
16:42:40.0946 2444 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:42:40.0946 2444 lmhosts - ok
16:42:40.0976 2444 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
16:42:40.0981 2444 LSI_FC - ok
16:42:40.0996 2444 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
16:42:40.0996 2444 LSI_SAS - ok
16:42:41.0006 2444 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
16:42:41.0011 2444 LSI_SAS2 - ok
16:42:41.0026 2444 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
16:42:41.0026 2444 LSI_SCSI - ok
16:42:41.0051 2444 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
16:42:41.0051 2444 luafv - ok
16:42:41.0081 2444 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
16:42:41.0081 2444 Mcx2Svc - ok
16:42:41.0156 2444 [ 7CF1B716372B89568AE4C0FE769F5869 ] MDM C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
16:42:41.0156 2444 MDM - ok
16:42:41.0186 2444 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
16:42:41.0186 2444 megasas - ok
16:42:41.0206 2444 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
16:42:41.0211 2444 MegaSR - ok
16:42:41.0241 2444 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
16:42:41.0241 2444 MMCSS - ok
16:42:41.0266 2444 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
16:42:41.0266 2444 Modem - ok
16:42:41.0291 2444 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:42:41.0291 2444 monitor - ok
16:42:41.0306 2444 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
16:42:41.0306 2444 mouclass - ok
16:42:41.0326 2444 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:42:41.0326 2444 mouhid - ok
16:42:41.0356 2444 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
16:42:41.0356 2444 mountmgr - ok
16:42:41.0396 2444 [ 51A84B690DF519DCF656F780243D953E ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:42:41.0396 2444 MozillaMaintenance - ok
16:42:41.0416 2444 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
16:42:41.0421 2444 mpio - ok
16:42:41.0441 2444 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:42:41.0441 2444 mpsdrv - ok
16:42:41.0486 2444 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
16:42:41.0496 2444 MpsSvc - ok
16:42:41.0516 2444 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:42:41.0521 2444 MRxDAV - ok
16:42:41.0536 2444 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:42:41.0541 2444 mrxsmb - ok
16:42:41.0571 2444 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:42:41.0571 2444 mrxsmb10 - ok
16:42:41.0621 2444 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:42:41.0626 2444 mrxsmb20 - ok
16:42:41.0656 2444 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
16:42:41.0661 2444 msahci - ok
16:42:41.0676 2444 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
16:42:41.0681 2444 msdsm - ok
16:42:41.0691 2444 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
16:42:41.0696 2444 MSDTC - ok
16:42:41.0711 2444 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:42:41.0711 2444 Msfs - ok
16:42:41.0731 2444 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
16:42:41.0731 2444 mshidkmdf - ok
16:42:41.0751 2444 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:42:41.0751 2444 msisadrv - ok
16:42:41.0781 2444 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:42:41.0781 2444 MSiSCSI - ok
16:42:41.0786 2444 msiserver - ok
16:42:41.0801 2444 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:42:41.0806 2444 MSKSSRV - ok
16:42:41.0821 2444 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:42:41.0826 2444 MSPCLOCK - ok
16:42:41.0831 2444 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:42:41.0831 2444 MSPQM - ok
16:42:41.0851 2444 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:42:41.0856 2444 MsRPC - ok
16:42:41.0871 2444 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
16:42:41.0871 2444 mssmbios - ok
16:42:41.0896 2444 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:42:41.0896 2444 MSTEE - ok
16:42:41.0916 2444 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
16:42:41.0916 2444 MTConfig - ok
16:42:41.0931 2444 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
16:42:41.0931 2444 Mup - ok
16:42:41.0961 2444 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
16:42:41.0966 2444 napagent - ok
16:42:42.0006 2444 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:42:42.0011 2444 NativeWifiP - ok
16:42:42.0061 2444 [ E4534BCCDD1EA7A7A256BB9D6688A5FC ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
16:42:42.0066 2444 NAUpdate - ok
16:42:42.0126 2444 [ B498A14133BD09AD0817590ACE4470AD ] NBService C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
16:42:42.0131 2444 NBService - ok
16:42:42.0166 2444 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
16:42:42.0176 2444 NDIS - ok
16:42:42.0191 2444 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
16:42:42.0191 2444 NdisCap - ok
16:42:42.0221 2444 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:42:42.0221 2444 NdisTapi - ok
16:42:42.0241 2444 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:42:42.0246 2444 Ndisuio - ok
16:42:42.0256 2444 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:42:42.0261 2444 NdisWan - ok
16:42:42.0271 2444 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:42:42.0271 2444 NDProxy - ok
16:42:42.0281 2444 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:42:42.0281 2444 NetBIOS - ok
16:42:42.0301 2444 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
16:42:42.0301 2444 NetBT - ok
16:42:42.0316 2444 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
16:42:42.0316 2444 Netlogon - ok
16:42:42.0351 2444 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
16:42:42.0356 2444 Netman - ok
16:42:42.0381 2444 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
16:42:42.0386 2444 netprofm - ok
16:42:42.0421 2444 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:42:42.0421 2444 NetTcpPortSharing - ok
16:42:42.0456 2444 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
16:42:42.0461 2444 nfrd960 - ok
16:42:42.0546 2444 [ 42390431E604C9513D4F23FB7BDEC334 ] NitroReaderDriverReadSpool2 C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe
16:42:42.0551 2444 NitroReaderDriverReadSpool2 - ok
16:42:42.0586 2444 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
16:42:42.0591 2444 NlaSvc - ok
16:42:42.0641 2444 [ A328A46D87BB92CE4D8A4528E9D84787 ] NMIndexingService C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
16:42:42.0646 2444 NMIndexingService - ok
16:42:42.0686 2444 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:42:42.0686 2444 Npfs - ok
16:42:42.0711 2444 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
16:42:42.0711 2444 nsi - ok
16:42:42.0726 2444 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:42:42.0726 2444 nsiproxy - ok
16:42:42.0791 2444 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:42:42.0801 2444 Ntfs - ok
16:42:42.0836 2444 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
16:42:42.0836 2444 Null - ok
16:42:42.0866 2444 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:42:42.0871 2444 nvraid - ok
16:42:42.0891 2444 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:42:42.0896 2444 nvstor - ok
16:42:42.0916 2444 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
16:42:42.0916 2444 nv_agp - ok
16:42:42.0976 2444 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:42:42.0981 2444 odserv - ok
16:42:42.0996 2444 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
16:42:42.0996 2444 ohci1394 - ok
16:42:43.0041 2444 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:42:43.0041 2444 ose - ok
16:42:43.0196 2444 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:42:43.0226 2444 osppsvc - ok
16:42:43.0261 2444 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
16:42:43.0266 2444 p2pimsvc - ok
16:42:43.0291 2444 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
16:42:43.0296 2444 p2psvc - ok
16:42:43.0331 2444 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
16:42:43.0331 2444 Parport - ok
16:42:43.0356 2444 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:42:43.0361 2444 partmgr - ok
