Prosim o kontrolu logu.Děkuji Vyřešeno

[yardhik]

Přestalo jit hraní po síti WoT(nejde se připojit).Při spuštění windows píše nelze ...C:\PROGRA~3\29fdo.dat
Zřejmě jsem něco vymazl při odstraňování viru "varování policie"



Hijack Hunter 1.8.4.1
http://www.novirusthanks.org
Log created on 6.6.2013 at 12:14:23

[+] Generic system info

Operating System: Windows 7 Ultimate 64-bit
Build Version: 7600.win7_rtm.090713-1255
Internet Explorer: 8.0.7600.16385
System Folder: C:\Windows\system32

[+] Running processes

[System Process] (0 bytes) (Unknown) () (HSAR) (d41d8cd98f00b204e9800998ecf8427e)
System (0 bytes) (Unknown) () (HSAR) (d41d8cd98f00b204e9800998ecf8427e)
C:\Program Files (x86)\AVG\AVG2013\avgrsa.exe (952952 bytes) (AVG Technologies CZ, s.r.o.) (30.10.2012 4:59:54) (--A-) (dc83c9f4130f447ead187879708c8035)
C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe (531576 bytes) (AVG Technologies CZ, s.r.o.) (22.10.2012 13:03:50) (--A-) (cf433bc29d4089d264f24a1ed371941d)
C:\Windows\System32\nvvsvc.exe (0 bytes) (NVIDIA Corporation) () (HSAR) (d41d8cd98f00b204e9800998ecf8427e)
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (383264 bytes) (NVIDIA Corporation) (14.3.2013 22:07:46) (--A-) (81f177c1954453af407604160bd149cb)
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (1127200 bytes) (NVIDIA Corporation) (2.4.2013 13:42:56) (--A-) (37ecd13f64c5a1f6ef7e28987987e360)
C:\Program Files (x86)\AVG\AVG2013\avgfws.exe (1342024 bytes) (AVG Technologies CZ, s.r.o.) (10.12.2012 11:11:44) (--A-) (d0be22c910e46550c6308d50dda76b94)
C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe (5814904 bytes) (AVG Technologies CZ, s.r.o.) (15.11.2012 23:34:30) (--A-) (4afc14afa58878faa1d249e7e90ea54b)
C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe (196664 bytes) (AVG Technologies CZ, s.r.o.) (22.10.2012 13:05:08) (--A-) (6b72e1e329c4e98c6b6fdd2d265e3ba3)
C:\Program Files (x86)\AVG\AVG2013\avgui.exe (3147384 bytes) (AVG Technologies CZ, s.r.o.) (11.12.2012 3:52:44) (--A-) (9dadf1a809ecec86f04bde35190d59fe)
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (2449696 bytes) (NVIDIA Corporation) (2.4.2013 13:42:56) (--A-) (33dd8fde7bb458e2a45eaba10b8d5364)
C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe (1354360 bytes) (AVG Technologies CZ, s.r.o.) (22.10.2012 13:04:30) (--A-) (2fc6c98a23864b2e50e53b4848939eaf)
C:\Program Files (x86)\AVG\AVG2013\avgemca.exe (952440 bytes) (AVG Technologies CZ, s.r.o.) (22.10.2012 13:03:52) (--A-) (ff0602e28d69b977f889d435f902545e)
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (1266464 bytes) (NVIDIA Corporation) (2.4.2013 13:43:47) (--A-) (b7c53da1c73ff39f4a6248643efd979a)
C:\Program Files (x86)\Opera\opera.exe (879456 bytes) (Opera Software) (2.4.2013 12:06:20) (--A-) (2abd166ec31be154d8cbeec5d7f5714c)
audiodg.exe (0 bytes) (Unknown) () (HSAR) (d41d8cd98f00b204e9800998ecf8427e)
C:\Program Files (x86)\NoVirusThanks\Hijack Hunter\HijackHunter.exe (628736 bytes) (NoVirusThanks Company Srl) (6.6.2013 12:12:19) (--A-) (b6ffa83b91d78a0369fe0e15e4dba69c)

[+] Loaded Modules

C:\Windows\system32\MSVCR100.dll (773968 bytes) (Microsoft Corporation) (19.2.2011 0:40:50) (--A-) (bf38660a9125935658cfa3e53fdc7d65)
C:\Windows\system32\MSVCP100.dll (421200 bytes) (Microsoft Corporation) (19.2.2011 23:03:12) (--A-) (e3c817f7fe44cc870ecdbcbc3ea36132)
C:\Windows\SysWOW64\MSVCP100.dll (421200 bytes) (Microsoft Corporation) (19.2.2011 23:03:12) (--A-) (e3c817f7fe44cc870ecdbcbc3ea36132)
C:\Windows\system32\mfc100u.dll (4422992 bytes) (Microsoft Corporation) (19.2.2011 23:03:12) (--A-) (f32077df74efd435a1dcdf415e189df1)
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\COMCTL32.dll (1680896 bytes) (Microsoft Corporation) (14.7.2009 1:40:32) (--A-) (0fa436a553408cbeba070e3182658de3)
C:\Windows\system32\MFC100ENU.DLL (55120 bytes) (Microsoft Corporation) (19.2.2011 23:03:12) (--A-) (f908fe45f8fe9e0d4cbe65f9ff5df6da)
C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_d08a205e442db5b5\MSVCR80.dll (632656 bytes) (Microsoft Corporation) (13.7.2009 22:46:13) (--A-) (c4e9e285e1730d864dd4b35b73cdafdb)
C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.42_none_dc990e4797f81af1\ATL80.DLL (95744 bytes) (Microsoft Corporation) (2.4.2013 16:29:13) (--A-) (16b206229b2a348c8bcd8b5a6102a979)
C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll (16033160 bytes) (Unknown) (15.5.2013 21:07:41) (--A-) (7abe33792f2787d599b6963e71b9e8cd)
C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (1624576 bytes) (Microsoft Corporation) (14.7.2009 1:26:25) (--A-) (edb57065790b62ef83be117ad3edfde2)

[+] Registry startups

Value: AVG_UI
Data: "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY
Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Value: GrooveMonitor
Data: "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Value: StubPath
Data: "C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}

Value: {18DF081C-E8AD-4283-A596-FA578C2EBDC3}
Data: C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}

Value: {72853161-30C5-4D22-B7F9-0BBC1D38A37E}
Data: C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL
Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}

Value: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
Data: C:\Program Files (x86)\Java\jre7\bin\ssv.dll
Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}

Value: {DBC80044-A445-435b-BC74-9C25C1C588A9}
Data: C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}


[+] Other Startups Methods

Value: Groove GFS Stub Execution Hook
Data: C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL
CLSID: {B5A7F190-DDA6-4420-B3BA-52453494E6CD}
Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks


[+] Startup folders

C:\Users\Yardhik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\regmonstd.lnk (1031 bytes) (Unknown) (28.5.2013 11:41:00) (--A-) (a8f771813d3161f137de104de1cc90ae)

[+] TCPIP nameservers


[+] Internet Explorer settings


[+] Internet Explorer Trusted Sites


[+] Windows Firewall allowed programs


[+] Windows Firewall allowed ports


[+] System Hijack

Value: ShowSuperHidden
Data: 0
Key: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced

Value: EnableDCOM
Data: Y
Key: HKEY_LOCAL_MACHINE\Software\Microsoft\Ole

Value: Start
Data: 4
Key: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess

Value: Wallpaper
Data: C:\Users\Yardhik\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
Key: HKEY_CURRENT_USER\Control Panel\Desktop

Value: EnabledV8
Data: 0
Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter


[+] Executables in Temp folders

C:\Users\Yardhik\AppData\Local\Temp\i4jdel0.exe (27411 bytes) (Unknown) (2.4.2013 14:16:36) (--A-) (24f6d923ef6956abd0449c879f36d7c7)
C:\Users\Yardhik\AppData\Local\Temp\SASC14C.tmp (533888 bytes) (SUPERAdBlocker.com) (6.6.2013 12:02:03) (--A-) (cf3d048a7975936877d6717d7513553d)
C:\Users\Yardhik\AppData\Local\Temp\_iu14D2N.tmp (712264 bytes) (Unknown) (5.6.2013 21:38:09) (----) (f08325e9fce45e506b1b3921b8878f96)

[+] Executables in suspicious folders

C:\ProgramData\rundll32.exe (44544 bytes) (Microsoft Corporation) (6.6.2013 11:26:32) (--A-) (51138beea3e2c21ec44d0932c71762a8)

