Žádám o kontrolu logu a pomoc s optimací PC

[asdsad]

Ahoj, nedávno začaly problémy s mým ntb. Začaly bluescreeny, CPU běží normálně na 15%, apod.
Zkoušel sem ho čistit přes hromadu programů, např. ccleaner, Advanced System Care atd..

Zde je log z HiJackThis:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:17:27, on 17.2.2013
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16464)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\DellTPad\Apoint.exe
C:\Windows\System32\WLTRAY.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\IObit\Advanced SystemCare 6\ASC.exe
C:\Program Files\IObit\Advanced SystemCare 6\AutoUpdate.exe
C:\Users\Sloukovi\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Sloukovi\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Sloukovi\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Sloukovi\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Sloukovi\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www1.euro.dell.com/content/defau ... l=sk&s=gen
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.appsarefun.info/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.appsarefun.info/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Poskytovatel aplikace Internet Explorer: Dell
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - (no file)
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
O2 - BHO: (no name) - {DDA57003-0068-4ed2-9D32-4D1EC707D94D} - (no file)
O2 - BHO: SMTTB2009 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\HyperCam Toolbar\tbcore3.dll
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo\YontooIEClient.dll
O3 - Toolbar: HyperCam Toolbar - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\HyperCam Toolbar\tbcore3.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O3 - Toolbar: (no name) - {A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} - (no file)
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\Windows\system32\WLTRAY.exe
O4 - HKLM\..\Run: [avast] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [IObit Malware Fighter] "C:\Program Files\IObit\IObit Malware Fighter\IMF.exe" /autostart
O4 - HKCU\..\Run: [Advanced SystemCare 6] "C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: QuickSet.lnk = C:\Program Files\Dell\QuickSet\quickset.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\windows\system32\prxernsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\prxerdrv.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\prxerdrv.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\prxerdrv.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\prxerdrv.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\prxerdrv.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: c:\progra~1\appsar~1\sprote~1.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f091b975\aestsrv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f091b975\STacSV.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: WDDMService - WDC - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
O23 - Service: WD File Management Engine (WDFME) - Unknown owner - C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
O23 - Service: WD File Management Shadow Engine (WDSC) - Unknown owner - C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe
O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\Windows\System32\WLTRYSVC.EXE

--
End of file - 10572 bytes

Děkuji za veškerou pomoc.

[Reklama]

[memphisto]

Odinstaluj:
HyperCam Toolbar
Yontoo Toolbar
Daemon Tools Toolbar
Conduit Engine

v logu fixni:
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www1.euro.dell.com/content/defau ... l=sk&s=gen
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.appsarefun.info/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.appsarefun.info/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Poskytovatel aplikace Internet Explorer: Dell
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - (no file)
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll
O2 - BHO: (no name) - {DDA57003-0068-4ed2-9D32-4D1EC707D94D} - (no file)
O2 - BHO: SMTTB2009 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\HyperCam Toolbar\tbcore3.dll
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo\YontooIEClient.dll
O3 - Toolbar: HyperCam Toolbar - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\HyperCam Toolbar\tbcore3.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: (no name) - {A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} - (no file)

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
- Pokud používáš Firefox, klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
- Pokud používáš Chrome, nic dalšího nevybírej a dej Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(ZATÍM SÁM NIC NEMAŽ!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner

Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

[asdsad]

Malwarebytes' Anti-Malware log:

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.70.0.1100
www.malwarebytes.org

Verze: v2013.02.18.07

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Sloukovi :: SLOUKOVI-PC [administrátor]

Ochrana: Povolena

18.2.2013 17:35:49
MBAM-log-2013-02-18 (17-49-36).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 231393
Uplynulý čas: 13 minut, 22 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 8
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.FunMoods) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.FunMoods) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Funmoods) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Funmoods) -> Nebyla provedena žádná instrukce.
HKCU\Software\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh (PUP.Funmoods) -> Nebyla provedena žádná instrukce.
HKCU\Software\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj (PUP.FunMoods) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh (PUP.Funmoods) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj (PUP.FunMoods) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 2
C:\Users\Sloukovi\AppData\LocalLow\Funmoods (PUP.FunMoods) -> Nebyla provedena žádná instrukce.
C:\Users\Sloukovi\AppData\LocalLow\Funmoods\Funmoods (PUP.FunMoods) -> Nebyla provedena žádná instrukce.

Nalezené soubory: 17
C:\Users\Sloukovi\AppData\Roaming\rundll32.exe (Trojan.Ransom.ANC) -> Nebyla provedena žádná instrukce.
C:\Users\Sloukovi\AppData\Roaming\System32\rundll32.exe (Trojan.Ransom.ANC) -> Nebyla provedena žádná instrukce.
C:\Users\Sloukovi\AppData\Roaming\System32\svchost.exe (Trojan.Ransom.ANC) -> Nebyla provedena žádná instrukce.
C:\Downloads\GotClip_Setup.exe (PUP.Adware.Gotclip.ScamLotto) -> Nebyla provedena žádná instrukce.
C:\Users\Sloukovi\Downloads\888poker_installer.exe (PUP.Casino) -> Nebyla provedena žádná instrukce.
C:\Users\Sloukovi\Downloads\SoftonicDownloader_for_euro-truck-simulator.exe (PUP.OfferBundler.ST) -> Nebyla provedena žádná instrukce.
C:\Users\Sloukovi\Downloads\FLVPlayer_v3 (1).exe (PUP.Adware.Installcore) -> Nebyla provedena žádná instrukce.
C:\Users\Sloukovi\Downloads\FLVPlayer_v3.exe (PUP.Adware.Installcore) -> Nebyla provedena žádná instrukce.
C:\Users\Sloukovi\Downloads\Tele-Marines Font.exe (PUP.Offerware) -> Nebyla provedena žádná instrukce.
C:\Users\Sloukovi\Downloads\DownloadManagerSetup.exe (Adware.Agent) -> Nebyla provedena žádná instrukce.
C:\Users\Sloukovi\Downloads\Euro_Truck_Simulator_1.3_crack.rar_mediaget.exe (PUP.Adware.MediaGet) -> Nebyla provedena žádná instrukce.
C:\Users\Sloukovi\Downloads\UnlockRoot_downloader_by_UnlockRoot.exe (PUP.Somoto) -> Nebyla provedena žádná instrukce.
C:\Users\Sloukovi\Downloads\DownloadManagerSetup (1).exe (Adware.Agent) -> Nebyla provedena žádná instrukce.
C:\Users\Sloukovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bbjciahceamgodcoidkjpchnokgfpphh_0.localstorage (PUP.Funmoods) -> Nebyla provedena žádná instrukce.
C:\Users\Sloukovi\AppData\Local\funmoods.crx (PUP.Funmoods) -> Nebyla provedena žádná instrukce.
C:\Users\Sloukovi\AppData\Local\funmoods-speeddial_sf.crx (PUP.FunMoods) -> Nebyla provedena žádná instrukce.
C:\Users\Sloukovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_cjpglkicenollcignonpgiafdgfeehoj_0.localstorage (PUP.FunMoods) -> Nebyla provedena žádná instrukce.

(konec)

[asdsad]

AdwCleaner log:

# AdwCleaner v2.112 - Logfile created 02/18/2013 at 17:51:10
# Updated 10/02/2013 by Xplode
# Operating system : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# User : Sloukovi - SLOUKOVI-PC
# Boot Mode : Normal
# Running from : C:\Users\Sloukovi\Downloads\adwcleaner0.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****

File Found : C:\Program Files\Mozilla FireFox\Components\AskHPRFF.js
File Found : C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml
File Found : C:\user.js
File Found : C:\Users\Sloukovi\AppData\Local\funmoods.crx
File Found : C:\Users\Sloukovi\AppData\Local\funmoods-speeddial_sf.crx
File Found : C:\Users\Sloukovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bbjciahceamgodcoidkjpchnokgfpphh_0.localstorage
File Found : C:\Users\Sloukovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_cjpglkicenollcignonpgiafdgfeehoj_0.localstorage
File Found : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
File Found : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\searchplugins\Askcom.xml
File Found : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\searchplugins\Conduit.xml
File Found : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\searchplugins\daemon-search.xml
File Found : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\searchplugins\icqplugin.xml
File Found : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\searchplugins\icqplugin-1.xml
File Found : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\searchplugins\icqplugin-2.xml
File Found : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\searchplugins\icqplugin-3.xml
File Found : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\searchplugins\search.xml
File Found : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\searchplugins\SweetIm.xml
File Found : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\searchplugins\WebSearch.xml
File Found : C:\Windows\system32\conduitEngine.tmp
Folder Found : C:\Program Files\Ask.com
Folder Found : C:\Program Files\ConduitEngine
Folder Found : C:\Program Files\DAEMON Tools Toolbar
Folder Found : C:\Program Files\HyperCam Toolbar
Folder Found : C:\Program Files\ICQ6Toolbar
Folder Found : C:\ProgramData\Babylon
Folder Found : C:\ProgramData\boost_interprocess
Folder Found : C:\ProgramData\ICQ\ICQToolbar
Folder Found : C:\ProgramData\InstallMate
Folder Found : C:\ProgramData\Premium
Folder Found : C:\ProgramData\Tarma Installer
Folder Found : C:\ProgramData\Trymedia
Folder Found : C:\Users\Sloukovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Folder Found : C:\Users\Sloukovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Folder Found : C:\Users\Sloukovi\AppData\LocalLow\BabylonToolbar
Folder Found : C:\Users\Sloukovi\AppData\LocalLow\Conduit
Folder Found : C:\Users\Sloukovi\AppData\LocalLow\ConduitEngine
Folder Found : C:\Users\Sloukovi\AppData\LocalLow\Funmoods
Folder Found : C:\Users\Sloukovi\AppData\LocalLow\Toolbar4
Folder Found : C:\Users\Sloukovi\AppData\Roaming\Babylon
Folder Found : C:\Users\Sloukovi\AppData\Roaming\eType
Folder Found : C:\Users\Sloukovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eType
Folder Found : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\Conduit
Folder Found : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\ConduitCommon
Folder Found : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\ConduitEngine
Folder Found : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\CT1750559
Folder Found : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\CT2786678
Folder Found : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
Folder Found : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}
Folder Found : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\SweetIMToolbarData
Folder Found : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\SweetPacksToolbarData

***** [Registry] *****

Key Found : HKCU\Software\1ClickDownload
Key Found : HKCU\Software\APN PIP
Key Found : HKCU\Software\AppDataLow\AskBarDis
Key Found : HKCU\Software\AppDataLow\Software\conduitEngine
Key Found : HKCU\Software\AppDataLow\Software\conduitEngine
Key Found : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Found : HKCU\Software\AppDataLow\Software\Toolbar
Key Found : HKCU\Software\AppDataLow\SProtector
Key Found : HKCU\Software\BabylonChromeExtension
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\DSNR Labs
Key Found : HKCU\Software\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Key Found : HKCU\Software\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Key Found : HKCU\Software\Headlight
Key Found : HKCU\Software\Iminent
Key Found : HKCU\Software\InstallCore
Key Found : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB9}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{338B4DFE-2E2C-4338-9E41-E176D497299E}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Found : HKLM\Software\APN
Key Found : HKLM\Software\AskToolbar
Key Found : HKLM\Software\Babylon
Key Found : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Found : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
Key Found : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Key Found : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Found : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Found : HKLM\SOFTWARE\Classes\AppID\{AD25754E-D76C-42B3-A335-2F81478B722F}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Key Found : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Found : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{338B4DFE-2E2C-4338-9E41-E176D497299E}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{57CADC46-58FF-4105-B733-5A9F3FC9783C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Found : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler
Key Found : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler.1
Key Found : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Found : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Found : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Found : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Found : HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\SMTTB2009.IEToolbar
Key Found : HKLM\SOFTWARE\Classes\SMTTB2009.IEToolbar.1
Key Found : HKLM\SOFTWARE\Classes\SMTTB2009.SMTTB2009
Key Found : HKLM\SOFTWARE\Classes\SMTTB2009.SMTTB2009.3
Key Found : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
Key Found : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbRequest
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbTask
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1
Key Found : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper
Key Found : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1
Key Found : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier
Key Found : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier.1
Key Found : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl
Key Found : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl.1
Key Found : HKLM\SOFTWARE\Classes\Toolbar3.SMTTB2009
Key Found : HKLM\SOFTWARE\Classes\Toolbar3.SMTTB2009.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
Key Found : HKLM\SOFTWARE\Classes\YontooIEClient.Api
Key Found : HKLM\SOFTWARE\Classes\YontooIEClient.Api.1
Key Found : HKLM\SOFTWARE\Classes\YontooIEClient.Layers
Key Found : HKLM\SOFTWARE\Classes\YontooIEClient.Layers.1
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\conduitEngine
Key Found : HKLM\Software\conduitEngine
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\jplinpmadfkdgipabgcdchbdikologlh
Key Found : HKLM\Software\Iminent
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5BA7FE99-938D-4F83-8844-7A07ED9EC393}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Found : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ApnUpdater
Key Found : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BabylonToolbar
Key Found : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Iminent
Key Found : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IminentMessenger
Key Found : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SweetIM
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\120DFADEB50841F408F04D2A278F9509
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B5BAE2ED018083A4C8DA86D6E3F4B024
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Conduit Engine
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Found : HKLM\Software\PIP
Key Found : HKLM\Software\SP Global
Key Found : HKLM\Software\SProtector
Key Found : HKLM\Software\Tarma Installer
Key Found : HKU\S-1-5-21-3144701323-730935824-3219735944-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : HKU\S-1-5-21-3144701323-730935824-3219735944-1000\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Found : HKU\S-1-5-21-3144701323-730935824-3219735944-1000\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}
Key Found : HKU\S-1-5-21-3144701323-730935824-3219735944-1000\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Found : HKU\S-1-5-21-3144701323-730935824-3219735944-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB9}
Key Found : HKU\S-1-5-21-3144701323-730935824-3219735944-1000\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{338B4DFE-2E2C-4338-9E41-E176D497299E}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]

[asdsad]

Část 2:

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16464

[HKCU\Software\Microsoft\Internet Explorer\Main - ICQ Search] = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=sm
[HKCU\Software\Microsoft\Internet Explorer\Main - Backup.Old.Start Page] = hxxp://search.babylon.com/?AF=109130&ba ... 234d7058c6

-\\ Mozilla Firefox v9.0.1 (cs)

File : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\prefs.js

Found : user_pref("CT1750559..clientLogIsEnabled", false);
Found : user_pref("CT1750559..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
Found : user_pref("CT1750559..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
Found : user_pref("CT1750559.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Found : user_pref("CT1750559.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Found : user_pref("CT1750559.BrowserCompStateIsOpen_129502713039250930", true);
Found : user_pref("CT1750559.BrowserCompStateIsOpen_129544988592463877", true);
Found : user_pref("CT1750559.CT1750559", "CT1750559");
Found : user_pref("CT1750559.CurrentServerDate", "9-11-2012");
Found : user_pref("CT1750559.DSInstall", true);
Found : user_pref("CT1750559.DialogsAlignMode", "LTR");
Found : user_pref("CT1750559.DialogsGetterLastCheckTime", "Fri Nov 09 2012 16:35:52 GMT+0100");
Found : user_pref("CT1750559.DownloadReferralCookieData", "");
Found : user_pref("CT1750559.FirstServerDate", "9-11-2012");
Found : user_pref("CT1750559.FirstTime", true);
Found : user_pref("CT1750559.FirstTimeFF3", true);
Found : user_pref("CT1750559.FirstTimeHiddenVer", true);
Found : user_pref("CT1750559.FixPageNotFoundErrors", true);
Found : user_pref("CT1750559.GroupingServerCheckInterval", 1440);
Found : user_pref("CT1750559.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Found : user_pref("CT1750559.HPInstall", true);
Found : user_pref("CT1750559.HasUserGlobalKeys", true);
Found : user_pref("CT1750559.HomePageProtectorEnabled", true);
Found : user_pref("CT1750559.HomepageBeforeUnload", "hxxp://search.conduit.com/?ctid=CT1750559&SearchSource=[...]
Found : user_pref("CT1750559.Initialize", true);
Found : user_pref("CT1750559.InitializeCommonPrefs", true);
Found : user_pref("CT1750559.InstallationAndCookieDataSentCount", 1);
Found : user_pref("CT1750559.InstallationType", "Unknown");
Found : user_pref("CT1750559.InstalledDate", "Fri Nov 09 2012 16:35:54 GMT+0100");
Found : user_pref("CT1750559.InvalidateCache", false);
Found : user_pref("CT1750559.IsGrouping", false);
Found : user_pref("CT1750559.IsInitSetupIni", true);
Found : user_pref("CT1750559.IsMulticommunity", false);
Found : user_pref("CT1750559.IsOpenThankYouPage", true);
Found : user_pref("CT1750559.IsOpenUninstallPage", true);
Found : user_pref("CT1750559.IsProtectorsInit", true);
Found : user_pref("CT1750559.LanguagePackLastCheckTime", "Fri Nov 09 2012 16:35:53 GMT+0100");
Found : user_pref("CT1750559.LanguagePackReloadIntervalMM", 1440);
Found : user_pref("CT1750559.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Found : user_pref("CT1750559.LastLogin_3.16.0.3", "Fri Nov 09 2012 16:36:12 GMT+0100");
Found : user_pref("CT1750559.LatestVersion", "3.16.0.3");
Found : user_pref("CT1750559.Locale", "en-us");
Found : user_pref("CT1750559.MCDetectTooltipHeight", "83");
Found : user_pref("CT1750559.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Found : user_pref("CT1750559.MCDetectTooltipWidth", "295");
Found : user_pref("CT1750559.MyStuffEnabledAtInstallation", true);
Found : user_pref("CT1750559.OriginalFirstVersion", "3.16.0.3");
Found : user_pref("CT1750559.RadioIsPodcast", false);
Found : user_pref("CT1750559.RadioLastCheckTime", "Fri Nov 09 2012 16:35:47 GMT+0100");
Found : user_pref("CT1750559.RadioLastUpdateIPServer", "3");
Found : user_pref("CT1750559.RadioLastUpdateServer", "128929877726170000");
Found : user_pref("CT1750559.RadioMediaID", "11237206");
Found : user_pref("CT1750559.RadioMediaType", "Media Player");
Found : user_pref("CT1750559.RadioMenuSelectedID", "EBRadioMenu_CT175055911237206");
Found : user_pref("CT1750559.RadioShrinkedFromSetup", false);
Found : user_pref("CT1750559.RadioStationName", "1.FM%20Dance");
Found : user_pref("CT1750559.RadioStationURL", "hxxp://dance.1.fm/energydance128k?MSWMExt=.asf");
Found : user_pref("CT1750559.SavedHomepage", "hxxp://search.appsarefun.info/");
Found : user_pref("CT1750559.SearchCaption", "BS Player Customized Web Search");
Found : user_pref("CT1750559.SearchEngineBeforeUnload", "BS Player Customized Web Search");
Found : user_pref("CT1750559.SearchFromAddressBarIsInit", true);
Found : user_pref("CT1750559.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT175[...]
Found : user_pref("CT1750559.SearchInNewTabEnabled", true);
Found : user_pref("CT1750559.SearchInNewTabIntervalMM", 1440);
Found : user_pref("CT1750559.SearchInNewTabLastCheckTime", "Fri Nov 09 2012 16:36:12 GMT+0100");
Found : user_pref("CT1750559.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Found : user_pref("CT1750559.SearchProtectorEnabled", true);
Found : user_pref("CT1750559.SearchProtectorToolbarDisabled", true);
Found : user_pref("CT1750559.SendProtectorDataViaLogin", true);
Found : user_pref("CT1750559.ServiceMapLastCheckTime", "Fri Nov 09 2012 16:35:42 GMT+0100");
Found : user_pref("CT1750559.SettingsLastCheckTime", "Fri Nov 09 2012 16:35:43 GMT+0100");
Found : user_pref("CT1750559.SettingsLastUpdate", "1352140586");
Found : user_pref("CT1750559.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT1750559&SearchSource=13");
Found : user_pref("CT1750559.ThirdPartyComponentsInterval", 504);
Found : user_pref("CT1750559.ThirdPartyComponentsLastCheck", "Fri Nov 09 2012 16:35:42 GMT+0100");
Found : user_pref("CT1750559.ThirdPartyComponentsLastUpdate", "1331805997");
Found : user_pref("CT1750559.ToolbarDisabled", true);
Found : user_pref("CT1750559.ToolbarShrinkedFromSetup", false);
Found : user_pref("CT1750559.TrusteLinkUrl", "hxxp://trust.conduit.com/CT1750559");
Found : user_pref("CT1750559.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...]
Found : user_pref("CT1750559.UserID", "UN70188962295739386");
Found : user_pref("CT1750559.WeatherNetwork", "");
Found : user_pref("CT1750559.WeatherPollDate", "Fri Nov 09 2012 16:35:52 GMT+0100");
Found : user_pref("CT1750559.WeatherUnit", "C");
Found : user_pref("CT1750559.alertChannelId", "31130");
Found : user_pref("CT1750559.backendstorage.appbuttondisablenull", "30");
Found : user_pref("CT1750559.backendstorage.twitter_v1.8.0_twitter_app_open_t_f", "66616C7365");
Found : user_pref("CT1750559.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...]
Found : user_pref("CT1750559.globalFirstTimeInfoLastCheckTime", "Fri Nov 09 2012 16:35:51 GMT+0100");
Found : user_pref("CT1750559.homepageProtectorEnableByLogin", true);
Found : user_pref("CT1750559.initDone", true);
Found : user_pref("CT1750559.isAppTrackingManagerOn", false);
Found : user_pref("CT1750559.isFirstRadioInstallation", false);
Found : user_pref("CT1750559.myStuffEnabled", true);
Found : user_pref("CT1750559.myStuffPublihserMinWidth", 400);
Found : user_pref("CT1750559.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Found : user_pref("CT1750559.myStuffServiceIntervalMM", 1440);
Found : user_pref("CT1750559.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Found : user_pref("CT1750559.navigateToUrlOnSearch", false);
Found : user_pref("CT1750559.revertSettingsEnabled", true);
Found : user_pref("CT1750559.searchProtectorDialogDelayInSec", 10);
Found : user_pref("CT1750559.searchProtectorEnableByLogin", true);
Found : user_pref("CT1750559.testingCtid", "");
Found : user_pref("CT1750559.toolbarAppMetaDataLastCheckTime", "Fri Nov 09 2012 16:35:44 GMT+0100");
Found : user_pref("CT1750559.toolbarContextMenuLastCheckTime", "Fri Nov 09 2012 16:35:53 GMT+0100");
Found : user_pref("CT2786678..clientLogIsEnabled", false);
Found : user_pref("CT2786678..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
Found : user_pref("CT2786678..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
Found : user_pref("CT2786678.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Found : user_pref("CT2786678.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Found : user_pref("CT2786678.BrowserCompStateIsOpen_129579220236217502", true);
Found : user_pref("CT2786678.CTID", "CT2786678");
Found : user_pref("CT2786678.CurrentServerDate", "9-11-2012");
Found : user_pref("CT2786678.DSInstall", true);
Found : user_pref("CT2786678.DialogsAlignMode", "LTR");
Found : user_pref("CT2786678.DialogsGetterLastCheckTime", "Fri Nov 09 2012 16:35:57 GMT+0100");
Found : user_pref("CT2786678.DownloadReferralCookieData", "");
Found : user_pref("CT2786678.EMailNotifierPollDate", "Fri Nov 09 2012 16:35:45 GMT+0100");
Found : user_pref("CT2786678.FeedLastCount5690698542593514850", 226);
Found : user_pref("CT2786678.FeedPollDate2429156812186649977", "Fri Nov 09 2012 16:35:53 GMT+0100");
Found : user_pref("CT2786678.FeedPollDate2429156813040823546", "Fri Nov 09 2012 16:35:46 GMT+0100");
Found : user_pref("CT2786678.FeedPollDate2429156813130095866", "Fri Nov 09 2012 16:35:46 GMT+0100");
Found : user_pref("CT2786678.FeedPollDate2429156813224203613", "Fri Nov 09 2012 16:35:46 GMT+0100");
Found : user_pref("CT2786678.FeedPollDate2429156813230837251", "Fri Nov 09 2012 16:35:53 GMT+0100");
Found : user_pref("CT2786678.FeedPollDate2429156813454291735", "Fri Nov 09 2012 16:35:53 GMT+0100");
Found : user_pref("CT2786678.FeedPollDate2429156813729834876", "Fri Nov 09 2012 16:35:46 GMT+0100");
Found : user_pref("CT2786678.FeedPollDate2429156813860870021", "Fri Nov 09 2012 16:35:53 GMT+0100");
Found : user_pref("CT2786678.FeedPollDate2429156814264681793", "Fri Nov 09 2012 16:35:53 GMT+0100");
Found : user_pref("CT2786678.FeedPollDate2429156814863075366", "Fri Nov 09 2012 16:35:46 GMT+0100");
Found : user_pref("CT2786678.FeedPollDate2429156815257761081", "Fri Nov 09 2012 16:35:46 GMT+0100");
Found : user_pref("CT2786678.FeedTTL2429156813040823546", 15);
Found : user_pref("CT2786678.FeedTTL2429156813130095866", 10);
Found : user_pref("CT2786678.FeedTTL2429156813454291735", 5);
Found : user_pref("CT2786678.FeedTTL2429156814264681793", 5);
Found : user_pref("CT2786678.FirstServerDate", "9-11-2012");
Found : user_pref("CT2786678.FirstTime", true);
Found : user_pref("CT2786678.FirstTimeFF3", true);
Found : user_pref("CT2786678.FirstTimeHiddenVer", true);
Found : user_pref("CT2786678.FixPageNotFoundErrors", true);
Found : user_pref("CT2786678.GroupingServerCheckInterval", 1440);
Found : user_pref("CT2786678.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Found : user_pref("CT2786678.HPInstall", false);
Found : user_pref("CT2786678.HasUserGlobalKeys", true);
Found : user_pref("CT2786678.HomePageProtectorEnabled", false);
Found : user_pref("CT2786678.HomepageBeforeUnload", "hxxp://search.appsarefun.info/");
Found : user_pref("CT2786678.Initialize", true);
Found : user_pref("CT2786678.InitializeCommonPrefs", true);
Found : user_pref("CT2786678.InstallationAndCookieDataSentCount", 1);
Found : user_pref("CT2786678.InstallationType", "Unknown");
Found : user_pref("CT2786678.InstalledDate", "Fri Nov 09 2012 16:35:58 GMT+0100");
Found : user_pref("CT2786678.IsGrouping", false);
Found : user_pref("CT2786678.IsInitSetupIni", true);
Found : user_pref("CT2786678.IsMulticommunity", false);
Found : user_pref("CT2786678.IsOpenThankYouPage", true);
Found : user_pref("CT2786678.IsOpenUninstallPage", true);
Found : user_pref("CT2786678.IsProtectorsInit", true);
Found : user_pref("CT2786678.LanguagePackLastCheckTime", "Fri Nov 09 2012 16:35:52 GMT+0100");
Found : user_pref("CT2786678.LanguagePackReloadIntervalMM", 1440);
Found : user_pref("CT2786678.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Found : user_pref("CT2786678.LastLogin_3.16.0.3", "Fri Nov 09 2012 16:36:04 GMT+0100");
Found : user_pref("CT2786678.LatestVersion", "3.16.0.3");
Found : user_pref("CT2786678.Locale", "en");
Found : user_pref("CT2786678.MCDetectTooltipHeight", "83");
Found : user_pref("CT2786678.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Found : user_pref("CT2786678.MCDetectTooltipWidth", "295");
Found : user_pref("CT2786678.MyStuffEnabledAtInstallation", true);
Found : user_pref("CT2786678.OriginalFirstVersion", "3.16.0.3");
Found : user_pref("CT2786678.SearchCaption", "uTorrentBar Customized Web Search");
Found : user_pref("CT2786678.SearchEngineBeforeUnload", "BS Player Customized Web Search");
Found : user_pref("CT2786678.SearchFromAddressBarIsInit", true);
Found : user_pref("CT2786678.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT278[...]
Found : user_pref("CT2786678.SearchInNewTabEnabled", true);
Found : user_pref("CT2786678.SearchInNewTabIntervalMM", 1440);
Found : user_pref("CT2786678.SearchInNewTabLastCheckTime", "Fri Nov 09 2012 16:36:04 GMT+0100");
Found : user_pref("CT2786678.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Found : user_pref("CT2786678.SearchInNewTabUserEnabled", false);
Found : user_pref("CT2786678.SearchProtectorEnabled", false);
Found : user_pref("CT2786678.SearchProtectorToolbarDisabled", true);
Found : user_pref("CT2786678.SendProtectorDataViaLogin", true);
Found : user_pref("CT2786678.ServiceMapLastCheckTime", "Fri Nov 09 2012 16:35:42 GMT+0100");
Found : user_pref("CT2786678.SettingsLastCheckTime", "Fri Nov 09 2012 16:35:43 GMT+0100");
Found : user_pref("CT2786678.SettingsLastUpdate", "1352140586");
Found : user_pref("CT2786678.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT2786678&SearchSource=13");
Found : user_pref("CT2786678.ThirdPartyComponentsLastCheck", "Fri Nov 09 2012 16:35:42 GMT+0100");
Found : user_pref("CT2786678.ToolbarDisabled", true);
Found : user_pref("CT2786678.ToolbarShrinkedFromSetup", false);
Found : user_pref("CT2786678.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2786678");
Found : user_pref("CT2786678.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...]
Found : user_pref("CT2786678.UserID", "UN35527322830802877");
Found : user_pref("CT2786678.WeatherNetwork", "");
Found : user_pref("CT2786678.WeatherPollDate", "Fri Nov 09 2012 16:35:52 GMT+0100");
Found : user_pref("CT2786678.WeatherUnit", "C");
Found : user_pref("CT2786678.alertChannelId", "1178763");
Found : user_pref("CT2786678.backendstorage.cbcountry_001", "435A");
Found : user_pref("CT2786678.backendstorage.cbfirsttime", "467269204E6F7620303920323031322031363A33363A30352[...]
Found : user_pref("CT2786678.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...]
Found : user_pref("CT2786678.globalFirstTimeInfoLastCheckTime", "Fri Nov 09 2012 16:35:55 GMT+0100");
Found : user_pref("CT2786678.homepageProtectorEnableByLogin", true);
Found : user_pref("CT2786678.initDone", true);
Found : user_pref("CT2786678.isAppTrackingManagerOn", false);
Found : user_pref("CT2786678.myStuffEnabled", true);
Found : user_pref("CT2786678.myStuffPublihserMinWidth", 400);
Found : user_pref("CT2786678.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Found : user_pref("CT2786678.myStuffServiceIntervalMM", 1440);
Found : user_pref("CT2786678.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Found : user_pref("CT2786678.navigateToUrlOnSearch", false);
Found : user_pref("CT2786678.revertSettingsEnabled", true);
Found : user_pref("CT2786678.searchProtectorDialogDelayInSec", 10);
Found : user_pref("CT2786678.searchProtectorEnableByLogin", true);
Found : user_pref("CT2786678.testingCtid", "");
Found : user_pref("CT2786678.toolbarAppMetaDataLastCheckTime", "Fri Nov 09 2012 16:35:45 GMT+0100");
Found : user_pref("CT2786678.toolbarContextMenuLastCheckTime", "Fri Nov 09 2012 16:35:52 GMT+0100");
Found : user_pref("CommunityToolbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT1750559&Search[...]
Found : user_pref("CommunityToolbar.ConduitSearchList", "uTorrentBar Customized Web Search,uTorrentBar Custo[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit. ... /CT1750559[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit. ... /CT2786678[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://alert.services.conduit.com/Alert ... mx/GetHost[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... 1174448/CZ", "\"0\"[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/31130/30609/CZ", "\"0\"");
Found : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... /905414/CZ", "\"0\"")[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT1750559", [...]
Found : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT2786678", [...]
Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... tenApps&lo[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... tenApps&lo[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... erApps&loc[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... erApps&loc[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... redApps&lo[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... redApps&lo[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... lbar&local[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... lbar&local[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-ser ... rt/dlg.pkg", "\[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-se ... ?ver=3.3.3[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.12[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.12[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.13[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.14[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.15[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.16[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... kg?ver=3.9.[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT1750559",[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT2786678",[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... r=FF&lut=0", "63[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... ut=3/13/20[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... =EB_LOCALE",[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... ?locale=en", "\"e20[...]
Found : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... cale=en-us", "\"[...]
Found : user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
Found : user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
Found : user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
Found : user_pref("CommunityToolbar.IsEngineShown", true);
Found : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Found : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Sloukovi\\AppData\\Roaming\\Mozilla[...]
Found : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.16.0.3");
Found : user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine");
Found : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "engine@conduit.com");
Found : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine");
Found : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.pr[...]
Found : user_pref("CommunityToolbar.ToolbarsList", "ConduitEngine,CT2786678,CT1750559");
Found : user_pref("CommunityToolbar.ToolbarsList2", "CT2786678,CT1750559");
Found : user_pref("CommunityToolbar.ToolbarsList4", "CT2786678,CT1750559");
Found : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Fri Jun 03 2011 19:38:23 GMT+02[...]
Found : user_pref("CommunityToolbar.alert.alertInfoInterval", 60);
Found : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Fri Jun 10 2011 19:54:41 GMT+0200");
Found : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Found : user_pref("CommunityToolbar.alert.locale", "en");
Found : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Found : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Tue Jun 28 2011 20:33:56 GMT+0200");
Found : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1305622559");
Found : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Found : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Found : user_pref("CommunityToolbar.alert.showTrayIcon", false);
Found : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Found : user_pref("CommunityToolbar.alert.userId", "{3461da87-a2a9-455b-bcc8-46e2e989e5c0}");
Found : user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Wed Feb 22 2012 20:40:07 GMT+0100");
Found : user_pref("CommunityToolbar.globalUserId", "04e6ddbd-2199-4905-ada1-3f0822822cfa");
Found : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Found : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Found : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT1750559");
Found : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Fri Nov 09 2012 16:35:4[...]
Found : user_pref("CommunityToolbar.notifications.alertEnabled", true);
Found : user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440);
Found : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Fri Nov 09 2012 16:36:03 GMT+010[...]
Found : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
Found : user_pref("CommunityToolbar.notifications.locale", "en");
Found : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
Found : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Fri Nov 09 2012 16:35:42 GMT+0100");
Found : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
Found : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
Found : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
Found : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
Found : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
Found : user_pref("CommunityToolbar.notifications.userId", "4709cdca-0bb6-46cb-97ed-c523772c4312");
Found : user_pref("CommunityToolbar.originalHomepage", "hxxp://www.seznam.cz/");
Found : user_pref("CommunityToolbar.originalSearchEngine", "Ask.com");
Found : user_pref("ConduitEngine.AppTrackingLastCheckTime", "Fri Jun 03 2011 22:38:24 GMT+0200");
Found : user_pref("ConduitEngine.CTID", "ConduitEngine");
Found : user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Mon Jun 27 2011 17:38:07 GMT+0200");
Found : user_pref("ConduitEngine.FirstServerDate", "06/03/2011 20");
Found : user_pref("ConduitEngine.FirstTime", true);
Found : user_pref("ConduitEngine.FirstTimeFF3", true);
Found : user_pref("ConduitEngine.HasUserGlobalKeys", true);
Found : user_pref("ConduitEngine.Initialize", true);
Found : user_pref("ConduitEngine.InitializeCommonPrefs", true);
Found : user_pref("ConduitEngine.InstalledDate", "Fri Jun 03 2011 19:38:25 GMT+0200");
Found : user_pref("ConduitEngine.IsMulticommunity", false);
Found : user_pref("ConduitEngine.IsOpenThankYouPage", false);
Found : user_pref("ConduitEngine.IsOpenUninstallPage", true);
Found : user_pref("ConduitEngine.LanguagePackLastCheckTime", "Tue Jun 28 2011 20:33:59 GMT+0200");
Found : user_pref("ConduitEngine.LastLogin_3.3.3.2", "Tue Jun 28 2011 20:33:59 GMT+0200");
Found : user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Found : user_pref("ConduitEngine.SettingsLastCheckTime", "Tue Jun 28 2011 20:33:59 GMT+0200");
Found : user_pref("ConduitEngine.UserID", "UN23831497472481866");
Found : user_pref("ConduitEngine.componentAlertEnabled", false);
Found : user_pref("ConduitEngine.engineLocale", "cs");
Found : user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Tue Jun 28 2011 20:33:59 GMT+0200");
Found : user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Tue Jun 28 2011 20:33:59 GMT+0200");
Found : user_pref("ConduitEngine.initDone", true);
Found : user_pref("ConduitEngine.isAppTrackingManagerOn", true);
Found : user_pref("ConduitEngine.usagesFlag", 2);
Found : user_pref("aol_toolbar.default.homepage.check", false);
Found : user_pref("aol_toolbar.default.search.check", false);
Found : user_pref("backup.old.browser.search.selectedEngine", "Ask.com");
Found : user_pref("backup.old.browser.startup.homepage", "hxxp://search.babylon.com/?babsrc=HP_Prot");
Found : user_pref("browser.babylon.HPOnNewTab", "search.babylon.com");
Found : user_pref("browser.search.defaultengine", "Ask.com");
Found : user_pref("browser.search.defaultenginename", "WebSearch");
Found : user_pref("browser.search.defaultenginename,S", "WebSearch");
Found : user_pref("browser.search.defaultthis.engineName", "BS Player Customized Web Search");
Found : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&Sea[...]
Found : user_pref("browser.search.order.1", "WebSearch");
Found : user_pref("browser.search.order.1,S", "WebSearch");
Found : user_pref("browser.search.selectedEngine", "BS Player Customized Web Search");
Found : user_pref("browser.search.selectedEngine,S", "WebSearch");
Found : user_pref("browser.startup.homepage", "hxxp://search.conduit.com/?ctid=CT1750559&SearchSource=13");
Found : user_pref("extensions.BabylonToolbar.admin", false);
Found : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Found : user_pref("extensions.BabylonToolbar.babExt", "");
Found : user_pref("extensions.BabylonToolbar.babTrack", "affID=109130");
Found : user_pref("extensions.BabylonToolbar.bbDpng", 9);
Found : user_pref("extensions.BabylonToolbar.cntry", "CZ");
Found : user_pref("extensions.BabylonToolbar.dfltSrch", false);
Found : user_pref("extensions.BabylonToolbar.excTlbr", false);
Found : user_pref("extensions.BabylonToolbar.firstRun", false);
Found : user_pref("extensions.BabylonToolbar.hdrMd5", "4897B06338422EAF274DE13D88703A1E");
Found : user_pref("extensions.BabylonToolbar.hmpg", false);
Found : user_pref("extensions.BabylonToolbar.id", "d472c08600000000000000234d7058c6");
Found : user_pref("extensions.BabylonToolbar.instlDay", "15370");
Found : user_pref("extensions.BabylonToolbar.instlRef", "sst");
Found : user_pref("extensions.BabylonToolbar.lastActv", "5");
Found : user_pref("extensions.BabylonToolbar.lastDP", 9);
Found : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.5.3.1717:21:39");
Found : user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "9.0");
Found : user_pref("extensions.BabylonToolbar.newTab", true);
Found : user_pref("extensions.BabylonToolbar.newTabUrl", "hxxp://search.babylon.com/?AF=109130&babsrc=NT_ss&[...]
Found : user_pref("extensions.BabylonToolbar.noFFXTlbr", false);
Found : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Found : user_pref("extensions.BabylonToolbar.propectorlck", 91031591);
Found : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Found : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Found : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Found : user_pref("extensions.BabylonToolbar.ptch_0717", true);
Found : user_pref("extensions.BabylonToolbar.sid", "2dd59d93f50242ee9d2352f44afb1ef3");
Found : user_pref("extensions.BabylonToolbar.smplGrp", "azb");
Found : user_pref("extensions.BabylonToolbar.srcExt", "ss");
Found : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Found : user_pref("extensions.BabylonToolbar.vrsn", "1.5.3.17");
Found : user_pref("extensions.BabylonToolbar.vrsnTs", "1.5.3.1717:21:39");
Found : user_pref("extensions.BabylonToolbar.vrsni", "1.5.3.17");
Found : user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
Found : user_pref("extensions.BabylonToolbar_i.babExt", "");
Found : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=109130");
Found : user_pref("extensions.BabylonToolbar_i.hardId", "d472c08600000000000000234d7058c6");
Found : user_pref("extensions.BabylonToolbar_i.id", "d472c08600000000000000234d7058c6");
Found : user_pref("extensions.BabylonToolbar_i.instlDay", "15370");
Found : user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
Found : user_pref("extensions.BabylonToolbar_i.newTab", true);
Found : user_pref("extensions.BabylonToolbar_i.newTabUrl", "hxxp://search.babylon.com/?AF=109130&babsrc=NT_s[...]
Found : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
Found : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
Found : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Found : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Found : user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
Found : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
Found : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1717:21:39");
Found : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");
Found : user_pref("extensions.engine@conduit.com.install-event-fired", true);
Found : user_pref("extensions.ffxtlbr@babylon.com.install-event-fired", true);
Found : user_pref("extensions.ffxtlbr@funmoods.com.install-event-fired", true);
Found : user_pref("extensions.funmoods.aflt", "iron2");
Found : user_pref("extensions.funmoods.autoRvrt", false);
Found : user_pref("extensions.funmoods.brwsrsrc", "ietlbr");
Found : user_pref("extensions.funmoods.cntry", "CZ");
Found : user_pref("extensions.funmoods.cv", "cv5");
Found : user_pref("extensions.funmoods.dfltLng", "");
Found : user_pref("extensions.funmoods.dfltSrch", true);
Found : user_pref("extensions.funmoods.dfltlng", "en");
Found : user_pref("extensions.funmoods.dfltsrch", true);
Found : user_pref("extensions.funmoods.dnsErr", true);
Found : user_pref("extensions.funmoods.envrmnt", "production");
Found : user_pref("extensions.funmoods.excTlbr", false);
Found : user_pref("extensions.funmoods.hdrMd5", "7F375DA8A9A5FCDDBF3CA1AC35B9E215");
Found : user_pref("extensions.funmoods.hmpg", true);
Found : user_pref("extensions.funmoods.hmpgUrl", "hxxp://searchfunmoods.com/?f=1&a=iron2&chnl=iron2&cd=2Xzuy[...]
Found : user_pref("extensions.funmoods.hrdid", "7A79055B1DB0C086");
Found : user_pref("extensions.funmoods.id", "7A79055B1DB0C086");
Found : user_pref("extensions.funmoods.instlDay", "15531");
Found : user_pref("extensions.funmoods.instlRef", "iron2");
Found : user_pref("extensions.funmoods.instlday", "15531");
Found : user_pref("extensions.funmoods.instlref", "iron2");
Found : user_pref("extensions.funmoods.isdcmntcmplt", true);
Found : user_pref("extensions.funmoods.keywordurl", "");
Found : user_pref("extensions.funmoods.lastVrsnTs", "1.5.23.2216:12:23");
Found : user_pref("extensions.funmoods.mntrvrsn", "1.3.0");
Found : user_pref("extensions.funmoods.newTab", true);
Found : user_pref("extensions.funmoods.newTabUrl", "hxxp://searchfunmoods.com/?f=2&a=iron2&chnl=iron2&cd=2Xz[...]
Found : user_pref("extensions.funmoods.newtab", true);
Found : user_pref("extensions.funmoods.newtaburl", "hxxp://searchfunmoods.com/?f=2&a=iron2&chnl=iron2&cd=2Xz[...]
Found : user_pref("extensions.funmoods.prdct", "funmoods");
Found : user_pref("extensions.funmoods.prtnrId", "funmoods");
Found : user_pref("extensions.funmoods.prtnrid", "funmoods");
Found : user_pref("extensions.funmoods.savedVrsnTs", "1");
Found : user_pref("extensions.funmoods.sg", "none");
Found : user_pref("extensions.funmoods.smplGrp", "none");
Found : user_pref("extensions.funmoods.smplgrp", "none");
Found : user_pref("extensions.funmoods.srch", "");
Found : user_pref("extensions.funmoods.srchPrvdr", "Search");
Found : user_pref("extensions.funmoods.srchprvdr", "Search");
Found : user_pref("extensions.funmoods.tlbrId", "base");
Found : user_pref("extensions.funmoods.tlbrSrchUrl", "hxxp://searchfunmoods.com/?f=3&a=iron2&chnl=iron2&cd=2[...]
Found : user_pref("extensions.funmoods.tlbrid", "base");
Found : user_pref("extensions.funmoods.tlbrsrchurl", "hxxp://searchfunmoods.com/?f=3&a=iron2&chnl=iron2&cd=2[...]
Found : user_pref("extensions.funmoods.vrsn", "1.5.23.22");
Found : user_pref("extensions.funmoods.vrsnTs", "1.5.23.2216:12:23");
Found : user_pref("extensions.funmoods.vrsni", "1.5.23.22");
Found : user_pref("extensions.funmoods.vrsnts", "1.5.23.2216:12:23");
Found : user_pref("extensions.funmoods_i.newTab", true);
Found : user_pref("extensions.funmoods_i.smplGrp", "none");
Found : user_pref("extensions.funmoods_i.vrsnTs", "1.5.23.2216:12:23");
Found : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=2&q=[...]
Found : user_pref("sweetim.toolbar.UserSelectedSaveSettings", "true");
Found : user_pref("sweetim.toolbar.Visibility.VisibilityGuardLastUnHide", "0");
Found : user_pref("sweetim.toolbar.Visibility.enable", "true");
Found : user_pref("sweetim.toolbar.Visibility.intervaldays", "7");
Found : user_pref("sweetim.toolbar.cda.DisableOveride.enable", "true");
Found : user_pref("sweetim.toolbar.cda.HideOveride.enable", "true");
Found : user_pref("sweetim.toolbar.cda.RemoveOveride.enable", "true");
Found : user_pref("sweetim.toolbar.cda.returnValue", "disable");
Found : user_pref("sweetim.toolbar.dialogs.0.enable", "true");
Found : user_pref("sweetim.toolbar.dialogs.0.handler", "chrome://sim_toolbar_package/content/optionsdialog-h[...]
Found : user_pref("sweetim.toolbar.dialogs.0.height", "335");
Found : user_pref("sweetim.toolbar.dialogs.0.id", "id_options_dialog");
Found : user_pref("sweetim.toolbar.dialogs.0.title", "$string.config.label;");
Found : user_pref("sweetim.toolbar.dialogs.0.url", "hxxp://www.sweetim.com/simffbar/options_remote_ff.asp?la[...]
Found : user_pref("sweetim.toolbar.dialogs.0.width", "761");
Found : user_pref("sweetim.toolbar.dialogs.1.enable", "true");
Found : user_pref("sweetim.toolbar.dialogs.1.handler", "chrome://sim_toolbar_package/content/exampledialog-h[...]
Found : user_pref("sweetim.toolbar.dialogs.1.height", "300");
Found : user_pref("sweetim.toolbar.dialogs.1.id", "id_example_dialog");
Found : user_pref("sweetim.toolbar.dialogs.1.title", "Example (unit-test) dialog");
Found : user_pref("sweetim.toolbar.dialogs.1.url", "chrome://sim_toolbar_package/content/exampledialog.html"[...]
Found : user_pref("sweetim.toolbar.dialogs.1.width", "500");
Found : user_pref("sweetim.toolbar.dialogs.2.enable", "true");
Found : user_pref("sweetim.toolbar.dialogs.2.handler", "chrome://sim_toolbar_package/content/cdadialog-handl[...]
Found : user_pref("sweetim.toolbar.dialogs.2.height", "150");
Found : user_pref("sweetim.toolbar.dialogs.2.id", "id_dialog_hide_disable_remove");
Found : user_pref("sweetim.toolbar.dialogs.2.title", "Option Dialog");
Found : user_pref("sweetim.toolbar.dialogs.2.url", "hxxp://www.sweetim.com/simffbar/simcdadialog.asp");
Found : user_pref("sweetim.toolbar.dialogs.2.width", "530");
Found : user_pref("sweetim.toolbar.dnscatch.domain-blacklist", ".*.sweetim.com/.*|.*.facebook.com/.*|.*.goog[...]
Found : user_pref("sweetim.toolbar.highlight.colors", "#FFFF00,#00FFE4,#5AFF00,#0087FF,#FFCC00,#FF00F0");
Found : user_pref("sweetim.toolbar.keywordUrlGuard.enable", "true");
Found : user_pref("sweetim.toolbar.logger.ConsoleHandler.MinReportLevel", "7");
Found : user_pref("sweetim.toolbar.logger.FileHandler.FileName", "ff-toolbar.log");
Found : user_pref("sweetim.toolbar.logger.FileHandler.MaxFileSize", "200000");
Found : user_pref("sweetim.toolbar.logger.FileHandler.MinReportLevel", "7");
Found : user_pref("sweetim.toolbar.mode.debug", "false");
Found : user_pref("sweetim.toolbar.newtab.created", "false");
Found : user_pref("sweetim.toolbar.newtab.enable", "true");
Found : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Found : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Found : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Found : user_pref("sweetim.toolbar.previous.keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT[...]
Found : user_pref("sweetim.toolbar.rc.url", "hxxp://www.sweetim.com/simffbar/rc.html?toolbar_version=$ITEM_V[...]
Found : user_pref("sweetim.toolbar.scripts.0.addcontextdiv", "true");
Found : user_pref("sweetim.toolbar.scripts.0.callback", "simVerification");
Found : user_pref("sweetim.toolbar.scripts.0.domain-blacklist", "");
Found : user_pref("sweetim.toolbar.scripts.0.domain-whitelist", "hxxp://(www.|apps.)?facebook\\.com.*");
Found : user_pref("sweetim.toolbar.scripts.0.elementid", "id_script_sim_fb");
Found : user_pref("sweetim.toolbar.scripts.0.enable", "true");
Found : user_pref("sweetim.toolbar.scripts.0.id", "id_script_fb");
Found : user_pref("sweetim.toolbar.scripts.0.url", "hxxp://sc.sweetim.com/apps/in/fb/infb.js");
Found : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Found : user_pref("sweetim.toolbar.scripts.2.addcontextdiv", "true");
Found : user_pref("sweetim.toolbar.scripts.2.callback", "simVerification");
Found : user_pref("sweetim.toolbar.scripts.2.domain-blacklist", "");
Found : user_pref("sweetim.toolbar.scripts.2.domain-whitelist", "hxxps://(www.|apps.)?facebook\\.com.*");
Found : user_pref("sweetim.toolbar.scripts.2.elementid", "id_script_sim_fb");
Found : user_pref("sweetim.toolbar.scripts.2.enable", "false");
Found : user_pref("sweetim.toolbar.scripts.2.id", "id_script_fb_hxxpS");
Found : user_pref("sweetim.toolbar.scripts.2.url", "hxxps://sc.sweetim.com/apps/in/fb/infb.js");
Found : user_pref("sweetim.toolbar.scripts.3.addcontextdiv", "false");
Found : user_pref("sweetim.toolbar.scripts.3.callback", "");
Found : user_pref("sweetim.toolbar.scripts.3.domain-blacklist", ".*.google..*|.*.bing..*|.*.live..*|.*.msn..[...]
Found : user_pref("sweetim.toolbar.scripts.3.domain-whitelist", "");
Found : user_pref("sweetim.toolbar.scripts.3.elementid", "id_predict_include_script");
Found : user_pref("sweetim.toolbar.scripts.3.enable", "false");
Found : user_pref("sweetim.toolbar.scripts.3.id", "id_script_prad");
Found : user_pref("sweetim.toolbar.scripts.3.url", "hxxp://cdn1.certified-apps.com/scripts/shared/enable.js?[...]
Found : user_pref("sweetim.toolbar.search.external", "<?xml version=\"1.0\"?><TOOLBAR><EXTERNAL_SEARCH engin[...]
Found : user_pref("sweetim.toolbar.search.history.capacity", "10");
Found : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "0");
Found : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "0");
Found : user_pref("sweetim.toolbar.searchguard.enable", "true");
Found : user_pref("sweetim.toolbar.searchguard.initialized_by_rc", "true");
Found : user_pref("sweetim.toolbar.simapp_id", "{A2C34F96-7C05-4CC1-8E74-63833DE939F9}");
Found : user_pref("sweetim.toolbar.urls.homepage", "hxxp://home.sweetim.com");
Found : user_pref("sweetim.toolbar.version", "1.7.0.3");

-\\ Google Chrome v24.0.1312.57

File : C:\Users\Sloukovi\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [60260 octets] - [18/02/2013 17:51:10]

########## EOF - C:\AdwCleaner[R1].txt - [60321 octets] ##########

[jaro3]

. Takže spusť znovu MbAM a dej Scan
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Ukaž výsledky
- ujisti se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Odstranit označené
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit
Můžeš sem pak vložit nový log z MbAM.