16:42:43.0386 2444 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
16:42:43.0391 2444 PcaSvc - ok
16:42:43.0406 2444 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
16:42:43.0406 2444 pci - ok
16:42:43.0421 2444 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
16:42:43.0421 2444 pciide - ok
16:42:43.0441 2444 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
16:42:43.0441 2444 pcmcia - ok
16:42:43.0461 2444 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
16:42:43.0466 2444 pcw - ok
16:42:43.0551 2444 [ 14BC059431E2A2EE80D061FA96AA6855 ] PDAgent C:\Program Files\Raxco\PerfectDisk\PDAgent.exe
16:42:43.0571 2444 PDAgent - ok
16:42:43.0626 2444 [ F2F3D113FE08252D21790402EE3F61EA ] PDEngine C:\Program Files\Raxco\PerfectDisk\PDEngine.exe
16:42:43.0641 2444 PDEngine - ok
16:42:43.0676 2444 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:42:43.0681 2444 PEAUTH - ok
16:42:43.0781 2444 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
16:42:43.0786 2444 PerfHost - ok
16:42:43.0851 2444 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
16:42:43.0861 2444 pla - ok
16:42:43.0886 2444 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:42:43.0896 2444 PlugPlay - ok
16:42:43.0926 2444 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
16:42:43.0931 2444 PNRPAutoReg - ok
16:42:43.0951 2444 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
16:42:43.0956 2444 PNRPsvc - ok
16:42:43.0981 2444 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:42:43.0986 2444 PolicyAgent - ok
16:42:44.0021 2444 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
16:42:44.0026 2444 Power - ok
16:42:44.0051 2444 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:42:44.0051 2444 PptpMiniport - ok
16:42:44.0071 2444 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
16:42:44.0071 2444 Processor - ok
16:42:44.0106 2444 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
16:42:44.0111 2444 ProfSvc - ok
16:42:44.0116 2444 Prot6Flt - ok
16:42:44.0126 2444 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:42:44.0126 2444 ProtectedStorage - ok
16:42:44.0141 2444 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
16:42:44.0141 2444 Psched - ok
16:42:44.0211 2444 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
16:42:44.0221 2444 ql2300 - ok
16:42:44.0236 2444 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
16:42:44.0241 2444 ql40xx - ok
16:42:44.0276 2444 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
16:42:44.0281 2444 QWAVE - ok
16:42:44.0296 2444 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:42:44.0296 2444 QWAVEdrv - ok
16:42:44.0321 2444 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:42:44.0321 2444 RasAcd - ok
16:42:44.0336 2444 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
16:42:44.0341 2444 RasAgileVpn - ok
16:42:44.0366 2444 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
16:42:44.0366 2444 RasAuto - ok
16:42:44.0391 2444 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:42:44.0391 2444 Rasl2tp - ok
16:42:44.0416 2444 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
16:42:44.0421 2444 RasMan - ok
16:42:44.0436 2444 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:42:44.0441 2444 RasPppoe - ok
16:42:44.0451 2444 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:42:44.0451 2444 RasSstp - ok
16:42:44.0486 2444 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:42:44.0486 2444 rdbss - ok
16:42:44.0511 2444 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
16:42:44.0511 2444 rdpbus - ok
16:42:44.0526 2444 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
16:42:44.0531 2444 RDPCDD - ok
16:42:44.0551 2444 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
16:42:44.0551 2444 RDPENCDD - ok
16:42:44.0561 2444 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
16:42:44.0561 2444 RDPREFMP - ok
16:42:44.0591 2444 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
16:42:44.0591 2444 RdpVideoMiniport - ok
16:42:44.0621 2444 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:42:44.0621 2444 RDPWD - ok
16:42:44.0646 2444 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
16:42:44.0651 2444 rdyboost - ok
16:42:44.0671 2444 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:42:44.0676 2444 RemoteAccess - ok
16:42:44.0706 2444 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:42:44.0711 2444 RemoteRegistry - ok
16:42:44.0731 2444 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
16:42:44.0736 2444 RpcEptMapper - ok
16:42:44.0756 2444 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
16:42:44.0761 2444 RpcLocator - ok
16:42:44.0791 2444 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
16:42:44.0796 2444 RpcSs - ok
16:42:44.0826 2444 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:42:44.0826 2444 rspndr - ok
16:42:44.0856 2444 [ 032F537623A7B2FB81AAA184C30B70C3 ] s0017bus C:\Windows\system32\DRIVERS\s0017bus.sys
16:42:44.0861 2444 s0017bus - ok
16:42:44.0881 2444 [ 9964A28E569B4FF105B446EF8978FD5C ] s0017mdfl C:\Windows\system32\DRIVERS\s0017mdfl.sys
16:42:44.0881 2444 s0017mdfl - ok
16:42:44.0901 2444 [ 06347087D274C23DCFA8C4AB5C4314DB ] s0017mdm C:\Windows\system32\DRIVERS\s0017mdm.sys
16:42:44.0906 2444 s0017mdm - ok
16:42:44.0916 2444 [ F0F0747B3FA50272DE6B1BF575FA4700 ] s0017mgmt C:\Windows\system32\DRIVERS\s0017mgmt.sys
16:42:44.0921 2444 s0017mgmt - ok
16:42:44.0931 2444 [ 7224412CEA2FF2DF7D4842C1B0E71045 ] s0017nd5 C:\Windows\system32\DRIVERS\s0017nd5.sys
16:42:44.0931 2444 s0017nd5 - ok
16:42:44.0956 2444 [ 3FEADBC7F09B8B596CBFB82F12ABA87F ] s0017obex C:\Windows\system32\DRIVERS\s0017obex.sys
16:42:44.0956 2444 s0017obex - ok
16:42:44.0986 2444 [ 2B63BEA31D939888B2A8F3F14D89B5C1 ] s0017unic C:\Windows\system32\DRIVERS\s0017unic.sys
16:42:44.0991 2444 s0017unic - ok
16:42:45.0001 2444 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
16:42:45.0006 2444 SamSs - ok
16:42:45.0036 2444 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
16:42:45.0036 2444 sbp2port - ok
16:42:45.0076 2444 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:42:45.0081 2444 SCardSvr - ok
16:42:45.0101 2444 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
16:42:45.0101 2444 scfilter - ok
16:42:45.0141 2444 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
16:42:45.0151 2444 Schedule - ok
16:42:45.0181 2444 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
16:42:45.0181 2444 SCPolicySvc - ok
16:42:45.0211 2444 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
16:42:45.0211 2444 sdbus - ok
16:42:45.0246 2444 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:42:45.0251 2444 SDRSVC - ok
16:42:45.0276 2444 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:42:45.0281 2444 secdrv - ok
16:42:45.0301 2444 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
16:42:45.0306 2444 seclogon - ok
16:42:45.0336 2444 [ EDE7A1D2715AAC2190D51DC07AFD44E3 ] seehcri C:\Windows\system32\DRIVERS\seehcri.sys
16:42:45.0341 2444 seehcri - ok
16:42:45.0356 2444 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
16:42:45.0356 2444 SENS - ok
16:42:45.0376 2444 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
16:42:45.0381 2444 SensrSvc - ok
16:42:45.0396 2444 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
16:42:45.0396 2444 Serenum - ok
16:42:45.0416 2444 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
16:42:45.0416 2444 Serial - ok
16:42:45.0441 2444 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
16:42:45.0441 2444 sermouse - ok
16:42:45.0481 2444 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
16:42:45.0486 2444 SessionEnv - ok
16:42:45.0506 2444 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
16:42:45.0506 2444 sffdisk - ok
16:42:45.0526 2444 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
16:42:45.0526 2444 sffp_mmc - ok
16:42:45.0541 2444 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
16:42:45.0541 2444 sffp_sd - ok
16:42:45.0556 2444 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