[+] Autorun.ini


[+] Unknown .SYS files


[+] Non accessible files


[+] Executables in Internet Explorer Folder


[+] Files created/modified 15 days ago

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (825808 bytes) (Google Inc.) (28.5.2013 13:53:11) (--A-) (2f3390c8e3620b3991d7d82014e26aa7) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\chrome_frame_helper.dll (57296 bytes) (Google Inc.) (5.6.2013 21:48:55) (--A-) (6f2addc4ddc40ec21cfc0afb375d3ec7) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\chrome_frame_helper.exe (82896 bytes) (Google Inc.) (5.6.2013 21:48:56) (--A-) (cea5d930589f7fcd50be1276f24ea396) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\chrome_launcher.exe (87504 bytes) (Google Inc.) (5.6.2013 21:48:56) (--A-) (d3213e0f4df76f42737c3cce11e2ac2e) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\d3dcompiler_43.dll (2106216 bytes) (Microsoft Corporation) (5.6.2013 21:48:55) (--A-) (1c9b45e87528b8bb8cfa884ea0099a85) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\delegate_execute.exe (397776 bytes) (Google Inc.) (5.6.2013 21:48:56) (--A-) (a8ff45e7bdeb0d2624ec913652896ae8) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\ffmpegsumo.dll (1597392 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (6dd4400a918bb4265a94ffc2d1ab0d8d) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\libegl.dll (124368 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (7fec7fcfdf09459c0186b64654e96926) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\libglesv2.dll (599504 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (ad11026ef9fd8c3b73d0002cba05dd04) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\metro_driver.dll (866256 bytes) (Google Inc.) (5.6.2013 21:48:55) (--A-) (7a381cd74d7b8f9e8f1fe7b10bf3568a) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\nacl64.exe (1037264 bytes) (Google Inc.) (5.6.2013 21:48:56) (--A-) (e7e98e4ac956a47be89a4a755f325dae) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\ppgooglenaclpluginchrome.dll (393168 bytes) (Unknown) (5.6.2013 21:48:56) (--A-) (f21509c6df8a350412780d689cf2ab95) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\xinput1_3.dll (81768 bytes) (Microsoft Corporation) (5.6.2013 21:48:56) (--A-) (77f595dee5ffacea72b135b1fce1312e) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Installer\chrmstp.exe (1165776 bytes) (Google Inc.) (5.6.2013 21:48:56) (--A-) (d4e83d9f4a3377b37e7a923199318282) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Installer\setup.exe (1165776 bytes) (Google Inc.) (5.6.2013 21:48:56) (--A-) (d4e83d9f4a3377b37e7a923199318282) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\am.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (de5b57bf56df6ebd7286f6b8b7aea369) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\ar.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (059d039321318e553f174deb072760ed) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\bg.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (9d5d1aedf4b27d0e54c8f39825e28c9c) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\bn.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (6abc23a73599d45afb71e1446718eb32) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\ca.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (ffc29e394d0fb8fc39a6d11ba6513539) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\cs.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (55bf97aa8707555f4dcf54ddb74e5ce9) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\da.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (105f6ecb9d32976667496fa0d51171a9) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\de.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (24cf66b8f359c278458c9b82e99cfd23) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\el.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (7ee81a7083064e3cfcc8d1c79a81225d) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\en-GB.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (f5516f68876392830eac57990bbf5357) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\en-US.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (727bd141de0883f463b8d0b9b7aa3283) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\es-419.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (86c10006b912ef06bdb33ae0f4cdebf8) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\es.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (e0fd3ac5b3768cbc336e4d7c3fc6582c) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\et.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (fa4467b78f3d7f7034a943e052e7719d) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\fa.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (2ac8ce72da8b364f611987125af4a73b) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\fi.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (4d10fa001e555f8fbb594020f3f138a4) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\fil.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (069b4f950fbe030391763aa8d237ffe1) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\fr.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (cbcef7ceb1e664c1b97d1c44db25c8ec) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\gu.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (14e8eddba9c4e34ea0918b5238d492c1) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\he.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (427582479a672bc11e52156f4e8f5b6c) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\hi.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (89a760d737e91ad1a9f6e77b01caf140) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\hr.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (bdb72161ab5c47b11604ed137941ae0c) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\hu.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (ebda4f104a296502ba8f389e931899b0) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\id.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (0a93a06356b848f37e76347130b7a90b) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\it.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (8fd08e89f31897207aa6b5c83f9ab64a) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\ja.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (549780ece4ec92bc3ba014ab150feb46) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\kn.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (2286b3343306a289922f4855a0e5d9a4) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\ko.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (4e0a6020e16b3f481251bfd39ed45776) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\lt.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (c54d70cf9c8c713bb0719d9437237639) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\lv.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (20f08eef957aff1a64416d0631c4092a) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\ml.dll (9680 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (e84bd82c7ce45ff2ba9cdf985113243f) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\mr.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (52d674cd2293f2c852132d818965fe5a) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\ms.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (55ca4aee3704f083f3931151703d54b3) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\nb.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (ea25378eba465b3f1f80b840b9ad1f70) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\nl.dll (9168 bytes) (Unknown) (5.6.2013 21:48:55) (--A-) (d5e5c45ad5d0594564ce9c0ca009abc8) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\pl.dll (9168 bytes) (Unknown) (5.6.2013 21:48:56) (--A-) (91ff92594cd80c3c0aa165a7fef4bc9c) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\pt-BR.dll (9168 bytes) (Unknown) (5.6.2013 21:48:56) (--A-) (f1fb3068126497e46e6eda1fedd9a875) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\pt-PT.dll (9168 bytes) (Unknown) (5.6.2013 21:48:56) (--A-) (f542965e85bab82782ed1bbdc438ed96) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\ro.dll (9168 bytes) (Unknown) (5.6.2013 21:48:56) (--A-) (4ce53b66a0883994a95f8cc0d90facd4) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\ru.dll (9168 bytes) (Unknown) (5.6.2013 21:48:56) (--A-) (6f5e6716511a1ff81a9d6fefb1b06455) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\sk.dll (9168 bytes) (Unknown) (5.6.2013 21:48:56) (--A-) (3b7b53baed9c8cf1ea7af8be33c94991) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\sl.dll (9168 bytes) (Unknown) (5.6.2013 21:48:56) (--A-) (d8fb4c4790ed945d9a7945226150c55e) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\sr.dll (9168 bytes) (Unknown) (5.6.2013 21:48:56) (--A-) (fc813f802827149e1ee7a6e3fbae08d5) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\sv.dll (9168 bytes) (Unknown) (5.6.2013 21:48:56) (--A-) (1007be51216ad00fa0c04a8107b223bd) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\sw.dll (9168 bytes) (Unknown) (5.6.2013 21:48:56) (--A-) (f5a8f887e2b21b2d277a458f7b309034) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\ta.dll (9168 bytes) (Unknown) (5.6.2013 21:48:56) (--A-) (0f714ec9ebcae709a53aa3abf8fb9c5e) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\te.dll (9168 bytes) (Unknown) (5.6.2013 21:48:56) (--A-) (b797ec27aa7800cf008faf8e4c7b7e36) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\th.dll (9168 bytes) (Unknown) (5.6.2013 21:48:56) (--A-) (fc6bd24539db1ef80dca8c19c3cefbbf) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\tr.dll (9168 bytes) (Unknown) (5.6.2013 21:48:56) (--A-) (7fb2e2d8b32ada156183bea09d2fe10c) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\uk.dll (9168 bytes) (Unknown) (5.6.2013 21:48:56) (--A-) (7b58fe90aaef5548d0674f898b294459) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\vi.dll (9168 bytes) (Unknown) (5.6.2013 21:48:56) (--A-) (87fca6374879510c74053d27240f6cb5) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\zh-CN.dll (9168 bytes) (Unknown) (5.6.2013 21:48:56) (--A-) (b61bdd3825776af6d3d0d1548d6d877e) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Locales\zh-TW.dll (9168 bytes) (Unknown) (5.6.2013 21:48:56) (--A-) (81f8fdde9831e0824abab88257cb59bd) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\chrome_frame_helper.dll (57296 bytes) (Google Inc.) (28.5.2013 13:53:10) (--A-) (626d0101e335399be08dc660b5f501bd) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\chrome_frame_helper.exe (82896 bytes) (Google Inc.) (28.5.2013 13:53:11) (--A-) (239a6e4d1878c0fabe685f8dd984543d) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\chrome_launcher.exe (87504 bytes) (Google Inc.) (28.5.2013 13:53:11) (--A-) (82dfea899b78f8c082dce0434f567776) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\d3dcompiler_43.dll (2106216 bytes) (Microsoft Corporation) (28.5.2013 13:53:10) (--A-) (1c9b45e87528b8bb8cfa884ea0099a85) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\delegate_execute.exe (397776 bytes) (Google Inc.) (28.5.2013 13:53:11) (--A-) (2add2fa2ee169fb7e6fa4552997eafdd) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\ffmpegsumo.dll (1597392 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (4763adc41ba4e0ff8740251705ca3f7f) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\libegl.dll (124368 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (480041594be5d6e5c37869edf7fb9570) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\libglesv2.dll (599504 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (160d122d35af73f3c3339c4ae5584b5b) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\metro_driver.dll (866256 bytes) (Google Inc.) (28.5.2013 13:53:11) (--A-) (6c05f279f5ffd1cd5a904a8240b8757b) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\nacl64.exe (1037264 bytes) (Google Inc.) (28.5.2013 13:53:11) (--A-) (6b2c6d2687d9fba80007b3ed413d9990) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\ppgooglenaclpluginchrome.dll (393168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (d68678e3a6fed6c81b5a2f5ce64a8e8f) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\xinput1_3.dll (81768 bytes) (Microsoft Corporation) (28.5.2013 13:53:11) (--A-) (77f595dee5ffacea72b135b1fce1312e) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Installer\chrmstp.exe (1165776 bytes) (Google Inc.) (28.5.2013 13:53:12) (--A-) (d833e6a05697c0301f15a76ec2bf0fa4) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Installer\setup.exe (1165776 bytes) (Google Inc.) (28.5.2013 13:53:12) (--A-) (d833e6a05697c0301f15a76ec2bf0fa4) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\am.dll (9168 bytes) (Unknown) (28.5.2013 13:53:08) (--A-) (21c9f962517b265c6a672bc6e034c607) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\ar.dll (9168 bytes) (Unknown) (28.5.2013 13:53:08) (--A-) (96c007b8292a4d602c17493e3d8af881) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\bg.dll (9168 bytes) (Unknown) (28.5.2013 13:53:08) (--A-) (80d788326445a9d1ce23b67d6d9f1da9) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\bn.dll (9168 bytes) (Unknown) (28.5.2013 13:53:08) (--A-) (4d97f6feb64e8a4a6bf5a05d7b4bc4b3) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\ca.dll (9168 bytes) (Unknown) (28.5.2013 13:53:08) (--A-) (4d5b0d4fb8011b18b416ca16efc2ccf2) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\cs.dll (9168 bytes) (Unknown) (28.5.2013 13:53:10) (--A-) (d902e69ad5cbfada653df9842083c1a9) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\da.dll (9168 bytes) (Unknown) (28.5.2013 13:53:10) (--A-) (bb240e97e331e1cd5342b3253f43fd11) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\de.dll (9168 bytes) (Unknown) (28.5.2013 13:53:10) (--A-) (1c6d5e915e882b12e47e67def5b63fcf) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\el.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (d0017d936f75d0fb2124ca0223dc8b53) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\en-GB.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (5c025465d389f364a608cc2377b85bbc) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\en-US.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (d1eded129a600bcf94137f3cf5b435db) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\es-419.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (cb04ed14a5230ee873df31189782f336) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\es.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (ac703eb076eb3507fbc8383982c43760) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\et.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (25bf7cb7f01c92a4038bd6ea4ea6354e) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\fa.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (b32ee231556b0f8dabd835b7f8003630) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\fi.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (0e24a2a559147edb3a66e4c20c6636b8) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\fil.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (3a1bacd4b419101d8b8879a5068a89fa) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\fr.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (0199d9bd2f669cc8a1e22e6ac2d395e9) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\gu.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (9a7bf8a47cbc8f9ae6f887603db461ae) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\he.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (bd9bc30afb2a8b0be666e27481c9ccb7) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\hi.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (53620a7a2a10849cea3ee1bca2a67645) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\hr.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (fdf1a6418013816bef24b1a3eb3c08ae) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\hu.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (1719a346d7f4afa384fbc0646c4b9e93) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\id.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (8b16028c089cf68b04457a23844adc02) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\it.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (5e03c98fd4ea34303f56e19a5a4f4708) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\ja.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (e9ff600ed37c908d61307252dcecdade) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\kn.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (4c5413e1ddaeb77767bc436a2c5ede94) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\ko.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (d7dadc9311dc2b523d3c8922d2b7397c) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\lt.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (c73621566ef382066f72f3ab99c3b795) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\lv.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (0efb6f9bd362159dd29b60808687e40e) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\ml.dll (9680 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (701862eb08aa57e20d417780b1a22a3b) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\mr.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (84fb1ce191dc5633b437d7c4dd7bd5bd) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\ms.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (f58e2bd42399de0536bcec66b4d0f26e) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\nb.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (6bac2273f76887d511ae071e7c0ee0a7) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\nl.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (881b862973d72be37c74bb3b4dc6fadc) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\pl.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (46b9e40b48ebf37cffd4f446487014b8) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\pt-BR.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (724b753974307ef9a3fda0a839855565) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\pt-PT.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (e4fa84e9322d96a2f4887fe80dbacc67) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\ro.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (022a636e5423a580b0c32ce69a328e9c) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\ru.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (853312fcc50aa9037457aef1204bf70b) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\sk.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (ac364e6ce6a12b5913fdad61384e1391) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\sl.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (0003f660e7e3c7d6e803ed4e63b91799) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\sr.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (a3f742dfa1d5296d764caf4b66bbd386) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\sv.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (c0b743f5c11f92ded6e27b96c8dcf3e3) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\sw.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (da5564fcc66fb0a2985823a2a7e0e5cd) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\ta.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (c292b030a7f9f922aee06ec6fda77104) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\te.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (6089a681389e9d253c8ab9b253262f10) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\th.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (5178ad9afe70edb3d5fe107d261b5215) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\tr.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (04c6ba6b30e20a5527843b7bd030d3d1) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\uk.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (e2bb998a2a6c834357ae969c808cd0aa) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\vi.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (77394c1ead34831c53293423c9f3a48f) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\zh-CN.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (ac5841c5e777fe0c7d62ca8974d25bae) (Created)