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Delete“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

[asdsad]

MbAM log:

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.70.0.1100
www.malwarebytes.org

Verze: v2013.02.18.07

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Sloukovi :: SLOUKOVI-PC [administrátor]

Ochrana: Povolena

18.2.2013 19:56:42
mbam-log-2013-02-18 (19-56-42).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 230637
Uplynulý čas: 11 minut, 41 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 8
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.FunMoods) -> Přesun do karantény a smazání se zdařilo.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.FunMoods) -> Přesun do karantény a smazání se zdařilo.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Funmoods) -> Přesun do karantény a smazání se zdařilo.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Funmoods) -> Přesun do karantény a smazání se zdařilo.
HKCU\Software\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh (PUP.Funmoods) -> Přesun do karantény a smazání se zdařilo.
HKCU\Software\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj (PUP.FunMoods) -> Přesun do karantény a smazání se zdařilo.
HKLM\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh (PUP.Funmoods) -> Přesun do karantény a smazání se zdařilo.
HKLM\SOFTWARE\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj (PUP.FunMoods) -> Přesun do karantény a smazání se zdařilo.

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 16
C:\Users\Sloukovi\AppData\Roaming\rundll32.exe (Trojan.Ransom.ANC) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Sloukovi\AppData\Roaming\System32\rundll32.exe (Trojan.Ransom.ANC) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Sloukovi\AppData\Roaming\System32\svchost.exe (Trojan.Ransom.ANC) -> Přesun do karantény a smazání se zdařilo.
C:\Downloads\GotClip_Setup.exe (PUP.Adware.Gotclip.ScamLotto) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Sloukovi\Downloads\888poker_installer.exe (PUP.Casino) -> Přesun do karantény a smazání se zdařilo.

[asdsad]

Adw log:
# AdwCleaner v2.112 - Logfile created 02/18/2013 at 20:19:54
# Updated 10/02/2013 by Xplode
# Operating system : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# User : Sloukovi - SLOUKOVI-PC
# Boot Mode : Normal
# Running from : C:\Users\Sloukovi\Downloads\adwcleaner0.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Program Files\Mozilla FireFox\Components\AskHPRFF.js
File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml
File Deleted : C:\user.js
File Deleted : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
File Deleted : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\searchplugins\Askcom.xml
File Deleted : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\searchplugins\Conduit.xml
File Deleted : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\searchplugins\daemon-search.xml
File Deleted : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\searchplugins\icqplugin.xml
File Deleted : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\searchplugins\icqplugin-1.xml
File Deleted : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\searchplugins\icqplugin-2.xml
File Deleted : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\searchplugins\icqplugin-3.xml
File Deleted : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\searchplugins\search.xml
File Deleted : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\searchplugins\SweetIm.xml
File Deleted : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\searchplugins\WebSearch.xml
File Deleted : C:\Windows\system32\conduitEngine.tmp
Folder Deleted : C:\Users\Sloukovi\AppData\LocalLow\Toolbar4
Folder Deleted : C:\Users\Sloukovi\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Sloukovi\AppData\Roaming\eType
Folder Deleted : C:\Users\Sloukovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eType
Folder Deleted : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\Conduit
Folder Deleted : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\ConduitCommon
Folder Deleted : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\ConduitEngine
Folder Deleted : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\CT1750559
Folder Deleted : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\CT2786678
Folder Deleted : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
Folder Deleted : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}
Folder Deleted : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\SweetIMToolbarData
Folder Deleted : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\SweetPacksToolbarData

***** [Registry] *****

Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\AppDataLow\AskBarDis
Key Deleted : HKCU\Software\AppDataLow\Software\conduitEngine
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\Toolbar
Key Deleted : HKCU\Software\AppDataLow\SProtector
Key Deleted : HKCU\Software\BabylonChromeExtension
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\DSNR Labs
Key Deleted : HKCU\Software\Headlight
Key Deleted : HKCU\Software\Iminent
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{338B4DFE-2E2C-4338-9E41-E176D497299E}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKLM\Software\APN
Key Deleted : HKLM\Software\AskToolbar
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{AD25754E-D76C-42B3-A335-2F81478B722F}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{338B4DFE-2E2C-4338-9E41-E176D497299E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{57CADC46-58FF-4105-B733-5A9F3FC9783C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler
Key Deleted : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler.1
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\SMTTB2009.IEToolbar
Key Deleted : HKLM\SOFTWARE\Classes\SMTTB2009.IEToolbar.1
Key Deleted : HKLM\SOFTWARE\Classes\SMTTB2009.SMTTB2009
Key Deleted : HKLM\SOFTWARE\Classes\SMTTB2009.SMTTB2009.3
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.SMTTB2009
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.SMTTB2009.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Api
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Api.1
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Layers
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Layers.1
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\conduitEngine
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jplinpmadfkdgipabgcdchbdikologlh
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5BA7FE99-938D-4F83-8844-7A07ED9EC393}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ApnUpdater
Key Deleted : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BabylonToolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Iminent
Key Deleted : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IminentMessenger
Key Deleted : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SweetIM
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\120DFADEB50841F408F04D2A278F9509
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B5BAE2ED018083A4C8DA86D6E3F4B024
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Conduit Engine
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\SP Global
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKLM\Software\Tarma Installer
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{338B4DFE-2E2C-4338-9E41-E176D497299E}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]

[asdsad]

2. část:

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16464

Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - ICQ Search] = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=sm --> hxxp://www.google.com
Deleted : [HKCU\Software\Microsoft\Internet Explorer\Main - Backup.Old.Start Page]

-\\ Mozilla Firefox v9.0.1 (cs)

File : C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\prefs.js

C:\Users\Sloukovi\AppData\Roaming\Mozilla\Firefox\Profiles\cpsxb2qw.default\user.js ... Deleted !