16:42:45.0556 2444 sfloppy - ok
16:42:45.0586 2444 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
16:42:45.0591 2444 SharedAccess - ok
16:42:45.0611 2444 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:42:45.0616 2444 ShellHWDetection - ok
16:42:45.0636 2444 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
16:42:45.0636 2444 SiSRaid2 - ok
16:42:45.0671 2444 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
16:42:45.0671 2444 SiSRaid4 - ok
16:42:45.0706 2444 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
16:42:45.0706 2444 SkypeUpdate - ok
16:42:45.0726 2444 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
16:42:45.0731 2444 Smb - ok
16:42:45.0756 2444 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:42:45.0756 2444 SNMPTRAP - ok
16:42:45.0771 2444 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
16:42:45.0771 2444 spldr - ok
16:42:45.0811 2444 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
16:42:45.0821 2444 Spooler - ok
16:42:45.0896 2444 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
16:42:45.0926 2444 sppsvc - ok
16:42:45.0946 2444 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
16:42:45.0951 2444 sppuinotify - ok
16:42:45.0991 2444 [ D519AD2DE7968CD2B47FEA807C5B29B2 ] sptd C:\Windows\System32\Drivers\sptd.sys
16:42:45.0991 2444 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: D519AD2DE7968CD2B47FEA807C5B29B2
16:42:45.0991 2444 sptd ( LockedFile.Multi.Generic ) - warning
16:42:45.0991 2444 sptd - detected LockedFile.Multi.Generic (1)
16:42:46.0026 2444 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
16:42:46.0031 2444 srv - ok
16:42:46.0041 2444 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:42:46.0041 2444 srv2 - ok
16:42:46.0056 2444 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:42:46.0056 2444 srvnet - ok
16:42:46.0086 2444 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:42:46.0091 2444 SSDPSRV - ok
16:42:46.0111 2444 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:42:46.0111 2444 SstpSvc - ok
16:42:46.0146 2444 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
16:42:46.0151 2444 stexstor - ok
16:42:46.0181 2444 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
16:42:46.0191 2444 stisvc - ok
16:42:46.0196 2444 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
16:42:46.0196 2444 swenum - ok
16:42:46.0226 2444 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
16:42:46.0231 2444 swprv - ok
16:42:46.0286 2444 [ 547988596190BB44818B0653F8F7C0D3 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
16:42:46.0296 2444 SynTP - ok
16:42:46.0356 2444 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
16:42:46.0371 2444 SysMain - ok
16:42:46.0391 2444 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:42:46.0396 2444 TabletInputService - ok
16:42:46.0421 2444 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
16:42:46.0426 2444 TapiSrv - ok
16:42:46.0436 2444 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
16:42:46.0441 2444 TBS - ok
16:42:46.0511 2444 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:42:46.0526 2444 Tcpip - ok
16:42:46.0551 2444 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
16:42:46.0566 2444 TCPIP6 - ok
16:42:46.0591 2444 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:42:46.0596 2444 tcpipreg - ok
16:42:46.0621 2444 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
16:42:46.0621 2444 TDPIPE - ok
16:42:46.0656 2444 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
16:42:46.0656 2444 TDTCP - ok
16:42:46.0671 2444 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:42:46.0676 2444 tdx - ok
16:42:46.0691 2444 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
16:42:46.0691 2444 TermDD - ok
16:42:46.0731 2444 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
16:42:46.0741 2444 TermService - ok
16:42:46.0761 2444 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
16:42:46.0766 2444 Themes - ok
16:42:46.0796 2444 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
16:42:46.0801 2444 THREADORDER - ok
16:42:46.0811 2444 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
16:42:46.0816 2444 TrkWks - ok
16:42:46.0876 2444 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:42:46.0876 2444 TrustedInstaller - ok
16:42:46.0896 2444 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
16:42:46.0901 2444 tssecsrv - ok
16:42:46.0931 2444 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
16:42:46.0931 2444 TsUsbFlt - ok
16:42:46.0956 2444 [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
16:42:46.0956 2444 TsUsbGD - ok
16:42:46.0991 2444 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:42:46.0996 2444 tunnel - ok
16:42:47.0011 2444 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
16:42:47.0011 2444 uagp35 - ok
16:42:47.0036 2444 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:42:47.0041 2444 udfs - ok
16:42:47.0076 2444 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:42:47.0081 2444 UI0Detect - ok
16:42:47.0096 2444 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
16:42:47.0096 2444 uliagpkx - ok
16:42:47.0116 2444 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
16:42:47.0121 2444 umbus - ok
16:42:47.0136 2444 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
16:42:47.0136 2444 UmPass - ok
16:42:47.0166 2444 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
16:42:47.0171 2444 upnphost - ok
16:42:47.0196 2444 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
16:42:47.0201 2444 usbccgp - ok
16:42:47.0231 2444 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
16:42:47.0231 2444 usbcir - ok
16:42:47.0246 2444 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
16:42:47.0246 2444 usbehci - ok
16:42:47.0276 2444 [ 573D192E268F0C5B486B7E96F661E538 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
16:42:47.0276 2444 usbfilter - ok
16:42:47.0291 2444 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
16:42:47.0296 2444 usbhub - ok
16:42:47.0311 2444 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
16:42:47.0311 2444 usbohci - ok
16:42:47.0336 2444 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
16:42:47.0336 2444 usbprint - ok
16:42:47.0366 2444 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:42:47.0366 2444 USBSTOR - ok
16:42:47.0381 2444 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
16:42:47.0381 2444 usbuhci - ok
16:42:47.0411 2444 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
16:42:47.0416 2444 usbvideo - ok
16:42:47.0446 2444 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
16:42:47.0451 2444 UxSms - ok
16:42:47.0461 2444 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
16:42:47.0461 2444 VaultSvc - ok
16:42:47.0496 2444 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
16:42:47.0496 2444 vdrvroot - ok
16:42:47.0531 2444 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
16:42:47.0536 2444 vds - ok
16:42:47.0546 2444 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
16:42:47.0546 2444 vga - ok
16:42:47.0571 2444 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
16:42:47.0571 2444 VgaSave - ok
16:42:47.0591 2444 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
16:42:47.0591 2444 vhdmp - ok
16:42:47.0611 2444 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
16:42:47.0611 2444 viaide - ok
16:42:47.0626 2444 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
16:42:47.0626 2444 volmgr - ok
16:42:47.0651 2444 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:42:47.0651 2444 volmgrx - ok
16:42:47.0681 2444 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
16:42:47.0681 2444 volsnap - ok
16:42:47.0701 2444 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
16:42:47.0706 2444 vsmraid - ok
16:42:47.0761 2444 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
16:42:47.0776 2444 VSS - ok
16:42:47.0786 2444 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
16:42:47.0786 2444 vwifibus - ok
16:42:47.0796 2444 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
16:42:47.0801 2444 vwififlt - ok