C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\Locales\zh-TW.dll (9168 bytes) (Unknown) (28.5.2013 13:53:11) (--A-) (fbc3291eb19908212340f061964165ac) (Created)
C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (116648 bytes) (Google Inc.) (28.5.2013 13:52:26) (--A-) (506708142bc63daba64f2d3ad1dcd5bf) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe (216968 bytes) (Google Inc.) (28.5.2013 15:40:18) (--A-) (76b35cb0f3a4e69d6dff27f542b9f856) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe (287624 bytes) (Google Inc.) (28.5.2013 15:40:19) (--A-) (4e252e85e5dc31bd645e809222afaf27) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleUpdate.exe (116648 bytes) (Google Inc.) (28.5.2013 15:40:18) (--A-) (506708142bc63daba64f2d3ad1dcd5bf) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleUpdateBroker.exe (59784 bytes) (Google Inc.) (28.5.2013 15:40:35) (--A-) (8f11f0321ed84b1533fc1384ac71ac8d) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleUpdateOnDemand.exe (59784 bytes) (Google Inc.) (28.5.2013 15:40:35) (--A-) (00f714ca28a01facb709486d6da306a8) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleUpdateSetup.exe (781592 bytes) (Google Inc.) (28.5.2013 15:40:34) (--A-) (c26bb2535c1b20deafaeb12634bf4dc9) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdate.dll (848776 bytes) (Google Inc.) (28.5.2013 15:40:18) (--A-) (758d99511fd82b6c55e70494039e9f1a) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_am.dll (25480 bytes) (Google Inc.) (28.5.2013 15:40:19) (--A-) (37b382c540fe385cc80750fe094d2436) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_ar.dll (27016 bytes) (Google Inc.) (28.5.2013 15:40:19) (--A-) (0168e7384921b019c7b79ee5a3bbc161) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_bg.dll (30600 bytes) (Google Inc.) (28.5.2013 15:40:20) (--A-) (93ff8dfef26bd30afa6e3db15e8acb5e) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_bn.dll (29064 bytes) (Google Inc.) (28.5.2013 15:40:20) (--A-) (d314cd6d571d43c984ffee5f0f6e4b3d) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_ca.dll (30088 bytes) (Google Inc.) (28.5.2013 15:40:20) (--A-) (97873a0ae52a3fbc4a3aa940b249b05c) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_cs.dll (29064 bytes) (Google Inc.) (28.5.2013 15:40:20) (--A-) (7a5fe62191a8e2a0e2f010aaf6f03629) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_da.dll (29576 bytes) (Google Inc.) (28.5.2013 15:40:20) (--A-) (1c7426eaa7bdae77cc7e3bb0f9e3a14f) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_de.dll (31624 bytes) (Google Inc.) (28.5.2013 15:40:20) (--A-) (b148b6313c497e8bd3b9dd6fdb39ac10) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_el.dll (31112 bytes) (Google Inc.) (28.5.2013 15:40:20) (--A-) (67fd8c305a738e7ea9ab3e155c964c40) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_en-GB.dll (28552 bytes) (Google Inc.) (28.5.2013 15:40:21) (--A-) (8c602d444d5643f551ce9ad65ebb605a) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_en.dll (28040 bytes) (Google Inc.) (28.5.2013 15:40:21) (--A-) (11afb3767663997e0ce911cd015599c9) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_es-419.dll (29576 bytes) (Google Inc.) (28.5.2013 15:40:21) (--A-) (c483cb78d29d233181c4d598f875a1bf) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_es.dll (31624 bytes) (Google Inc.) (28.5.2013 15:40:21) (--A-) (ba42ffe1cb12080a92824ed55d3eafa9) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_et.dll (28552 bytes) (Google Inc.) (28.5.2013 15:40:21) (--A-) (a07e4c0a3a05d44190ac25fb3c6cb65b) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_fa.dll (28040 bytes) (Google Inc.) (28.5.2013 15:40:22) (--A-) (1f3b47d4ee99fafebcfdf0ef99bf0840) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_fi.dll (29576 bytes) (Google Inc.) (28.5.2013 15:40:22) (--A-) (e1e4dedfdbec1fde219424c91dcd4d46) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_fil.dll (30600 bytes) (Google Inc.) (28.5.2013 15:40:22) (--A-) (f2b1d1fb1103977494f6d19aae8cc69d) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_fr.dll (31112 bytes) (Google Inc.) (28.5.2013 15:40:22) (--A-) (116e277ec09acf213d62445ae7a50eda) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_gu.dll (29064 bytes) (Google Inc.) (28.5.2013 15:40:23) (--A-) (72f76a295d076c68ebbff32474bfe7f2) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_hi.dll (29576 bytes) (Google Inc.) (28.5.2013 15:40:23) (--A-) (46173ecb5b9f6c84767a3e8d447225d6) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_hr.dll (30088 bytes) (Google Inc.) (28.5.2013 15:40:23) (--A-) (9db4eaacb9855199e4a73d0fac778524) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_hu.dll (30088 bytes) (Google Inc.) (28.5.2013 15:40:23) (--A-) (b19d72c2644e0eb177eaa80862b154ca) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_id.dll (28552 bytes) (Google Inc.) (28.5.2013 15:40:24) (--A-) (5d1416589d40580e1d17a59945f4f6ff) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_is.dll (29064 bytes) (Google Inc.) (28.5.2013 15:40:24) (--A-) (aa589e901eae7d61b2168b0cb79af7f0) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_it.dll (31112 bytes) (Google Inc.) (28.5.2013 15:40:24) (--A-) (a3f144453082103df53c4f8c63356198) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_iw.dll (26504 bytes) (Google Inc.) (28.5.2013 15:40:24) (--A-) (726837c8c731c852432e0131a36d6b03) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_ja.dll (24968 bytes) (Google Inc.) (28.5.2013 15:40:25) (--A-) (bf60dcccfea46a98d31ed6de9a278e41) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_kn.dll (30088 bytes) (Google Inc.) (28.5.2013 15:40:25) (--A-) (ad5d7302a3f97fe7c96bf95c6e09e995) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_ko.dll (23944 bytes) (Google Inc) (28.5.2013 15:40:25) (--A-) (a56762f5482e9dd69741fb2bbbbeb532) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_lt.dll (28552 bytes) („Google Inc.“) (28.5.2013 15:40:25) (--A-) (3a76c8eb41b49c819f30214168a50b6b) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_lv.dll (30600 bytes) (Google Inc.) (28.5.2013 15:40:26) (--A-) (bd964b57c8996236b66a64152267c138) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_ml.dll (32136 bytes) (Google Inc.) (28.5.2013 15:40:26) (--A-) (39f8448738bf139a6b1b12615ba5ca79) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_mr.dll (29064 bytes) (Google Inc.) (28.5.2013 15:40:26) (--A-) (b6a13d656eae36368f7c9f3858891882) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_ms.dll (28552 bytes) (Google Inc.) (28.5.2013 15:40:26) (--A-) (c9138b8521772d67eba4f92f458aa0f7) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_nl.dll (30600 bytes) (Google Inc.) (28.5.2013 15:40:27) (--A-) (c1539a3ca66e6f634130bda66a6af5de) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_no.dll (29576 bytes) (Google Inc.) (28.5.2013 15:40:27) (--A-) (a31bf7569a8ae5d7d82d11f672c83f53) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_pl.dll (30600 bytes) (Google Inc.) (28.5.2013 15:40:27) (--A-) (2950a0129c80705cd04b3c9557e0d4f0) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_pt-BR.dll (29576 bytes) (Google Inc.) (28.5.2013 15:40:27) (--A-) (ecfd7fdcc6f000bb55cb4effdc8cfcd5) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_pt-PT.dll (29576 bytes) (Google Inc.) (28.5.2013 15:40:27) (--A-) (6238a2e2d9f3d83e549265b2042b85ee) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_ro.dll (30088 bytes) (Google Inc.) (28.5.2013 15:40:28) (--A-) (247158b3f04e23798f54709408ee3275) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_ru.dll (29064 bytes) (Google Inc.) (28.5.2013 15:40:28) (--A-) (40722a0ae166f1dc5d1e2567c5cab149) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_sk.dll (30088 bytes) (Google Inc.) (28.5.2013 15:40:28) (--A-) (501890359f79d519b6d31aed5be8c124) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_sl.dll (30088 bytes) (Google Inc.) (28.5.2013 15:40:28) (--A-) (fbd461f7b26cbff59a9f8d173520976b) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_sr.dll (29576 bytes) (Google Inc.) (28.5.2013 15:40:28) (--A-) (710daea8e54cd0bbe9d466231deee41f) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_sv.dll (29576 bytes) (Google Inc.) (28.5.2013 15:40:29) (--A-) (4399d8b85219739b784142a59a42e018) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_sw.dll (29576 bytes) (Google Inc.) (28.5.2013 15:40:29) (--A-) (ac4c794732e5b274562cc76e6d40e9b6) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_ta.dll (30600 bytes) (Google Inc.) (28.5.2013 15:40:29) (--A-) (7c1910c467b6f3273362996ef04ff373) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_te.dll (29576 bytes) (Google Inc.) (28.5.2013 15:40:29) (--A-) (1fac9d1f79c2654375ba1194b42c6aa0) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_th.dll (28040 bytes) (Google Inc.) (28.5.2013 15:40:30) (--A-) (7a743f451a8cfc16fdcc11c9391906af) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_tr.dll (29576 bytes) (Google Inc.) (28.5.2013 15:40:30) (--A-) (da83d2dfc2c57a6586419fe07cddfb5c) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_uk.dll (29064 bytes) (Google Inc.) (28.5.2013 15:40:30) (--A-) (7d090eabd9baf82ac53e094b60775b1a) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_ur.dll (29064 bytes) (Google Inc.) (28.5.2013 15:40:31) (--A-) (100fbe92cfaa09385b92e68636e3c2d4) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_vi.dll (28552 bytes) (Google Inc.) (28.5.2013 15:40:31) (--A-) (ebbe535da49a609686a18e2e03993b41) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_zh-CN.dll (22408 bytes) (Google Inc.) (28.5.2013 15:40:31) (--A-) (c59006dc63a35412a4187a03f1904770) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_zh-TW.dll (22408 bytes) (Google Inc.) (28.5.2013 15:40:32) (--A-) (b3c4b4d4ea6fbc21dc5a737f54b7fea6) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (585608 bytes) (Google Inc.) (28.5.2013 15:40:35) (--A-) (3d928b3fe97c403a33f803b3d1a260c9) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\psmachine.dll (162184 bytes) (Google Inc.) (28.5.2013 15:40:34) (--A-) (4d5cc66e982273cf1029933fd5251697) (Created)
C:\Program Files (x86)\Google\Update\1.3.21.145\psuser.dll (162184 bytes) (Google Inc.) (28.5.2013 15:40:33) (--A-) (7b73b1a488615c4619ad89d339cffd67) (Created)
C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.21.145\GoogleUpdateSetup.exe (781592 bytes) (Google Inc.) (28.5.2013 15:40:15) (--A-) (c26bb2535c1b20deafaeb12634bf4dc9) (Created)
C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\27.0.1453.110\27.0.1453.110_27.0.1453.94_chrome_updater.exe (746848 bytes) (Unknown) (5.6.2013 21:45:15) (--A-) (1ea998de136184740b292fb9dcdd49ac) (Created)
C:\Program Files (x86)\NoVirusThanks\Hijack Hunter\HijackHunter.exe (628736 bytes) (NoVirusThanks Company Srl) (6.6.2013 12:12:19) (--A-) (b6ffa83b91d78a0369fe0e15e4dba69c) (Created)
C:\Program Files (x86)\NoVirusThanks\Hijack Hunter\nhdrv.sys (4608 bytes) (NoVirusThanks Company Srl) (6.6.2013 12:12:20) (--A-) (8f40312ac7b0f3d0246fe52105e4f1d7) (Created)
C:\Program Files (x86)\NoVirusThanks\Hijack Hunter\unins000.exe (709176 bytes) (Unknown) (6.6.2013 12:12:19) (--A-) (626b4f1832765b3280e2a4e7ceba87e9) (Created)
C:\ProgramData\rundll32.exe (44544 bytes) (Microsoft Corporation) (6.6.2013 11:26:32) (--A-) (51138beea3e2c21ec44d0932c71762a8) (Created)
C:\Users\Yardhik\AppData\Local\Temp\SASC14C.tmp (533888 bytes) (SUPERAdBlocker.com) (6.6.2013 12:02:03) (--A-) (cf3d048a7975936877d6717d7513553d) (Created)
C:\Users\Yardhik\AppData\Local\Temp\_iu14D2N.tmp (712264 bytes) (Unknown) (5.6.2013 21:38:09) (----) (f08325e9fce45e506b1b3921b8878f96) (Created)
C:\Users\Yardhik\AppData\Local\Temp\CProgram Files (x86)Opera\D3DCompiler_43.dll (2106216 bytes) (Microsoft Corporation) (5.6.2013 22:56:16) (--A-) (1c9b45e87528b8bb8cfa884ea0099a85) (Created)
C:\Users\Yardhik\AppData\Local\Temp\CProgram Files (x86)Opera\opera.exe (879456 bytes) (Opera Software) (5.6.2013 22:56:16) (--A-) (c5520feb7ad5f6e3692b6de41f6a1a27) (Created)
C:\Users\Yardhik\AppData\Local\Temp\CProgram Files (x86)Opera\OperaUpgrader.exe (879456 bytes) (Opera Software) (5.6.2013 22:56:13) (--A-) (2abd166ec31be154d8cbeec5d7f5714c) (Created)
C:\Users\Yardhik\AppData\Local\Temp\CProgram Files (x86)Opera\gstreamer\gstreamer.dll (835584 bytes) (Unknown) (5.6.2013 22:56:16) (--A-) (d7139e04b44274c71b3c1c5dbf3f5f52) (Created)
C:\Users\Yardhik\AppData\Local\Temp\CProgram Files (x86)Opera\gstreamer\plugins\gstaudioconvert.dll (93696 bytes) (Unknown) (5.6.2013 22:56:16) (--A-) (e39bae9f813632ac6b434d6bc01a1a6c) (Created)
C:\Users\Yardhik\AppData\Local\Temp\CProgram Files (x86)Opera\gstreamer\plugins\gstaudioresample.dll (94208 bytes) (Unknown) (5.6.2013 22:56:16) (--A-) (330922836b5424869db8597f48cfe1b3) (Created)
C:\Users\Yardhik\AppData\Local\Temp\CProgram Files (x86)Opera\gstreamer\plugins\gstautodetect.dll (57344 bytes) (Unknown) (5.6.2013 22:56:16) (--A-) (d48156b954d8e8974d35ca27628fa623) (Created)
C:\Users\Yardhik\AppData\Local\Temp\CProgram Files (x86)Opera\gstreamer\plugins\gstcoreplugins.dll (96256 bytes) (Unknown) (5.6.2013 22:56:16) (--A-) (4125c4d8d5f0db304b42d0f0aa9e9485) (Created)
C:\Users\Yardhik\AppData\Local\Temp\CProgram Files (x86)Opera\gstreamer\plugins\gstdecodebin2.dll (62976 bytes) (Unknown) (5.6.2013 22:56:16) (--A-) (4c938b92f6e389cc22bde03be140f43c) (Created)
C:\Users\Yardhik\AppData\Local\Temp\CProgram Files (x86)Opera\gstreamer\plugins\gstdirectsound.dll (67072 bytes) (Unknown) (5.6.2013 22:56:16) (--A-) (2880ff5daaba68431c9cf056786a10fb) (Created)
C:\Users\Yardhik\AppData\Local\Temp\CProgram Files (x86)Opera\gstreamer\plugins\gstffmpegcolorspace.dll (158208 bytes) (Unknown) (5.6.2013 22:56:16) (--A-) (747f73cd83367b287899ce3a41dd04f0) (Created)
C:\Users\Yardhik\AppData\Local\Temp\CProgram Files (x86)Opera\gstreamer\plugins\gstoggdec.dll (312832 bytes) (Unknown) (5.6.2013 22:56:16) (--A-) (50e5b61b4bde3cb0335801f57c7bae40) (Created)
C:\Users\Yardhik\AppData\Local\Temp\CProgram Files (x86)Opera\gstreamer\plugins\gstwaveform.dll (38912 bytes) (Unknown) (5.6.2013 22:56:16) (--A-) (f509e86efcba242200e4c2aff917d2fc) (Created)
C:\Users\Yardhik\AppData\Local\Temp\CProgram Files (x86)Opera\gstreamer\plugins\gstwavparse.dll (73728 bytes) (Unknown) (5.6.2013 22:56:16) (--A-) (c400199ce866c00a806b0eebb9e5326c) (Created)
C:\Users\Yardhik\AppData\Local\Temp\CProgram Files (x86)Opera\gstreamer\plugins\gstwebmdec.dll (101888 bytes) (Unknown) (5.6.2013 22:56:16) (--A-) (0acdd4ec0a2a2944eedbd83815226fe5) (Created)
C:\Users\Yardhik\AppData\Local\Temp\CProgram Files (x86)Opera\mapi\OperaMAPI.dll (201728 bytes) (Unknown) (5.6.2013 22:56:16) (--A-) (a49e249dc448e512b9bbd5582b913b63) (Created)
C:\Users\Yardhik\AppData\Local\Temp\CProgram Files (x86)Opera\updatechecker\opera_autoupdate.exe (1197920 bytes) (Unknown) (5.6.2013 22:56:16) (--A-) (cc6f7290660e692b952b56e876ecd143) (Created)
C:\Users\Yardhik\AppData\Local\Temp\~nsu.tmp\Au_.exe (111664 bytes) (GridinSoft LLC) (5.6.2013 21:56:04) (--A-) (f8429911c6b8c2c15183c30e57780172) (Created)