Deleted : user_pref("CT1750559..clientLogIsEnabled", false);
Deleted : user_pref("CT1750559..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
Deleted : user_pref("CT1750559..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
Deleted : user_pref("CT1750559.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Deleted : user_pref("CT1750559.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Deleted : user_pref("CT1750559.BrowserCompStateIsOpen_129502713039250930", true);
Deleted : user_pref("CT1750559.BrowserCompStateIsOpen_129544988592463877", true);
Deleted : user_pref("CT1750559.CT1750559", "CT1750559");
Deleted : user_pref("CT1750559.CurrentServerDate", "9-11-2012");
Deleted : user_pref("CT1750559.DSInstall", true);
Deleted : user_pref("CT1750559.DialogsAlignMode", "LTR");
Deleted : user_pref("CT1750559.DialogsGetterLastCheckTime", "Fri Nov 09 2012 16:35:52 GMT+0100");
Deleted : user_pref("CT1750559.DownloadReferralCookieData", "");
Deleted : user_pref("CT1750559.FirstServerDate", "9-11-2012");
Deleted : user_pref("CT1750559.FirstTime", true);
Deleted : user_pref("CT1750559.FirstTimeFF3", true);
Deleted : user_pref("CT1750559.FirstTimeHiddenVer", true);
Deleted : user_pref("CT1750559.FixPageNotFoundErrors", true);
Deleted : user_pref("CT1750559.GroupingServerCheckInterval", 1440);
Deleted : user_pref("CT1750559.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Deleted : user_pref("CT1750559.HPInstall", true);
Deleted : user_pref("CT1750559.HasUserGlobalKeys", true);
Deleted : user_pref("CT1750559.HomePageProtectorEnabled", true);
Deleted : user_pref("CT1750559.HomepageBeforeUnload", "hxxp://search.conduit.com/?ctid=CT1750559&SearchSource=[...]
Deleted : user_pref("CT1750559.Initialize", true);
Deleted : user_pref("CT1750559.InitializeCommonPrefs", true);
Deleted : user_pref("CT1750559.InstallationAndCookieDataSentCount", 1);
Deleted : user_pref("CT1750559.InstallationType", "Unknown");
Deleted : user_pref("CT1750559.InstalledDate", "Fri Nov 09 2012 16:35:54 GMT+0100");
Deleted : user_pref("CT1750559.InvalidateCache", false);
Deleted : user_pref("CT1750559.IsGrouping", false);
Deleted : user_pref("CT1750559.IsInitSetupIni", true);
Deleted : user_pref("CT1750559.IsMulticommunity", false);
Deleted : user_pref("CT1750559.IsOpenThankYouPage", true);
Deleted : user_pref("CT1750559.IsOpenUninstallPage", true);
Deleted : user_pref("CT1750559.IsProtectorsInit", true);
Deleted : user_pref("CT1750559.LanguagePackLastCheckTime", "Fri Nov 09 2012 16:35:53 GMT+0100");
Deleted : user_pref("CT1750559.LanguagePackReloadIntervalMM", 1440);
Deleted : user_pref("CT1750559.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Deleted : user_pref("CT1750559.LastLogin_3.16.0.3", "Fri Nov 09 2012 16:36:12 GMT+0100");
Deleted : user_pref("CT1750559.LatestVersion", "3.16.0.3");
Deleted : user_pref("CT1750559.Locale", "en-us");
Deleted : user_pref("CT1750559.MCDetectTooltipHeight", "83");
Deleted : user_pref("CT1750559.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Deleted : user_pref("CT1750559.MCDetectTooltipWidth", "295");
Deleted : user_pref("CT1750559.MyStuffEnabledAtInstallation", true);
Deleted : user_pref("CT1750559.OriginalFirstVersion", "3.16.0.3");
Deleted : user_pref("CT1750559.RadioIsPodcast", false);
Deleted : user_pref("CT1750559.RadioLastCheckTime", "Fri Nov 09 2012 16:35:47 GMT+0100");
Deleted : user_pref("CT1750559.RadioLastUpdateIPServer", "3");
Deleted : user_pref("CT1750559.RadioLastUpdateServer", "128929877726170000");
Deleted : user_pref("CT1750559.RadioMediaID", "11237206");
Deleted : user_pref("CT1750559.RadioMediaType", "Media Player");
Deleted : user_pref("CT1750559.RadioMenuSelectedID", "EBRadioMenu_CT175055911237206");
Deleted : user_pref("CT1750559.RadioShrinkedFromSetup", false);
Deleted : user_pref("CT1750559.RadioStationName", "1.FM%20Dance");
Deleted : user_pref("CT1750559.RadioStationURL", "hxxp://dance.1.fm/energydance128k?MSWMExt=.asf");
Deleted : user_pref("CT1750559.SavedHomepage", "hxxp://search.appsarefun.info/");
Deleted : user_pref("CT1750559.SearchCaption", "BS Player Customized Web Search");
Deleted : user_pref("CT1750559.SearchEngineBeforeUnload", "BS Player Customized Web Search");
Deleted : user_pref("CT1750559.SearchFromAddressBarIsInit", true);
Deleted : user_pref("CT1750559.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT175[...]
Deleted : user_pref("CT1750559.SearchInNewTabEnabled", true);
Deleted : user_pref("CT1750559.SearchInNewTabIntervalMM", 1440);
Deleted : user_pref("CT1750559.SearchInNewTabLastCheckTime", "Fri Nov 09 2012 16:36:12 GMT+0100");
Deleted : user_pref("CT1750559.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Deleted : user_pref("CT1750559.SearchProtectorEnabled", true);
Deleted : user_pref("CT1750559.SearchProtectorToolbarDisabled", true);
Deleted : user_pref("CT1750559.SendProtectorDataViaLogin", true);
Deleted : user_pref("CT1750559.ServiceMapLastCheckTime", "Fri Nov 09 2012 16:35:42 GMT+0100");
Deleted : user_pref("CT1750559.SettingsLastCheckTime", "Fri Nov 09 2012 16:35:43 GMT+0100");
Deleted : user_pref("CT1750559.SettingsLastUpdate", "1352140586");
Deleted : user_pref("CT1750559.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT1750559&SearchSource=13");
Deleted : user_pref("CT1750559.ThirdPartyComponentsInterval", 504);
Deleted : user_pref("CT1750559.ThirdPartyComponentsLastCheck", "Fri Nov 09 2012 16:35:42 GMT+0100");
Deleted : user_pref("CT1750559.ThirdPartyComponentsLastUpdate", "1331805997");
Deleted : user_pref("CT1750559.ToolbarDisabled", true);
Deleted : user_pref("CT1750559.ToolbarShrinkedFromSetup", false);
Deleted : user_pref("CT1750559.TrusteLinkUrl", "hxxp://trust.conduit.com/CT1750559");
Deleted : user_pref("CT1750559.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...]
Deleted : user_pref("CT1750559.UserID", "UN70188962295739386");
Deleted : user_pref("CT1750559.WeatherNetwork", "");
Deleted : user_pref("CT1750559.WeatherPollDate", "Fri Nov 09 2012 16:35:52 GMT+0100");
Deleted : user_pref("CT1750559.WeatherUnit", "C");
Deleted : user_pref("CT1750559.alertChannelId", "31130");
Deleted : user_pref("CT1750559.backendstorage.appbuttondisablenull", "30");
Deleted : user_pref("CT1750559.backendstorage.twitter_v1.8.0_twitter_app_open_t_f", "66616C7365");
Deleted : user_pref("CT1750559.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...]
Deleted : user_pref("CT1750559.globalFirstTimeInfoLastCheckTime", "Fri Nov 09 2012 16:35:51 GMT+0100");
Deleted : user_pref("CT1750559.homepageProtectorEnableByLogin", true);
Deleted : user_pref("CT1750559.initDone", true);
Deleted : user_pref("CT1750559.isAppTrackingManagerOn", false);
Deleted : user_pref("CT1750559.isFirstRadioInstallation", false);
Deleted : user_pref("CT1750559.myStuffEnabled", true);
Deleted : user_pref("CT1750559.myStuffPublihserMinWidth", 400);
Deleted : user_pref("CT1750559.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Deleted : user_pref("CT1750559.myStuffServiceIntervalMM", 1440);
Deleted : user_pref("CT1750559.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Deleted : user_pref("CT1750559.navigateToUrlOnSearch", false);
Deleted : user_pref("CT1750559.revertSettingsEnabled", true);
Deleted : user_pref("CT1750559.searchProtectorDialogDelayInSec", 10);
Deleted : user_pref("CT1750559.searchProtectorEnableByLogin", true);
Deleted : user_pref("CT1750559.testingCtid", "");
Deleted : user_pref("CT1750559.toolbarAppMetaDataLastCheckTime", "Fri Nov 09 2012 16:35:44 GMT+0100");
Deleted : user_pref("CT1750559.toolbarContextMenuLastCheckTime", "Fri Nov 09 2012 16:35:53 GMT+0100");
Deleted : user_pref("CT2786678..clientLogIsEnabled", false);
Deleted : user_pref("CT2786678..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
Deleted : user_pref("CT2786678..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
Deleted : user_pref("CT2786678.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Deleted : user_pref("CT2786678.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Deleted : user_pref("CT2786678.BrowserCompStateIsOpen_129579220236217502", true);
Deleted : user_pref("CT2786678.CTID", "CT2786678");
Deleted : user_pref("CT2786678.CurrentServerDate", "9-11-2012");
Deleted : user_pref("CT2786678.DSInstall", true);
Deleted : user_pref("CT2786678.DialogsAlignMode", "LTR");
Deleted : user_pref("CT2786678.DialogsGetterLastCheckTime", "Fri Nov 09 2012 16:35:57 GMT+0100");
Deleted : user_pref("CT2786678.DownloadReferralCookieData", "");
Deleted : user_pref("CT2786678.EMailNotifierPollDate", "Fri Nov 09 2012 16:35:45 GMT+0100");
Deleted : user_pref("CT2786678.FeedLastCount5690698542593514850", 226);
Deleted : user_pref("CT2786678.FeedPollDate2429156812186649977", "Fri Nov 09 2012 16:35:53 GMT+0100");
Deleted : user_pref("CT2786678.FeedPollDate2429156813040823546", "Fri Nov 09 2012 16:35:46 GMT+0100");
Deleted : user_pref("CT2786678.FeedPollDate2429156813130095866", "Fri Nov 09 2012 16:35:46 GMT+0100");
Deleted : user_pref("CT2786678.FeedPollDate2429156813224203613", "Fri Nov 09 2012 16:35:46 GMT+0100");
Deleted : user_pref("CT2786678.FeedPollDate2429156813230837251", "Fri Nov 09 2012 16:35:53 GMT+0100");
Deleted : user_pref("CT2786678.FeedPollDate2429156813454291735", "Fri Nov 09 2012 16:35:53 GMT+0100");
Deleted : user_pref("CT2786678.FeedPollDate2429156813729834876", "Fri Nov 09 2012 16:35:46 GMT+0100");
Deleted : user_pref("CT2786678.FeedPollDate2429156813860870021", "Fri Nov 09 2012 16:35:53 GMT+0100");
Deleted : user_pref("CT2786678.FeedPollDate2429156814264681793", "Fri Nov 09 2012 16:35:53 GMT+0100");
Deleted : user_pref("CT2786678.FeedPollDate2429156814863075366", "Fri Nov 09 2012 16:35:46 GMT+0100");
Deleted : user_pref("CT2786678.FeedPollDate2429156815257761081", "Fri Nov 09 2012 16:35:46 GMT+0100");
Deleted : user_pref("CT2786678.FeedTTL2429156813040823546", 15);
Deleted : user_pref("CT2786678.FeedTTL2429156813130095866", 10);
Deleted : user_pref("CT2786678.FeedTTL2429156813454291735", 5);
Deleted : user_pref("CT2786678.FeedTTL2429156814264681793", 5);
Deleted : user_pref("CT2786678.FirstServerDate", "9-11-2012");
Deleted : user_pref("CT2786678.FirstTime", true);
Deleted : user_pref("CT2786678.FirstTimeFF3", true);
Deleted : user_pref("CT2786678.FirstTimeHiddenVer", true);
Deleted : user_pref("CT2786678.FixPageNotFoundErrors", true);
Deleted : user_pref("CT2786678.GroupingServerCheckInterval", 1440);
Deleted : user_pref("CT2786678.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Deleted : user_pref("CT2786678.HPInstall", false);
Deleted : user_pref("CT2786678.HasUserGlobalKeys", true);
Deleted : user_pref("CT2786678.HomePageProtectorEnabled", false);
Deleted : user_pref("CT2786678.HomepageBeforeUnload", "hxxp://search.appsarefun.info/");
Deleted : user_pref("CT2786678.Initialize", true);
Deleted : user_pref("CT2786678.InitializeCommonPrefs", true);
Deleted : user_pref("CT2786678.InstallationAndCookieDataSentCount", 1);
Deleted : user_pref("CT2786678.InstallationType", "Unknown");
Deleted : user_pref("CT2786678.InstalledDate", "Fri Nov 09 2012 16:35:58 GMT+0100");
Deleted : user_pref("CT2786678.IsGrouping", false);
Deleted : user_pref("CT2786678.IsInitSetupIni", true);
Deleted : user_pref("CT2786678.IsMulticommunity", false);
Deleted : user_pref("CT2786678.IsOpenThankYouPage", true);
Deleted : user_pref("CT2786678.IsOpenUninstallPage", true);
Deleted : user_pref("CT2786678.IsProtectorsInit", true);
Deleted : user_pref("CT2786678.LanguagePackLastCheckTime", "Fri Nov 09 2012 16:35:52 GMT+0100");
Deleted : user_pref("CT2786678.LanguagePackReloadIntervalMM", 1440);
Deleted : user_pref("CT2786678.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Deleted : user_pref("CT2786678.LastLogin_3.16.0.3", "Fri Nov 09 2012 16:36:04 GMT+0100");
Deleted : user_pref("CT2786678.LatestVersion", "3.16.0.3");
Deleted : user_pref("CT2786678.Locale", "en");
Deleted : user_pref("CT2786678.MCDetectTooltipHeight", "83");
Deleted : user_pref("CT2786678.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Deleted : user_pref("CT2786678.MCDetectTooltipWidth", "295");
Deleted : user_pref("CT2786678.MyStuffEnabledAtInstallation", true);
Deleted : user_pref("CT2786678.OriginalFirstVersion", "3.16.0.3");
Deleted : user_pref("CT2786678.SearchCaption", "uTorrentBar Customized Web Search");
Deleted : user_pref("CT2786678.SearchEngineBeforeUnload", "BS Player Customized Web Search");
Deleted : user_pref("CT2786678.SearchFromAddressBarIsInit", true);
Deleted : user_pref("CT2786678.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT278[...]
Deleted : user_pref("CT2786678.SearchInNewTabEnabled", true);
Deleted : user_pref("CT2786678.SearchInNewTabIntervalMM", 1440);
Deleted : user_pref("CT2786678.SearchInNewTabLastCheckTime", "Fri Nov 09 2012 16:36:04 GMT+0100");
Deleted : user_pref("CT2786678.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Deleted : user_pref("CT2786678.SearchInNewTabUserEnabled", false);
Deleted : user_pref("CT2786678.SearchProtectorEnabled", false);
Deleted : user_pref("CT2786678.SearchProtectorToolbarDisabled", true);
Deleted : user_pref("CT2786678.SendProtectorDataViaLogin", true);
Deleted : user_pref("CT2786678.ServiceMapLastCheckTime", "Fri Nov 09 2012 16:35:42 GMT+0100");
Deleted : user_pref("CT2786678.SettingsLastCheckTime", "Fri Nov 09 2012 16:35:43 GMT+0100");
Deleted : user_pref("CT2786678.SettingsLastUpdate", "1352140586");
Deleted : user_pref("CT2786678.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT2786678&SearchSource=13");
Deleted : user_pref("CT2786678.ThirdPartyComponentsLastCheck", "Fri Nov 09 2012 16:35:42 GMT+0100");
Deleted : user_pref("CT2786678.ToolbarDisabled", true);
Deleted : user_pref("CT2786678.ToolbarShrinkedFromSetup", false);
Deleted : user_pref("CT2786678.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2786678");
Deleted : user_pref("CT2786678.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...]
Deleted : user_pref("CT2786678.UserID", "UN35527322830802877");
Deleted : user_pref("CT2786678.WeatherNetwork", "");
Deleted : user_pref("CT2786678.WeatherPollDate", "Fri Nov 09 2012 16:35:52 GMT+0100");
Deleted : user_pref("CT2786678.WeatherUnit", "C");
Deleted : user_pref("CT2786678.alertChannelId", "1178763");
Deleted : user_pref("CT2786678.backendstorage.cbcountry_001", "435A");
Deleted : user_pref("CT2786678.backendstorage.cbfirsttime", "467269204E6F7620303920323031322031363A33363A30352[...]
Deleted : user_pref("CT2786678.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...]
Deleted : user_pref("CT2786678.globalFirstTimeInfoLastCheckTime", "Fri Nov 09 2012 16:35:55 GMT+0100");
Deleted : user_pref("CT2786678.homepageProtectorEnableByLogin", true);
Deleted : user_pref("CT2786678.initDone", true);
Deleted : user_pref("CT2786678.isAppTrackingManagerOn", false);
Deleted : user_pref("CT2786678.myStuffEnabled", true);
Deleted : user_pref("CT2786678.myStuffPublihserMinWidth", 400);
Deleted : user_pref("CT2786678.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Deleted : user_pref("CT2786678.myStuffServiceIntervalMM", 1440);
Deleted : user_pref("CT2786678.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Deleted : user_pref("CT2786678.navigateToUrlOnSearch", false);
Deleted : user_pref("CT2786678.revertSettingsEnabled", true);
Deleted : user_pref("CT2786678.searchProtectorDialogDelayInSec", 10);
Deleted : user_pref("CT2786678.searchProtectorEnableByLogin", true);
Deleted : user_pref("CT2786678.testingCtid", "");
Deleted : user_pref("CT2786678.toolbarAppMetaDataLastCheckTime", "Fri Nov 09 2012 16:35:45 GMT+0100");
Deleted : user_pref("CT2786678.toolbarContextMenuLastCheckTime", "Fri Nov 09 2012 16:35:52 GMT+0100");
Deleted : user_pref("CommunityToolbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT1750559&Search[...]
Deleted : user_pref("CommunityToolbar.ConduitSearchList", "uTorrentBar Customized Web Search,uTorrentBar Custo[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit. ... /CT1750559[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit. ... /CT2786678[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://alert.services.conduit.com/Alert ... mx/GetHost[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... 1174448/CZ", "\"0\"[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/31130/30609/CZ", "\"0\"");
Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... /905414/CZ", "\"0\"")[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT1750559", [...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT2786678", [...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... tenApps&lo[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... tenApps&lo[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... erApps&loc[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... erApps&loc[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... redApps&lo[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... redApps&lo[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... lbar&local[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... lbar&local[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-ser ... rt/dlg.pkg", "\[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-se ... ?ver=3.3.3[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.12[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.12[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.13[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.14[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.15[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... g?ver=3.16[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... kg?ver=3.9.[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT1750559",[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT2786678",[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... r=FF&lut=0", "63[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... ut=3/13/20[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... =EB_LOCALE",[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... ?locale=en", "\"e20[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... cale=en-us", "\"[...]
Deleted : user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
Deleted : user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
Deleted : user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
Deleted : user_pref("CommunityToolbar.IsEngineShown", true);
Deleted : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Deleted : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Sloukovi\\AppData\\Roaming\\Mozilla[...]
Deleted : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.16.0.3");
Deleted : user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine");
Deleted : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "engine@conduit.com");
Deleted : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine");
Deleted : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.pr[...]
Deleted : user_pref("CommunityToolbar.ToolbarsList", "ConduitEngine,CT2786678,CT1750559");
Deleted : user_pref("CommunityToolbar.ToolbarsList2", "CT2786678,CT1750559");
Deleted : user_pref("CommunityToolbar.ToolbarsList4", "CT2786678,CT1750559");
Deleted : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Fri Jun 03 2011 19:38:23 GMT+02[...]
Deleted : user_pref("CommunityToolbar.alert.alertInfoInterval", 60);