szomb. feb. 23, 2013 18:02
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Tedd ide az Veget ccc az utolso 20 sort


szomb. feb. 23, 2013 17:53
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: szomb. feb. 23, 2013 15:01
Hozzászólások: 122
Hozzászólás Re: STELL Segit
ez így nem jó.....ez sok lenne így


szomb. feb. 23, 2013 17:50
Profil Privát üzenet küldése
arany tag

Csatlakozott: szomb. feb. 23, 2013 15:01
Hozzászólások: 122
Hozzászólás Re: STELL Segit
16:35:12.0835 2496 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
16:35:13.0147 2496 ============================================================
16:35:13.0147 2496 Current date / time: 2013/02/23 16:35:13.0147
16:35:13.0147 2496 SystemInfo:
16:35:13.0147 2496
16:35:13.0147 2496 OS Version: 6.1.7601 ServicePack: 1.0
16:35:13.0147 2496 Product type: Workstation
16:35:13.0147 2496 ComputerName: ANDI-PC
16:35:13.0147 2496 UserName: Andi
16:35:13.0147 2496 Windows directory: C:\Windows
16:35:13.0147 2496 System windows directory: C:\Windows
16:35:13.0147 2496 Running under WOW64
16:35:13.0147 2496 Processor architecture: Intel x64
16:35:13.0147 2496 Number of processors: 2
16:35:13.0147 2496 Page size: 0x1000
16:35:13.0147 2496 Boot type: Normal boot
16:35:13.0147 2496 ============================================================
16:35:13.0943 2496 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:35:13.0943 2496 ============================================================
16:35:13.0943 2496 \Device\Harddisk0\DR0:
16:35:13.0943 2496 MBR partitions:
16:35:13.0943 2496 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x4FF5864
16:35:13.0958 2496 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x4FF58E2, BlocksNum 0x20437DDF
16:35:13.0958 2496 ============================================================
16:35:13.0990 2496 C: <-> \Device\Harddisk0\DR0\Partition1
16:35:14.0005 2496 D: <-> \Device\Harddisk0\DR0\Partition2
16:35:14.0005 2496 ============================================================
16:35:14.0005 2496 Initialize success
16:35:14.0005 2496 ============================================================
16:35:17.0671 4776 ============================================================
16:35:17.0671 4776 Scan started
16:35:17.0671 4776 Mode: Manual;
16:35:17.0671 4776 ============================================================
16:35:18.0436 4776 ================ Scan system memory ========================
16:35:18.0436 4776 System memory - ok
16:35:18.0436 4776 ================ Scan services =============================
16:35:18.0623 4776 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
16:35:18.0623 4776 1394ohci - ok
16:35:18.0654 4776 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
16:35:18.0670 4776 ACPI - ok
16:35:18.0701 4776 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
16:35:18.0701 4776 AcpiPmi - ok
16:35:18.0826 4776 [ 563CDCFEEAEF97163E206AF71A61AA6E ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:35:18.0826 4776 AdobeFlashPlayerUpdateSvc - ok
16:35:18.0872 4776 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
16:35:18.0872 4776 adp94xx - ok
16:35:18.0919 4776 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
16:35:18.0935 4776 adpahci - ok
16:35:18.0966 4776 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
16:35:18.0966 4776 adpu320 - ok
16:35:18.0997 4776 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:35:19.0013 4776 AeLookupSvc - ok
16:35:19.0060 4776 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
16:35:19.0060 4776 AFD - ok
16:35:19.0091 4776 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
16:35:19.0091 4776 agp440 - ok
16:35:19.0106 4776 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
16:35:19.0106 4776 ALG - ok
16:35:19.0138 4776 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
16:35:19.0138 4776 aliide - ok
16:35:19.0184 4776 [ 812349D328EB406815183A5D17B49E7C ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:35:19.0184 4776 AMD External Events Utility - ok
16:35:19.0200 4776 AMD FUEL Service - ok
16:35:19.0231 4776 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
16:35:19.0231 4776 amdide - ok
16:35:19.0247 4776 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
16:35:19.0247 4776 amdiox64 - ok
16:35:19.0262 4776 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
16:35:19.0278 4776 AmdK8 - ok
16:35:19.0496 4776 [ 0415FFE1B6A6EA141FEAFCA57567F57F ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
16:35:19.0684 4776 amdkmdag - ok
16:35:19.0715 4776 [ DC24D6F38F17C0D643D9AA8A6852F8D0 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
16:35:19.0730 4776 amdkmdap - ok
16:35:19.0762 4776 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
16:35:19.0762 4776 AmdPPM - ok
16:35:19.0793 4776 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
16:35:19.0793 4776 amdsata - ok
16:35:19.0824 4776 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
16:35:19.0824 4776 amdsbs - ok
16:35:19.0840 4776 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
16:35:19.0840 4776 amdxata - ok
16:35:19.0871 4776 [ F9D46B6B322708BD5AFCC8767EBDC901 ] amd_sata C:\Windows\system32\DRIVERS\amd_sata.sys
16:35:19.0871 4776 amd_sata - ok
16:35:19.0886 4776 [ 329CC9C7E20DEEBCD4CD10816193EF14 ] amd_xata C:\Windows\system32\DRIVERS\amd_xata.sys
16:35:19.0886 4776 amd_xata - ok
16:35:19.0918 4776 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
16:35:19.0918 4776 AppID - ok
16:35:19.0949 4776 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
16:35:19.0949 4776 AppIDSvc - ok
16:35:19.0980 4776 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
16:35:19.0980 4776 Appinfo - ok
16:35:20.0027 4776 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
16:35:20.0027 4776 arc - ok
16:35:20.0042 4776 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
16:35:20.0042 4776 arcsas - ok
16:35:20.0089 4776 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
16:35:20.0089 4776 aswFsBlk - ok
16:35:20.0105 4776 [ 6B91E6D483AADB3FC4E13E2355200611 ] aswKbd C:\Windows\system32\drivers\aswKbd.sys
16:35:20.0105 4776 aswKbd - ok
16:35:20.0136 4776 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
16:35:20.0152 4776 aswMonFlt - ok
16:35:20.0152 4776 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
16:35:20.0152 4776 aswRdr - ok
16:35:20.0198 4776 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
16:35:20.0214 4776 aswSnx - ok
16:35:20.0230 4776 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\Windows\system32\drivers\aswSP.sys
16:35:20.0230 4776 aswSP - ok
16:35:20.0245 4776 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
16:35:20.0245 4776 aswTdi - ok
16:35:20.0276 4776 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:35:20.0276 4776 AsyncMac - ok
16:35:20.0308 4776 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
16:35:20.0308 4776 atapi - ok
16:35:20.0354 4776 [ CBD14F698DEF12EE3557604B726CB8EB ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
16:35:20.0370 4776 AtiHDAudioService - ok
16:35:20.0417 4776 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:35:20.0417 4776 AudioEndpointBuilder - ok
16:35:20.0432 4776 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
16:35:20.0432 4776 AudioSrv - ok
16:35:20.0573 4776 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus D:\Install\Avast\AvastSvc.exe
16:35:20.0573 4776 avast! Antivirus - ok
16:35:20.0588 4776 avast! Firewall - ok
16:35:20.0635 4776 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
16:35:20.0635 4776 AxInstSV - ok
16:35:20.0682 4776 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
16:35:20.0698 4776 b06bdrv - ok
16:35:20.0713 4776 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
16:35:20.0729 4776 b57nd60a - ok
16:35:20.0760 4776 [ A424CB46A145E5AABF15621550976DF2 ] b57xdbd C:\Windows\system32\DRIVERS\b57xdbd.sys