[+] Hidden files in suspicious folders


[+] Suspicious Registry Keys


[+] Suspicious folders


[+] Drivers

C:\Windows\system32\drivers\amdxata.sys (amdxata) (amdxata) (Advanced Micro Devices) (d41d8cd98f00b204e9800998ecf8427e)
C:\Windows\system32\drivers\avgfwd6a.sys (Avgfwfd) (AVG network filter service) (AVG Technologies CZ, s.r.o.) (d41d8cd98f00b204e9800998ecf8427e)
C:\Windows\system32\drivers\avgidsdrivera.sys (AVGIDSDriver) (AVGIDSDriver) (AVG Technologies CZ, s.r.o.) (d41d8cd98f00b204e9800998ecf8427e)
C:\Windows\system32\drivers\avgidsha.sys (AVGIDSHA) (AVGIDSHA) (AVG Technologies CZ, s.r.o.) (d41d8cd98f00b204e9800998ecf8427e)
C:\Windows\system32\drivers\avgldx64.sys (Avgldx64) (AVG AVI Loader Driver) (AVG Technologies CZ, s.r.o.) (d41d8cd98f00b204e9800998ecf8427e)
C:\Windows\system32\drivers\avgloga.sys (Avgloga) (AVG Logging Driver) (AVG Technologies CZ, s.r.o.) (d41d8cd98f00b204e9800998ecf8427e)
C:\Windows\system32\drivers\avgmfx64.sys (Avgmfx64) (AVG Mini-Filter Resident Anti-Virus Shield) (AVG Technologies CZ, s.r.o.) (d41d8cd98f00b204e9800998ecf8427e)
C:\Windows\system32\drivers\avgrkx64.sys (Avgrkx64) (AVG Anti-Rootkit Driver) (AVG Technologies CZ, s.r.o.) (d41d8cd98f00b204e9800998ecf8427e)
C:\Windows\system32\drivers\avgtdia.sys (Avgtdia) (AVG TDI Driver) (AVG Technologies CZ, s.r.o.) (d41d8cd98f00b204e9800998ecf8427e)
C:\Windows\system32\drivers\blbdrive.sys (blbdrive) (blbdrive) (Microsoft Corporation) (d41d8cd98f00b204e9800998ecf8427e)
C:\Windows\system32\drivers\nvlddmkm.sys (nvlddmkm) (nvlddmkm) (NVIDIA Corporation) (d41d8cd98f00b204e9800998ecf8427e)
C:\Windows\system32\drivers\rt64win7.sys (RTL8167) (Ovladač Realtek 8167 NT) (Realtek Corporation) (d41d8cd98f00b204e9800998ecf8427e)
C:\Windows\system32\drivers\sptd.sys (sptd) (sptd) (Unknown) (d41d8cd98f00b204e9800998ecf8427e)
C:\Windows\system32\drivers\vmstorfl.sys (storflt) (Diskový ovladač filtru akcelerace sběrnice virtuálního počítače) (Microsoft Corporation) (d41d8cd98f00b204e9800998ecf8427e)
C:\Windows\system32\drivers\swenum.sys (swenum) (Softwarový ovladač sběrnice) (Microsoft Corporation) (d41d8cd98f00b204e9800998ecf8427e)

[+] Drivers -> FSFilter Anti-Virus


[+] Services

c:\program files (x86)\avg\avg2013\avgfws.exe (avgfws) (AVG Firewall) (AVG Technologies CZ, s.r.o.) (d0be22c910e46550c6308d50dda76b94)
c:\program files (x86)\avg\avg2013\avgidsagent.exe (AVGIDSAgent) (AVGIDSAgent) (AVG Technologies CZ, s.r.o.) (4afc14afa58878faa1d249e7e90ea54b)
c:\program files (x86)\avg\avg2013\avgwdsvc.exe (avgwd) (AVG WatchDog) (AVG Technologies CZ, s.r.o.) (6b72e1e329c4e98c6b6fdd2d265e3ba3)
c:\windows\system32\nvvsvc.exe (nvsvc) (NVIDIA Display Driver Service) (NVIDIA Corporation) (d41d8cd98f00b204e9800998ecf8427e)
c:\program files (x86)\nvidia corporation\nvidia update core\daemonu.exe (nvUpdatusService) (NVIDIA Update Service Daemon) (NVIDIA Corporation) (b7c53da1c73ff39f4a6248643efd979a)
c:\program files (x86)\nvidia corporation\3d vision\nvscpapisvr.exe (Stereo Service) (NVIDIA Stereoscopic 3D Driver Service) (NVIDIA Corporation) (81f177c1954453af407604160bd149cb)

[+] ServiceDll


[+] Unknown files in Winsock LSP


[+] Unknown files in CLSID

C:\Windows\SysWoW64\nvcuvenc.dll (1995552 bytes) (NVIDIA Corporation) (2.4.2013 13:41:47) (--A-) (ebdf7c55db22b28a48aab5d97de4b5e4)
C:\Windows\SysWOW64\deployJava1.dll (782240 bytes) (Oracle Corporation) (2.4.2013 12:40:58) (--A-) (477d36327b9687846bedca9d3cc52ac5)