Deleted : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Fri Jun 10 2011 19:54:41 GMT+0200");
Deleted : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Deleted : user_pref("CommunityToolbar.alert.locale", "en");
Deleted : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Deleted : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Tue Jun 28 2011 20:33:56 GMT+0200");
Deleted : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1305622559");
Deleted : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Deleted : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Deleted : user_pref("CommunityToolbar.alert.showTrayIcon", false);
Deleted : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Deleted : user_pref("CommunityToolbar.alert.userId", "{3461da87-a2a9-455b-bcc8-46e2e989e5c0}");
Deleted : user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Wed Feb 22 2012 20:40:07 GMT+0100");
Deleted : user_pref("CommunityToolbar.globalUserId", "04e6ddbd-2199-4905-ada1-3f0822822cfa");
Deleted : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Deleted : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Deleted : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT1750559");
Deleted : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Fri Nov 09 2012 16:35:4[...]
Deleted : user_pref("CommunityToolbar.notifications.alertEnabled", true);
Deleted : user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440);
Deleted : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Fri Nov 09 2012 16:36:03 GMT+010[...]
Deleted : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
Deleted : user_pref("CommunityToolbar.notifications.locale", "en");
Deleted : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
Deleted : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Fri Nov 09 2012 16:35:42 GMT+0100");
Deleted : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
Deleted : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
Deleted : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
Deleted : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
Deleted : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
Deleted : user_pref("CommunityToolbar.notifications.userId", "4709cdca-0bb6-46cb-97ed-c523772c4312");
Deleted : user_pref("CommunityToolbar.originalHomepage", "hxxp://www.seznam.cz/");
Deleted : user_pref("CommunityToolbar.originalSearchEngine", "Ask.com");
Deleted : user_pref("ConduitEngine.AppTrackingLastCheckTime", "Fri Jun 03 2011 22:38:24 GMT+0200");
Deleted : user_pref("ConduitEngine.CTID", "ConduitEngine");
Deleted : user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Mon Jun 27 2011 17:38:07 GMT+0200");
Deleted : user_pref("ConduitEngine.FirstServerDate", "06/03/2011 20");
Deleted : user_pref("ConduitEngine.FirstTime", true);
Deleted : user_pref("ConduitEngine.FirstTimeFF3", true);
Deleted : user_pref("ConduitEngine.HasUserGlobalKeys", true);
Deleted : user_pref("ConduitEngine.Initialize", true);
Deleted : user_pref("ConduitEngine.InitializeCommonPrefs", true);
Deleted : user_pref("ConduitEngine.InstalledDate", "Fri Jun 03 2011 19:38:25 GMT+0200");
Deleted : user_pref("ConduitEngine.IsMulticommunity", false);
Deleted : user_pref("ConduitEngine.IsOpenThankYouPage", false);
Deleted : user_pref("ConduitEngine.IsOpenUninstallPage", true);
Deleted : user_pref("ConduitEngine.LanguagePackLastCheckTime", "Tue Jun 28 2011 20:33:59 GMT+0200");
Deleted : user_pref("ConduitEngine.LastLogin_3.3.3.2", "Tue Jun 28 2011 20:33:59 GMT+0200");
Deleted : user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Deleted : user_pref("ConduitEngine.SettingsLastCheckTime", "Tue Jun 28 2011 20:33:59 GMT+0200");
Deleted : user_pref("ConduitEngine.UserID", "UN23831497472481866");
Deleted : user_pref("ConduitEngine.componentAlertEnabled", false);
Deleted : user_pref("ConduitEngine.engineLocale", "cs");
Deleted : user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Tue Jun 28 2011 20:33:59 GMT+0200");
Deleted : user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Tue Jun 28 2011 20:33:59 GMT+0200");
Deleted : user_pref("ConduitEngine.initDone", true);
Deleted : user_pref("ConduitEngine.isAppTrackingManagerOn", true);
Deleted : user_pref("ConduitEngine.usagesFlag", 2);
Deleted : user_pref("aol_toolbar.default.homepage.check", false);
Deleted : user_pref("aol_toolbar.default.search.check", false);
Deleted : user_pref("backup.old.browser.search.selectedEngine", "Ask.com");
Deleted : user_pref("backup.old.browser.startup.homepage", "hxxp://search.babylon.com/?babsrc=HP_Prot");
Deleted : user_pref("browser.babylon.HPOnNewTab", "search.babylon.com");
Deleted : user_pref("browser.search.defaultengine", "Ask.com");
Deleted : user_pref("browser.search.defaultenginename", "WebSearch");
Deleted : user_pref("browser.search.defaultenginename,S", "WebSearch");
Deleted : user_pref("browser.search.defaultthis.engineName", "BS Player Customized Web Search");
Deleted : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&Sea[...]
Deleted : user_pref("browser.search.order.1", "WebSearch");
Deleted : user_pref("browser.search.order.1,S", "WebSearch");
Deleted : user_pref("browser.search.selectedEngine", "BS Player Customized Web Search");
Deleted : user_pref("browser.search.selectedEngine,S", "WebSearch");
Deleted : user_pref("browser.startup.homepage", "hxxp://search.conduit.com/?ctid=CT1750559&SearchSource=13");
Deleted : user_pref("extensions.BabylonToolbar.admin", false);
Deleted : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Deleted : user_pref("extensions.BabylonToolbar.babExt", "");
Deleted : user_pref("extensions.BabylonToolbar.babTrack", "affID=109130");
Deleted : user_pref("extensions.BabylonToolbar.bbDpng", 9);
Deleted : user_pref("extensions.BabylonToolbar.cntry", "CZ");
Deleted : user_pref("extensions.BabylonToolbar.dfltSrch", false);
Deleted : user_pref("extensions.BabylonToolbar.excTlbr", false);
Deleted : user_pref("extensions.BabylonToolbar.firstRun", false);
Deleted : user_pref("extensions.BabylonToolbar.hdrMd5", "4897B06338422EAF274DE13D88703A1E");
Deleted : user_pref("extensions.BabylonToolbar.hmpg", false);
Deleted : user_pref("extensions.BabylonToolbar.id", "d472c08600000000000000234d7058c6");
Deleted : user_pref("extensions.BabylonToolbar.instlDay", "15370");
Deleted : user_pref("extensions.BabylonToolbar.instlRef", "sst");
Deleted : user_pref("extensions.BabylonToolbar.lastActv", "5");
Deleted : user_pref("extensions.BabylonToolbar.lastDP", 9);
Deleted : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.5.3.1717:21:39");
Deleted : user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "9.0");
Deleted : user_pref("extensions.BabylonToolbar.newTab", true);
Deleted : user_pref("extensions.BabylonToolbar.newTabUrl", "hxxp://search.babylon.com/?AF=109130&babsrc=NT_ss&[...]
Deleted : user_pref("extensions.BabylonToolbar.noFFXTlbr", false);
Deleted : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Deleted : user_pref("extensions.BabylonToolbar.propectorlck", 91031591);
Deleted : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Deleted : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Deleted : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Deleted : user_pref("extensions.BabylonToolbar.ptch_0717", true);
Deleted : user_pref("extensions.BabylonToolbar.sid", "2dd59d93f50242ee9d2352f44afb1ef3");
Deleted : user_pref("extensions.BabylonToolbar.smplGrp", "azb");
Deleted : user_pref("extensions.BabylonToolbar.srcExt", "ss");
Deleted : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Deleted : user_pref("extensions.BabylonToolbar.vrsn", "1.5.3.17");
Deleted : user_pref("extensions.BabylonToolbar.vrsnTs", "1.5.3.1717:21:39");
Deleted : user_pref("extensions.BabylonToolbar.vrsni", "1.5.3.17");
Deleted : user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
Deleted : user_pref("extensions.BabylonToolbar_i.babExt", "");
Deleted : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=109130");
Deleted : user_pref("extensions.BabylonToolbar_i.hardId", "d472c08600000000000000234d7058c6");
Deleted : user_pref("extensions.BabylonToolbar_i.id", "d472c08600000000000000234d7058c6");
Deleted : user_pref("extensions.BabylonToolbar_i.instlDay", "15370");
Deleted : user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
Deleted : user_pref("extensions.BabylonToolbar_i.newTab", true);
Deleted : user_pref("extensions.BabylonToolbar_i.newTabUrl", "hxxp://search.babylon.com/?AF=109130&babsrc=NT_s[...]
Deleted : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
Deleted : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
Deleted : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Deleted : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Deleted : user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
Deleted : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
Deleted : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1717:21:39");
Deleted : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");
Deleted : user_pref("extensions.engine@conduit.com.install-event-fired", true);
Deleted : user_pref("extensions.ffxtlbr@babylon.com.install-event-fired", true);
Deleted : user_pref("extensions.ffxtlbr@funmoods.com.install-event-fired", true);
Deleted : user_pref("extensions.funmoods.aflt", "iron2");
Deleted : user_pref("extensions.funmoods.autoRvrt", false);
Deleted : user_pref("extensions.funmoods.brwsrsrc", "ietlbr");
Deleted : user_pref("extensions.funmoods.cntry", "CZ");
Deleted : user_pref("extensions.funmoods.cv", "cv5");
Deleted : user_pref("extensions.funmoods.dfltLng", "");
Deleted : user_pref("extensions.funmoods.dfltSrch", true);
Deleted : user_pref("extensions.funmoods.dfltlng", "en");
Deleted : user_pref("extensions.funmoods.dfltsrch", true);
Deleted : user_pref("extensions.funmoods.dnsErr", true);
Deleted : user_pref("extensions.funmoods.envrmnt", "production");
Deleted : user_pref("extensions.funmoods.excTlbr", false);
Deleted : user_pref("extensions.funmoods.hdrMd5", "7F375DA8A9A5FCDDBF3CA1AC35B9E215");
Deleted : user_pref("extensions.funmoods.hmpg", true);
Deleted : user_pref("extensions.funmoods.hmpgUrl", "hxxp://searchfunmoods.com/?f=1&a=iron2&chnl=iron2&cd=2Xzuy[...]
Deleted : user_pref("extensions.funmoods.hrdid", "7A79055B1DB0C086");
Deleted : user_pref("extensions.funmoods.id", "7A79055B1DB0C086");
Deleted : user_pref("extensions.funmoods.instlDay", "15531");
Deleted : user_pref("extensions.funmoods.instlRef", "iron2");
Deleted : user_pref("extensions.funmoods.instlday", "15531");
Deleted : user_pref("extensions.funmoods.instlref", "iron2");
Deleted : user_pref("extensions.funmoods.isdcmntcmplt", true);
Deleted : user_pref("extensions.funmoods.keywordurl", "");
Deleted : user_pref("extensions.funmoods.lastVrsnTs", "1.5.23.2216:12:23");
Deleted : user_pref("extensions.funmoods.mntrvrsn", "1.3.0");
Deleted : user_pref("extensions.funmoods.newTab", true);
Deleted : user_pref("extensions.funmoods.newTabUrl", "hxxp://searchfunmoods.com/?f=2&a=iron2&chnl=iron2&cd=2Xz[...]
Deleted : user_pref("extensions.funmoods.newtab", true);
Deleted : user_pref("extensions.funmoods.newtaburl", "hxxp://searchfunmoods.com/?f=2&a=iron2&chnl=iron2&cd=2Xz[...]
Deleted : user_pref("extensions.funmoods.prdct", "funmoods");
Deleted : user_pref("extensions.funmoods.prtnrId", "funmoods");
Deleted : user_pref("extensions.funmoods.prtnrid", "funmoods");
Deleted : user_pref("extensions.funmoods.savedVrsnTs", "1");
Deleted : user_pref("extensions.funmoods.sg", "none");
Deleted : user_pref("extensions.funmoods.smplGrp", "none");
Deleted : user_pref("extensions.funmoods.smplgrp", "none");
Deleted : user_pref("extensions.funmoods.srch", "");
Deleted : user_pref("extensions.funmoods.srchPrvdr", "Search");
Deleted : user_pref("extensions.funmoods.srchprvdr", "Search");
Deleted : user_pref("extensions.funmoods.tlbrId", "base");
Deleted : user_pref("extensions.funmoods.tlbrSrchUrl", "hxxp://searchfunmoods.com/?f=3&a=iron2&chnl=iron2&cd=2[...]
Deleted : user_pref("extensions.funmoods.tlbrid", "base");
Deleted : user_pref("extensions.funmoods.tlbrsrchurl", "hxxp://searchfunmoods.com/?f=3&a=iron2&chnl=iron2&cd=2[...]
Deleted : user_pref("extensions.funmoods.vrsn", "1.5.23.22");
Deleted : user_pref("extensions.funmoods.vrsnTs", "1.5.23.2216:12:23");
Deleted : user_pref("extensions.funmoods.vrsni", "1.5.23.22");
Deleted : user_pref("extensions.funmoods.vrsnts", "1.5.23.2216:12:23");
Deleted : user_pref("extensions.funmoods_i.newTab", true);
Deleted : user_pref("extensions.funmoods_i.smplGrp", "none");
Deleted : user_pref("extensions.funmoods_i.vrsnTs", "1.5.23.2216:12:23");
Deleted : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=2&q=[...]
Deleted : user_pref("sweetim.toolbar.UserSelectedSaveSettings", "true");
Deleted : user_pref("sweetim.toolbar.Visibility.VisibilityGuardLastUnHide", "0");
Deleted : user_pref("sweetim.toolbar.Visibility.enable", "true");
Deleted : user_pref("sweetim.toolbar.Visibility.intervaldays", "7");
Deleted : user_pref("sweetim.toolbar.cda.DisableOveride.enable", "true");
Deleted : user_pref("sweetim.toolbar.cda.HideOveride.enable", "true");
Deleted : user_pref("sweetim.toolbar.cda.RemoveOveride.enable", "true");
Deleted : user_pref("sweetim.toolbar.cda.returnValue", "disable");
Deleted : user_pref("sweetim.toolbar.dialogs.0.enable", "true");
Deleted : user_pref("sweetim.toolbar.dialogs.0.handler", "chrome://sim_toolbar_package/content/optionsdialog-h[...]
Deleted : user_pref("sweetim.toolbar.dialogs.0.height", "335");
Deleted : user_pref("sweetim.toolbar.dialogs.0.id", "id_options_dialog");
Deleted : user_pref("sweetim.toolbar.dialogs.0.title", "$string.config.label;");
Deleted : user_pref("sweetim.toolbar.dialogs.0.url", "hxxp://www.sweetim.com/simffbar/options_remote_ff.asp?la[...]
Deleted : user_pref("sweetim.toolbar.dialogs.0.width", "761");
Deleted : user_pref("sweetim.toolbar.dialogs.1.enable", "true");
Deleted : user_pref("sweetim.toolbar.dialogs.1.handler", "chrome://sim_toolbar_package/content/exampledialog-h[...]
Deleted : user_pref("sweetim.toolbar.dialogs.1.height", "300");
Deleted : user_pref("sweetim.toolbar.dialogs.1.id", "id_example_dialog");
Deleted : user_pref("sweetim.toolbar.dialogs.1.title", "Example (unit-test) dialog");
Deleted : user_pref("sweetim.toolbar.dialogs.1.url", "chrome://sim_toolbar_package/content/exampledialog.html"[...]
Deleted : user_pref("sweetim.toolbar.dialogs.1.width", "500");
Deleted : user_pref("sweetim.toolbar.dialogs.2.enable", "true");
Deleted : user_pref("sweetim.toolbar.dialogs.2.handler", "chrome://sim_toolbar_package/content/cdadialog-handl[...]
Deleted : user_pref("sweetim.toolbar.dialogs.2.height", "150");
Deleted : user_pref("sweetim.toolbar.dialogs.2.id", "id_dialog_hide_disable_remove");
Deleted : user_pref("sweetim.toolbar.dialogs.2.title", "Option Dialog");
Deleted : user_pref("sweetim.toolbar.dialogs.2.url", "hxxp://www.sweetim.com/simffbar/simcdadialog.asp");
Deleted : user_pref("sweetim.toolbar.dialogs.2.width", "530");
Deleted : user_pref("sweetim.toolbar.dnscatch.domain-blacklist", ".*.sweetim.com/.*|.*.facebook.com/.*|.*.goog[...]
Deleted : user_pref("sweetim.toolbar.highlight.colors", "#FFFF00,#00FFE4,#5AFF00,#0087FF,#FFCC00,#FF00F0");
Deleted : user_pref("sweetim.toolbar.keywordUrlGuard.enable", "true");
Deleted : user_pref("sweetim.toolbar.logger.ConsoleHandler.MinReportLevel", "7");
Deleted : user_pref("sweetim.toolbar.logger.FileHandler.FileName", "ff-toolbar.log");
Deleted : user_pref("sweetim.toolbar.logger.FileHandler.MaxFileSize", "200000");
Deleted : user_pref("sweetim.toolbar.logger.FileHandler.MinReportLevel", "7");
Deleted : user_pref("sweetim.toolbar.mode.debug", "false");
Deleted : user_pref("sweetim.toolbar.newtab.created", "false");
Deleted : user_pref("sweetim.toolbar.newtab.enable", "true");
Deleted : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Deleted : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Deleted : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Deleted : user_pref("sweetim.toolbar.previous.keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT[...]
Deleted : user_pref("sweetim.toolbar.rc.url", "hxxp://www.sweetim.com/simffbar/rc.html?toolbar_version=$ITEM_V[...]
Deleted : user_pref("sweetim.toolbar.scripts.0.addcontextdiv", "true");
Deleted : user_pref("sweetim.toolbar.scripts.0.callback", "simVerification");
Deleted : user_pref("sweetim.toolbar.scripts.0.domain-blacklist", "");
Deleted : user_pref("sweetim.toolbar.scripts.0.domain-whitelist", "hxxp://(www.|apps.)?facebook\\.com.*");
Deleted : user_pref("sweetim.toolbar.scripts.0.elementid", "id_script_sim_fb");
Deleted : user_pref("sweetim.toolbar.scripts.0.enable", "true");
Deleted : user_pref("sweetim.toolbar.scripts.0.id", "id_script_fb");
Deleted : user_pref("sweetim.toolbar.scripts.0.url", "hxxp://sc.sweetim.com/apps/in/fb/infb.js");
Deleted : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Deleted : user_pref("sweetim.toolbar.scripts.2.addcontextdiv", "true");
Deleted : user_pref("sweetim.toolbar.scripts.2.callback", "simVerification");
Deleted : user_pref("sweetim.toolbar.scripts.2.domain-blacklist", "");
Deleted : user_pref("sweetim.toolbar.scripts.2.domain-whitelist", "hxxps://(www.|apps.)?facebook\\.com.*");
Deleted : user_pref("sweetim.toolbar.scripts.2.elementid", "id_script_sim_fb");
Deleted : user_pref("sweetim.toolbar.scripts.2.enable", "false");
Deleted : user_pref("sweetim.toolbar.scripts.2.id", "id_script_fb_hxxpS");
Deleted : user_pref("sweetim.toolbar.scripts.2.url", "hxxps://sc.sweetim.com/apps/in/fb/infb.js");
Deleted : user_pref("sweetim.toolbar.scripts.3.addcontextdiv", "false");
Deleted : user_pref("sweetim.toolbar.scripts.3.callback", "");
Deleted : user_pref("sweetim.toolbar.scripts.3.domain-blacklist", ".*.google..*|.*.bing..*|.*.live..*|.*.msn..[...]
Deleted : user_pref("sweetim.toolbar.scripts.3.domain-whitelist", "");
Deleted : user_pref("sweetim.toolbar.scripts.3.elementid", "id_predict_include_script");
Deleted : user_pref("sweetim.toolbar.scripts.3.enable", "false");
Deleted : user_pref("sweetim.toolbar.scripts.3.id", "id_script_prad");
Deleted : user_pref("sweetim.toolbar.scripts.3.url", "hxxp://cdn1.certified-apps.com/scripts/shared/enable.js?[...]
Deleted : user_pref("sweetim.toolbar.search.external", "<?xml version=\"1.0\"?><TOOLBAR><EXTERNAL_SEARCH engin[...]
Deleted : user_pref("sweetim.toolbar.search.history.capacity", "10");
Deleted : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "0");
Deleted : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "0");
Deleted : user_pref("sweetim.toolbar.searchguard.enable", "true");
Deleted : user_pref("sweetim.toolbar.searchguard.initialized_by_rc", "true");
Deleted : user_pref("sweetim.toolbar.simapp_id", "{A2C34F96-7C05-4CC1-8E74-63833DE939F9}");
Deleted : user_pref("sweetim.toolbar.urls.homepage", "hxxp://home.sweetim.com");
Deleted : user_pref("sweetim.toolbar.version", "1.7.0.3");

-\\ Google Chrome v24.0.1312.57

File : C:\Users\Sloukovi\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [60391 octets] - [18/02/2013 17:51:10]
AdwCleaner[S1].txt - [374 octets] - [18/02/2013 19:50:53]
AdwCleaner[S2].txt - [374 octets] - [18/02/2013 20:13:52]
AdwCleaner[S3].txt - [58388 octets] - [18/02/2013 20:19:54]

########## EOF - C:\AdwCleaner[S3].txt - [58449 octets] ##########

[asdsad]

TDS log:

20:36:51.0207 5708 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
20:36:51.0649 5708 ============================================================
20:36:51.0649 5708 Current date / time: 2013/02/18 20:36:51.0649
20:36:51.0650 5708 SystemInfo:
20:36:51.0650 5708
20:36:51.0650 5708 OS Version: 6.0.6002 ServicePack: 2.0
20:36:51.0650 5708 Product type: Workstation
20:36:51.0650 5708 ComputerName: SLOUKOVI-PC
20:36:51.0650 5708 UserName: Sloukovi
20:36:51.0650 5708 Windows directory: C:\Windows
20:36:51.0651 5708 System windows directory: C:\Windows
20:36:51.0651 5708 Processor architecture: Intel x86
20:36:51.0651 5708 Number of processors: 2
20:36:51.0651 5708 Page size: 0x1000
20:36:51.0651 5708 Boot type: Normal boot
20:36:51.0651 5708 ============================================================
20:36:53.0881 5708 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
20:36:53.0886 5708 ============================================================
20:36:53.0886 5708 \Device\Harddisk0\DR0:
20:36:53.0887 5708 MBR partitions:
20:36:53.0887 5708 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x47000, BlocksNum 0x1400000
20:36:53.0887 5708 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1447000, BlocksNum 0x1BD7E000
20:36:53.0887 5708 ============================================================
20:36:53.0932 5708 C: <-> \Device\Harddisk0\DR0\Partition2
20:36:53.0970 5708 D: <-> \Device\Harddisk0\DR0\Partition1
20:36:53.0971 5708 ============================================================
20:36:53.0971 5708 Initialize success
20:36:53.0971 5708 ============================================================
20:40:29.0454 0528 ============================================================
20:40:29.0454 0528 Scan started
20:40:29.0454 0528 Mode: Manual;
20:40:29.0454 0528 ============================================================
20:40:31.0061 0528 ================ Scan system memory ========================
20:40:31.0061 0528 System memory - ok
20:40:31.0062 0528 ================ Scan services =============================
20:40:31.0350 0528 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
20:40:31.0355 0528 ACPI - ok
20:40:31.0436 0528 [ EC807244904FA170C299AB06D87FBDBE ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
20:40:31.0439 0528 AdobeFlashPlayerUpdateSvc - ok
20:40:31.0485 0528 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
20:40:31.0494 0528 adp94xx - ok
20:40:31.0596 0528 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
20:40:31.0603 0528 adpahci - ok
20:40:31.0627 0528 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
20:40:31.0630 0528 adpu160m - ok
20:40:31.0655 0528 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
20:40:31.0659 0528 adpu320 - ok
20:40:31.0813 0528 [ CBFAA333EBA2E402A0439A3A0E5413F3 ] AdvancedSystemCareService6 C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe
20:40:31.0821 0528 AdvancedSystemCareService6 - ok
20:40:31.0947 0528 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:40:31.0949 0528 AeLookupSvc - ok
20:40:32.0147 0528 [ EF1142512BEC12F1C2C87735DA1755BE ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f091b975\aestsrv.exe
20:40:32.0148 0528 AESTFilters - ok
20:40:32.0177 0528 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
20:40:32.0184 0528 AFD - ok
20:40:32.0304 0528 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
20:40:32.0307 0528 agp440 - ok
20:40:32.0397 0528 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
20:40:32.0400 0528 aic78xx - ok
20:40:32.0478 0528 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
20:40:32.0481 0528 ALG - ok
20:40:32.0523 0528 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
20:40:32.0525 0528 aliide - ok
20:40:32.0540 0528 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
20:40:32.0543 0528 amdagp - ok
20:40:32.0565 0528 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
20:40:32.0567 0528 amdide - ok
20:40:32.0590 0528 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
20:40:32.0592 0528 AmdK7 - ok
20:40:32.0603 0528 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
20:40:32.0605 0528 AmdK8 - ok
20:40:32.0639 0528 [ 1224521F77364C32C13B3FA74DB772D2 ] AndNetDiag C:\Windows\system32\DRIVERS\lgandnetdiag.sys
20:40:32.0641 0528 AndNetDiag - ok
20:40:32.0685 0528 [ 5BC2ADAC63BAA0A132A223F31B709913 ] ANDNetModem C:\Windows\system32\DRIVERS\lgandnetmodem.sys
20:40:32.0688 0528 ANDNetModem - ok
20:40:32.0759 0528 [ 1DE27858A431A5749E0F3DF54BA935B9 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
20:40:32.0764 0528 ApfiltrService - ok
20:40:32.0817 0528 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
20:40:32.0820 0528 Appinfo - ok
20:40:32.0908 0528 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
20:40:32.0911 0528 arc - ok
20:40:32.0970 0528 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
20:40:32.0973 0528 arcsas - ok
20:40:33.0225 0528 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
20:40:33.0228 0528 aspnet_state - ok
20:40:33.0273 0528 [ 0AE43C6C411254049279C2EE55630F95 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
20:40:33.0276 0528 aswFsBlk - ok
20:40:33.0310 0528 [ 6693141560B1615D8DCCF0D8EB00087E ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
20:40:33.0312 0528 aswMonFlt - ok
20:40:33.0351 0528 [ DA12626FD9A67F4E917E2F2FBE1E1764 ] aswRdr C:\Windows\system32\drivers\aswRdr.sys
20:40:33.0354 0528 aswRdr - ok
20:40:33.0418 0528 [ DCB199B967375753B5019EC15F008F53 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
20:40:33.0438 0528 aswSnx - ok
20:40:33.0545 0528 [ B32873E5A1443C0A1E322266E203BF10 ] aswSP C:\Windows\system32\drivers\aswSP.sys
20:40:33.0552 0528 aswSP - ok
20:40:33.0597 0528 [ 6FF544175A9180C5D88534D3D9C9A9F7 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
20:40:33.0600 0528 aswTdi - ok
20:40:33.0647 0528 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:40:33.0649 0528 AsyncMac - ok
20:40:33.0686 0528 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
20:40:33.0687 0528 atapi - ok
20:40:33.0736 0528 [ 4604DB6D5ECA6362873CC3A76D2204BA ] Ati External Event Utility C:\Windows\system32\Ati2evxx.exe
20:40:33.0758 0528 Ati External Event Utility - ok
20:40:34.0109 0528 [ 47DCF5D78C395159D72C65C25129FC44 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
20:40:34.0241 0528 atikmdag - ok
20:40:34.0307 0528 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:40:34.0314 0528 AudioEndpointBuilder - ok
20:40:34.0329 0528 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
20:40:34.0333 0528 Audiosrv - ok
20:40:34.0449 0528 [ 4041D31508A2A084DFB42C595854090F ] avast! Antivirus C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
20:40:34.0452 0528 avast! Antivirus - ok
20:40:34.0506 0528 [ 7BD70AEED0D975285A1B20BD012EBF4E ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
20:40:34.0509 0528 BCM42RLY - ok
20:40:34.0564 0528 [ FA6707A346CD122407F3B0BAD1C47639 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys
20:40:34.0573 0528 BCM43XX - ok
20:40:34.0683 0528 [ C3E025D46368E3D18085EEF26EF6F6A1 ] bdfsfltr C:\Windows\system32\DRIVERS\bdfsfltr.sys
20:40:34.0690 0528 bdfsfltr - ok
20:40:34.0748 0528 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
20:40:34.0750 0528 Beep - ok
20:40:34.0781 0528 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
20:40:34.0789 0528 BFE - ok
20:40:34.0834 0528 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll
20:40:34.0867 0528 BITS - ok
20:40:34.0896 0528 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
20:40:34.0899 0528 blbdrive - ok
20:40:34.0936 0528 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:40:34.0939 0528 bowser - ok
20:40:34.0965 0528 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
20:40:34.0966 0528 BrFiltLo - ok
20:40:35.0055 0528 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
20:40:35.0057 0528 BrFiltUp - ok
20:40:35.0145 0528 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
20:40:35.0149 0528 Browser - ok
20:40:35.0185 0528 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
20:40:35.0188 0528 Brserid - ok
20:40:35.0207 0528 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
20:40:35.0209 0528 BrSerWdm - ok
20:40:35.0237 0528 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
20:40:35.0240 0528 BrUsbMdm - ok
20:40:35.0248 0528 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
20:40:35.0250 0528 BrUsbSer - ok
20:40:35.0299 0528 [ 6D39C954799B63BA866910234CF7D726 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
20:40:35.0301 0528 BthEnum - ok
20:40:35.0332 0528 [ 9A966A8E86D1771911AE34A20D11BFF3 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:40:35.0334 0528 BTHMODEM - ok
20:40:35.0368 0528 [ 5904EFA25F829BF84EA6FB045134A1D8 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
20:40:35.0372 0528 BthPan - ok
20:40:35.0508 0528 [ 611FF3F2F095C8D4A6D4CFD9DCC09793 ] BthPort C:\Windows\system32\Drivers\BTHport.sys
20:40:35.0519 0528 BthPort - ok
20:40:35.0553 0528 [ A4C8377FA4A994E07075107DBE2E3DCE ] BthServ C:\Windows\System32\bthserv.dll
20:40:35.0555 0528 BthServ - ok
20:40:35.0581 0528 [ D330803EAB2A15CAEC7F011F1D4CB30E ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
20:40:35.0583 0528 BTHUSB - ok
20:40:35.0641 0528 [ 58C4B59D0EBFB637E2E296CF4A686BA0 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
20:40:35.0644 0528 btwaudio - ok
20:40:35.0723 0528 [ E8CC9436CC464D6975ADBC4AECE0BA7B ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
20:40:35.0726 0528 btwavdt - ok
20:40:35.0826 0528 [ AA29BE5BF3D40CA73447639E293FE4C8 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
20:40:35.0833 0528 btwdins - ok
20:40:36.0010 0528 [ ECB98391C756A7B9CFBAE89D9D1235E1 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
20:40:36.0011 0528 btwl2cap - ok
20:40:36.0164 0528 [ 62ED55843F8216EB25A909A820613033 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
20:40:36.0166 0528 btwrchid - ok
20:40:36.0205 0528 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:40:36.0208 0528 cdfs - ok
20:40:36.0287 0528 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:40:36.0290 0528 cdrom - ok
20:40:36.0321 0528 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
20:40:36.0323 0528 CertPropSvc - ok
20:40:36.0372 0528 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:40:36.0374 0528 circlass - ok
20:40:36.0436 0528 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
20:40:36.0443 0528 CLFS - ok
20:40:36.0611 0528 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:40:36.0614 0528 clr_optimization_v2.0.50727_32 - ok
20:40:36.0650 0528 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:40:36.0664 0528 clr_optimization_v4.0.30319_32 - ok
20:40:36.0688 0528 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:40:36.0690 0528 CmBatt - ok
20:40:36.0724 0528 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:40:36.0726 0528 cmdide - ok
20:40:36.0751 0528 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:40:36.0754 0528 Compbatt - ok
20:40:36.0760 0528 COMSysApp - ok
20:40:36.0769 0528 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
20:40:36.0772 0528 crcdisk - ok
20:40:36.0798 0528 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
20:40:36.0800 0528 Crusoe - ok
20:40:36.0873 0528 [ F1E8C34892336D33EDDCDFE44E474F64 ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:40:36.0878 0528 CryptSvc - ok
20:40:37.0209 0528 [ 9149AE69296322678AE3AD5D2BFB88BC ] CV2K1 C:\Windows\system32\DRIVERS\cv2k1.sys
20:40:37.0212 0528 CV2K1 - ok
20:40:37.0348 0528 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:40:37.0358 0528 DcomLaunch - ok
20:40:37.0376 0528 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:40:37.0380 0528 DfsC - ok
20:40:37.0997 0528 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
20:40:38.0221 0528 DFSR - ok
20:40:38.0253 0528 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
20:40:38.0257 0528 Dhcp - ok
20:40:38.0304 0528 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
20:40:38.0305 0528 disk - ok
20:40:38.0361 0528 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:40:38.0366 0528 Dnscache - ok
20:40:38.0470 0528 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
20:40:38.0477 0528 dot3svc - ok
20:40:38.0521 0528 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
20:40:38.0526 0528 DPS - ok
20:40:38.0698 0528 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:40:38.0891 0528 drmkaud - ok
20:40:38.0984 0528 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:40:38.0991 0528 DXGKrnl - ok
20:40:39.0057 0528 [ 908ED85B7806E8AF3AF5E9B74F7809D4 ] e1express C:\Windows\system32\DRIVERS\e1e6032.sys
20:40:39.0063 0528 e1express - ok
20:40:39.0135 0528 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
20:40:39.0139 0528 E1G60 - ok
20:40:39.0223 0528 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
20:40:39.0226 0528 EapHost - ok
20:40:39.0263 0528 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
20:40:39.0267 0528 Ecache - ok
20:40:39.0399 0528 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:40:39.0405 0528 ehRecvr - ok
20:40:39.0493 0528 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
20:40:39.0496 0528 ehSched - ok
20:40:39.0629 0528 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
20:40:39.0631 0528 ehstart - ok
20:40:39.0673 0528 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
20:40:39.0681 0528 elxstor - ok
20:40:40.0306 0528 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
20:40:40.0319 0528 EMDMgmt - ok
20:40:40.0396 0528 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:40:40.0399 0528 ErrDev - ok
20:40:40.0463 0528 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
20:40:40.0467 0528 EventSystem - ok
20:40:40.0728 0528 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
20:40:40.0733 0528 exfat - ok
20:40:40.0833 0528 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:40:40.0838 0528 fastfat - ok
20:40:40.0906 0528 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:40:40.0909 0528 fdc - ok
20:40:40.0948 0528 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
20:40:40.0951 0528 fdPHost - ok
20:40:41.0082 0528 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
20:40:41.0086 0528 FDResPub - ok
20:40:41.0122 0528 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:40:41.0125 0528 FileInfo - ok
20:40:41.0264 0528 [ 47B91551FE7489A323BAF4904CAD757A ] FileMonitor C:\Program Files\IObit\IObit Malware Fighter\Drivers\wlh_x86\FileMonitor.sys
20:40:41.0266 0528 FileMonitor - ok
20:40:41.0393 0528 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:40:41.0396 0528 Filetrace - ok
20:40:41.0447 0528 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:40:41.0450 0528 flpydisk - ok
20:40:41.0526 0528 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:40:41.0531 0528 FltMgr - ok
20:40:41.0663 0528 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
20:40:41.0671 0528 FontCache - ok
20:40:41.0791 0528 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
20:40:41.0794 0528 FontCache3.0.0.0 - ok
20:40:41.0868 0528 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:40:41.0870 0528 Fs_Rec - ok
20:40:41.0893 0528 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
20:40:41.0896 0528 gagp30kx - ok
20:40:42.0010 0528 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
20:40:42.0032 0528 gpsvc - ok
20:40:42.0145 0528 [ 833051C6C6C42117191935F734CFBD97 ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
20:40:42.0147 0528 hamachi - ok
20:40:42.0260 0528 [ 616399E27A55C97AE859230EB13984D8 ] Hamachi2Svc C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
20:40:42.0303 0528 Hamachi2Svc - ok
20:40:42.0397 0528 [ 3F90E001369A07243763BD5A523D8722 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:40:42.0403 0528 HdAudAddService - ok
20:40:42.0483 0528 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
20:40:42.0488 0528 HDAudBus - ok
20:40:42.0681 0528 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
20:40:42.0683 0528 HidBth - ok
20:40:42.0783 0528 [ D8DF3722D5E961BAA1292AA2F12827E2 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:40:42.0785 0528 HidIr - ok
20:40:42.0828 0528 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
20:40:42.0831 0528 hidserv - ok
20:40:42.0867 0528 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:40:42.0869 0528 HidUsb - ok
20:40:42.0910 0528 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:40:42.0915 0528 hkmsvc - ok
20:40:43.0020 0528 [ B4307FEF5CF0E7B2DDD62B737BCD7541 ] hotcore3 C:\Windows\system32\drivers\hotcore3.sys
20:40:43.0023 0528 hotcore3 - ok
20:40:43.0083 0528 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
20:40:43.0085 0528 HpCISSs - ok
20:40:43.0125 0528 [ CBD09ED9CF6822177EE85AEA4D8816A2 ] HTCAND32 C:\Windows\system32\Drivers\ANDROIDUSB.sys
20:40:43.0126 0528 HTCAND32 - ok
20:40:43.0221 0528 [ 52395A94C127C0266D1C0F3CCE8A4345 ] htcnprot C:\Windows\system32\DRIVERS\htcnprot.sys
20:40:43.0226 0528 htcnprot - ok
20:40:43.0318 0528 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:40:43.0327 0528 HTTP - ok
20:40:43.0389 0528 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
20:40:43.0392 0528 i2omp - ok
20:40:43.0414 0528 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
20:40:43.0417 0528 i8042prt - ok
20:40:43.0445 0528 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
20:40:43.0451 0528 iaStorV - ok
20:40:43.0701 0528 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:40:43.0793 0528 idsvc - ok
20:40:44.0040 0528 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
20:40:44.0041 0528 iirsp - ok
20:40:44.0083 0528 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
20:40:44.0089 0528 IKEEXT - ok
20:40:44.0213 0528 [ 8AE99EBE30E8338907361018D9030835 ] IMFservice C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
20:40:44.0268 0528 IMFservice - ok
20:40:44.0312 0528 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
20:40:44.0315 0528 intelide - ok
20:40:44.0379 0528 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:40:44.0381 0528 intelppm - ok
20:40:44.0408 0528 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:40:44.0413 0528 IPBusEnum - ok
20:40:44.0453 0528 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:40:44.0456 0528 IpFilterDriver - ok
20:40:44.0505 0528 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:40:44.0512 0528 iphlpsvc - ok
20:40:44.0519 0528 IpInIp - ok
20:40:44.0560 0528 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
20:40:44.0563 0528 IPMIDRV - ok
20:40:44.0608 0528 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
20:40:44.0612 0528 IPNAT - ok
20:40:44.0638 0528 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:40:44.0641 0528 IRENUM - ok
20:40:44.0663 0528 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:40:44.0666 0528 isapnp - ok
20:40:44.0711 0528 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
20:40:44.0713 0528 iScsiPrt - ok
20:40:44.0821 0528 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
20:40:44.0823 0528 iteatapi - ok
20:40:44.0861 0528 [ 8BCD857C7932AD005D5F9C89329DA2E1 ] itecir C:\Windows\system32\DRIVERS\itecir.sys
20:40:44.0864 0528 itecir - ok
20:40:44.0906 0528 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
20:40:44.0909 0528 iteraid - ok
20:40:44.0972 0528 [ A67E8CFCAD7D4F8B35643D6C79BA64C3 ] k57nd60x C:\Windows\system32\DRIVERS\k57nd60x.sys
20:40:44.0978 0528 k57nd60x - ok
20:40:45.0008 0528 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
20:40:45.0011 0528 kbdclass - ok
20:40:45.0042 0528 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
20:40:45.0045 0528 kbdhid - ok
20:40:45.0071 0528 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
20:40:45.0076 0528 KeyIso - ok
20:40:45.0122 0528 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:40:45.0127 0528 KSecDD - ok
20:40:45.0296 0528 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
20:40:45.0307 0528 KtmRm - ok
20:40:45.0397 0528 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\system32\srvsvc.dll
20:40:45.0404 0528 LanmanServer - ok
20:40:45.0533 0528 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:40:45.0542 0528 LanmanWorkstation - ok
20:40:45.0675 0528 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:40:45.0678 0528 lltdio - ok
20:40:45.0795 0528 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:40:45.0802 0528 lltdsvc - ok
20:40:45.0845 0528 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:40:45.0848 0528 lmhosts - ok
20:40:45.0963 0528 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
20:40:45.0966 0528 LSI_FC - ok
20:40:46.0063 0528 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
20:40:46.0066 0528 LSI_SAS - ok
20:40:46.0091 0528 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
20:40:46.0095 0528 LSI_SCSI - ok
20:40:46.0128 0528 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
20:40:46.0132 0528 luafv - ok
20:40:46.0190 0528 [ 629CABB0421668C9D3D402A3C3D77E14 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
20:40:46.0193 0528 MBAMProtector - ok
20:40:46.0263 0528 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
20:40:46.0269 0528 MBAMScheduler - ok
20:40:46.0417 0528 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
20:40:46.0436 0528 MBAMService - ok
20:40:46.0593 0528 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:40:46.0599 0528 Mcx2Svc - ok
20:40:46.0731 0528 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
20:40:46.0734 0528 megasas - ok
20:40:46.0786 0528 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
20:40:46.0795 0528 MegaSR - ok
20:40:47.0431 0528 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
20:40:47.0434 0528 Microsoft Office Groove Audit Service - ok
20:40:47.0541 0528 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
20:40:47.0545 0528 MMCSS - ok
20:40:47.0580 0528 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
20:40:47.0582 0528 Modem - ok
20:40:47.0887 0528 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:40:47.0889 0528 monitor - ok
20:40:47.0996 0528 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:40:47.0999 0528 mouclass - ok
20:40:48.0037 0528 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:40:48.0039 0528 mouhid - ok
20:40:48.0152 0528 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
20:40:48.0243 0528 MountMgr - ok
20:40:48.0306 0528 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
20:40:48.0310 0528 mpio - ok
20:40:48.0394 0528 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:40:48.0397 0528 mpsdrv - ok
20:40:48.0455 0528 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
20:40:48.0462 0528 MpsSvc - ok
20:40:48.0496 0528 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
20:40:48.0500 0528 Mraid35x - ok
20:40:48.0599 0528 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:40:48.0603 0528 MRxDAV - ok
20:40:48.0651 0528 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:40:48.0655 0528 mrxsmb - ok
20:40:48.0925 0528 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:40:48.0928 0528 mrxsmb10 - ok
20:40:48.0974 0528 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:40:49.0035 0528 mrxsmb20 - ok
20:40:49.0077 0528 [ 5457DCFA7C0DA43522F4D9D4049C1472 ] msahci C:\Windows\system32\drivers\msahci.sys
20:40:49.0080 0528 msahci - ok
20:40:49.0157 0528 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:40:49.0236 0528 msdsm - ok
20:40:49.0317 0528 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
20:40:49.0323 0528 MSDTC - ok
20:40:49.0375 0528 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:40:49.0378 0528 Msfs - ok
20:40:49.0387 0528 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:40:49.0390 0528 msisadrv - ok
20:40:49.0441 0528 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:40:49.0447 0528 MSiSCSI - ok
20:40:49.0455 0528 msiserver - ok
20:40:49.0715 0528 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:40:49.0718 0528 MSKSSRV - ok
20:40:49.0776 0528 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:40:49.0779 0528 MSPCLOCK - ok
20:40:49.0926 0528 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:40:49.0929 0528 MSPQM - ok
20:40:49.0971 0528 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:40:49.0977 0528 MsRPC - ok
20:40:50.0015 0528 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
20:40:50.0017 0528 mssmbios - ok
20:40:50.0029 0528 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:40:50.0032 0528 MSTEE - ok
20:40:50.0068 0528 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
20:40:50.0071 0528 Mup - ok
20:40:50.0112 0528 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
20:40:50.0122 0528 napagent - ok
20:40:50.0171 0528 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:40:50.0176 0528 NativeWifiP - ok
20:40:50.0275 0528 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:40:50.0286 0528 NDIS - ok
20:40:50.0351 0528 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:40:50.0353 0528 NdisTapi - ok
20:40:50.0373 0528 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:40:50.0375 0528 Ndisuio - ok
20:40:50.0415 0528 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:40:50.0419 0528 NdisWan - ok
20:40:50.0431 0528 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:40:50.0435 0528 NDProxy - ok
20:40:50.0461 0528 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:40:50.0465 0528 NetBIOS - ok
20:40:50.0517 0528 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
20:40:50.0523 0528 netbt - ok
20:40:50.0593 0528 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
20:40:50.0597 0528 Netlogon - ok
20:40:50.0674 0528 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
20:40:50.0685 0528 Netman - ok
20:40:50.0790 0528 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:40:50.0794 0528 NetMsmqActivator - ok
20:40:50.0803 0528 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:40:50.0807 0528 NetPipeActivator - ok
20:40:50.0853 0528 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
20:40:50.0861 0528 netprofm - ok
20:40:50.0871 0528 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:40:50.0874 0528 NetTcpActivator - ok
20:40:50.0883 0528 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:40:50.0886 0528 NetTcpPortSharing - ok
20:40:50.0919 0528 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
20:40:50.0922 0528 nfrd960 - ok
20:40:50.0952 0528 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:40:50.0957 0528 NlaSvc - ok
20:40:51.0033 0528 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:40:51.0036 0528 Npfs - ok
20:40:51.0114 0528 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
20:40:51.0119 0528 nsi - ok
20:40:51.0200 0528 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:40:51.0202 0528 nsiproxy - ok
20:40:51.0321 0528 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:40:51.0404 0528 Ntfs - ok
20:40:51.0440 0528 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
20:40:51.0443 0528 ntrigdigi - ok
20:40:51.0498 0528 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
20:40:51.0501 0528 Null - ok
20:40:51.0553 0528 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:40:51.0558 0528 nvraid - ok
20:40:51.0593 0528 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:40:51.0596 0528 nvstor - ok
20:40:51.0709 0528 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:40:51.0713 0528 nv_agp - ok
20:40:51.0721 0528 NwlnkFlt - ok
20:40:51.0733 0528 NwlnkFwd - ok
20:40:51.0832 0528 [ A015DD2BA6009C8BDD00A6C431302D06 ] OA001Ufd C:\Windows\system32\DRIVERS\OA001Ufd.sys
20:40:51.0837 0528 OA001Ufd - ok
20:40:51.0871 0528 [ D8713C79ED64012863B3344FFC2D406E ] OA001Vid C:\Windows\system32\DRIVERS\OA001Vid.sys
20:40:51.0878 0528 OA001Vid - ok
20:40:52.0031 0528 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
20:40:52.0041 0528 odserv - ok
20:40:52.0083 0528 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
20:40:52.0086 0528 ohci1394 - ok
20:40:52.0194 0528 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:40:52.0196 0528 ose - ok
20:40:52.0278 0528 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
20:40:52.0323 0528 p2pimsvc - ok
20:40:52.0343 0528 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
20:40:52.0352 0528 p2psvc - ok
20:40:52.0406 0528 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
20:40:52.0409 0528 Parport - ok
20:40:52.0443 0528 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:40:52.0446 0528 partmgr - ok
20:40:52.0508 0528 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
20:40:52.0510 0528 Parvdm - ok
20:40:52.0590 0528 [ AFADA8B97BE3C9398DC6C770409C3544 ] PassThru Service C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
20:40:52.0592 0528 PassThru Service - ok
20:40:52.0642 0528 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
20:40:52.0648 0528 PcaSvc - ok
20:40:52.0679 0528 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
20:40:52.0683 0528 pci - ok
20:40:52.0776 0528 [ FC175F5DDAB666D7F4D17449A547626F ] pciide C:\Windows\system32\drivers\pciide.sys
20:40:52.0778 0528 pciide - ok
20:40:52.0879 0528 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
20:40:52.0884 0528 pcmcia - ok
20:40:52.0947 0528 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:40:52.0977 0528 PEAUTH - ok
20:40:53.0102 0528 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
20:40:53.0182 0528 pla - ok
20:40:53.0224 0528 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:40:53.0235 0528 PlugPlay - ok
20:40:53.0268 0528 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
20:40:53.0277 0528 PNRPAutoReg - ok
20:40:53.0379 0528 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
20:40:53.0388 0528 PNRPsvc - ok
20:40:53.0461 0528 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:40:53.0470 0528 PolicyAgent - ok
20:40:53.0520 0528 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:40:53.0522 0528 PptpMiniport - ok
20:40:53.0694 0528 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
20:40:53.0696 0528 Processor - ok
20:40:53.0755 0528 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
20:40:53.0763 0528 ProfSvc - ok
20:40:53.0791 0528 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
20:40:53.0794 0528 ProtectedStorage - ok
20:40:53.0848 0528 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
20:40:53.0852 0528 PSched - ok
20:40:53.0909 0528 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
20:40:53.0911 0528 PxHelp20 - ok
20:40:54.0231 0528 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
20:40:54.0270 0528 ql2300 - ok
20:40:54.0360 0528 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
20:40:54.0364 0528 ql40xx - ok
20:40:54.0420 0528 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
20:40:54.0430 0528 QWAVE - ok
20:40:54.0468 0528 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:40:54.0472 0528 QWAVEdrv - ok
20:40:54.0671 0528 [ 47DCF5D78C395159D72C65C25129FC44 ] R300 C:\Windows\system32\DRIVERS\atikmdag.sys
20:40:54.0700 0528 R300 - ok
20:40:54.0747 0528 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:40:54.0750 0528 RasAcd - ok
20:40:54.0798 0528 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
20:40:54.0805 0528 RasAuto - ok
20:40:54.0873 0528 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:40:54.0877 0528 Rasl2tp - ok
20:40:54.0974 0528 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
20:40:54.0981 0528 RasMan - ok
20:40:55.0022 0528 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:40:55.0025 0528 RasPppoe - ok
20:40:55.0086 0528 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:40:55.0089 0528 RasSstp - ok
20:40:55.0165 0528 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:40:55.0171 0528 rdbss - ok
20:40:55.0234 0528 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:40:55.0236 0528 RDPCDD - ok
20:40:55.0300 0528 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
20:40:55.0306 0528 rdpdr - ok
20:40:55.0316 0528 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:40:55.0320 0528 RDPENCDD - ok
20:40:55.0387 0528 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:40:55.0392 0528 RDPWD - ok
20:40:55.0465 0528 [ CDAB5EEF978C31E6CF58EDBFB4485B8F ] RegFilter C:\Program Files\IObit\IObit Malware Fighter\drivers\wlh_x86\regfilter.sys
20:40:55.0466 0528 RegFilter - ok
20:40:55.0582 0528 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:40:55.0587 0528 RemoteAccess - ok
20:40:55.0622 0528 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:40:55.0629 0528 RemoteRegistry - ok
20:40:55.0703 0528 [ 6482707F9F4DA0ECBAB43B2E0398A101 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
20:40:55.0708 0528 RFCOMM - ok
20:40:55.0845 0528 [ C2EF513BBE069F0D4EE0938A76F975D3 ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
20:40:55.0848 0528 rimmptsk - ok
20:40:55.0867 0528 [ C398BCA91216755B098679A8DA8A2300 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
20:40:55.0871 0528 rimsptsk - ok
20:40:55.0897 0528 [ 2A2554CB24506E0A0508FC395C4A1B42 ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
20:40:55.0900 0528 rismxdp - ok
20:40:55.0953 0528 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
20:40:55.0958 0528 RpcLocator - ok
20:40:55.0995 0528 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
20:40:56.0005 0528 RpcSs - ok
20:40:56.0059 0528 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:40:56.0062 0528 rspndr - ok
20:40:56.0105 0528 [ 2E2F0D988F6D46E5E5E84D9FCAD39081 ] RzSynapse C:\Windows\system32\DRIVERS\RzSynapse.sys
20:40:56.0109 0528 RzSynapse - ok
20:40:56.0201 0528 [ B27857A87E28E462C783ABA077ED29AF ] rzudd C:\Windows\system32\DRIVERS\rzudd.sys
20:40:56.0205 0528 rzudd - ok
20:40:56.0233 0528 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
20:40:56.0236 0528 SamSs - ok
20:40:56.0276 0528 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:40:56.0280 0528 sbp2port - ok
20:40:56.0318 0528 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:40:56.0325 0528 SCardSvr - ok
20:40:56.0408 0528 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
20:40:56.0424 0528 Schedule - ok
20:40:56.0447 0528 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
20:40:56.0449 0528 SCPolicySvc - ok
20:40:56.0486 0528 [ 8F36B54688C31EED4580129040C6A3D3 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
20:40:56.0489 0528 sdbus - ok
20:40:56.0547 0528 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:40:56.0555 0528 SDRSVC - ok
20:40:56.0572 0528 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:40:56.0575 0528 secdrv - ok
20:40:56.0624 0528 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
20:40:56.0631 0528 seclogon - ok
20:40:56.0690 0528 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
20:40:56.0696 0528 SENS - ok
20:40:56.0821 0528 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
20:40:56.0824 0528 Serenum - ok
20:40:56.0937 0528 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
20:40:56.0941 0528 Serial - ok
20:40:56.0966 0528 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
20:40:56.0968 0528 sermouse - ok
20:40:57.0206 0528 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
20:40:57.0213 0528 SessionEnv - ok
20:40:57.0298 0528 [ 9E7DEE11FD5A4355941A45F13C0ED59A ] sfdrv01 C:\Windows\system32\drivers\sfdrv01.sys
20:40:57.0301 0528 sfdrv01 - ok
20:40:57.0436 0528 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
20:40:57.0438 0528 sffdisk - ok
20:40:57.0464 0528 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:40:57.0467 0528 sffp_mmc - ok
20:40:57.0529 0528 [ 9F66A46C55D6F1CCABC79BB7AFCCC545 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
20:40:57.0532 0528 sffp_sd - ok
20:40:57.0596 0528 [ ECEFB59D2206D281E6D317AF0EA0D8BD ] sfhlp02 C:\Windows\system32\drivers\sfhlp02.sys
20:40:57.0599 0528 sfhlp02 - ok
20:40:57.0625 0528 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
20:40:57.0627 0528 sfloppy - ok
20:40:57.0666 0528 [ 05E3038180CD846B0BCA0E915163606A ] sfsync04 C:\Windows\system32\drivers\sfsync04.sys
20:40:57.0669 0528 sfsync04 - ok
20:40:57.0698 0528 [ D5A7E09D2C6A702809E49190D52ADC9F ] sfvfs02 C:\Windows\system32\drivers\sfvfs02.sys
20:40:57.0702 0528 sfvfs02 - ok
20:40:57.0787 0528 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:40:57.0796 0528 SharedAccess - ok
20:40:57.0916 0528 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:40:57.0926 0528 ShellHWDetection - ok
20:40:57.0971 0528 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
20:40:57.0974 0528 sisagp - ok
20:40:58.0134 0528 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
20:40:58.0136 0528 SiSRaid2 - ok
20:40:58.0260 0528 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
20:40:58.0265 0528 SiSRaid4 - ok
20:40:58.0362 0528 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
20:40:58.0366 0528 SkypeUpdate - ok
20:40:58.0486 0528 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
20:40:58.0586 0528 slsvc - ok
20:40:58.0619 0528 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
20:40:58.0627 0528 SLUINotify - ok
20:40:58.0716 0528 [ 46B40982AF166BF89C3F51FB13E60D6D ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
20:40:58.0718 0528 SmartDefragDriver - ok
20:40:58.0756 0528 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:40:58.0760 0528 Smb - ok
20:40:58.0843 0528 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:40:58.0849 0528 SNMPTRAP - ok
20:40:58.0917 0528 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
20:40:58.0920 0528 spldr - ok
20:40:58.0995 0528 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
20:40:59.0003 0528 Spooler - ok

[asdsad]

2. část:

20:40:59.0074 0528 [ 71E276F6D189413266EA22171806597B ] sptd C:\Windows\system32\Drivers\sptd.sys
20:40:59.0076 0528 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 71E276F6D189413266EA22171806597B
20:40:59.0081 0528 sptd ( LockedFile.Multi.Generic ) - warning
20:40:59.0082 0528 sptd - detected LockedFile.Multi.Generic (1)
20:40:59.0176 0528 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
20:40:59.0183 0528 srv - ok
20:40:59.0246 0528 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:40:59.0251 0528 srv2 - ok
20:40:59.0344 0528 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:40:59.0348 0528 srvnet - ok
20:40:59.0404 0528 [ 6F6342234F1D460D083A503A93FEBF32 ] SS1018mdm C:\Windows\system32\DRIVERS\SS1018mdm.sys
20:40:59.0408 0528 SS1018mdm - ok
20:40:59.0497 0528 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:40:59.0506 0528 SSDPSRV - ok
20:40:59.0537 0528 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:40:59.0545 0528 SstpSvc - ok
20:40:59.0684 0528 [ FFA85A9F3C3571AD29AC156BC6F116C5 ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f091b975\STacSV.exe
20:40:59.0689 0528 STacSV - ok
20:40:59.0721 0528 Steam Client Service - ok
20:40:59.0767 0528 [ 5AF1FEEC6945F4FA5EFD00E0C6D8F9B9 ] STHDA C:\Windows\system32\DRIVERS\stwrt.sys
20:40:59.0776 0528 STHDA - ok
20:40:59.0858 0528 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
20:40:59.0881 0528 stisvc - ok
20:40:59.0959 0528 [ 1D0063597C3666404FCF97698ABEB019 ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
20:40:59.0963 0528 stllssvr - ok
20:41:00.0028 0528 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
20:41:00.0031 0528 swenum - ok
20:41:00.0560 0528 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
20:41:00.0564 0528 SwitchBoard - ok
20:41:00.0646 0528 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
20:41:00.0658 0528 swprv - ok
20:41:00.0728 0528 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
20:41:00.0730 0528 Symc8xx - ok
20:41:00.0768 0528 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
20:41:00.0771 0528 Sym_hi - ok
20:41:00.0858 0528 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
20:41:00.0861 0528 Sym_u3 - ok
20:41:00.0936 0528 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
20:41:00.0980 0528 SysMain - ok
20:41:01.0097 0528 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:41:01.0104 0528 TabletInputService - ok
20:41:01.0148 0528 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
20:41:01.0157 0528 TapiSrv - ok
20:41:01.0191 0528 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
20:41:01.0198 0528 TBS - ok
20:41:01.0422 0528 [ 74E2D020C47BB2B2FCCBA29A518A7EB4 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:41:01.0453 0528 Tcpip - ok
20:41:01.0479 0528 [ 74E2D020C47BB2B2FCCBA29A518A7EB4 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
20:41:01.0487 0528 Tcpip6 - ok
20:41:01.0537 0528 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:41:01.0539 0528 tcpipreg - ok
20:41:01.0600 0528 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:41:01.0602 0528 TDPIPE - ok
20:41:01.0654 0528 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:41:01.0657 0528 TDTCP - ok
20:41:01.0718 0528 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:41:01.0722 0528 tdx - ok
20:41:01.0751 0528 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
20:41:01.0754 0528 TermDD - ok
20:41:01.0987 0528 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
20:41:02.0032 0528 TermService - ok
20:41:02.0102 0528 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
20:41:02.0109 0528 Themes - ok
20:41:02.0271 0528 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
20:41:02.0275 0528 THREADORDER - ok
20:41:02.0388 0528 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
20:41:02.0395 0528 TrkWks - ok
20:41:02.0870 0528 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:41:02.0872 0528 TrustedInstaller - ok
20:41:03.0010 0528 [ 2EBD9DD2FC48D7252E226746D2894D40 ] TsLwWfF C:\Windows\system32\DRIVERS\TsLwWfF.sys
20:41:03.0013 0528 TsLwWfF - ok
20:41:03.0075 0528 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:41:03.0078 0528 tssecsrv - ok
20:41:03.0237 0528 [ C1A05AFCF5411474BCA342D7710D0FFA ] TsVlb C:\Windows\system32\DRIVERS\tsvlb.sys
20:41:03.0240 0528 TsVlb - ok
20:41:03.0320 0528 [ 1DF40DFD31AE29C0216C6CD40CC04E1A ] TsVp C:\Windows\system32\DRIVERS\tsvp.sys
20:41:03.0323 0528 TsVp - ok
20:41:03.0361 0528 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
20:41:03.0364 0528 tunmp - ok
20:41:03.0402 0528 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:41:03.0405 0528 tunnel - ok
20:41:03.0500 0528 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
20:41:03.0504 0528 uagp35 - ok
20:41:03.0560 0528 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:41:03.0567 0528 udfs - ok
20:41:03.0642 0528 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:41:03.0650 0528 UI0Detect - ok
20:41:03.0704 0528 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:41:03.0707 0528 uliagpkx - ok
20:41:03.0760 0528 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
20:41:03.0767 0528 uliahci - ok
20:41:03.0847 0528 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
20:41:03.0852 0528 UlSata - ok
20:41:03.0889 0528 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
20:41:03.0892 0528 ulsata2 - ok
20:41:03.0984 0528 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
20:41:03.0988 0528 umbus - ok
20:41:04.0045 0528 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
20:41:04.0055 0528 upnphost - ok
20:41:04.0198 0528 [ 87F9BCFEC6409C5672722607017FD57B ] UrlFilter C:\Program Files\IObit\IObit Malware Fighter\drivers\wlh_x86\UrlFilter.sys
20:41:04.0200 0528 UrlFilter - ok
20:41:04.0306 0528 [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
20:41:04.0310 0528 usbaudio - ok
20:41:04.0494 0528 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:41:04.0498 0528 usbccgp - ok
20:41:04.0569 0528 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:41:04.0572 0528 usbcir - ok
20:41:04.0649 0528 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:41:04.0652 0528 usbehci - ok
20:41:04.0692 0528 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:41:04.0698 0528 usbhub - ok
20:41:04.0739 0528 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:41:04.0742 0528 usbohci - ok
20:41:04.0783 0528 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:41:04.0787 0528 usbprint - ok
20:41:04.0852 0528 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
20:41:04.0856 0528 usbscan - ok
20:41:04.0903 0528 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:41:04.0907 0528 USBSTOR - ok
20:41:04.0984 0528 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
20:41:04.0987 0528 usbuhci - ok
20:41:05.0046 0528 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
20:41:05.0051 0528 usbvideo - ok
20:41:05.0138 0528 [ 35C9095FA7076466AFBFC5B9EC4B779E ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys
20:41:05.0141 0528 usb_rndisx - ok
20:41:05.0245 0528 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
20:41:05.0251 0528 UxSms - ok
20:41:05.0397 0528 [ 065F15E84F2CC4EF60594283E9D72617 ] VBoxNetAdp C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
20:41:05.0399 0528 VBoxNetAdp - ok
20:41:05.0411 0528 VBoxNetFlt - ok
20:41:05.0562 0528 [ 670A4469D91F26D14CECF6F9A206B95C ] VBoxUSB C:\Windows\system32\Drivers\VBoxUSB.sys
20:41:05.0565 0528 VBoxUSB - ok
20:41:05.0728 0528 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
20:41:05.0736 0528 vds - ok
20:41:05.0878 0528 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:41:05.0881 0528 vga - ok
20:41:05.0961 0528 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
20:41:05.0964 0528 VgaSave - ok
20:41:06.0000 0528 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
20:41:06.0004 0528 viaagp - ok
20:41:06.0045 0528 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
20:41:06.0049 0528 ViaC7 - ok
20:41:06.0094 0528 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
20:41:06.0096 0528 viaide - ok
20:41:06.0143 0528 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:41:06.0146 0528 volmgr - ok
20:41:06.0206 0528 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:41:06.0215 0528 volmgrx - ok
20:41:06.0298 0528 [ 786DB5771F05EF300390399F626BF30A ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:41:06.0304 0528 volsnap - ok
20:41:06.0385 0528 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
20:41:06.0389 0528 vsmraid - ok
20:41:06.0684 0528 [ 5A2DDC5411A092BEDB1A07755E087784 ] VSPerfDrv100 C:\Program Files\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\VSPerfDrv100.sys
20:41:06.0735 0528 VSPerfDrv100 - ok
20:41:06.0898 0528 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
20:41:06.0987 0528 VSS - ok
20:41:07.0122 0528 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
20:41:07.0134 0528 W32Time - ok
20:41:07.0186 0528 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
20:41:07.0188 0528 WacomPen - ok
20:41:07.0225 0528 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
20:41:07.0229 0528 Wanarp - ok
20:41:07.0241 0528 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:41:07.0244 0528 Wanarpv6 - ok
20:41:07.0329 0528 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:41:07.0342 0528 wcncsvc - ok
20:41:07.0553 0528 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:41:07.0561 0528 WcsPlugInService - ok
20:41:07.0599 0528 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
20:41:07.0602 0528 Wd - ok
20:41:07.0685 0528 [ D6EFAF429FD30C5DF613D220E344CCE7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam.sys
20:41:07.0687 0528 WDC_SAM - ok
20:41:07.0803 0528 [ BF847A3972CC6B5CE26E0EA742DD52D9 ] WDDMService C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
20:41:07.0809 0528 WDDMService - ok
20:41:08.0092 0528 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:41:08.0103 0528 Wdf01000 - ok
20:41:08.0277 0528 [ B5966F1DFF6E20576F3C8C2D93D129FD ] WDFME C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
20:41:08.0322 0528 WDFME - ok
20:41:08.0414 0528 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:41:08.0422 0528 WdiServiceHost - ok
20:41:08.0435 0528 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:41:08.0442 0528 WdiSystemHost - ok
20:41:08.0498 0528 [ 92F0088CA18BB08BB596EF2608256F8A ] WDSC C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe
20:41:08.0507 0528 WDSC - ok
20:41:08.0556 0528 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
20:41:08.0566 0528 WebClient - ok
20:41:08.0621 0528 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:41:08.0630 0528 Wecsvc - ok
20:41:08.0687 0528 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:41:08.0694 0528 wercplsupport - ok
20:41:08.0726 0528 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
20:41:08.0735 0528 WerSvc - ok
20:41:08.0824 0528 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
20:41:08.0830 0528 WinDefend - ok
20:41:08.0863 0528 WinHttpAutoProxySvc - ok
20:41:09.0070 0528 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:41:09.0075 0528 Winmgmt - ok
20:41:09.0141 0528 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
20:41:09.0219 0528 WinRM - ok
20:41:09.0450 0528 [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] WinUSB C:\Windows\system32\DRIVERS\WinUSB.sys
20:41:09.0453 0528 WinUSB - ok
20:41:09.0529 0528 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
20:41:09.0550 0528 Wlansvc - ok
20:41:09.0563 0528 wltrysvc - ok
20:41:09.0637 0528 [ 7EF08E65A586EA95C5B80190A9CFEBE6 ] WmBEnum C:\Windows\system32\drivers\WmBEnum.sys
20:41:09.0640 0528 WmBEnum - ok
20:41:09.0721 0528 [ 24369B35C89F36AB3226022B1137BD4C ] WmFilter C:\Windows\system32\drivers\WmFilter.sys
20:41:09.0724 0528 WmFilter - ok
20:41:09.0792 0528 [ CAC03BF7E624780CCDFA0436CBE839EE ] WmHidLo C:\Windows\system32\drivers\WmHidLo.sys
20:41:09.0795 0528 WmHidLo - ok
20:41:09.0869 0528 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
20:41:09.0871 0528 WmiAcpi - ok
20:41:09.0984 0528 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:41:09.0989 0528 wmiApSrv - ok
20:41:10.0133 0528 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
20:41:10.0167 0528 WMPNetworkSvc - ok
20:41:10.0221 0528 [ 0BE14BB79E41FEAFCCE33714E4176AE8 ] WmVirHid C:\Windows\system32\drivers\WmVirHid.sys
20:41:10.0223 0528 WmVirHid - ok
20:41:10.0251 0528 [ 0638CD7C72F5B026638221DC2E84D448 ] WmXlCore C:\Windows\system32\drivers\WmXlCore.sys
20:41:10.0254 0528 WmXlCore - ok
20:41:10.0290 0528 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:41:10.0301 0528 WPCSvc - ok
20:41:10.0352 0528 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:41:10.0360 0528 WPDBusEnum - ok
20:41:10.0443 0528 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
20:41:10.0446 0528 WpdUsb - ok
20:41:10.0702 0528 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
20:41:10.0708 0528 WPFFontCache_v0400 - ok
20:41:10.0772 0528 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:41:10.0774 0528 ws2ifsl - ok
20:41:10.0823 0528 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\System32\wscsvc.dll
20:41:10.0832 0528 wscsvc - ok
20:41:10.0846 0528 WSearch - ok
20:41:10.0968 0528 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
20:41:10.0988 0528 wuauserv - ok
20:41:11.0045 0528 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:41:11.0048 0528 WudfPf - ok
20:41:11.0110 0528 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:41:11.0115 0528 WUDFRd - ok
20:41:11.0178 0528 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:41:11.0187 0528 wudfsvc - ok
20:41:11.0202 0528 XDva383 - ok
20:41:11.0221 0528 XDva384 - ok
20:41:11.0237 0528 XDva385 - ok
20:41:11.0254 0528 XDva386 - ok
20:41:11.0274 0528 XDva390 - ok
20:41:11.0297 0528 XDva391 - ok
20:41:11.0316 0528 XDva399 - ok
20:41:11.0458 0528 [ 4D840C6AF3C020ED3A35EFBA9025CF4A ] {2E444BE9-B8EC-4CE6-8C2B-6536FB7F4FB7} C:\Program Files\Dell\MediaDirect\000.fcl
20:41:11.0875 0528 {2E444BE9-B8EC-4CE6-8C2B-6536FB7F4FB7} - ok
20:41:11.0995 0528 ================ Scan global ===============================
20:41:12.0103 0528 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
20:41:12.0158 0528 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
20:41:12.0188 0528 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
20:41:12.0436 0528 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
20:41:12.0447 0528 [Global] - ok
20:41:12.0448 0528 ================ Scan MBR ==================================
20:41:12.0481 0528 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
20:41:13.0031 0528 \Device\Harddisk0\DR0 - ok
20:41:13.0035 0528 ================ Scan VBR ==================================
20:41:13.0098 0528 [ 31CF6A12CE50E25DB6751EA960732B8F ] \Device\Harddisk0\DR0\Partition1
20:41:13.0100 0528 \Device\Harddisk0\DR0\Partition1 - ok
20:41:13.0105 0528 [ 7BE11418C9531A816C64F74B369E6412 ] \Device\Harddisk0\DR0\Partition2
20:41:13.0108 0528 \Device\Harddisk0\DR0\Partition2 - ok
20:41:13.0110 0528 ============================================================
20:41:13.0110 0528 Scan finished
20:41:13.0110 0528 ============================================================
20:41:13.0137 4292 Detected object count: 1
20:41:13.0137 4292 Actual detected object count: 1
20:36:51.0207 5708 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
20:36:51.0649 5708 ============================================================
20:36:51.0649 5708 Current date / time: 2013/02/18 20:36:51.0649
20:36:51.0650 5708 SystemInfo:
20:36:51.0650 5708
20:36:51.0650 5708 OS Version: 6.0.6002 ServicePack: 2.0
20:36:51.0650 5708 Product type: Workstation
20:36:51.0650 5708 ComputerName: SLOUKOVI-PC
20:36:51.0650 5708 UserName: Sloukovi
20:36:51.0650 5708 Windows directory: C:\Windows
20:36:51.0651 5708 System windows directory: C:\Windows
20:36:51.0651 5708 Processor architecture: Intel x86
20:36:51.0651 5708 Number of processors: 2
20:36:51.0651 5708 Page size: 0x1000
20:36:51.0651 5708 Boot type: Normal boot
20:36:51.0651 5708 ============================================================
20:36:53.0881 5708 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
20:36:53.0886 5708 ============================================================
20:36:53.0886 5708 \Device\Harddisk0\DR0:
20:36:53.0887 5708 MBR partitions:
20:36:53.0887 5708 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x47000, BlocksNum 0x1400000
20:36:53.0887 5708 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1447000, BlocksNum 0x1BD7E000
20:36:53.0887 5708 ============================================================
20:36:53.0932 5708 C: <-> \Device\Harddisk0\DR0\Partition2
20:36:53.0970 5708 D: <-> \Device\Harddisk0\DR0\Partition1
20:36:53.0971 5708 ============================================================
20:36:53.0971 5708 Initialize success
20:36:53.0971 5708 ============================================================
20:40:29.0454 0528 ============================================================
20:40:29.0454 0528 Scan started
20:40:29.0454 0528 Mode: Manual;
20:40:29.0454 0528 ============================================================
20:40:31.0061 0528 ================ Scan system memory ========================
20:40:31.0061 0528 System memory - ok
20:40:31.0062 0528 ================ Scan services =============================
20:40:31.0350 0528 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
20:40:31.0355 0528 ACPI - ok
20:40:31.0436 0528 [ EC807244904FA170C299AB06D87FBDBE ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
20:40:31.0439 0528 AdobeFlashPlayerUpdateSvc - ok
20:40:31.0485 0528 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
20:40:31.0494 0528 adp94xx - ok
20:40:31.0596 0528 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
20:40:31.0603 0528 adpahci - ok
20:40:31.0627 0528 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
20:40:31.0630 0528 adpu160m - ok
20:40:31.0655 0528 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
20:40:31.0659 0528 adpu320 - ok
20:40:31.0813 0528 [ CBFAA333EBA2E402A0439A3A0E5413F3 ] AdvancedSystemCareService6 C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe
20:40:31.0821 0528 AdvancedSystemCareService6 - ok
20:40:31.0947 0528 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:40:31.0949 0528 AeLookupSvc - ok
20:40:32.0147 0528 [ EF1142512BEC12F1C2C87735DA1755BE ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f091b975\aestsrv.exe
20:40:32.0148 0528 AESTFilters - ok
20:40:32.0177 0528 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
20:40:32.0184 0528 AFD - ok
20:40:32.0304 0528 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
20:40:32.0307 0528 agp440 - ok
20:40:32.0397 0528 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
20:40:32.0400 0528 aic78xx - ok
20:40:32.0478 0528 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
20:40:32.0481 0528 ALG - ok
20:40:32.0523 0528 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
20:40:32.0525 0528 aliide - ok
20:40:32.0540 0528 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
20:40:32.0543 0528 amdagp - ok
20:40:32.0565 0528 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
20:40:32.0567 0528 amdide - ok
20:40:32.0590 0528 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
20:40:32.0592 0528 AmdK7 - ok
20:40:32.0603 0528 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
20:40:32.0605 0528 AmdK8 - ok
20:40:32.0639 0528 [ 1224521F77364C32C13B3FA74DB772D2 ] AndNetDiag C:\Windows\system32\DRIVERS\lgandnetdiag.sys
20:40:32.0641 0528 AndNetDiag - ok
20:40:32.0685 0528 [ 5BC2ADAC63BAA0A132A223F31B709913 ] ANDNetModem C:\Windows\system32\DRIVERS\lgandnetmodem.sys
20:40:32.0688 0528 ANDNetModem - ok
20:40:32.0759 0528 [ 1DE27858A431A5749E0F3DF54BA935B9 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
20:40:32.0764 0528 ApfiltrService - ok
20:40:32.0817 0528 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
20:40:32.0820 0528 Appinfo - ok
20:40:32.0908 0528 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
20:40:32.0911 0528 arc - ok
20:40:32.0970 0528 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
20:40:32.0973 0528 arcsas - ok
20:40:33.0225 0528 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
20:40:33.0228 0528 aspnet_state - ok
20:40:33.0273 0528 [ 0AE43C6C411254049279C2EE55630F95 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
20:40:33.0276 0528 aswFsBlk - ok
20:40:33.0310 0528 [ 6693141560B1615D8DCCF0D8EB00087E ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
20:40:33.0312 0528 aswMonFlt - ok
20:40:33.0351 0528 [ DA12626FD9A67F4E917E2F2FBE1E1764 ] aswRdr C:\Windows\system32\drivers\aswRdr.sys
20:40:33.0354 0528 aswRdr - ok
20:40:33.0418 0528 [ DCB199B967375753B5019EC15F008F53 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
20:40:33.0438 0528 aswSnx - ok
20:40:33.0545 0528 [ B32873E5A1443C0A1E322266E203BF10 ] aswSP C:\Windows\system32\drivers\aswSP.sys
20:40:33.0552 0528 aswSP - ok
20:40:33.0597 0528 [ 6FF544175A9180C5D88534D3D9C9A9F7 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
20:40:33.0600 0528 aswTdi - ok
20:40:33.0647 0528 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:40:33.0649 0528 AsyncMac - ok
20:40:33.0686 0528 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
20:40:33.0687 0528 atapi - ok
20:40:33.0736 0528 [ 4604DB6D5ECA6362873CC3A76D2204BA ] Ati External Event Utility C:\Windows\system32\Ati2evxx.exe
20:40:33.0758 0528 Ati External Event Utility - ok
20:40:34.0109 0528 [ 47DCF5D78C395159D72C65C25129FC44 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
20:40:34.0241 0528 atikmdag - ok
20:40:34.0307 0528 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:40:34.0314 0528 AudioEndpointBuilder - ok
20:40:34.0329 0528 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
20:40:34.0333 0528 Audiosrv - ok
20:40:34.0449 0528 [ 4041D31508A2A084DFB42C595854090F ] avast! Antivirus C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
20:40:34.0452 0528 avast! Antivirus - ok
20:40:34.0506 0528 [ 7BD70AEED0D975285A1B20BD012EBF4E ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
20:40:34.0509 0528 BCM42RLY - ok
20:40:34.0564 0528 [ FA6707A346CD122407F3B0BAD1C47639 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys
20:40:34.0573 0528 BCM43XX - ok
20:40:34.0683 0528 [ C3E025D46368E3D18085EEF26EF6F6A1 ] bdfsfltr C:\Windows\system32\DRIVERS\bdfsfltr.sys
20:40:34.0690 0528 bdfsfltr - ok
20:40:34.0748 0528 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
20:40:34.0750 0528 Beep - ok
20:40:34.0781 0528 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
20:40:34.0789 0528 BFE - ok
20:40:34.0834 0528 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll
20:40:34.0867 0528 BITS - ok
20:40:34.0896 0528 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
20:40:34.0899 0528 blbdrive - ok
20:40:34.0936 0528 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:40:34.0939 0528 bowser - ok
20:40:34.0965 0528 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
20:40:34.0966 0528 BrFiltLo - ok
20:40:35.0055 0528 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
20:40:35.0057 0528 BrFiltUp - ok
20:40:35.0145 0528 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
20:40:35.0149 0528 Browser - ok
20:40:35.0185 0528 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
20:40:35.0188 0528 Brserid - ok
20:40:35.0207 0528 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
20:40:35.0209 0528 BrSerWdm - ok
20:40:35.0237 0528 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
20:40:35.0240 0528 BrUsbMdm - ok
20:40:35.0248 0528 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
20:40:35.0250 0528 BrUsbSer - ok
20:40:35.0299 0528 [ 6D39C954799B63BA866910234CF7D726 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
20:40:35.0301 0528 BthEnum - ok
20:40:35.0332 0528 [ 9A966A8E86D1771911AE34A20D11BFF3 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:40:35.0334 0528 BTHMODEM - ok
20:40:35.0368 0528 [ 5904EFA25F829BF84EA6FB045134A1D8 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
20:40:35.0372 0528 BthPan - ok
20:40:35.0508 0528 [ 611FF3F2F095C8D4A6D4CFD9DCC09793 ] BthPort C:\Windows\system32\Drivers\BTHport.sys
20:40:35.0519 0528 BthPort - ok
20:40:35.0553 0528 [ A4C8377FA4A994E07075107DBE2E3DCE ] BthServ C:\Windows\System32\bthserv.dll
20:40:35.0555 0528 BthServ - ok
20:40:35.0581 0528 [ D330803EAB2A15CAEC7F011F1D4CB30E ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
20:40:35.0583 0528 BTHUSB - ok
20:40:35.0641 0528 [ 58C4B59D0EBFB637E2E296CF4A686BA0 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
20:40:35.0644 0528 btwaudio - ok
20:40:35.0723 0528 [ E8CC9436CC464D6975ADBC4AECE0BA7B ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
20:40:35.0726 0528 btwavdt - ok
20:40:35.0826 0528 [ AA29BE5BF3D40CA73447639E293FE4C8 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
20:40:35.0833 0528 btwdins - ok
20:40:36.0010 0528 [ ECB98391C756A7B9CFBAE89D9D1235E1 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
20:40:36.0011 0528 btwl2cap - ok
20:40:36.0164 0528 [ 62ED55843F8216EB25A909A820613033 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
20:40:36.0166 0528 btwrchid - ok
20:40:36.0205 0528 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:40:36.0208 0528 cdfs - ok
20:40:36.0287 0528 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:40:36.0290 0528 cdrom - ok
20:40:36.0321 0528 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
20:40:36.0323 0528 CertPropSvc - ok
20:40:36.0372 0528 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:40:36.0374 0528 circlass - ok
20:40:36.0436 0528 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
20:40:36.0443 0528 CLFS - ok
20:40:36.0611 0528 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:40:36.0614 0528 clr_optimization_v2.0.50727_32 - ok
20:40:36.0650 0528 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:40:36.0664 0528 clr_optimization_v4.0.30319_32 - ok
20:40:36.0688 0528 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:40:36.0690 0528 CmBatt - ok
20:40:36.0724 0528 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:40:36.0726 0528 cmdide - ok
20:40:36.0751 0528 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:40:36.0754 0528 Compbatt - ok
20:40:36.0760 0528 COMSysApp - ok
20:40:36.0769 0528 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
20:40:36.0772 0528 crcdisk - ok
20:40:36.0798 0528 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
20:40:36.0800 0528 Crusoe - ok
20:40:36.0873 0528 [ F1E8C34892336D33EDDCDFE44E474F64 ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:40:36.0878 0528 CryptSvc - ok
20:40:37.0209 0528 [ 9149AE69296322678AE3AD5D2BFB88BC ] CV2K1 C:\Windows\system32\DRIVERS\cv2k1.sys
20:40:37.0212 0528 CV2K1 - ok
20:40:37.0348 0528 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:40:37.0358 0528 DcomLaunch - ok
20:40:37.0376 0528 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:40:37.0380 0528 DfsC - ok
20:40:37.0997 0528 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
20:40:38.0221 0528 DFSR - ok
20:40:38.0253 0528 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
20:40:38.0257 0528 Dhcp - ok
20:40:38.0304 0528 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
20:40:38.0305 0528 disk - ok
20:40:38.0361 0528 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:40:38.0366 0528 Dnscache - ok
20:40:38.0470 0528 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
20:40:38.0477 0528 dot3svc - ok
20:40:38.0521 0528 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
20:40:38.0526 0528 DPS - ok
20:40:38.0698 0528 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:40:38.0891 0528 drmkaud - ok
20:40:38.0984 0528 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:40:38.0991 0528 DXGKrnl - ok
20:40:39.0057 0528 [ 908ED85B7806E8AF3AF5E9B74F7809D4 ] e1express C:\Windows\system32\DRIVERS\e1e6032.sys
20:40:39.0063 0528 e1express - ok
20:40:39.0135 0528 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
20:40:39.0139 0528 E1G60 - ok
20:40:39.0223 0528 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
20:40:39.0226 0528 EapHost - ok
20:40:39.0263 0528 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
20:40:39.0267 0528 Ecache - ok
20:40:39.0399 0528 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:40:39.0405 0528 ehRecvr - ok
20:40:39.0493 0528 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
20:40:39.0496 0528 ehSched - ok
20:40:39.0629 0528 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
20:40:39.0631 0528 ehstart - ok
20:40:39.0673 0528 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
20:40:39.0681 0528 elxstor - ok
20:40:40.0306 0528 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
20:40:40.0319 0528 EMDMgmt - ok
20:40:40.0396 0528 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:40:40.0399 0528 ErrDev - ok
20:40:40.0463 0528 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
20:40:40.0467 0528 EventSystem - ok
20:40:40.0728 0528 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
20:40:40.0733 0528 exfat - ok
20:40:40.0833 0528 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:40:40.0838 0528 fastfat - ok
20:40:40.0906 0528 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:40:40.0909 0528 fdc - ok
20:40:40.0948 0528 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
20:40:40.0951 0528 fdPHost - ok
20:40:41.0082 0528 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
20:40:41.0086 0528 FDResPub - ok
20:40:41.0122 0528 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:40:41.0125 0528 FileInfo - ok
20:40:41.0264 0528 [ 47B91551FE7489A323BAF4904CAD757A ] FileMonitor C:\Program Files\IObit\IObit Malware Fighter\Drivers\wlh_x86\FileMonitor.sys
20:40:41.0266 0528 FileMonitor - ok
20:40:41.0393 0528 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:40:41.0396 0528 Filetrace - ok
20:40:41.0447 0528 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:40:41.0450 0528 flpydisk - ok
20:40:41.0526 0528 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:40:41.0531 0528 FltMgr - ok
20:40:41.0663 0528 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
20:40:41.0671 0528 FontCache - ok
20:40:41.0791 0528 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
20:40:41.0794 0528 FontCache3.0.0.0 - ok
20:40:41.0868 0528 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:40:41.0870 0528 Fs_Rec - ok
20:40:41.0893 0528 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
20:40:41.0896 0528 gagp30kx - ok
20:40:42.0010 0528 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
20:40:42.0032 0528 gpsvc - ok
20:40:42.0145 0528 [ 833051C6C6C42117191935F734CFBD97 ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
20:40:42.0147 0528 hamachi - ok
20:40:42.0260 0528 [ 616399E27A55C97AE859230EB13984D8 ] Hamachi2Svc C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
20:40:42.0303 0528 Hamachi2Svc - ok
20:40:42.0397 0528 [ 3F90E001369A07243763BD5A523D8722 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:40:42.0403 0528 HdAudAddService - ok
20:40:42.0483 0528 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
20:40:42.0488 0528 HDAudBus - ok
20:40:42.0681 0528 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
20:40:42.0683 0528 HidBth - ok
20:40:42.0783 0528 [ D8DF3722D5E961BAA1292AA2F12827E2 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:40:42.0785 0528 HidIr - ok
20:40:42.0828 0528 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
20:40:42.0831 0528 hidserv - ok
20:40:42.0867 0528 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:40:42.0869 0528 HidUsb - ok
20:40:42.0910 0528 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:40:42.0915 0528 hkmsvc - ok
20:40:43.0020 0528 [ B4307FEF5CF0E7B2DDD62B737BCD7541 ] hotcore3 C:\Windows\system32\drivers\hotcore3.sys
20:40:43.0023 0528 hotcore3 - ok
20:40:43.0083 0528 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
20:40:43.0085 0528 HpCISSs - ok
20:40:43.0125 0528 [ CBD09ED9CF6822177EE85AEA4D8816A2 ] HTCAND32 C:\Windows\system32\Drivers\ANDROIDUSB.sys
20:40:43.0126 0528 HTCAND32 - ok
20:40:43.0221 0528 [ 52395A94C127C0266D1C0F3CCE8A4345 ] htcnprot C:\Windows\system32\DRIVERS\htcnprot.sys
20:40:43.0226 0528 htcnprot - ok
20:40:43.0318 0528 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:40:43.0327 0528 HTTP - ok

[asdsad]

3. část:

20:40:43.0389 0528 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
20:40:43.0392 0528 i2omp - ok
20:40:43.0414 0528 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
20:40:43.0417 0528 i8042prt - ok
20:40:43.0445 0528 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
20:40:43.0451 0528 iaStorV - ok
20:40:43.0701 0528 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:40:43.0793 0528 idsvc - ok
20:40:44.0040 0528 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
20:40:44.0041 0528 iirsp - ok
20:40:44.0083 0528 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
20:40:44.0089 0528 IKEEXT - ok
20:40:44.0213 0528 [ 8AE99EBE30E8338907361018D9030835 ] IMFservice C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
20:40:44.0268 0528 IMFservice - ok
20:40:44.0312 0528 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
20:40:44.0315 0528 intelide - ok
20:40:44.0379 0528 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:40:44.0381 0528 intelppm - ok
20:40:44.0408 0528 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:40:44.0413 0528 IPBusEnum - ok
20:40:44.0453 0528 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:40:44.0456 0528 IpFilterDriver - ok
20:40:44.0505 0528 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:40:44.0512 0528 iphlpsvc - ok
20:40:44.0519 0528 IpInIp - ok
20:40:44.0560 0528 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
20:40:44.0563 0528 IPMIDRV - ok
20:40:44.0608 0528 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
20:40:44.0612 0528 IPNAT - ok
20:40:44.0638 0528 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:40:44.0641 0528 IRENUM - ok
20:40:44.0663 0528 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:40:44.0666 0528 isapnp - ok
20:40:44.0711 0528 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
20:40:44.0713 0528 iScsiPrt - ok
20:40:44.0821 0528 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
20:40:44.0823 0528 iteatapi - ok
20:40:44.0861 0528 [ 8BCD857C7932AD005D5F9C89329DA2E1 ] itecir C:\Windows\system32\DRIVERS\itecir.sys
20:40:44.0864 0528 itecir - ok
20:40:44.0906 0528 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
20:40:44.0909 0528 iteraid - ok
20:40:44.0972 0528 [ A67E8CFCAD7D4F8B35643D6C79BA64C3 ] k57nd60x C:\Windows\system32\DRIVERS\k57nd60x.sys
20:40:44.0978 0528 k57nd60x - ok
20:40:45.0008 0528 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
20:40:45.0011 0528 kbdclass - ok
20:40:45.0042 0528 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
20:40:45.0045 0528 kbdhid - ok
20:40:45.0071 0528 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
20:40:45.0076 0528 KeyIso - ok
20:40:45.0122 0528 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:40:45.0127 0528 KSecDD - ok
20:40:45.0296 0528 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
20:40:45.0307 0528 KtmRm - ok
20:40:45.0397 0528 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\system32\srvsvc.dll
20:40:45.0404 0528 LanmanServer - ok
20:40:45.0533 0528 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:40:45.0542 0528 LanmanWorkstation - ok
20:40:45.0675 0528 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:40:45.0678 0528 lltdio - ok
20:40:45.0795 0528 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:40:45.0802 0528 lltdsvc - ok
20:40:45.0845 0528 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:40:45.0848 0528 lmhosts - ok
20:40:45.0963 0528 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
20:40:45.0966 0528 LSI_FC - ok
20:40:46.0063 0528 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
20:40:46.0066 0528 LSI_SAS - ok
20:40:46.0091 0528 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
20:40:46.0095 0528 LSI_SCSI - ok
20:40:46.0128 0528 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
20:40:46.0132 0528 luafv - ok
20:40:46.0190 0528 [ 629CABB0421668C9D3D402A3C3D77E14 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
20:40:46.0193 0528 MBAMProtector - ok
20:40:46.0263 0528 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
20:40:46.0269 0528 MBAMScheduler - ok
20:40:46.0417 0528 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
20:40:46.0436 0528 MBAMService - ok
20:40:46.0593 0528 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:40:46.0599 0528 Mcx2Svc - ok
20:40:46.0731 0528 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
20:40:46.0734 0528 megasas - ok
20:40:46.0786 0528 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
20:40:46.0795 0528 MegaSR - ok
20:40:47.0431 0528 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
20:40:47.0434 0528 Microsoft Office Groove Audit Service - ok
20:40:47.0541 0528 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
20:40:47.0545 0528 MMCSS - ok
20:40:47.0580 0528 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
20:40:47.0582 0528 Modem - ok
20:40:47.0887 0528 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:40:47.0889 0528 monitor - ok
20:40:47.0996 0528 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:40:47.0999 0528 mouclass - ok
20:40:48.0037 0528 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:40:48.0039 0528 mouhid - ok
20:40:48.0152 0528 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
20:40:48.0243 0528 MountMgr - ok
20:40:48.0306 0528 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
20:40:48.0310 0528 mpio - ok
20:40:48.0394 0528 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:40:48.0397 0528 mpsdrv - ok
20:40:48.0455 0528 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
20:40:48.0462 0528 MpsSvc - ok
20:40:48.0496 0528 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
20:40:48.0500 0528 Mraid35x - ok
20:40:48.0599 0528 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:40:48.0603 0528 MRxDAV - ok
20:40:48.0651 0528 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:40:48.0655 0528 mrxsmb - ok
20:40:48.0925 0528 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:40:48.0928 0528 mrxsmb10 - ok
20:40:48.0974 0528 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:40:49.0035 0528 mrxsmb20 - ok
20:40:49.0077 0528 [ 5457DCFA7C0DA43522F4D9D4049C1472 ] msahci C:\Windows\system32\drivers\msahci.sys
20:40:49.0080 0528 msahci - ok
20:40:49.0157 0528 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:40:49.0236 0528 msdsm - ok
20:40:49.0317 0528 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
20:40:49.0323 0528 MSDTC - ok
20:40:49.0375 0528 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:40:49.0378 0528 Msfs - ok
20:40:49.0387 0528 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:40:49.0390 0528 msisadrv - ok
20:40:49.0441 0528 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:40:49.0447 0528 MSiSCSI - ok
20:40:49.0455 0528 msiserver - ok
20:40:49.0715 0528 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:40:49.0718 0528 MSKSSRV - ok
20:40:49.0776 0528 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:40:49.0779 0528 MSPCLOCK - ok
20:40:49.0926 0528 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:40:49.0929 0528 MSPQM - ok
20:40:49.0971 0528 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:40:49.0977 0528 MsRPC - ok
20:40:50.0015 0528 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
20:40:50.0017 0528 mssmbios - ok
20:40:50.0029 0528 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:40:50.0032 0528 MSTEE - ok
20:40:50.0068 0528 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
20:40:50.0071 0528 Mup - ok
20:40:50.0112 0528 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
20:40:50.0122 0528 napagent - ok
20:40:50.0171 0528 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:40:50.0176 0528 NativeWifiP - ok
20:40:50.0275 0528 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:40:50.0286 0528 NDIS - ok
20:40:50.0351 0528 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:40:50.0353 0528 NdisTapi - ok
20:40:50.0373 0528 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:40:50.0375 0528 Ndisuio - ok
20:40:50.0415 0528 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:40:50.0419 0528 NdisWan - ok
20:40:50.0431 0528 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:40:50.0435 0528 NDProxy - ok
20:40:50.0461 0528 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:40:50.0465 0528 NetBIOS - ok
20:40:50.0517 0528 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
20:40:50.0523 0528 netbt - ok
20:40:50.0593 0528 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
20:40:50.0597 0528 Netlogon - ok
20:40:50.0674 0528 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
20:40:50.0685 0528 Netman - ok
20:40:50.0790 0528 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:40:50.0794 0528 NetMsmqActivator - ok
20:40:50.0803 0528 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:40:50.0807 0528 NetPipeActivator - ok
20:40:50.0853 0528 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
20:40:50.0861 0528 netprofm - ok
20:40:50.0871 0528 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:40:50.0874 0528 NetTcpActivator - ok
20:40:50.0883 0528 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:40:50.0886 0528 NetTcpPortSharing - ok
20:40:50.0919 0528 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
20:40:50.0922 0528 nfrd960 - ok
20:40:50.0952 0528 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:40:50.0957 0528 NlaSvc - ok
20:40:51.0033 0528 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:40:51.0036 0528 Npfs - ok
20:40:51.0114 0528 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
20:40:51.0119 0528 nsi - ok
20:40:51.0200 0528 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:40:51.0202 0528 nsiproxy - ok
20:40:51.0321 0528 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:40:51.0404 0528 Ntfs - ok
20:40:51.0440 0528 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
20:40:51.0443 0528 ntrigdigi - ok
20:40:51.0498 0528 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
20:40:51.0501 0528 Null - ok
20:40:51.0553 0528 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:40:51.0558 0528 nvraid - ok
20:40:51.0593 0528 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:40:51.0596 0528 nvstor - ok
20:40:51.0709 0528 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:40:51.0713 0528 nv_agp - ok
20:40:51.0721 0528 NwlnkFlt - ok
20:40:51.0733 0528 NwlnkFwd - ok
20:40:51.0832 0528 [ A015DD2BA6009C8BDD00A6C431302D06 ] OA001Ufd C:\Windows\system32\DRIVERS\OA001Ufd.sys
20:40:51.0837 0528 OA001Ufd - ok
20:40:51.0871 0528 [ D8713C79ED64012863B3344FFC2D406E ] OA001Vid C:\Windows\system32\DRIVERS\OA001Vid.sys
20:40:51.0878 0528 OA001Vid - ok
20:40:52.0031 0528 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
20:40:52.0041 0528 odserv - ok
20:40:52.0083 0528 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
20:40:52.0086 0528 ohci1394 - ok
20:40:52.0194 0528 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:40:52.0196 0528 ose - ok
20:40:52.0278 0528 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
20:40:52.0323 0528 p2pimsvc - ok
20:40:52.0343 0528 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
20:40:52.0352 0528 p2psvc - ok
20:40:52.0406 0528 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
20:40:52.0409 0528 Parport - ok
20:40:52.0443 0528 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:40:52.0446 0528 partmgr - ok
20:40:52.0508 0528 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
20:40:52.0510 0528 Parvdm - ok
20:40:52.0590 0528 [ AFADA8B97BE3C9398DC6C770409C3544 ] PassThru Service C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
20:40:52.0592 0528 PassThru Service - ok
20:40:52.0642 0528 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
20:40:52.0648 0528 PcaSvc - ok
20:40:52.0679 0528 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
20:40:52.0683 0528 pci - ok
20:40:52.0776 0528 [ FC175F5DDAB666D7F4D17449A547626F ] pciide C:\Windows\system32\drivers\pciide.sys
20:40:52.0778 0528 pciide - ok
20:40:52.0879 0528 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
20:40:52.0884 0528 pcmcia - ok
20:40:52.0947 0528 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:40:52.0977 0528 PEAUTH - ok
20:40:53.0102 0528 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
20:40:53.0182 0528 pla - ok
20:40:53.0224 0528 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:40:53.0235 0528 PlugPlay - ok
20:40:53.0268 0528 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
20:40:53.0277 0528 PNRPAutoReg - ok
20:40:53.0379 0528 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
20:40:53.0388 0528 PNRPsvc - ok
20:40:53.0461 0528 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:40:53.0470 0528 PolicyAgent - ok
20:40:53.0520 0528 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:40:53.0522 0528 PptpMiniport - ok
20:40:53.0694 0528 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
20:40:53.0696 0528 Processor - ok
20:40:53.0755 0528 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
20:40:53.0763 0528 ProfSvc - ok
20:40:53.0791 0528 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
20:40:53.0794 0528 ProtectedStorage - ok
20:40:53.0848 0528 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
20:40:53.0852 0528 PSched - ok
20:40:53.0909 0528 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
20:40:53.0911 0528 PxHelp20 - ok
20:40:54.0231 0528 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
20:40:54.0270 0528 ql2300 - ok
20:40:54.0360 0528 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
20:40:54.0364 0528 ql40xx - ok
20:40:54.0420 0528 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
20:40:54.0430 0528 QWAVE - ok
20:40:54.0468 0528 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:40:54.0472 0528 QWAVEdrv - ok
20:40:54.0671 0528 [ 47DCF5D78C395159D72C65C25129FC44 ] R300 C:\Windows\system32\DRIVERS\atikmdag.sys
20:40:54.0700 0528 R300 - ok
20:40:54.0747 0528 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:40:54.0750 0528 RasAcd - ok
20:40:54.0798 0528 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
20:40:54.0805 0528 RasAuto - ok
20:40:54.0873 0528 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:40:54.0877 0528 Rasl2tp - ok
20:40:54.0974 0528 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
20:40:54.0981 0528 RasMan - ok
20:40:55.0022 0528 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:40:55.0025 0528 RasPppoe - ok
20:40:55.0086 0528 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:40:55.0089 0528 RasSstp - ok
20:40:55.0165 0528 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:40:55.0171 0528 rdbss - ok
20:40:55.0234 0528 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:40:55.0236 0528 RDPCDD - ok
20:40:55.0300 0528 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
20:40:55.0306 0528 rdpdr - ok
20:40:55.0316 0528 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:40:55.0320 0528 RDPENCDD - ok
20:40:55.0387 0528 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:40:55.0392 0528 RDPWD - ok
20:40:55.0465 0528 [ CDAB5EEF978C31E6CF58EDBFB4485B8F ] RegFilter C:\Program Files\IObit\IObit Malware Fighter\drivers\wlh_x86\regfilter.sys
20:40:55.0466 0528 RegFilter - ok
20:40:55.0582 0528 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:40:55.0587 0528 RemoteAccess - ok
20:40:55.0622 0528 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:40:55.0629 0528 RemoteRegistry - ok
20:40:55.0703 0528 [ 6482707F9F4DA0ECBAB43B2E0398A101 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
20:40:55.0708 0528 RFCOMM - ok
20:40:55.0845 0528 [ C2EF513BBE069F0D4EE0938A76F975D3 ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
20:40:55.0848 0528 rimmptsk - ok
20:40:55.0867 0528 [ C398BCA91216755B098679A8DA8A2300 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
20:40:55.0871 0528 rimsptsk - ok
20:40:55.0897 0528 [ 2A2554CB24506E0A0508FC395C4A1B42 ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
20:40:55.0900 0528 rismxdp - ok
20:40:55.0953 0528 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
20:40:55.0958 0528 RpcLocator - ok
20:40:55.0995 0528 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
20:40:56.0005 0528 RpcSs - ok
20:40:56.0059 0528 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:40:56.0062 0528 rspndr - ok
20:40:56.0105 0528 [ 2E2F0D988F6D46E5E5E84D9FCAD39081 ] RzSynapse C:\Windows\system32\DRIVERS\RzSynapse.sys
20:40:56.0109 0528 RzSynapse - ok
20:40:56.0201 0528 [ B27857A87E28E462C783ABA077ED29AF ] rzudd C:\Windows\system32\DRIVERS\rzudd.sys
20:40:56.0205 0528 rzudd - ok
20:40:56.0233 0528 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
20:40:56.0236 0528 SamSs - ok
20:40:56.0276 0528 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:40:56.0280 0528 sbp2port - ok
20:40:56.0318 0528 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:40:56.0325 0528 SCardSvr - ok
20:40:56.0408 0528 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
20:40:56.0424 0528 Schedule - ok
20:40:56.0447 0528 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
20:40:56.0449 0528 SCPolicySvc - ok
20:40:56.0486 0528 [ 8F36B54688C31EED4580129040C6A3D3 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
20:40:56.0489 0528 sdbus - ok
20:40:56.0547 0528 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:40:56.0555 0528 SDRSVC - ok
20:40:56.0572 0528 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:40:56.0575 0528 secdrv - ok
20:40:56.0624 0528 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
20:40:56.0631 0528 seclogon - ok
20:40:56.0690 0528 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
20:40:56.0696 0528 SENS - ok
20:40:56.0821 0528 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
20:40:56.0824 0528 Serenum - ok
20:40:56.0937 0528 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
20:40:56.0941 0528 Serial - ok
20:40:56.0966 0528 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
20:40:56.0968 0528 sermouse - ok
20:40:57.0206 0528 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
20:40:57.0213 0528 SessionEnv - ok
20:40:57.0298 0528 [ 9E7DEE11FD5A4355941A45F13C0ED59A ] sfdrv01 C:\Windows\system32\drivers\sfdrv01.sys
20:40:57.0301 0528 sfdrv01 - ok
20:40:57.0436 0528 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
20:40:57.0438 0528 sffdisk - ok
20:40:57.0464 0528 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:40:57.0467 0528 sffp_mmc - ok
20:40:57.0529 0528 [ 9F66A46C55D6F1CCABC79BB7AFCCC545 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
20:40:57.0532 0528 sffp_sd - ok
20:40:57.0596 0528 [ ECEFB59D2206D281E6D317AF0EA0D8BD ] sfhlp02 C:\Windows\system32\drivers\sfhlp02.sys
20:40:57.0599 0528 sfhlp02 - ok
20:40:57.0625 0528 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
20:40:57.0627 0528 sfloppy - ok
20:40:57.0666 0528 [ 05E3038180CD846B0BCA0E915163606A ] sfsync04 C:\Windows\system32\drivers\sfsync04.sys
20:40:57.0669 0528 sfsync04 - ok
20:40:57.0698 0528 [ D5A7E09D2C6A702809E49190D52ADC9F ] sfvfs02 C:\Windows\system32\drivers\sfvfs02.sys
20:40:57.0702 0528 sfvfs02 - ok
20:40:57.0787 0528 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:40:57.0796 0528 SharedAccess - ok
20:40:57.0916 0528 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:40:57.0926 0528 ShellHWDetection - ok
20:40:57.0971 0528 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
20:40:57.0974 0528 sisagp - ok
20:40:58.0134 0528 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
20:40:58.0136 0528 SiSRaid2 - ok
20:40:58.0260 0528 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
20:40:58.0265 0528 SiSRaid4 - ok
20:40:58.0362 0528 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
20:40:58.0366 0528 SkypeUpdate - ok
20:40:58.0486 0528 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
20:40:58.0586 0528 slsvc - ok
20:40:58.0619 0528 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
20:40:58.0627 0528 SLUINotify - ok
20:40:58.0716 0528 [ 46B40982AF166BF89C3F51FB13E60D6D ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
20:40:58.0718 0528 SmartDefragDriver - ok
20:40:58.0756 0528 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:40:58.0760 0528 Smb - ok
20:40:58.0843 0528 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:40:58.0849 0528 SNMPTRAP - ok
20:40:58.0917 0528 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
20:40:58.0920 0528 spldr - ok
20:40:58.0995 0528 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
20:40:59.0003 0528 Spooler - ok
20:40:59.0074 0528 [ 71E276F6D189413266EA22171806597B ] sptd C:\Windows\system32\Drivers\sptd.sys
20:40:59.0076 0528 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 71E276F6D189413266EA22171806597B
20:40:59.0081 0528 sptd ( LockedFile.Multi.Generic ) - warning
20:40:59.0082 0528 sptd - detected LockedFile.Multi.Generic (1)
20:40:59.0176 0528 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
20:40:59.0183 0528 srv - ok
20:40:59.0246 0528 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:40:59.0251 0528 srv2 - ok
20:40:59.0344 0528 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:40:59.0348 0528 srvnet - ok
20:40:59.0404 0528 [ 6F6342234F1D460D083A503A93FEBF32 ] SS1018mdm C:\Windows\system32\DRIVERS\SS1018mdm.sys
20:40:59.0408 0528 SS1018mdm - ok
20:40:59.0497 0528 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:40:59.0506 0528 SSDPSRV - ok
20:40:59.0537 0528 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:40:59.0545 0528 SstpSvc - ok
20:40:59.0684 0528 [ FFA85A9F3C3571AD29AC156BC6F116C5 ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f091b975\STacSV.exe
20:40:59.0689 0528 STacSV - ok
20:40:59.0721 0528 Steam Client Service - ok
20:40:59.0767 0528 [ 5AF1FEEC6945F4FA5EFD00E0C6D8F9B9 ] STHDA C:\Windows\system32\DRIVERS\stwrt.sys
20:40:59.0776 0528 STHDA - ok
20:40:59.0858 0528 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
20:40:59.0881 0528 stisvc - ok
20:40:59.0959 0528 [ 1D0063597C3666404FCF97698ABEB019 ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
20:40:59.0963 0528 stllssvr - ok
20:41:00.0028 0528 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
20:41:00.0031 0528 swenum - ok
20:41:00.0560 0528 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
20:41:00.0564 0528 SwitchBoard - ok
20:41:00.0646 0528 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
20:41:00.0658 0528 swprv - ok
20:41:00.0728 0528 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
20:41:00.0730 0528 Symc8xx - ok
20:41:00.0768 0528 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
20:41:00.0771 0528 Sym_hi - ok
20:41:00.0858 0528 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
20:41:00.0861 0528 Sym_u3 - ok
20:41:00.0936 0528 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
20:41:00.0980 0528 SysMain - ok
20:41:01.0097 0528 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:41:01.0104 0528 TabletInputService - ok
20:41:01.0148 0528 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
20:41:01.0157 0528 TapiSrv - ok
20:41:01.0191 0528 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
20:41:01.0198 0528 TBS - ok
20:41:01.0422 0528 [ 74E2D020C47BB2B2FCCBA29A518A7EB4 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:41:01.0453 0528 Tcpip - ok
20:41:01.0479 0528 [ 74E2D020C47BB2B2FCCBA29A518A7EB4 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
20:41:01.0487 0528 Tcpip6 - ok
20:41:01.0537 0528 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:41:01.0539 0528 tcpipreg - ok
20:41:01.0600 0528 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:41:01.0602 0528 TDPIPE - ok
20:41:01.0654 0528 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:41:01.0657 0528 TDTCP - ok
20:41:01.0718 0528 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:41:01.0722 0528 tdx - ok
20:41:01.0751 0528 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
20:41:01.0754 0528 TermDD - ok
20:41:01.0987 0528 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
20:41:02.0032 0528 TermService - ok
20:41:02.0102 0528 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
20:41:02.0109 0528 Themes - ok
20:41:02.0271 0528 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
20:41:02.0275 0528 THREADORDER - ok
20:41:02.0388 0528 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
20:41:02.0395 0528 TrkWks - ok
20:41:02.0870 0528 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:41:02.0872 0528 TrustedInstaller - ok
20:41:03.0010 0528 [ 2EBD9DD2FC48D7252E226746D2894D40 ] TsLwWfF C:\Windows\system32\DRIVERS\TsLwWfF.sys
20:41:03.0013 0528 TsLwWfF - ok
20:41:03.0075 0528 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:41:03.0078 0528 tssecsrv - ok
20:41:03.0237 0528 [ C1A05AFCF5411474BCA342D7710D0FFA ] TsVlb C:\Windows\system32\DRIVERS\tsvlb.sys
20:41:03.0240 0528 TsVlb - ok
20:41:03.0320 0528 [ 1DF40DFD31AE29C0216C6CD40CC04E1A ] TsVp C:\Windows\system32\DRIVERS\tsvp.sys
20:41:03.0323 0528 TsVp - ok
20:41:03.0361 0528 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
20:41:03.0364 0528 tunmp - ok
20:41:03.0402 0528 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:41:03.0405 0528 tunnel - ok
20:41:03.0500 0528 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
20:41:03.0504 0528 uagp35 - ok
20:41:03.0560 0528 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:41:03.0567 0528 udfs - ok
20:41:03.0642 0528 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:41:03.0650 0528 UI0Detect - ok
20:41:03.0704 0528 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:41:03.0707 0528 uliagpkx - ok
20:41:03.0760 0528 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
20:41:03.0767 0528 uliahci - ok
20:41:03.0847 0528 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
20:41:03.0852 0528 UlSata - ok
20:41:03.0889 0528 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
20:41:03.0892 0528 ulsata2 - ok
20:41:03.0984 0528 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
20:41:03.0988 0528 umbus - ok
20:41:04.0045 0528 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
20:41:04.0055 0528 upnphost - ok
20:41:04.0198 0528 [ 87F9BCFEC6409C5672722607017FD57B ] UrlFilter C:\Program Files\IObit\IObit Malware Fighter\drivers\wlh_x86\UrlFilter.sys
20:41:04.0200 0528 UrlFilter - ok
20:41:04.0306 0528 [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
20:41:04.0310 0528 usbaudio - ok
20:41:04.0494 0528 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:41:04.0498 0528 usbccgp - ok
20:41:04.0569 0528 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:41:04.0572 0528 usbcir - ok
20:41:04.0649 0528 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:41:04.0652 0528 usbehci - ok
20:41:04.0692 0528 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:41:04.0698 0528 usbhub - ok
20:41:04.0739 0528 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:41:04.0742 0528 usbohci - ok
20:41:04.0783 0528 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:41:04.0787 0528 usbprint - ok
20:41:04.0852 0528 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
20:41:04.0856 0528 usbscan - ok
20:41:04.0903 0528 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:41:04.0907 0528 USBSTOR - ok
20:41:04.0984 0528 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
20:41:04.0987 0528 usbuhci - ok
20:41:05.0046 0528 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
20:41:05.0051 0528 usbvideo - ok
20:41:05.0138 0528 [ 35C9095FA7076466AFBFC5B9EC4B779E ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys
20:41:05.0141 0528 usb_rndisx - ok
20:41:05.0245 0528 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
20:41:05.0251 0528 UxSms - ok
20:41:05.0397 0528 [ 065F15E84F2CC4EF60594283E9D72617 ] VBoxNetAdp C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
20:41:05.0399 0528 VBoxNetAdp - ok
20:41:05.0411 0528 VBoxNetFlt - ok
20:41:05.0562 0528 [ 670A4469D91F26D14CECF6F9A206B95C ] VBoxUSB C:\Windows\system32\Drivers\VBoxUSB.sys
20:41:05.0565 0528 VBoxUSB - ok
20:41:05.0728 0528 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
20:41:05.0736 0528 vds - ok
20:41:05.0878 0528 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:41:05.0881 0528 vga - ok
20:41:05.0961 0528 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
20:41:05.0964 0528 VgaSave - ok
20:41:06.0000 0528 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
20:41:06.0004 0528 viaagp - ok
20:41:06.0045 0528 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
20:41:06.0049 0528 ViaC7 - ok
20:41:06.0094 0528 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
20:41:06.0096 0528 viaide - ok
20:41:06.0143 0528 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:41:06.0146 0528 volmgr - ok
20:41:06.0206 0528 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:41:06.0215 0528 volmgrx - ok
20:41:06.0298 0528 [ 786DB5771F05EF300390399F626BF30A ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:41:06.0304 0528 volsnap - ok
20:41:06.0385 0528 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
20:41:06.0389 0528 vsmraid - ok
20:41:06.0684 0528 [ 5A2DDC5411A092BEDB1A07755E087784 ] VSPerfDrv100 C:\Program Files\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\VSPerfDrv100.sys
20:41:06.0735 0528 VSPerfDrv100 - ok
20:41:06.0898 0528 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
20:41:06.0987 0528 VSS - ok
20:41:07.0122 0528 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
20:41:07.0134 0528 W32Time - ok
20:41:07.0186 0528 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
20:41:07.0188 0528 WacomPen - ok
20:41:07.0225 0528 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
20:41:07.0229 0528 Wanarp - ok
20:41:07.0241 0528 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:41:07.0244 0528 Wanarpv6 - ok
20:41:07.0329 0528 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:41:07.0342 0528 wcncsvc - ok
20:41:07.0553 0528 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:41:07.0561 0528 WcsPlugInService - ok
20:41:07.0599 0528 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
20:41:07.0602 0528 Wd - ok
20:41:07.0685 0528 [ D6EFAF429FD30C5DF613D220E344CCE7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam.sys
20:41:07.0687 0528 WDC_SAM - ok
20:41:07.0803 0528 [ BF847A3972CC6B5CE26E0EA742DD52D9 ] WDDMService C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
20:41:07.0809 0528 WDDMService - ok
20:41:08.0092 0528 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:41:08.0103 0528 Wdf01000 - ok
20:41:08.0277 0528 [ B5966F1DFF6E20576F3C8C2D93D129FD ] WDFME C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
20:41:08.0322 0528 WDFME - ok
20:41:08.0414 0528 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:41:08.0422 0528 WdiServiceHost - ok
20:41:08.0435 0528 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:41:08.0442 0528 WdiSystemHost - ok
20:41:08.0498 0528 [ 92F0088CA18BB08BB596EF2608256F8A ] WDSC C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe
20:41:08.0507 0528 WDSC - ok
20:41:08.0556 0528 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
20:41:08.0566 0528 WebClient - ok
20:41:08.0621 0528 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:41:08.0630 0528 Wecsvc - ok
20:41:08.0687 0528 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:41:08.0694 0528 wercplsupport - ok
20:41:08.0726 0528 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
20:41:08.0735 0528 WerSvc - ok
20:41:08.0824 0528 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
20:41:08.0830 0528 WinDefend - ok
20:41:08.0863 0528 WinHttpAutoProxySvc - ok
20:41:09.0070 0528 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:41:09.0075 0528 Winmgmt - ok
20:41:09.0141 0528 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
20:41:09.0219 0528 WinRM - ok
20:41:09.0450 0528 [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] WinUSB C:\Windows\system32\DRIVERS\WinUSB.sys
20:41:09.0453 0528 WinUSB - ok
20:41:09.0529 0528 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
20:41:09.0550 0528 Wlansvc - ok
20:41:09.0563 0528 wltrysvc - ok
20:41:09.0637 0528 [ 7EF08E65A586EA95C5B80190A9CFEBE6 ] WmBEnum C:\Windows\system32\drivers\WmBEnum.sys
20:41:09.0640 0528 WmBEnum - ok
20:41:09.0721 0528 [ 24369B35C89F36AB3226022B1137BD4C ] WmFilter C:\Windows\system32\drivers\WmFilter.sys
20:41:09.0724 0528 WmFilter - ok
20:41:09.0792 0528 [ CAC03BF7E624780CCDFA0436CBE839EE ] WmHidLo C:\Windows\system32\drivers\WmHidLo.sys
20:41:09.0795 0528 WmHidLo - ok
20:41:09.0869 0528 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
20:41:09.0871 0528 WmiAcpi - ok
20:41:09.0984 0528 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:41:09.0989 0528 wmiApSrv - ok
20:41:10.0133 0528 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
20:41:10.0167 0528 WMPNetworkSvc - ok
20:41:10.0221 0528 [ 0BE14BB79E41FEAFCCE33714E4176AE8 ] WmVirHid C:\Windows\system32\drivers\WmVirHid.sys
20:41:10.0223 0528 WmVirHid - ok
20:41:10.0251 0528 [ 0638CD7C72F5B026638221DC2E84D448 ] WmXlCore C:\Windows\system32\drivers\WmXlCore.sys
20:41:10.0254 0528 WmXlCore - ok
20:41:10.0290 0528 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:41:10.0301 0528 WPCSvc - ok
20:41:10.0352 0528 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:41:10.0360 0528 WPDBusEnum - ok
20:41:10.0443 0528 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
20:41:10.0446 0528 WpdUsb - ok
20:41:10.0702 0528 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
20:41:10.0708 0528 WPFFontCache_v0400 - ok
20:41:10.0772 0528 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:41:10.0774 0528 ws2ifsl - ok
20:41:10.0823 0528 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\System32\wscsvc.dll
20:41:10.0832 0528 wscsvc - ok
20:41:10.0846 0528 WSearch - ok
20:41:10.0968 0528 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
20:41:10.0988 0528 wuauserv - ok
20:41:11.0045 0528 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:41:11.0048 0528 WudfPf - ok
20:41:11.0110 0528 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:41:11.0115 0528 WUDFRd - ok
20:41:11.0178 0528 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:41:11.0187 0528 wudfsvc - ok
20:41:11.0202 0528 XDva383 - ok
20:41:11.0221 0528 XDva384 - ok
20:41:11.0237 0528 XDva385 - ok
20:41:11.0254 0528 XDva386 - ok
20:41:11.0274 0528 XDva390 - ok
20:41:11.0297 0528 XDva391 - ok
20:41:11.0316 0528 XDva399 - ok
20:41:11.0458 0528 [ 4D840C6AF3C020ED3A35EFBA9025CF4A ] {2E444BE9-B8EC-4CE6-8C2B-6536FB7F4FB7} C:\Program Files\Dell\MediaDirect\000.fcl
20:41:11.0875 0528 {2E444BE9-B8EC-4CE6-8C2B-6536FB7F4FB7} - ok
20:41:11.0995 0528 ================ Scan global ===============================
20:41:12.0103 0528 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
20:41:12.0158 0528 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
20:41:12.0188 0528 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
20:41:12.0436 0528 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
20:41:12.0447 0528 [Global] - ok
20:41:12.0448 0528 ================ Scan MBR ==================================
20:41:12.0481 0528 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
20:41:13.0031 0528 \Device\Harddisk0\DR0 - ok
20:41:13.0035 0528 ================ Scan VBR ==================================
20:41:13.0098 0528 [ 31CF6A12CE50E25DB6751EA960732B8F ] \Device\Harddisk0\DR0\Partition1
20:41:13.0100 0528 \Device\Harddisk0\DR0\Partition1 - ok
20:41:13.0105 0528 [ 7BE11418C9531A816C64F74B369E6412 ] \Device\Harddisk0\DR0\Partition2
20:41:13.0108 0528 \Device\Harddisk0\DR0\Partition2 - ok
20:41:13.0110 0528 ============================================================
20:41:13.0110 0528 Scan finished
20:41:13.0110 0528 ============================================================
20:41:13.0137 4292 Detected object count: 1
20:41:13.0137 4292 Actual detected object count