16:35:20.0776 4776 b57xdbd - ok
16:35:20.0776 4776 [ BE4E6FD5A898812B85D5817AD9754A9F ] b57xdmp C:\Windows\system32\DRIVERS\b57xdmp.sys
16:35:20.0776 4776 b57xdmp - ok
16:35:20.0900 4776 [ 85111026F1C5A1C4CCE3697F0DA7BC1A ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
16:35:20.0994 4776 BCM43XX - ok
16:35:21.0025 4776 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
16:35:21.0025 4776 BDESVC - ok
16:35:21.0056 4776 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
16:35:21.0056 4776 Beep - ok
16:35:21.0103 4776 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
16:35:21.0119 4776 BFE - ok
16:35:21.0150 4776 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
16:35:21.0166 4776 BITS - ok
16:35:21.0197 4776 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
16:35:21.0197 4776 blbdrive - ok
16:35:21.0228 4776 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:35:21.0244 4776 bowser - ok
16:35:21.0259 4776 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
16:35:21.0259 4776 BrFiltLo - ok
16:35:21.0275 4776 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
16:35:21.0275 4776 BrFiltUp - ok
16:35:21.0322 4776 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
16:35:21.0322 4776 BridgeMP - ok
16:35:21.0368 4776 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
16:35:21.0368 4776 Browser - ok
16:35:21.0384 4776 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
16:35:21.0400 4776 Brserid - ok
16:35:21.0415 4776 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
16:35:21.0415 4776 BrSerWdm - ok
16:35:21.0446 4776 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
16:35:21.0446 4776 BrUsbMdm - ok
16:35:21.0446 4776 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
16:35:21.0446 4776 BrUsbSer - ok
16:35:21.0493 4776 [ 413DD8AB0BB30B9C4F5E6A34977A1C34 ] bScsiMSa C:\Windows\system32\DRIVERS\bScsiMSa.sys
16:35:21.0493 4776 bScsiMSa - ok
16:35:21.0524 4776 [ 9F880F03F4A72215C8B77FD51322C297 ] bScsiSDa C:\Windows\system32\DRIVERS\bScsiSDa.sys
16:35:21.0524 4776 bScsiSDa - ok
16:35:21.0556 4776 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
16:35:21.0556 4776 BTHMODEM - ok
16:35:21.0602 4776 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
16:35:21.0602 4776 bthserv - ok
16:35:21.0634 4776 catchme - ok
16:35:21.0649 4776 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:35:21.0649 4776 cdfs - ok
16:35:21.0665 4776 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
16:35:21.0665 4776 cdrom - ok
16:35:21.0696 4776 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
16:35:21.0712 4776 CertPropSvc - ok
16:35:21.0743 4776 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
16:35:21.0743 4776 circlass - ok
16:35:21.0790 4776 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
16:35:21.0790 4776 CLFS - ok
16:35:21.0883 4776 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:35:21.0883 4776 clr_optimization_v2.0.50727_32 - ok
16:35:21.0946 4776 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:35:21.0946 4776 clr_optimization_v2.0.50727_64 - ok
16:35:22.0008 4776 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:35:22.0008 4776 clr_optimization_v4.0.30319_32 - ok
16:35:22.0039 4776 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:35:22.0055 4776 clr_optimization_v4.0.30319_64 - ok
16:35:22.0086 4776 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
16:35:22.0086 4776 CmBatt - ok
16:35:22.0102 4776 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
16:35:22.0102 4776 cmdide - ok
16:35:22.0148 4776 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
16:35:22.0164 4776 CNG - ok
16:35:22.0180 4776 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
16:35:22.0180 4776 Compbatt - ok
16:35:22.0226 4776 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
16:35:22.0226 4776 CompositeBus - ok
16:35:22.0226 4776 COMSysApp - ok
16:35:22.0258 4776 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
16:35:22.0258 4776 crcdisk - ok
16:35:22.0304 4776 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:35:22.0304 4776 CryptSvc - ok
16:35:22.0351 4776 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:35:22.0351 4776 DcomLaunch - ok
16:35:22.0398 4776 [ CEC7F24E28B40829C0FD2D523E72B5D3 ] DefragFS C:\Windows\system32\drivers\DefragFS.sys
16:35:22.0414 4776 DefragFS - ok
16:35:22.0429 4776 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
16:35:22.0445 4776 defragsvc - ok
16:35:22.0445 4776 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:35:22.0460 4776 DfsC - ok
16:35:22.0507 4776 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
16:35:22.0507 4776 Dhcp - ok
16:35:22.0538 4776 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
16:35:22.0538 4776 discache - ok
16:35:22.0616 4776 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
16:35:22.0616 4776 Disk - ok
16:35:22.0679 4776 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:35:22.0694 4776 Dnscache - ok
16:35:22.0726 4776 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
16:35:22.0726 4776 dot3svc - ok
16:35:22.0741 4776 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
16:35:22.0741 4776 DPS - ok
16:35:22.0788 4776 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:35:22.0788 4776 drmkaud - ok
16:35:22.0819 4776 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:35:22.0835 4776 DXGKrnl - ok
16:35:22.0866 4776 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
16:35:22.0866 4776 EapHost - ok
16:35:22.0944 4776 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
16:35:22.0975 4776 ebdrv - ok
16:35:23.0006 4776 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
16:35:23.0006 4776 EFS - ok
16:35:23.0084 4776 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:35:23.0084 4776 ehRecvr - ok
16:35:23.0116 4776 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
16:35:23.0116 4776 ehSched - ok
16:35:23.0162 4776 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
16:35:23.0162 4776 elxstor - ok
16:35:23.0178 4776 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
16:35:23.0178 4776 ErrDev - ok
16:35:23.0225 4776 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
16:35:23.0240 4776 EventSystem - ok
16:35:23.0256 4776 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
16:35:23.0272 4776 exfat - ok
16:35:23.0303 4776 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:35:23.0303 4776 fastfat - ok
16:35:23.0334 4776 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
16:35:23.0350 4776 Fax - ok
16:35:23.0365 4776 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
16:35:23.0365 4776 fdc - ok
16:35:23.0396 4776 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
16:35:23.0396 4776 fdPHost - ok
16:35:23.0412 4776 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
16:35:23.0412 4776 FDResPub - ok
16:35:23.0443 4776 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:35:23.0443 4776 FileInfo - ok
16:35:23.0459 4776 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:35:23.0459 4776 Filetrace - ok
16:35:23.0474 4776 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
16:35:23.0474 4776 flpydisk - ok
16:35:23.0490 4776 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:35:23.0506 4776 FltMgr - ok
16:35:23.0552 4776 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
16:35:23.0552 4776 FontCache - ok
16:35:23.0615 4776 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:35:23.0615 4776 FontCache3.0.0.0 - ok
16:35:23.0693 4776 [ 82F0F3554CE07CEDB749D79CBC5A599E ] Freemake Improver C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
16:35:23.0693 4776 Freemake Improver - ok
16:35:23.0724 4776 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
16:35:23.0724 4776 FsDepends - ok
16:35:23.0786 4776 [ B16B626996C74B564005BA855C5DEE90 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