[+] TCP Connections

N/A -> 0.0.0.0:135 -> 0.0.0.0:0 -> LISTENING
N/A -> 0.0.0.0:445 -> 0.0.0.0:0 -> LISTENING
N/A -> 0.0.0.0:554 -> 0.0.0.0:0 -> LISTENING
N/A -> 0.0.0.0:2869 -> 0.0.0.0:0 -> LISTENING
N/A -> 0.0.0.0:5357 -> 0.0.0.0:0 -> LISTENING
N/A -> 0.0.0.0:10243 -> 0.0.0.0:0 -> LISTENING
N/A -> 0.0.0.0:49152 -> 0.0.0.0:0 -> LISTENING
N/A -> 0.0.0.0:49153 -> 0.0.0.0:0 -> LISTENING
N/A -> 0.0.0.0:49154 -> 0.0.0.0:0 -> LISTENING
N/A -> 0.0.0.0:49155 -> 0.0.0.0:0 -> LISTENING
N/A -> 0.0.0.0:49157 -> 0.0.0.0:0 -> LISTENING
N/A -> 0.0.0.0:49162 -> 0.0.0.0:0 -> LISTENING
N/A -> 89.102.65.124:139 -> 0.0.0.0:0 -> LISTENING
HijackHunter.exe -> 89.102.65.124:49555 -> 5.135.242.191:80 -> CLOSE_WAIT
opera.exe -> 89.102.65.124:49559 -> 173.194.44.238:443 -> ESTABLISHED
opera.exe -> 89.102.65.124:49570 -> 173.194.44.238:443 -> ESTABLISHED
opera.exe -> 89.102.65.124:49622 -> 173.194.44.228:80 -> ESTABLISHED
opera.exe -> 89.102.65.124:49628 -> 173.194.35.77:80 -> ESTABLISHED
daemonu.exe -> 127.0.0.1:2559 -> 0.0.0.0:0 -> LISTENING

[+] UDP Connections

N/A -> 0.0.0.0:500 -> *.*
N/A -> 0.0.0.0:3702 -> *.*
N/A -> 0.0.0.0:3702 -> *.*
N/A -> 0.0.0.0:3702 -> *.*
N/A -> 0.0.0.0:3702 -> *.*
N/A -> 0.0.0.0:4500 -> *.*
N/A -> 0.0.0.0:5004 -> *.*
N/A -> 0.0.0.0:5005 -> *.*
N/A -> 0.0.0.0:5355 -> *.*
N/A -> 0.0.0.0:54861 -> *.*
N/A -> 0.0.0.0:54867 -> *.*
N/A -> 0.0.0.0:54869 -> *.*
N/A -> 89.102.65.124:137 -> *.*
N/A -> 89.102.65.124:138 -> *.*
N/A -> 89.102.65.124:1900 -> *.*
N/A -> 89.102.65.124:54865 -> *.*
N/A -> 127.0.0.1:1900 -> *.*
daemonu.exe -> 127.0.0.1:48000 -> *.*
N/A -> 127.0.0.1:48001 -> *.*
N/A -> 127.0.0.1:54866 -> *.*

[+] Hosts file


[+] Ring3 API Hooks

x64 OS not supported!

[+] Kernel Mode Info

x64 OS not supported!

---
Finish [ 0:5:6 ] LISTENING
N/A -

[Reklama]

[memphisto]

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
- Pokud používáš Firefox, klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Chrome, nic dalšího nevybírej a dej Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(ZATÍM SÁM NIC NEMAŽ!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner

Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

[yardhik]

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2013.06.06.02

Windows 7 x64 NTFS
Internet Explorer 8.0.7600.16385
Yardhik :: YARDHIK-PC [administrátor]

Ochrana: Zakázána

6.6.2013 13:33:31
MBAM-log-2013-06-06 (13-37-07).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 258944
Uplynulý čas: 2 minut, 29 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 2
C:\ProgramData\rundll32.exe (Trojan.Agent.Gen) -> Nebyla provedena žádná instrukce.
C:\Users\Yardhik\Desktop\rundll32.exe (Heuristics.Reserved.Word.Exploit) -> Nebyla provedena žádná instrukce.

(konec)

[yardhik]

# AdwCleaner v2.301 - Log vytvooen 06/06/2013 v 13:40:08
# Aktualizováno 16/05/2013 Xplode
# Operaení systém : Windows 7 Ultimate (64 bits)
# Uživatel : Yardhik - YARDHIK-PC
# Spuštin systém : Normální
# Spuštino z : C:\Users\Yardhik\Desktop\adwcleaner.exe
# Volba [Prohledat]


***** [Služby] *****


***** [Soubory / Složky] *****


***** [Registry] *****

Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Klíe Nalezeno : HKU\S-1-5-21-2737410092-747236484-638647494-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}

***** [Internetové prohlížeee] *****

-\\ Internet Explorer v8.0.7600.16385

[OK] Registry jsou eisté.

-\\ Google Chrome v27.0.1453.110

Soubor : C:\Users\Yardhik\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Soubor je eistý.

Soubor : C:\Users\Miruška\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Soubor je eistý.

-\\ Opera v12.14.1738.0

Soubor : C:\Users\Yardhik\AppData\Roaming\Opera\Opera\operaprefs.ini

[OK] Soubor je eistý.

Soubor : C:\Users\Miruška\AppData\Roaming\Opera\Opera\operaprefs.ini

[OK] Soubor je eistý.

*************************

AdwCleaner[R1].txt - [1267 octets] - [06/06/2013 13:40:08]

########## EOF - C:\AdwCleaner[R1].txt - [1327 octets] ##########

[memphisto]

V adw i Mbam nech vše smazat a dodej logy po mazání

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
- Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

[yardhik]

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2013.06.06.02

Windows 7 x64 NTFS
Internet Explorer 8.0.7600.16385
Yardhik :: YARDHIK-PC [administrátor]

Ochrana: Zakázána

6.6.2013 13:55:00
mbam-log-2013-06-06 (13-55-00).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 258758
Uplynulý čas: 2 minut, 53 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)







# AdwCleaner v2.301 - Log vytvooen 06/06/2013 v 13:48:32
# Aktualizováno 16/05/2013 Xplode
# Operaení systém : Windows 7 Ultimate (64 bits)
# Uživatel : Yardhik - YARDHIK-PC
# Spuštin systém : Normální
# Spuštino z : C:\Users\Yardhik\Desktop\adwcleaner.exe
# Volba [Prohledat]


***** [Služby] *****


***** [Soubory / Složky] *****


***** [Registry] *****


***** [Internetové prohlížeee] *****

-\\ Internet Explorer v8.0.7600.16385

[OK] Registry jsou eisté.

-\\ Google Chrome v27.0.1453.110

Soubor : C:\Users\Yardhik\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Soubor je eistý.

Soubor : C:\Users\Miruška\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Soubor je eistý.

-\\ Opera v12.14.1738.0

Soubor : C:\Users\Yardhik\AppData\Roaming\Opera\Opera\operaprefs.ini

[OK] Soubor je eistý.

Soubor : C:\Users\Miruška\AppData\Roaming\Opera\Opera\operaprefs.ini

[OK] Soubor je eistý.

*************************

AdwCleaner[R1].txt - [1394 octets] - [06/06/2013 13:40:08]
AdwCleaner[R2].txt - [1454 octets] - [06/06/2013 13:44:11]
AdwCleaner[R3].txt - [1119 octets] - [06/06/2013 13:48:32]
AdwCleaner[S1].txt - [1357 octets] - [06/06/2013 13:44:22]

########## EOF - C:\AdwCleaner[R3].txt - [1239 octets] ##########

[yardhik]

RogueKiller V8.5.4 _x64_ [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7600 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : Yardhik [Práva správce]
Mód : Kontrola -- Datum : 06/06/2013 14:04:08
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 3 ¤¤¤
[STARTUP][BLACKLISTDLL] regmonstd.lnk @Yardhik : C:\Windows\System32\rundll32.exe|C:\PROGRA~3\29fdo.dat,XFG00 -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts



¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: SAMSUNG HD502IJ ATA Device +++++
--- User ---
[MBR] d148572f0fddc7989e0426e577f9c813
[BSP] 090fa5c04fae2c8ed45787d2bb3f8ff4 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 60000 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 122881185 | Size: 199996 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 532474425 | Size: 216940 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: ST320011A ATA Device +++++
--- User ---
[MBR] 00da29e39d1fe2fae1e684603a8e7415
[BSP] 976519c0405b01ef75b60a401cfd7fa8 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 19089 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[1]_S_06062013_02d1404.txt >>
RKreport[1]_S_06062013_02d1404.txt

[memphisto]

Zavři všechny programy a prohlížeče.
Odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller (Pro Windows Vista nebo WIN7 klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status box zobrazuje "Scan" "
- Klikni na "Delete"
- Počkej, dokud status box zobrazuje "Smazání - Finished"
- Klikni na "Zprávy", zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [1].txt na ploše.
- Zavři RogueKiller


Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je označen pro odstranění, stačí restartovat počítač.

[yardhik]

RogueKiller V8.5.4 _x64_ [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7600 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : Yardhik [Práva správce]
Mód : Odebrat -- Datum : 06/06/2013 14:46:10
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 3 ¤¤¤
[STARTUP][BLACKLISTDLL] regmonstd.lnk @Yardhik : C:\Windows\System32\rundll32.exe|C:\PROGRA~3\29fdo.dat,XFG00 -> VYMAZÁNO
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts



¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: SAMSUNG HD502IJ ATA Device +++++
--- User ---
[MBR] d148572f0fddc7989e0426e577f9c813
[BSP] 090fa5c04fae2c8ed45787d2bb3f8ff4 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 60000 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 122881185 | Size: 199996 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 532474425 | Size: 216940 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: ST320011A ATA Device +++++
--- User ---
[MBR] 00da29e39d1fe2fae1e684603a8e7415
[BSP] 976519c0405b01ef75b60a401cfd7fa8 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 19089 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive2: Generic USB SD Reader USB Device +++++
Error reading User MBR!
User = LL1 ... OK!
Error reading LL2 MBR!

+++++ PhysicalDrive3: Generic USB CF Reader USB Device +++++
Error reading User MBR!
User = LL1 ... OK!
Error reading LL2 MBR!

+++++ PhysicalDrive4: Generic USB SM Reader USB Device +++++
Error reading User MBR!
User = LL1 ... OK!
Error reading LL2 MBR!

Dokončeno : << RKreport[2]_D_06062013_02d1446.txt >>
RKreport[1]_S_06062013_02d1404.txt ; RKreport[2]_D_06062013_02d1446.txt

[yardhik]

ComboFix 13-06-05.05 - Yardhik 06.06.2013 14:51:29.1.2 - x64
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.4094.3055 [GMT 2:00]
Spuštěný z: c:\users\Yardhik\Desktop\ComboFix.exe
AV: AVG Internet Security 2013 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
FW: AVG Internet Security 2013 *Enabled* {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}
SP: AVG Internet Security 2013 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\odf92.bat
c:\programdata\odf92.pad
c:\windows\PFRO.log
D:\install.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-05-06 do 2013-06-06 )))))))))))))))))))))))))))))))
.
.
2013-06-06 12:58 . 2013-06-06 12:58 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-06-06 12:58 . 2013-06-06 12:58 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-06-06 11:31 . 2013-06-06 11:31 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-06-06 11:31 . 2013-04-04 12:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-06-06 10:12 . 2013-06-06 10:12 -------- d-----w- c:\program files (x86)\NoVirusThanks
2013-06-06 10:03 . 2012-06-02 22:19 2428952 ----a-w- c:\windows\system32\wuaueng.dll
2013-06-06 10:03 . 2012-06-02 22:19 57880 ----a-w- c:\windows\system32\wuauclt.exe
2013-06-06 10:03 . 2012-06-02 22:19 44056 ----a-w- c:\windows\system32\wups2.dll
2013-06-06 10:03 . 2012-06-02 22:15 2622464 ----a-w- c:\windows\system32\wucltux.dll
2013-06-06 10:03 . 2012-06-02 22:19 38424 ----a-w- c:\windows\system32\wups.dll
2013-06-06 10:03 . 2012-06-02 22:19 701976 ----a-w- c:\windows\system32\wuapi.dll
2013-06-06 10:03 . 2012-06-02 22:15 99840 ----a-w- c:\windows\system32\wudriver.dll
2013-06-06 10:03 . 2012-06-02 13:19 186752 ----a-w- c:\windows\system32\wuwebv.dll
2013-06-06 10:03 . 2012-06-02 13:15 36864 ----a-w- c:\windows\system32\wuapp.exe
2013-06-05 20:26 . 2013-06-06 09:52 -------- d-----w- c:\users\Yardhik\AppData\Local\Diagnostics
2013-06-05 19:52 . 2008-10-15 04:22 519000 ----a-w- c:\windows\system32\d3dx10_40.dll
2013-06-05 19:52 . 2008-10-15 04:22 452440 ----a-w- c:\windows\SysWow64\d3dx10_40.dll
2013-06-05 19:52 . 2008-10-15 04:22 2605920 ----a-w- c:\windows\system32\D3DCompiler_40.dll
2013-06-05 19:52 . 2008-10-15 04:22 2036576 ----a-w- c:\windows\SysWow64\D3DCompiler_40.dll
2013-06-05 19:52 . 2008-10-15 04:22 5631312 ----a-w- c:\windows\system32\D3DX9_40.dll
2013-06-05 19:52 . 2008-10-15 04:22 4379984 ----a-w- c:\windows\SysWow64\D3DX9_40.dll
2013-05-28 12:22 . 2013-05-28 12:24 -------- d-----w- c:\users\Miruška
2013-05-28 11:52 . 2013-05-28 11:53 -------- d-----w- c:\users\Yardhik\AppData\Local\Google
2013-05-28 11:52 . 2013-05-28 11:53 -------- d-----w- c:\program files (x86)\Google
2013-05-28 11:10 . 2013-05-28 11:10 -------- d-----w- c:\users\Yardhik\AppData\Roaming\Malwarebytes
2013-05-28 11:10 . 2013-05-28 11:10 -------- d-----w- c:\programdata\Malwarebytes
2013-05-28 10:01 . 2013-06-05 19:56 -------- d-----w- c:\program files (x86)\GridinSoft Trojan Killer
2013-05-28 09:40 . 2013-05-28 09:40 151 ----a-w- c:\programdata\odf92.reg
2013-05-20 14:18 . 2013-05-20 14:18 971680 ----a-w- c:\windows\system32\deployJava1.dll
2013-05-20 14:18 . 2013-05-20 14:18 311200 ----a-w- c:\windows\system32\javaws.exe
2013-05-20 14:18 . 2013-05-20 14:18 1092512 ----a-w- c:\windows\system32\npDeployJava1.dll
2013-05-20 14:18 . 2013-05-20 14:18 188832 ----a-w- c:\windows\system32\javaw.exe
2013-05-20 14:18 . 2013-05-20 14:18 188320 ----a-w- c:\windows\system32\java.exe
2013-05-20 14:18 . 2013-05-20 14:18 108448 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2013-05-20 14:18 . 2013-05-20 14:18 -------- d-----w- c:\program files\Java
2013-05-15 21:12 . 2013-05-15 21:12 -------- d-----w- c:\programdata\RELOADED
2013-05-15 20:55 . 2013-05-15 20:55 -------- d-----w- c:\users\Yardhik\AppData\Local\Programs
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-15 19:07 . 2013-04-02 10:13 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-05-15 19:07 . 2013-04-02 10:13 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-04-02 10:40 . 2013-04-02 10:40 861088 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-04-02 10:40 . 2013-04-02 10:40 782240 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-04-02 10:40 . 2013-04-02 10:40 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-03-15 05:53 . 2013-04-02 11:42 61216 ----a-w- c:\windows\system32\OpenCL.dll
2013-03-15 05:53 . 2013-04-02 11:42 53024 ----a-w- c:\windows\SysWow64\OpenCL.dll
2013-03-15 05:53 . 2013-04-02 11:41 9414456 ----a-w- c:\windows\system32\nvcuda.dll
2013-03-15 05:53 . 2013-04-02 11:41 7959000 ----a-w- c:\windows\SysWow64\nvcuda.dll
2013-03-15 05:53 . 2013-04-02 11:41 7573816 ----a-w- c:\windows\system32\nvopencl.dll
2013-03-15 05:53 . 2013-04-02 11:41 6271872 ----a-w- c:\windows\SysWow64\nvopencl.dll
2013-03-15 05:53 . 2013-04-02 11:41 2913056 ----a-w- c:\windows\system32\nvcuvid.dll
2013-03-15 05:53 . 2013-04-02 11:41 2728736 ----a-w- c:\windows\SysWow64\nvcuvid.dll
2013-03-15 05:53 . 2013-04-02 11:41 26956576 ----a-w- c:\windows\system32\nvoglv64.dll
2013-03-15 05:53 . 2013-04-02 11:41 2355488 ----a-w- c:\windows\system32\nvcuvenc.dll
2013-03-15 05:53 . 2013-04-02 11:41 20542752 ----a-w- c:\windows\SysWow64\nvoglv32.dll
2013-03-15 05:53 . 2013-04-02 11:41 1995552 ----a-w- c:\windows\SysWow64\nvcuvenc.dll
2013-03-15 05:53 . 2013-04-02 11:41 1807136 ----a-w- c:\windows\system32\nvdispco6431422.dll
2013-03-15 05:53 . 2013-04-02 11:41 17990800 ----a-w- c:\windows\system32\nvd3dumx.dll
2013-03-15 05:53 . 2013-04-02 11:41 1510176 ----a-w- c:\windows\system32\nvdispgenco6431422.dll
2013-03-15 05:53 . 2013-04-02 11:41 13088000 ----a-w- c:\windows\SysWow64\nvwgf2um.dll
2013-03-15 05:53 . 2013-04-02 11:41 11048736 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2013-03-15 05:53 . 2013-04-02 11:41 2864144 ----a-w- c:\windows\system32\nvapi64.dll
2013-03-15 05:53 . 2013-04-02 11:41 2539128 ----a-w- c:\windows\SysWow64\nvapi.dll
2013-03-15 05:53 . 2013-04-02 11:41 25256736 ----a-w- c:\windows\system32\nvcompiler.dll
2013-03-15 05:53 . 2013-04-02 11:41 17560352 ----a-w- c:\windows\SysWow64\nvcompiler.dll
2013-03-15 05:53 . 2009-07-13 21:59 15508512 ----a-w- c:\windows\system32\nvwgf2umx.dll
2013-03-15 05:53 . 2009-06-10 20:37 15042928 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2013-03-15 04:16 . 2013-04-02 11:42 3477280 ----a-w- c:\windows\system32\nvsvc64.dll
2013-03-15 04:16 . 2013-04-02 11:42 6398240 ----a-w- c:\windows\system32\nvcpl.dll
2013-03-15 04:16 . 2013-04-02 11:42 877856 ----a-w- c:\windows\system32\nvvsvc.exe
2013-03-15 04:16 . 2013-04-02 11:42 63776 ----a-w- c:\windows\system32\nvshext.dll
2013-03-15 04:16 . 2013-04-02 11:42 2555680 ----a-w- c:\windows\system32\nvsvcr.dll
2013-03-15 04:16 . 2013-04-02 11:42 237856 ----a-w- c:\windows\system32\nvmctray.dll
2013-03-14 20:07 . 2013-03-14 20:07 559904 ----a-w- c:\windows\SysWow64\nvStreaming.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AVG_UI"="c:\program files (x86)\AVG\AVG2013\avgui.exe" [2012-12-11 3147384]
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
.
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsha.sys [x]
S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys;c:\windows\SYSNATIVE\DRIVERS\avgloga.sys [x]
S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgmfx64.sys [x]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgrkx64.sys [x]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys;c:\windows\SYSNATIVE\Drivers\sptd.sys [x]
S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6a.sys;c:\windows\SYSNATIVE\DRIVERS\avgfwd6a.sys [x]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsdrivera.sys [x]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgldx64.sys [x]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys;c:\windows\SYSNATIVE\DRIVERS\avgtdia.sys [x]
S2 avgfws;AVG Firewall;c:\program files (x86)\AVG\AVG2013\avgfws.exe;c:\program files (x86)\AVG\AVG2013\avgfws.exe [x]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe [x]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 RTL8167;Ovladač Realtek 8167 NT;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-06-05 19:45 1165776 ----a-w- c:\program files (x86)\Google\Chrome\Application\27.0.1453.110\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-06-06 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-04-02 19:07]
.
2013-06-06 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-05-28 11:52]
.
2013-06-06 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-05-28 11:52]
.
.
--------- X64 Entries -----------
.
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
Trusted Zone: mojebanka.cz\www
TCP: DhcpNameServer = 213.46.172.36 213.46.172.37
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-{1EAC1D02-C6AC-4FA6-9A44-96258C37C812}_is1 - d:\hry\World_of_Tanks1\unins000.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2013-06-06 15:08:20
ComboFix-quarantined-files.txt 2013-06-06 13:08
.
Před spuštěním: Volných bajtů: 17 286 160 384
Po spuštění: Volných bajtů: 17 158 672 384
.
- - End Of File - - DB44F3AC1A4B26004562A099588E160A

[jaro3]

+
Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.

Vlož log z HJT:
viewtopic.php?f=70&t=5119

c:\programdata\odf92.reg---to si tam dával sám?

[yardhik]

Nic jsem tam nedával.Aspoň o tom nevím.