16:35:23.0786 4776 fssfltr - ok
16:35:23.0880 4776 [ 812E1BA5C52A78F13EA6AA10DF708B1D ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
16:35:23.0896 4776 fsssvc - ok
16:35:23.0927 4776 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:35:23.0942 4776 Fs_Rec - ok
16:35:23.0958 4776 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
16:35:23.0958 4776 fvevol - ok
16:35:24.0005 4776 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
16:35:24.0005 4776 gagp30kx - ok
16:35:24.0036 4776 [ A4198F2BD8AA592CB90476277A81B5E1 ] ggflt C:\Windows\system32\DRIVERS\ggflt.sys
16:35:24.0036 4776 ggflt - ok
16:35:24.0067 4776 [ D266350BDAAB9EB6C1AEC370EEAAFF3A ] ggsemc C:\Windows\system32\DRIVERS\ggsemc.sys
16:35:24.0067 4776 ggsemc - ok
16:35:24.0130 4776 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
16:35:24.0130 4776 gpsvc - ok
16:35:24.0239 4776 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:35:24.0239 4776 gupdate - ok
16:35:24.0239 4776 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:35:24.0239 4776 gupdatem - ok
16:35:24.0317 4776 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
16:35:24.0317 4776 gusvc - ok
16:35:24.0348 4776 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
16:35:24.0348 4776 hcw85cir - ok
16:35:24.0410 4776 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:35:24.0410 4776 HdAudAddService - ok
16:35:24.0426 4776 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
16:35:24.0426 4776 HDAudBus - ok
16:35:24.0442 4776 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
16:35:24.0442 4776 HidBatt - ok
16:35:24.0457 4776 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
16:35:24.0457 4776 HidBth - ok
16:35:24.0488 4776 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
16:35:24.0488 4776 HidIr - ok
16:35:24.0520 4776 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
16:35:24.0520 4776 hidserv - ok
16:35:24.0535 4776 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:35:24.0551 4776 HidUsb - ok
16:35:24.0582 4776 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:35:24.0582 4776 hkmsvc - ok
16:35:24.0613 4776 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:35:24.0613 4776 HomeGroupListener - ok
16:35:24.0644 4776 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:35:24.0660 4776 HomeGroupProvider - ok
16:35:24.0691 4776 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
16:35:24.0691 4776 HpSAMD - ok
16:35:24.0738 4776 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:35:24.0754 4776 HTTP - ok
16:35:24.0769 4776 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
16:35:24.0769 4776 hwpolicy - ok
16:35:24.0800 4776 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
16:35:24.0800 4776 i8042prt - ok
16:35:24.0832 4776 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
16:35:24.0832 4776 iaStorV - ok
16:35:24.0894 4776 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:35:24.0910 4776 idsvc - ok
16:35:24.0941 4776 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
16:35:24.0941 4776 iirsp - ok
16:35:24.0988 4776 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
16:35:24.0988 4776 IKEEXT - ok
16:35:25.0003 4776 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
16:35:25.0003 4776 intelide - ok
16:35:25.0034 4776 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\drivers\intelppm.sys
16:35:25.0034 4776 intelppm - ok
16:35:25.0066 4776 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:35:25.0066 4776 IPBusEnum - ok
16:35:25.0097 4776 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:35:25.0097 4776 IpFilterDriver - ok
16:35:25.0144 4776 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:35:25.0144 4776 iphlpsvc - ok
16:35:25.0175 4776 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
16:35:25.0175 4776 IPMIDRV - ok
16:35:25.0206 4776 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
16:35:25.0206 4776 IPNAT - ok
16:35:25.0237 4776 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:35:25.0237 4776 IRENUM - ok
16:35:25.0268 4776 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:35:25.0268 4776 isapnp - ok
16:35:25.0284 4776 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
16:35:25.0300 4776 iScsiPrt - ok
16:35:25.0331 4776 [ 1D7AAB58F4E21697AF8F46EAA81823DD ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
16:35:25.0331 4776 k57nd60a - ok
16:35:25.0378 4776 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
16:35:25.0378 4776 kbdclass - ok
16:35:25.0393 4776 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
16:35:25.0393 4776 kbdhid - ok
16:35:25.0424 4776 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
16:35:25.0424 4776 KeyIso - ok
16:35:25.0456 4776 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:35:25.0471 4776 KSecDD - ok
16:35:25.0487 4776 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
16:35:25.0487 4776 KSecPkg - ok
16:35:25.0518 4776 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
16:35:25.0534 4776 ksthunk - ok
16:35:25.0565 4776 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
16:35:25.0565 4776 KtmRm - ok
16:35:25.0612 4776 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
16:35:25.0612 4776 LanmanServer - ok
16:35:25.0643 4776 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:35:25.0643 4776 LanmanWorkstation - ok
16:35:25.0674 4776 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:35:25.0690 4776 lltdio - ok
16:35:25.0721 4776 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:35:25.0721 4776 lltdsvc - ok
16:35:25.0736 4776 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:35:25.0736 4776 lmhosts - ok
16:35:25.0783 4776 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
16:35:25.0783 4776 LSI_FC - ok
16:35:25.0799 4776 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
16:35:25.0799 4776 LSI_SAS - ok
16:35:25.0814 4776 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
16:35:25.0814 4776 LSI_SAS2 - ok
16:35:25.0830 4776 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
16:35:25.0846 4776 LSI_SCSI - ok
16:35:25.0861 4776 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
16:35:25.0861 4776 luafv - ok
16:35:25.0892 4776 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
16:35:25.0892 4776 Mcx2Svc - ok
16:35:25.0970 4776 [ 7CF1B716372B89568AE4C0FE769F5869 ] MDM C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
16:35:25.0986 4776 MDM - ok
16:35:26.0017 4776 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
16:35:26.0017 4776 megasas - ok
16:35:26.0048 4776 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
16:35:26.0048 4776 MegaSR - ok
16:35:26.0080 4776 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
16:35:26.0080 4776 MMCSS - ok
16:35:26.0095 4776 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
16:35:26.0095 4776 Modem - ok
16:35:26.0111 4776 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:35:26.0111 4776 monitor - ok
16:35:26.0158 4776 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
16:35:26.0158 4776 mouclass - ok
16:35:26.0173 4776 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:35:26.0173 4776 mouhid - ok
16:35:26.0204 4776 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
16:35:26.0204 4776 mountmgr - ok
16:35:26.0267 4776 [ 51A84B690DF519DCF656F780243D953E ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:35:26.0282 4776 MozillaMaintenance - ok
16:35:26.0314 4776 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
16:35:26.0329 4776 mpio - ok
16:35:26.0360 4776 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:35:26.0360 4776 mpsdrv - ok
16:35:26.0407 4776 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
16:35:26.0423 4776 MpsSvc - ok
16:35:26.0438 4776 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:35:26.0438 4776 MRxDAV - ok
16:35:26.0501 4776 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:35:26.0501 4776 mrxsmb - ok
16:35:26.0532 4776 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:35:26.0532 4776 mrxsmb10 - ok
16:35:26.0563 4776 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:35:26.0563 4776 mrxsmb20 - ok
16:35:26.0610 4776 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
16:35:26.0610 4776 msahci - ok
16:35:26.0626 4776 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
16:35:26.0641 4776 msdsm - ok
16:35:26.0657 4776 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
16:35:26.0672 4776 MSDTC - ok
16:35:26.0688 4776 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:35:26.0688 4776 Msfs - ok
16:35:26.0704 4776 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
16:35:26.0719 4776 mshidkmdf - ok
16:35:26.0735 4776 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:35:26.0735 4776 msisadrv - ok
16:35:26.0750 4776 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:35:26.0766 4776 MSiSCSI - ok
16:35:26.0766 4776 msiserver - ok
16:35:26.0797 4776 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:35:26.0797 4776 MSKSSRV - ok
16:35:26.0813 4776 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:35:26.0813 4776 MSPCLOCK - ok
16:35:26.0813 4776 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:35:26.0828 4776 MSPQM - ok
16:35:26.0844 4776 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:35:26.0844 4776 MsRPC - ok
16:35:26.0860 4776 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
16:35:26.0860 4776 mssmbios - ok
16:35:26.0875 4776 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:35:26.0875 4776 MSTEE - ok
16:35:26.0891 4776 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
16:35:26.0891 4776 MTConfig - ok
16:35:26.0906 4776 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
16:35:26.0906 4776 Mup - ok
16:35:26.0938 4776 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
16:35:26.0953 4776 napagent - ok
16:35:27.0016 4776 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:35:27.0031 4776 NativeWifiP - ok
16:35:27.0109 4776 [ E4534BCCDD1EA7A7A256BB9D6688A5FC ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
16:35:27.0125 4776 NAUpdate - ok
16:35:27.0218 4776 [ B498A14133BD09AD0817590ACE4470AD ] NBService C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
16:35:27.0234 4776 NBService - ok
16:35:27.0281 4776 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
16:35:27.0296 4776 NDIS - ok
16:35:27.0328 4776 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
16:35:27.0328 4776 NdisCap - ok
16:35:27.0359 4776 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:35:27.0374 4776 NdisTapi - ok
16:35:27.0390 4776 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:35:27.0390 4776 Ndisuio - ok
16:35:27.0406 4776 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:35:27.0406 4776 NdisWan - ok
16:35:27.0421 4776 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:35:27.0421 4776 NDProxy - ok
16:35:27.0437 4776 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:35:27.0437 4776 NetBIOS - ok
16:35:27.0452 4776 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
16:35:27.0452 4776 NetBT - ok
16:35:27.0484 4776 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
16:35:27.0484 4776 Netlogon - ok
16:35:27.0530 4776 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
16:35:27.0530 4776 Netman - ok
16:35:27.0562 4776 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
16:35:27.0562 4776 netprofm - ok
16:35:27.0593 4776 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:35:27.0593 4776 NetTcpPortSharing - ok
16:35:27.0655 4776 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
16:35:27.0655 4776 nfrd960 - ok
16:35:27.0718 4776 [ 42390431E604C9513D4F23FB7BDEC334 ] NitroReaderDriverReadSpool2 C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe
16:35:27.0749 4776 NitroReaderDriverReadSpool2 - ok
16:35:27.0796 4776 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
16:35:27.0796 4776 NlaSvc - ok
16:35:27.0889 4776 [ A328A46D87BB92CE4D8A4528E9D84787 ] NMIndexingService C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
16:35:27.0889 4776 NMIndexingService - ok
16:35:27.0936 4776 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:35:27.0952 4776 Npfs - ok
16:35:27.0967 4776 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
16:35:27.0983 4776 nsi - ok
16:35:27.0998 4776 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:35:27.0998 4776 nsiproxy - ok
16:35:28.0092 4776 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:35:28.0139 4776 Ntfs - ok
16:35:28.0154 4776 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
16:35:28.0154 4776 Null - ok
16:35:28.0201 4776 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:35:28.0217 4776 nvraid - ok
16:35:28.0232 4776 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:35:28.0248 4776 nvstor - ok
16:35:28.0264 4776 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
16:35:28.0279 4776 nv_agp - ok
16:35:28.0326 4776 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:35:28.0357 4776 odserv - ok
16:35:28.0373 4776 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
16:35:28.0373 4776 ohci1394 - ok
16:35:28.0435 4776 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:35:28.0435 4776 ose - ok
16:35:28.0841 4776 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:35:28.0950 4776 osppsvc - ok
16:35:29.0012 4776 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
16:35:29.0012 4776 p2pimsvc - ok
16:35:29.0044 4776 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
16:35:29.0044 4776 p2psvc - ok
16:35:29.0075 4776 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
16:35:29.0075 4776 Parport - ok
16:35:29.0106 4776 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:35:29.0106 4776 partmgr - ok
16:35:29.0137 4776 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
16:35:29.0137 4776 PcaSvc - ok
16:35:29.0153 4776 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
16:35:29.0153 4776 pci - ok
16:35:29.0168 4776 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
16:35:29.0168 4776 pciide - ok
16:35:29.0215 4776 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
16:35:29.0215 4776 pcmcia - ok
16:35:29.0231 4776 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
16:35:29.0231 4776 pcw - ok
16:35:29.0371 4776 [ 14BC059431E2A2EE80D061FA96AA6855 ] PDAgent C:\Program Files\Raxco\PerfectDisk\PDAgent.exe
16:35:29.0418 4776 PDAgent - ok
16:35:29.0512 4776 [ F2F3D113FE08252D21790402EE3F61EA ] PDEngine C:\Program Files\Raxco\PerfectDisk\PDEngine.exe
16:35:29.0543 4776 PDEngine - ok
16:35:29.0590 4776 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:35:29.0605 4776 PEAUTH - ok
16:35:29.0730 4776 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
16:35:29.0746 4776 PerfHost - ok
16:35:29.0808 4776 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
16:35:29.0824 4776 pla - ok
16:35:29.0870 4776 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:35:29.0886 4776 PlugPlay - ok
16:35:29.0917 4776 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
16:35:29.0917 4776 PNRPAutoReg - ok
16:35:29.0933 4776 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
16:35:29.0948 4776 PNRPsvc - ok
16:35:29.0995 4776 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:35:30.0011 4776 PolicyAgent - ok
16:35:30.0042 4776 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
16:35:30.0058 4776 Power - ok
16:35:30.0089 4776 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:35:30.0104 4776 PptpMiniport - ok
16:35:30.0120 4776 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
16:35:30.0136 4776 Processor - ok
16:35:30.0167 4776 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
16:35:30.0167 4776 ProfSvc - ok