15:17:19.0643 3448 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
15:17:20.0243 3448 ============================================================
15:17:20.0243 3448 Current date / time: 2013/06/06 15:17:20.0243
15:17:20.0243 3448 SystemInfo:
15:17:20.0243 3448
15:17:20.0243 3448 OS Version: 6.1.7600 ServicePack: 0.0
15:17:20.0243 3448 Product type: Workstation
15:17:20.0243 3448 ComputerName: YARDHIK-PC
15:17:20.0259 3448 UserName: Yardhik
15:17:20.0259 3448 Windows directory: C:\Windows
15:17:20.0259 3448 System windows directory: C:\Windows
15:17:20.0259 3448 Running under WOW64
15:17:20.0259 3448 Processor architecture: Intel x64
15:17:20.0259 3448 Number of processors: 2
15:17:20.0259 3448 Page size: 0x1000
15:17:20.0259 3448 Boot type: Normal boot
15:17:20.0259 3448 ============================================================
15:17:21.0115 3448 Drive \Device\Harddisk0\DR0 - Size: 0x7470AFDE00 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:17:21.0130 3448 Drive \Device\Harddisk1\DR1 - Size: 0x4A93E7E00 (18.64 Gb), SectorSize: 0x200, Cylinders: 0xA19, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
15:17:21.0146 3448 ============================================================
15:17:21.0146 3448 \Device\Harddisk0\DR0:
15:17:21.0146 3448 MBR partitions:
15:17:21.0146 3448 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x7530462
15:17:21.0146 3448 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x75304A1, BlocksNum 0x1869E598
15:17:21.0146 3448 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1FBCEA39, BlocksNum 0x1A7B6208
15:17:21.0146 3448 \Device\Harddisk1\DR1:
15:17:21.0146 3448 MBR partitions:
15:17:21.0146 3448 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2548800
15:17:21.0146 3448 ============================================================
15:17:21.0161 3448 C: <-> \Device\Harddisk0\DR0\Partition1
15:17:21.0177 3448 F: <-> \Device\Harddisk0\DR0\Partition3
15:17:21.0211 3448 S: <-> \Device\Harddisk1\DR1\Partition1
15:17:21.0258 3448 D: <-> \Device\Harddisk0\DR0\Partition2
15:17:21.0258 3448 ============================================================
15:17:21.0258 3448 Initialize success
15:17:21.0258 3448 ============================================================
15:17:39.0757 0852 ============================================================
15:17:39.0757 0852 Scan started
15:17:39.0757 0852 Mode: Manual;
15:17:39.0757 0852 ============================================================
15:17:40.0740 0852 ================ Scan system memory ========================
15:17:40.0740 0852 System memory - ok
15:17:40.0740 0852 ================ Scan services =============================
15:17:40.0880 0852 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
15:17:40.0880 0852 1394ohci - ok
15:17:40.0896 0852 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
15:17:40.0911 0852 ACPI - ok
15:17:40.0927 0852 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
15:17:40.0927 0852 AcpiPmi - ok
15:17:41.0036 0852 [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:17:41.0052 0852 AdobeFlashPlayerUpdateSvc - ok
15:17:41.0083 0852 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
15:17:41.0099 0852 adp94xx - ok
15:17:41.0114 0852 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
15:17:41.0114 0852 adpahci - ok
15:17:41.0114 0852 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
15:17:41.0114 0852 adpu320 - ok
15:17:41.0161 0852 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:17:41.0161 0852 AeLookupSvc - ok
15:17:41.0192 0852 [ B9384E03479D2506BC924C16A3DB87BC ] AFD C:\Windows\system32\drivers\afd.sys
15:17:41.0192 0852 AFD - ok
15:17:41.0208 0852 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
15:17:41.0208 0852 agp440 - ok
15:17:41.0223 0852 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
15:17:41.0223 0852 ALG - ok
15:17:41.0239 0852 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
15:17:41.0239 0852 aliide - ok
15:17:41.0239 0852 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
15:17:41.0239 0852 amdide - ok
15:17:41.0270 0852 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
15:17:41.0270 0852 AmdK8 - ok
15:17:41.0286 0852 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
15:17:41.0286 0852 AmdPPM - ok
15:17:41.0286 0852 [ 7A4B413614C055935567CF88A9734D38 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
15:17:41.0301 0852 amdsata - ok
15:17:41.0301 0852 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
15:17:41.0301 0852 amdsbs - ok
15:17:41.0317 0852 [ B4AD0CACBAB298671DD6F6EF7E20679D ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
15:17:41.0317 0852 amdxata - ok
15:17:41.0333 0852 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
15:17:41.0333 0852 AppID - ok
15:17:41.0364 0852 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:17:41.0364 0852 AppIDSvc - ok
15:17:41.0379 0852 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
15:17:41.0379 0852 Appinfo - ok
15:17:41.0411 0852 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
15:17:41.0411 0852 AppMgmt - ok
15:17:41.0426 0852 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
15:17:41.0426 0852 arc - ok
15:17:41.0426 0852 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
15:17:41.0426 0852 arcsas - ok
15:17:41.0457 0852 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:17:41.0457 0852 AsyncMac - ok
15:17:41.0473 0852 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
15:17:41.0473 0852 atapi - ok
15:17:41.0504 0852 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:17:41.0520 0852 AudioEndpointBuilder - ok
15:17:41.0551 0852 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
15:17:41.0551 0852 AudioSrv - ok
15:17:41.0598 0852 [ 3D1FFAA3358CA0D8A298DEA8BECFC468 ] Avgfwfd C:\Windows\system32\DRIVERS\avgfwd6a.sys
15:17:41.0598 0852 Avgfwfd - ok
15:17:41.0691 0852 [ D0BE22C910E46550C6308D50DDA76B94 ] avgfws C:\Program Files (x86)\AVG\AVG2013\avgfws.exe
15:17:41.0691 0852 avgfws - ok
15:17:41.0816 0852 [ 4AFC14AFA58878FAA1D249E7E90EA54B ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
15:17:41.0847 0852 AVGIDSAgent - ok
15:17:41.0863 0852 [ 388056EBD5FE6718FE669078DBE37897 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
15:17:41.0863 0852 AVGIDSDriver - ok
15:17:41.0879 0852 [ 550E981747D6A6C55078C77346FFC2C6 ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
15:17:41.0879 0852 AVGIDSHA - ok
15:17:41.0894 0852 [ 5989592A91A17587799792A81E1541D4 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
15:17:41.0894 0852 Avgldx64 - ok
15:17:41.0910 0852 [ 3FC43AA02545FCDDC22817829114DEC8 ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys
15:17:41.0910 0852 Avgloga - ok
15:17:41.0925 0852 [ 841C40C193889730848849AC220D9242 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
15:17:41.0925 0852 Avgmfx64 - ok
15:17:41.0957 0852 [ FE4F444DBE4BBBDFD8FECF49398DEFC7 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
15:17:41.0957 0852 Avgrkx64 - ok
15:17:41.0972 0852 [ 6E634525613D48A1D1657FB21F21F3B2 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
15:17:41.0972 0852 Avgtdia - ok
15:17:41.0988 0852 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
15:17:41.0988 0852 avgwd - ok
15:17:42.0019 0852 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:17:42.0019 0852 AxInstSV - ok
15:17:42.0050 0852 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
15:17:42.0066 0852 b06bdrv - ok
15:17:42.0097 0852 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
15:17:42.0097 0852 b57nd60a - ok
15:17:42.0144 0852 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
15:17:42.0144 0852 BDESVC - ok
15:17:42.0159 0852 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
15:17:42.0175 0852 Beep - ok
15:17:42.0222 0852 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
15:17:42.0237 0852 BFE - ok
15:17:42.0284 0852 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\system32\qmgr.dll
15:17:42.0300 0852 BITS - ok
15:17:42.0315 0852 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
15:17:42.0331 0852 blbdrive - ok
15:17:42.0347 0852 [ 91CE0D3DC57DD377E690A2D324022B08 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:17:42.0347 0852 bowser - ok
15:17:42.0362 0852 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:17:42.0378 0852 BrFiltLo - ok
15:17:42.0393 0852 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:17:42.0393 0852 BrFiltUp - ok
15:17:42.0409 0852 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
15:17:42.0409 0852 BridgeMP - ok
15:17:42.0425 0852 [ 94FBC06F294D58D02361918418F996E3 ] Browser C:\Windows\System32\browser.dll
15:17:42.0440 0852 Browser - ok
15:17:42.0456 0852 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
15:17:42.0456 0852 Brserid - ok
15:17:42.0471 0852 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
15:17:42.0487 0852 BrSerWdm - ok
15:17:42.0503 0852 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
15:17:42.0503 0852 BrUsbMdm - ok
15:17:42.0518 0852 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
15:17:42.0518 0852 BrUsbSer - ok
15:17:42.0534 0852 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
15:17:42.0549 0852 BTHMODEM - ok
15:17:42.0565 0852 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
15:17:42.0565 0852 bthserv - ok
15:17:42.0581 0852 catchme - ok
15:17:42.0596 0852 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:17:42.0596 0852 cdfs - ok
15:17:42.0627 0852 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:17:42.0627 0852 cdrom - ok
15:17:42.0643 0852 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
15:17:42.0643 0852 CertPropSvc - ok
15:17:42.0659 0852 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
15:17:42.0659 0852 circlass - ok
15:17:42.0690 0852 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
15:17:42.0690 0852 CLFS - ok
15:17:42.0768 0852 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:17:42.0768 0852 clr_optimization_v2.0.50727_32 - ok
15:17:42.0830 0852 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:17:42.0830 0852 clr_optimization_v2.0.50727_64 - ok
15:17:42.0846 0852 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
15:17:42.0846 0852 CmBatt - ok
15:17:42.0861 0852 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
15:17:42.0861 0852 cmdide - ok
15:17:42.0877 0852 [ F95FD4CB7DA00BA2A63CE9F6B5C053E1 ] CNG C:\Windows\system32\Drivers\cng.sys
15:17:42.0893 0852 CNG - ok
15:17:42.0893 0852 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
15:17:42.0893 0852 Compbatt - ok
15:17:42.0908 0852 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
15:17:42.0908 0852 CompositeBus - ok
15:17:42.0924 0852 COMSysApp - ok
15:17:42.0939 0852 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
15:17:42.0939 0852 crcdisk - ok
15:17:42.0955 0852 [ 8C57411B66282C01533CB776F98AD384 ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:17:42.0955 0852 CryptSvc - ok
15:17:42.0986 0852 [ 4A6173C2279B498CD8F57CAE504564CB ] CSC C:\Windows\system32\drivers\csc.sys
15:17:43.0002 0852 CSC - ok
15:17:43.0017 0852 [ 873FBF927C06E5CEE04DEC617502F8FD ] CscService C:\Windows\System32\cscsvc.dll
15:17:43.0017 0852 CscService - ok
15:17:43.0064 0852 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:17:43.0080 0852 DcomLaunch - ok
15:17:43.0111 0852 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
15:17:43.0127 0852 defragsvc - ok
15:17:43.0142 0852 [ 3F1DC527070ACB87E40AFE46EF6DA749 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:17:43.0142 0852 DfsC - ok
15:17:43.0173 0852 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
15:17:43.0173 0852 Dhcp - ok
15:17:43.0205 0852 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
15:17:43.0205 0852 discache - ok
15:17:43.0236 0852 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
15:17:43.0236 0852 Disk - ok
15:17:43.0251 0852 [ 676108C4E3AA6F6B34633748BD0BEBD9 ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:17:43.0267 0852 Dnscache - ok
15:17:43.0283 0852 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
15:17:43.0283 0852 dot3svc - ok
15:17:43.0314 0852 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
15:17:43.0314 0852 DPS - ok
15:17:43.0345 0852 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:17:43.0345 0852 drmkaud - ok
15:17:43.0376 0852 [ 7CB7D2B73813CE05C7BC0F5F95D27CEC ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:17:43.0392 0852 DXGKrnl - ok
15:17:43.0407 0852 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
15:17:43.0407 0852 EapHost - ok
15:17:43.0501 0852 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
15:17:43.0548 0852 ebdrv - ok
15:17:43.0563 0852 [ 0793F40B9B8A1BDD266296409DBD91EA ] EFS C:\Windows\System32\lsass.exe
15:17:43.0563 0852 EFS - ok
15:17:43.0610 0852 [ B91D81B3B54A54CCAFC03733DBC2E29E ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:17:43.0626 0852 ehRecvr - ok
15:17:43.0641 0852 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
15:17:43.0641 0852 ehSched - ok
15:17:43.0657 0852 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
15:17:43.0657 0852 elxstor - ok
15:17:43.0673 0852 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
15:17:43.0673 0852 ErrDev - ok
15:17:43.0704 0852 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
15:17:43.0704 0852 EventSystem - ok
15:17:43.0719 0852 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
15:17:43.0735 0852 exfat - ok
15:17:43.0751 0852 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:17:43.0751 0852 fastfat - ok
15:17:43.0782 0852 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
15:17:43.0797 0852 Fax - ok
15:17:43.0813 0852 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
15:17:43.0813 0852 fdc - ok
15:17:43.0829 0852 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
15:17:43.0829 0852 fdPHost - ok