szomb. feb. 23, 2013 17:45
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Jajjaj, ha nem fer be akkor osztd szet tobb hozzaszolasba.


szomb. feb. 23, 2013 17:37
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: szomb. feb. 23, 2013 15:01
Hozzászólások: 122
Hozzászólás Re: STELL Segit
hova tudnám feltölteni? Ide nem fér el...


szomb. feb. 23, 2013 17:26
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Na ez csak enyi par masodperc, tedd ide a naplojat oda van irva hol van
C:\ zložka) vo forme "TDSSKiller. _log.txt".
vagyis
C:\mappa igy TDSSKiller. es benne van az log.txt


szomb. feb. 23, 2013 17:15
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: szomb. feb. 23, 2013 15:01
Hozzászólások: 122
Hozzászólás Re: STELL Segit
stell írta:
1:MBANR-Anti Rootkit
2:AZ TDSSKILLERT

Jaj megakadtam... a maldware nem adott semmit. A másik meg mindig kiad egy valamit mellé a "skip" ráklikkelek a Continue gombra erre kiírja: Suspicious objects were found... és ekkor már nem folytatja hanem újra kezdené a vizsgálatot... (pár másodpercig vizsgálta csak)


szomb. feb. 23, 2013 16:49
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Szia
A Szlovak blogombol lefuttatod az
1:MBANR-Anti Rootkit
2:AZ TDSSKILLERT
a naplokat tedd ide,
Az utasitask oda vannak irva, :D szlovakul, de lefordithatod.
az MBANR -ha nem talal semmit akkor naplot nem add.
http://www.viruskasino.com/2010/12/prog ... ti-Rootkit
http://www.viruskasino.com/2010/12/odst ... kitov.html


szomb. feb. 23, 2013 15:22
Profil Privát üzenet küldése Honlap
arany tag

Csatlakozott: szomb. feb. 23, 2013 15:01
Hozzászólások: 122
Hozzászólás Re: STELL Segit
Szia Stell!
Kellene egy kis segítség! Elkezdtem takarítgatni a gépen, mert kissé lassú. De ma reggel amikor bekapcsoláskor már lefagyott elgondolkodtam azon lehet vírusos vagyok. Mit futtassak végig, hogy megnézd mivel is van probléma? Előre is köszi!


szomb. feb. 23, 2013 15:09
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
2x klikel ra, es ott nezd meg nincsen e pipa, letiltva, es az Tisztitas elott volt hang??

Megjott?? ma latod, :D
Nincsen mitt
Udv.


csüt. jan. 24, 2013 16:02
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
megjött a hang magától nincs már baj:) köszönöm a segítséget


csüt. jan. 24, 2013 16:02
Profil Privát üzenet küldése
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
ott van igen de nincs hang hiába mozgattam meg


csüt. jan. 24, 2013 15:53
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
A jobb sarokban lent a listan ott van a Hangszoro?? a igen akkor nyisd ki es mozgasd meg a hangositokat,


csüt. jan. 24, 2013 15:51
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
minden jó. de nincs hang. zenénél filmnél semminél nincs hang


csüt. jan. 24, 2013 15:47
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Megcsinaltad?? a Torezedest is?/valahogy hammar, Igen ez a gep nem is fog repulni 512 MB a RAM,
Ok akkor ez minden.
udv


csüt. jan. 24, 2013 15:45
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
megcsináltam. jobb lett mint volt. csendesebb lett hát nem repül a gyorsaságtól de jó lesz :)


csüt. jan. 24, 2013 15:40
Profil Privát üzenet küldése
a fórum lelke
Avatar

Csatlakozott: vas. jún. 24, 2007 10:18
Hozzászólások: 6679
Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,
Hozzászólás Re: STELL Segit
Na, akkor
1:telepitsd fel az FREE AVIRAT.
2:Csinalj egy lemez vizsgalatot, a parancssorba ird be ezt a parancsot
chkdsk /f/r
Enter.
Beleegyezel, igen, Yes, ok, restart, es hagyd a gepet hogy leellenőrizze le a lemezt.
3:Csinalj torezedes mentest evvel az programmal.
http://www.piriform.com/defraggler

aztan talan enyi lenne az egesz, probald ki, es ird meg hogy mi van,


csüt. jan. 24, 2013 15:25
Profil Privát üzenet küldése Honlap
ezüst tag

Csatlakozott: pén. jan. 18, 2013 22:27
Hozzászólások: 57
Hozzászólás Re: STELL Segit
jobb lett a gép, javult gyorsabb nem zúg annyira


csüt. jan. 24, 2013 15:19
Profil Privát üzenet küldése
Hozzászólások megjelenítése:  Rendezés  
Hozzászólás a témához   [ 774 hozzászólás ]  Oldal Előző  1, 2, 3, 4, 5, 6, 7, 8 ... 16  Következő

Ki van itt

Jelenlévő fórumozók: nincs regisztrált felhasználó valamint 9 vendég


Nem nyithatsz témákat ebben a fórumban.
Nem válaszolhatsz egy témára ebben a fórumban.
Nem szerkesztheted a hozzászólásaidat ebben a fórumban.
Nem törölheted a hozzászólásaidat ebben a fórumban.

Keresés:
Ugrás:  
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group.
Designed by ST Software for PTF.
Magyar fordítás © Magyar phpBB Közösség