15:17:43.0844 0852 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
15:17:43.0860 0852 FDResPub - ok
15:17:43.0860 0852 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:17:43.0860 0852 FileInfo - ok
15:17:43.0875 0852 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:17:43.0875 0852 Filetrace - ok
15:17:43.0891 0852 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
15:17:43.0891 0852 flpydisk - ok
15:17:43.0907 0852 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:17:43.0907 0852 FltMgr - ok
15:17:43.0938 0852 [ 8AC4CB4EA61E41009FAE9AE7B2B5DA3A ] FontCache C:\Windows\system32\FntCache.dll
15:17:43.0953 0852 FontCache - ok
15:17:44.0016 0852 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:17:44.0016 0852 FontCache3.0.0.0 - ok
15:17:44.0031 0852 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
15:17:44.0031 0852 FsDepends - ok
15:17:44.0047 0852 [ E95EF8547DE20CF0603557C0CF7A9462 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:17:44.0047 0852 Fs_Rec - ok
15:17:44.0078 0852 [ B8B2A6E1558F8F5DE5CE431C5B2C7B09 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
15:17:44.0078 0852 fvevol - ok
15:17:44.0094 0852 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
15:17:44.0094 0852 gagp30kx - ok
15:17:44.0125 0852 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
15:17:44.0141 0852 gpsvc - ok
15:17:44.0234 0852 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:17:44.0265 0852 gupdate - ok
15:17:44.0328 0852 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:17:44.0328 0852 gupdatem - ok
15:17:44.0343 0852 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
15:17:44.0343 0852 hcw85cir - ok
15:17:44.0390 0852 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:17:44.0406 0852 HdAudAddService - ok
15:17:44.0421 0852 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
15:17:44.0421 0852 HDAudBus - ok
15:17:44.0453 0852 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
15:17:44.0453 0852 HidBatt - ok
15:17:44.0468 0852 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
15:17:44.0468 0852 HidBth - ok
15:17:44.0484 0852 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
15:17:44.0484 0852 HidIr - ok
15:17:44.0515 0852 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
15:17:44.0515 0852 hidserv - ok
15:17:44.0546 0852 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:17:44.0546 0852 HidUsb - ok
15:17:44.0577 0852 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:17:44.0577 0852 hkmsvc - ok
15:17:44.0593 0852 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:17:44.0609 0852 HomeGroupListener - ok
15:17:44.0640 0852 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:17:44.0640 0852 HomeGroupProvider - ok
15:17:44.0655 0852 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
15:17:44.0655 0852 HpSAMD - ok
15:17:44.0687 0852 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:17:44.0702 0852 HTTP - ok
15:17:44.0702 0852 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
15:17:44.0702 0852 hwpolicy - ok
15:17:44.0718 0852 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
15:17:44.0718 0852 i8042prt - ok
15:17:44.0749 0852 [ D83EFB6FD45DF9D55E9A1AFC63640D50 ] iaStorV C:\Windows\system32\DRIVERS\iaStorV.sys
15:17:44.0765 0852 iaStorV - ok
15:17:44.0827 0852 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:17:44.0843 0852 idsvc - ok
15:17:44.0858 0852 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
15:17:44.0858 0852 iirsp - ok
15:17:44.0905 0852 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
15:17:44.0921 0852 IKEEXT - ok
15:17:44.0936 0852 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
15:17:44.0936 0852 intelide - ok
15:17:44.0967 0852 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:17:44.0967 0852 intelppm - ok
15:17:44.0967 0852 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:17:44.0983 0852 IPBusEnum - ok
15:17:44.0983 0852 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:17:44.0983 0852 IpFilterDriver - ok
15:17:45.0014 0852 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:17:45.0030 0852 iphlpsvc - ok
15:17:45.0045 0852 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
15:17:45.0045 0852 IPMIDRV - ok
15:17:45.0061 0852 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
15:17:45.0061 0852 IPNAT - ok
15:17:45.0077 0852 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:17:45.0077 0852 IRENUM - ok
15:17:45.0077 0852 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
15:17:45.0077 0852 isapnp - ok
15:17:45.0108 0852 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
15:17:45.0108 0852 iScsiPrt - ok
15:17:45.0139 0852 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
15:17:45.0139 0852 kbdclass - ok
15:17:45.0155 0852 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
15:17:45.0155 0852 kbdhid - ok
15:17:45.0170 0852 [ 0793F40B9B8A1BDD266296409DBD91EA ] KeyIso C:\Windows\system32\lsass.exe
15:17:45.0170 0852 KeyIso - ok
15:17:45.0186 0852 [ E8B6FCC9C83535C67F835D407620BD27 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:17:45.0186 0852 KSecDD - ok
15:17:45.0217 0852 [ BBE1BF6D9B661C354D4857D5FADB943B ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
15:17:45.0217 0852 KSecPkg - ok
15:17:45.0233 0852 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
15:17:45.0233 0852 ksthunk - ok
15:17:45.0264 0852 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
15:17:45.0264 0852 KtmRm - ok
15:17:45.0295 0852 [ C926920B8978DE6ACFE9E15C709E9B57 ] LanmanServer C:\Windows\System32\srvsvc.dll
15:17:45.0311 0852 LanmanServer - ok
15:17:45.0326 0852 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:17:45.0342 0852 LanmanWorkstation - ok
15:17:45.0373 0852 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:17:45.0373 0852 lltdio - ok
15:17:45.0389 0852 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:17:45.0404 0852 lltdsvc - ok
15:17:45.0435 0852 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:17:45.0451 0852 lmhosts - ok
15:17:45.0467 0852 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
15:17:45.0467 0852 LSI_FC - ok
15:17:45.0498 0852 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
15:17:45.0498 0852 LSI_SAS - ok
15:17:45.0498 0852 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:17:45.0498 0852 LSI_SAS2 - ok
15:17:45.0513 0852 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:17:45.0513 0852 LSI_SCSI - ok
15:17:45.0545 0852 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
15:17:45.0545 0852 luafv - ok
15:17:45.0576 0852 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
15:17:45.0576 0852 MBAMProtector - ok
15:17:45.0638 0852 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
15:17:45.0638 0852 MBAMScheduler - ok
15:17:45.0669 0852 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
15:17:45.0669 0852 MBAMService - ok
15:17:45.0685 0852 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:17:45.0701 0852 Mcx2Svc - ok
15:17:45.0716 0852 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
15:17:45.0716 0852 megasas - ok
15:17:45.0732 0852 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
15:17:45.0732 0852 MegaSR - ok
15:17:45.0794 0852 [ FAFE367D032ED82E9332B4C741A20216 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
15:17:45.0794 0852 Microsoft Office Groove Audit Service - ok
15:17:45.0825 0852 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
15:17:45.0841 0852 MMCSS - ok
15:17:45.0857 0852 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
15:17:45.0857 0852 Modem - ok
15:17:45.0888 0852 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:17:45.0888 0852 monitor - ok
15:17:45.0903 0852 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:17:45.0903 0852 mouclass - ok
15:17:45.0935 0852 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:17:45.0935 0852 mouhid - ok
15:17:45.0950 0852 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
15:17:45.0950 0852 mountmgr - ok
15:17:45.0966 0852 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
15:17:45.0966 0852 mpio - ok
15:17:45.0981 0852 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:17:45.0997 0852 mpsdrv - ok
15:17:46.0013 0852 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
15:17:46.0028 0852 MpsSvc - ok
15:17:46.0044 0852 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:17:46.0044 0852 MRxDAV - ok
15:17:46.0075 0852 [ CFDCD8CA87C2A657DEBC150AC35B5E08 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:17:46.0075 0852 mrxsmb - ok
15:17:46.0091 0852 [ 1BEE517B220B7F024F411AEC1571DD5A ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:17:46.0091 0852 mrxsmb10 - ok
15:17:46.0106 0852 [ 6B2D5FEF385828B6E485C1C90AFB8195 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:17:46.0106 0852 mrxsmb20 - ok
15:17:46.0122 0852 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
15:17:46.0122 0852 msahci - ok
15:17:46.0153 0852 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
15:17:46.0153 0852 msdsm - ok
15:17:46.0169 0852 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
15:17:46.0169 0852 MSDTC - ok
15:17:46.0200 0852 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:17:46.0200 0852 Msfs - ok
15:17:46.0215 0852 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
15:17:46.0215 0852 mshidkmdf - ok
15:17:46.0231 0852 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
15:17:46.0247 0852 msisadrv - ok
15:17:46.0262 0852 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:17:46.0278 0852 MSiSCSI - ok
15:17:46.0278 0852 msiserver - ok
15:17:46.0293 0852 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:17:46.0309 0852 MSKSSRV - ok
15:17:46.0325 0852 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:17:46.0325 0852 MSPCLOCK - ok
15:17:46.0340 0852 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:17:46.0340 0852 MSPQM - ok
15:17:46.0356 0852 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:17:46.0371 0852 MsRPC - ok
15:17:46.0387 0852 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
15:17:46.0387 0852 mssmbios - ok
15:17:46.0403 0852 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:17:46.0403 0852 MSTEE - ok
15:17:46.0418 0852 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
15:17:46.0418 0852 MTConfig - ok
15:17:46.0434 0852 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
15:17:46.0434 0852 Mup - ok
15:17:46.0465 0852 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
15:17:46.0465 0852 napagent - ok
15:17:46.0496 0852 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:17:46.0496 0852 NativeWifiP - ok
15:17:46.0543 0852 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
15:17:46.0543 0852 NDIS - ok
15:17:46.0559 0852 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
15:17:46.0559 0852 NdisCap - ok
15:17:46.0574 0852 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:17:46.0574 0852 NdisTapi - ok
15:17:46.0590 0852 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:17:46.0590 0852 Ndisuio - ok
15:17:46.0605 0852 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:17:46.0621 0852 NdisWan - ok
15:17:46.0621 0852 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:17:46.0637 0852 NDProxy - ok
15:17:46.0637 0852 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:17:46.0652 0852 NetBIOS - ok
15:17:46.0668 0852 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
15:17:46.0668 0852 NetBT - ok
15:17:46.0683 0852 [ 0793F40B9B8A1BDD266296409DBD91EA ] Netlogon C:\Windows\system32\lsass.exe
15:17:46.0683 0852 Netlogon - ok
15:17:46.0715 0852 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
15:17:46.0715 0852 Netman - ok
15:17:46.0730 0852 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
15:17:46.0730 0852 netprofm - ok
15:17:46.0761 0852 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:17:46.0761 0852 NetTcpPortSharing - ok
15:17:46.0777 0852 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
15:17:46.0777 0852 nfrd960 - ok
15:17:46.0808 0852 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
15:17:46.0808 0852 NlaSvc - ok
15:17:46.0824 0852 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:17:46.0824 0852 Npfs - ok
15:17:46.0839 0852 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
15:17:46.0839 0852 nsi - ok
15:17:46.0855 0852 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:17:46.0855 0852 nsiproxy - ok
15:17:46.0902 0852 [ 356698A13C4630D5B31C37378D469196 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:17:46.0917 0852 Ntfs - ok
15:17:46.0933 0852 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
15:17:46.0933 0852 Null - ok
15:17:47.0183 0852 [ 4EE399576F76D38C04745DB739BBC8C7 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:17:47.0229 0852 nvlddmkm - ok
15:17:47.0261 0852 [ 3E38712941E9BB4DDBEE00AFFE3FED3D ] nvraid C:\Windows\system32\DRIVERS\nvraid.sys
15:17:47.0261 0852 nvraid - ok
15:17:47.0292 0852 [ 477DC4D6DEB99BE37084C9AC6D013DA1 ] nvstor C:\Windows\system32\DRIVERS\nvstor.sys
15:17:47.0292 0852 nvstor - ok
15:17:47.0339 0852 [ 7335C3D78A7746D76D37F6722CC4A466 ] nvsvc C:\Windows\system32\nvvsvc.exe
15:17:47.0339 0852 nvsvc - ok
15:17:47.0417 0852 [ B7C53DA1C73FF39F4A6248643EFD979A ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
15:17:47.0417 0852 nvUpdatusService - ok
15:17:47.0432 0852 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
15:17:47.0432 0852 nv_agp - ok
15:17:47.0526 0852 [ 84DE1DD996B48B05ACE31AD015FA108A ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:17:47.0526 0852 odserv - ok
15:17:47.0541 0852 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
15:17:47.0541 0852 ohci1394 - ok
15:17:47.0557 0852 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:17:47.0557 0852 ose - ok
15:17:47.0588 0852 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll