Re: jsn.donecore.net

[LucySpermlicker]

Též mám stejný problém, takže vkládám:
(toto je z Adwcleaner)

# AdwCleaner v3.013 - Report created 27/11/2013 at 22:01:12
# Updated 24/11/2013 by Xplode
# Operating System : Windows 7 Home Premium (64 bits)
# Username : Lucky Spermlicker - WILDMACHINE
# Running from : C:\Users\Lucky Spermlicker\Desktop\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

File Found : C:\Program Files (x86)\Mozilla Firefox\searchplugins\crawlersrch.xml
File Found : C:\Users\Lucky Spermlicker\AppData\Roaming\Mozilla\Firefox\Profiles\1nx5w6fd.default\Extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
File Found : C:\Users\Lucky Spermlicker\AppData\Roaming\Mozilla\Firefox\Profiles\1nx5w6fd.default\searchplugins\Conduit.xml
File Found : C:\Users\Lucky Spermlicker\AppData\Roaming\Mozilla\Firefox\Profiles\1nx5w6fd.default\searchplugins\SweetIm.xml
File Found : C:\Users\Lucky Spermlicker\AppData\Roaming\Mozilla\Firefox\Profiles\1nx5w6fd.default\user.js
File Found : C:\Windows\System32\Tasks\AmiUpdXp
File Found : C:\Windows\Tasks\AmiUpdXp.job
Folder Found : C:\Users\Lucky Spermlicker\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda
Folder Found : C:\Users\Lucky Spermlicker\AppData\Roaming\Mozilla\Firefox\Profiles\1nx5w6fd.default\Extensions\{7473b6bd-4691-4744-a82b-7854eb3d70b6}
Folder Found : C:\Users\Lucky Spermlicker\AppData\Roaming\Mozilla\Firefox\Profiles\1nx5w6fd.default\Extensions\{981e53ba-6df4-4d99-8c33-6c398f5c139e}
Folder Found C:\Program Files (x86)\BetterSurf
Folder Found C:\Program Files (x86)\Conduit
Folder Found C:\Program Files (x86)\Crawler
Folder Found C:\Program Files (x86)\DAEMON Tools Toolbar
Folder Found C:\ProgramData\Partner
Folder Found C:\ProgramData\Trymedia
Folder Found C:\Users\Lucky Spermlicker\AppData\Local\SwvUpdater
Folder Found C:\Users\Lucky Spermlicker\AppData\LocalLow\Conduit
Folder Found C:\Users\Lucky Spermlicker\AppData\Roaming\iWin
Folder Found C:\Users\Lucky Spermlicker\AppData\Roaming\Mozilla\Firefox\Profiles\1nx5w6fd.default\ConduitCommon
Folder Found C:\Users\Lucky Spermlicker\AppData\Roaming\Mozilla\Firefox\Profiles\1nx5w6fd.default\CT2786898
Folder Found C:\Users\Lucky Spermlicker\AppData\Roaming\Mozilla\Firefox\Profiles\1nx5w6fd.default\CT3220468
Folder Found C:\Users\Lucky Spermlicker\AppData\Roaming\Mozilla\Firefox\Profiles\1nx5w6fd.default\Smartbar

***** [ Shortcuts ] *****

Shortcut Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crawler lišta\Nápověda pro lištu.lnk ( /showurl hxxp://www.crawler.com/help/default.aspx?src=TbMenu )

***** [ Registry ] *****

Key Found : HKCU\Software\AppDataLow\Software\AskToolbar
Key Found : HKCU\Software\AppDataLow\Software\Conduit
Key Found : HKCU\Software\AppDataLow\Software\SmartBar
Key Found : HKCU\Software\Ask.com
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\CToolbar
Key Found : HKCU\Software\Google\Chrome\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda
Key Found : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Crawler Search
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKCU\Software\YahooPartnerToolbar
Key Found : [x64] HKCU\Software\Ask.com
Key Found : [x64] HKCU\Software\Conduit
Key Found : [x64] HKCU\Software\CToolbar
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Key Found : [x64] HKCU\Software\YahooPartnerToolbar
Key Found : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{183643C8-EE67-4574-9A38-927852E34163}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1DDA201E-5B42-4352-933E-21A92B297E3B}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4D25FB7A-8902-4291-960E-9ADA051CFBBF}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{54ECA872-DB2A-4C6B-BBB2-F3777C6786CC}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{8736C681-37A0-40C6-A0F0-4C083409151C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DBDB6FAA-1F5F-4A18-B60B-7A905C7FF83F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Classes\ctbcommon.Buttons
Key Found : HKLM\SOFTWARE\Classes\ctbr.R404Pro
Key Found : HKLM\SOFTWARE\Classes\CToolbar.TB4Client
Key Found : HKLM\SOFTWARE\Classes\CToolbar.TB4Script
Key Found : HKLM\SOFTWARE\Classes\CToolbar.TB4Server
Key Found : HKLM\SOFTWARE\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Found : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\tbr
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{04006843-5199-4CE4-B3CD-8092CC91706E}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{506F578A-91E1-46CE-830F-E2F4268E9966}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{E79BB61D-7F1A-41DF-8AD0-402795E3B566}
Key Found : HKLM\SOFTWARE\Classes\Updater.AmiUpd
Key Found : HKLM\SOFTWARE\Classes\Updater.AmiUpd.1
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\CToolbar
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7459F1D0-9FB6-4D71-AA7B-9DECB34EB704}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FBF1B8D2-9A06-4174-A8B5-E38606DDB92B}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askchecker_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askchecker_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\CToolbar_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\CToolbar_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetpacksupdatemanager_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\Crawler
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CToolbar_UNINSTALL
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{4B3803EA-5230-4DC3-A7FC-33638F3D3542}]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{4B3803EA-5230-4DC3-A7FC-33638F3D3542}]

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16476

Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar] - hxxp://www.crawler.com/search/dispatche ... p=aus&qkw=%s&tbid=60747

-\\ Mozilla Firefox v24.0 (cs)

[ File : C:\Users\Lucky Spermlicker\AppData\Roaming\Mozilla\Firefox\Profiles\1nx5w6fd.default\prefs.js ]

Line Found : user_pref("CT2786898..clientLogIsEnabled", true);
Line Found : user_pref("CT2786898..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Found : user_pref("CT2786898..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Found : user_pref("CT2786898.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Line Found : user_pref("CT2786898.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Line Found : user_pref("CT2786898.AppTrackingLastCheckTime", "Thu Aug 28 2008 16:14:07 GMT+0200");
Line Found : user_pref("CT2786898.BrowserCompStateIsOpen_1367164639000", true);
Line Found : user_pref("CT2786898.CT2786898", "CT2786898");
Line Found : user_pref("CT2786898.CT2786898.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"hxxp://search.conduit.com/?ctid=CT2786898&octid=CT2786898&SearchSource=15&CUI=SB_CUI&SSPV=EB_SSPV&Lay=1&UM=UM_I[...]
Line Found : user_pref("CT2786898.ConfigurationLastCheckTime", "Thu Nov 14 2013 12:02:51 GMT+0100");
Line Found : user_pref("CT2786898.CurrentServerDate", "14-11-2013");
Line Found : user_pref("CT2786898.DialogsAlignMode", "LTR");
Line Found : user_pref("CT2786898.DialogsGetterLastCheckTime", "Thu Nov 14 2013 12:02:52 GMT+0100");
Line Found : user_pref("CT2786898.DownloadReferralCookieData", "{\"BannerName\":\"\",\"BannerTypeId\":\"\",\"BannerCulture\":\"\",\"DownloadTime\":\"5/13/2011 12:20:15 AM\",\"SourceId\":10,\"OriginSource\":0,\"Ref[...]
Line Found : user_pref("CT2786898.EMailNotifierPollDate", "Thu Aug 28 2008 17:18:26 GMT+0200");
Line Found : user_pref("CT2786898.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Found : user_pref("CT2786898.FirstServerDate", "13-5-2011");
Line Found : user_pref("CT2786898.FirstTime", true);
Line Found : user_pref("CT2786898.FirstTimeFF3", true);
Line Found : user_pref("CT2786898.FixPageNotFoundErrors", false);
Line Found : user_pref("CT2786898.GroupingServerCheckInterval", 1440);
Line Found : user_pref("CT2786898.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Found : user_pref("CT2786898.HasUserGlobalKeys", true);
Line Found : user_pref("CT2786898.HomePageProtectorEnabled", false);
Line Found : user_pref("CT2786898.Initialize", true);
Line Found : user_pref("CT2786898.InitializeCommonPrefs", true);
Line Found : user_pref("CT2786898.InstallationAndCookieDataSentCount", 3);
Line Found : user_pref("CT2786898.InstalledDate", "Sat Jul 19 2008 23:21:31 GMT+0200");
Line Found : user_pref("CT2786898.IsAlertDBUpdated", true);
Line Found : user_pref("CT2786898.IsGrouping", false);
Line Found : user_pref("CT2786898.IsMulticommunity", false);
Line Found : user_pref("CT2786898.IsOpenThankYouPage", true);
Line Found : user_pref("CT2786898.IsOpenUninstallPage", true);
Line Found : user_pref("CT2786898.IsProtectorsInit", true);
Line Found : user_pref("CT2786898.LanguagePackLastCheckTime", "Thu Nov 14 2013 12:02:51 GMT+0100");
Line Found : user_pref("CT2786898.LanguagePackReloadIntervalMM", 1440);
Line Found : user_pref("CT2786898.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Found : user_pref("CT2786898.LastLogin_3.14.1.0", "Mon Aug 27 2012 21:56:01 GMT+0200");
Line Found : user_pref("CT2786898.LastLogin_3.15.1.0", "Sun Nov 18 2012 13:53:12 GMT+0100");
Line Found : user_pref("CT2786898.LastLogin_3.16.0.3", "Sat Aug 10 2013 13:08:59 GMT+0200");
Line Found : user_pref("CT2786898.LastLogin_3.19.0.3", "Thu Oct 24 2013 15:29:42 GMT+0200");
Line Found : user_pref("CT2786898.LastLogin_3.20.0.4", "Thu Nov 14 2013 12:02:52 GMT+0100");
Line Found : user_pref("CT2786898.LastLogin_3.4.1.0", "Thu Aug 28 2008 16:13:57 GMT+0200");
Line Found : user_pref("CT2786898.LatestVersion", "3.20.0.4");
Line Found : user_pref("CT2786898.Locale", "en");
Line Found : user_pref("CT2786898.MCDetectTooltipHeight", "83");
Line Found : user_pref("CT2786898.MCDetectTooltipShow", false);
Line Found : user_pref("CT2786898.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Found : user_pref("CT2786898.MCDetectTooltipWidth", "295");
Line Found : user_pref("CT2786898.MyStuffEnabledAtInstallation", true);
Line Found : user_pref("CT2786898.OriginalFirstVersion", "3.4.1.0");
Line Found : user_pref("CT2786898.SearchAPILastCheckTime", "Thu Nov 14 2013 12:02:52 GMT+0100");
Line Found : user_pref("CT2786898.SearchEngineBeforeUnload", "ProfileSong Customized Web Search");
Line Found : user_pref("CT2786898.SearchFromAddressBarIsInit", true);
Line Found : user_pref("CT2786898.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2786898&SearchSource=2&q=");
Line Found : user_pref("CT2786898.SearchInNewTabEnabled", true);
Line Found : user_pref("CT2786898.SearchInNewTabIntervalMM", 1440);
Line Found : user_pref("CT2786898.SearchInNewTabLastCheckTime", "Wed Oct 23 2013 21:19:28 GMT+0200");
Line Found : user_pref("CT2786898.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID&UM=UM_ID");
Line Found : user_pref("CT2786898.SearchInNewTabURLFromSearchAPI", "hxxp://search.conduit.com/?ctid=CT2786898&octid=CT2786898&SearchSource=15&CUI=SB_CUI&SSPV=EB_SSPV&Lay=1&UM=UM_ID");
Line Found : user_pref("CT2786898.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_TOOLBAR_ID");
Line Found : user_pref("CT2786898.SearchProtectorEnabled", false);
Line Found : user_pref("CT2786898.SearchProtectorToolbarDisabled", false);
Line Found : user_pref("CT2786898.ServiceMapLastCheckTime", "Thu Nov 14 2013 12:02:51 GMT+0100");
Line Found : user_pref("CT2786898.SettingsLastCheckTime", "Thu Nov 14 2013 12:02:50 GMT+0100");
Line Found : user_pref("CT2786898.SettingsLastUpdate", "1384419342");
Line Found : user_pref("CT2786898.ThirdPartyComponentsInterval", 504);
Line Found : user_pref("CT2786898.ThirdPartyComponentsLastCheck", "Thu Aug 21 2008 17:47:09 GMT+0200");
Line Found : user_pref("CT2786898.ThirdPartyComponentsLastUpdate", "1246786978");
Line Found : user_pref("CT2786898.ToolbarShrinkedFromSetup", false);
Line Found : user_pref("CT2786898.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
Line Found : user_pref("CT2786898.UserID", "UN43824911854200854");
Line Found : user_pref("CT2786898.ValidationData_Search", 0);
Line Found : user_pref("CT2786898.ValidationData_Toolbar", 2);
Line Found : user_pref("CT2786898.WeatherNetwork", "");
Line Found : user_pref("CT2786898.WeatherPollDate", "Thu Aug 28 2008 17:18:27 GMT+0200");
Line Found : user_pref("CT2786898.WeatherUnit", "C");
Line Found : user_pref("CT2786898.addressBarTakeOverEnabledInHidden", "true");
Line Found : user_pref("CT2786898.alertChannelId", "1178982");
Line Found : user_pref("CT2786898.approveUntrustedApps", false);
Line Found : user_pref("CT2786898.backendstorage.facebook_ctid_connect_send_new", "73656E646564");
Line Found : user_pref("CT2786898.backendstorage.facebook_mode", "32");
Line Found : user_pref("CT2786898.backendstorage.facebook_user_locale", "656E");
Line Found : user_pref("CT2786898.components.1000034", false);
Line Found : user_pref("CT2786898.components.1000234", false);
Line Found : user_pref("CT2786898.components.1000515", false);
Line Found : user_pref("CT2786898.countryCode", "CZ");
Line Found : user_pref("CT2786898.enableAlerts", "always");
Line Found : user_pref("CT2786898.facebook_ctid_connect_send_new.from_oldbar.enc", "c2VuZGVk");
Line Found : user_pref("CT2786898.facebook_mode.from_oldbar.enc", "Mg==");
Line Found : user_pref("CT2786898.facebook_user_locale.from_oldbar.enc", "ZW4=");
Line Found : user_pref("CT2786898.firstTimeDialogOpened", true);
Line Found : user_pref("CT2786898.fixPageNotFoundErrorByUser", "false");
Line Found : user_pref("CT2786898.fixPageNotFoundErrorInHidden", "true");
Line Found : user_pref("CT2786898.fullUserID", "UN43824911854200854.UP.2143");
Line Found : user_pref("CT2786898.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
Line Found : user_pref("CT2786898.globalFirstTimeInfoLastCheckTime", "Thu Aug 28 2008 16:13:57 GMT+0200");
Line Found : user_pref("CT2786898.homepageProtectorEnableByLogin", true);
Line Found : user_pref("CT2786898.initDone", true);
Line Found : user_pref("CT2786898.installType", "DirectDownload");
Line Found : user_pref("CT2786898.isAppTrackingManagerOn", true);
Line Found : user_pref("CT2786898.isCheckedStartAsHidden", true);
Line Found : user_pref("CT2786898.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":true}");
Line Found : user_pref("CT2786898.isFirstTimeToolbarLoading", "false");
Line Found : user_pref("CT2786898.isPerformedSmartBarTransition", "true");
Line Found : user_pref("CT2786898.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Found : user_pref("CT2786898.keyword", true);
Line Found : user_pref("CT2786898.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"hxxp://search.conduit.com/?ctid=CT2786898&octid=CT2786898&SearchSource=15&CUI=UN43824911854200854&SSPV=&Lay=1&UM=\"}");
Line Found : user_pref("CT2786898.lastVersion", "10.20.101.5");
Line Found : user_pref("CT2786898.myStuffEnabled", true);
Line Found : user_pref("CT2786898.myStuffPublihserMinWidth", 400);
Line Found : user_pref("CT2786898.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Found : user_pref("CT2786898.myStuffServiceIntervalMM", 1440);
Line Found : user_pref("CT2786898.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Found : user_pref("CT2786898.navigationAliasesJson", "{\"EB_MAIN_FRAME_URL\":\"hxxp%3A%2F%2Fwww.seznam.cz%2F\",\"EB_MAIN_FRAME_TITLE\":\"Seznam%20%E2%80%93%20Najdu%20tam%2C%20co%20nezn%C3%A1m\",\"EB_SEARCH_TE[...]
Line Found : user_pref("CT2786898.oldAppsList", "129295842102325704,129295842102481955,111,129302018591694377,129295932857325996,129295934721543836,129295932672482049,129309851868468992,1000034,1000080,1000082,100[...]
Line Found : user_pref("CT2786898.originalSearchAddressUrl", "hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&type=937811&p=");
Line Found : user_pref("CT2786898.revertSettingsEnabled", true);
Line Found : user_pref("CT2786898.search.searchCount", 0);
Line Found : user_pref("CT2786898.searchFromAddressBarEnabledByUser", "true");
Line Found : user_pref("CT2786898.searchInNewTabEnabledByUser", "true");
Line Found : user_pref("CT2786898.searchInNewTabEnabledInHidden", "true");
Line Found : user_pref("CT2786898.searchProtectorDialogDelayInSec", 10);
Line Found : user_pref("CT2786898.searchProtectorEnableByLogin", true);
Line Found : user_pref("CT2786898.searchSuggestEnabledByUser", "false");
Line Found : user_pref("CT2786898.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Found : user_pref("CT2786898.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Line Found : user_pref("CT2786898.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\"}");
Line Found : user_pref("CT2786898.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT2786898\"}");
Line Found : user_pref("CT2786898.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"hxxp://ProfileSongToolbar.OurToolbar.com//xpi\"}");
Line Found : user_pref("CT2786898.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"ProfileSong \"}");
Line Found : user_pref("CT2786898.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Found : user_pref("CT2786898.serviceLayer_service_usage_toolbarUsageCount", "{\"dataType\":\"number\",\"data\":\"2\"}");
Line Found : user_pref("CT2786898.serviceLayer_services_Configuration_lastUpdate", "1385412000227");
Line Found : user_pref("CT2786898.serviceLayer_services_login_10.20.101.5_lastUpdate", "1385412000476");
Line Found : user_pref("CT2786898.serviceLayer_services_searchAPI_lastUpdate", "1385411999406");
Line Found : user_pref("CT2786898.serviceLayer_services_serviceMap_lastUpdate", "1385411999269");
Line Found : user_pref("CT2786898.serviceLayer_services_toolbarSettings_lastUpdate", "1385411999489");
Line Found : user_pref("CT2786898.serviceLayer_services_translation_lastUpdate", "1385412001529");
Line Found : user_pref("CT2786898.settingsINI", true);
Line Found : user_pref("CT2786898.showToolbarPermission", "false");
Line Found : user_pref("CT2786898.smartbar.CTID", "CT2786898");
Line Found : user_pref("CT2786898.smartbar.Uninstall", "0");
Line Found : user_pref("CT2786898.smartbar.toolbarName", "ProfileSong ");
Line Found : user_pref("CT2786898.testingCtid", "");
Line Found : user_pref("CT2786898.toolbarAppMetaDataLastCheckTime", "Thu Nov 14 2013 12:02:51 GMT+0100");
Line Found : user_pref("CT2786898.toolbarBornServerTime", "13-5-2011");
Line Found : user_pref("CT2786898.toolbarContextMenuLastCheckTime", "Sat Jul 19 2008 23:21:30 GMT+0200");
Line Found : user_pref("CT2786898.toolbarCurrentServerTime", "25-11-2013");
Line Found : user_pref("CT2786898.toolbarLoginClientTime", "Wed Nov 20 2013 23:29:38 GMT+0100");
Line Found : user_pref("CT2786898.upgradeFromOBVersion", true);
Line Found : user_pref("CT2786898.usagesFlag", 2);
Line Found : user_pref("CT2786898_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1385411992716,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFromPrev\":0}]");
Line Found : user_pref("CT3220468.BT_Stats.enc", "eyJsYXN0X2xvZyI6MTM2MjQ5NjM5MywidXVpZCI6MjM3MDE2NzQ3NDM5NDIyLCJzZXFfaWQiOjE1LCJzc2IiOjEzNTY1NjIzMjh9");
Line Found : user_pref("CT3220468.CBOpenMAMSettings.enc", "MA==");
Line Found : user_pref("CT3220468.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Found : user_pref("CT3220468.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Found : user_pref("CT3220468.Facebook_Mode.enc", "Mg==");
Line Found : user_pref("CT3220468.Facebook_User_Locale.enc", "ZW4=");
Line Found : user_pref("CT3220468.FirstTime", "true");
Line Found : user_pref("CT3220468.FirstTimeFF3", "true");
Line Found : user_pref("CT3220468.LoginRevertSettingsEnabled", true);
Line Found : user_pref("CT3220468.RevertSettingsEnabled", true);
Line Found : user_pref("CT3220468.UserID", "UN25212226606965205");
Line Found : user_pref("CT3220468.addressBarTakeOverEnabledInHidden", "true");
Line Found : user_pref("CT3220468.autoDisableScopes", -1);
Line Found : user_pref("CT3220468.cbcountry_001.enc", "Q1o=");
Line Found : user_pref("CT3220468.cbfirsttime.enc", "V2VkIERlYyAyNiAyMDEyIDIzOjUyOjA0IEdNVCswMTAw");
Line Found : user_pref("CT3220468.defaultSearch", "false");
Line Found : user_pref("CT3220468.embeddedsData", "[{\"appId\":\"129813684258939747\",\"apiPermissions\":{\"crossDomainAjax\":true,\"getMainFrameTitle\":true,\"getMainFrameUrl\":true,\"getSearchTerm\":true,\"insta[...]
Line Found : user_pref("CT3220468.enableAlerts", "always");
Line Found : user_pref("CT3220468.enableFix404ByUser", "FALSE");
Line Found : user_pref("CT3220468.enableSearchFromAddressBar", "false");
Line Found : user_pref("CT3220468.firstTimeDialogOpened", "true");
Line Found : user_pref("CT3220468.fixPageNotFoundError", "true");
Line Found : user_pref("CT3220468.fixPageNotFoundErrorByUser", "true");
Line Found : user_pref("CT3220468.fixPageNotFoundErrorInHidden", "true");
Line Found : user_pref("CT3220468.fixUrls", true);
Line Found : user_pref("CT3220468.hxxp___facebook_conduitapps_com.APP_WIN_FEATURES.enc", "cmVzaXphYmxlPTAsaHNjcm9sbD0wLHZzY3JvbGw9MCx0aXRsZWJhcj0xLGNsb3NlYnV0dG9uPTEsc2F2ZXJlc2l6ZWRzaXplPTAsb3BlbnBvc2l0aW9uPWFsaWd[...]
Line Found : user_pref("CT3220468.installType", "xpe");
Line Found : user_pref("CT3220468.isCheckedStartAsHidden", true);
Line Found : user_pref("CT3220468.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Found : user_pref("CT3220468.isFirstTimeToolbarLoading", "false");
Line Found : user_pref("CT3220468.isNewTabEnabled", false);
Line Found : user_pref("CT3220468.isPerformedSmartBarTransition", "true");
Line Found : user_pref("CT3220468.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Found : user_pref("CT3220468.isWelcomPage", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Line Found : user_pref("CT3220468.lastVersion", "10.14.40.128");
Line Found : user_pref("CT3220468.migrateAppsAndComponents", true);
Line Found : user_pref("CT3220468.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"file%3A%2F%2F%2FC%3A%2FUsers%2FLucky%2520Spermlicker%2FDesktop%2FExtreme%2C%2520Music%2C%2520Festival%252[...]
Line Found : user_pref("CT3220468.openThankYouPage", "true");
Line Found : user_pref("CT3220468.openUninstallPage", "false");
Line Found : user_pref("CT3220468.revertSettingsEnabled", "false");
Line Found : user_pref("CT3220468.search.searchAppId", "129813684258939747");
Line Found : user_pref("CT3220468.search.searchCount", "0");
Line Found : user_pref("CT3220468.searchInNewTabEnabled", "false");
Line Found : user_pref("CT3220468.searchInNewTabEnabledByUser", "false");
Line Found : user_pref("CT3220468.searchInNewTabEnabledInHidden", "true");
Line Found : user_pref("CT3220468.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Found : user_pref("CT3220468.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Line Found : user_pref("CT3220468.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\"}");
Line Found : user_pref("CT3220468.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT3220468\"}");
Line Found : user_pref("CT3220468.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"hxxp://uTorrentControlv2.OurToolbar.com//xpi\"}");
Line Found : user_pref("CT3220468.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"uTorrentControl_v2\"}");
Line Found : user_pref("CT3220468.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Found : user_pref("CT3220468.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1362903889121");
Line Found : user_pref("CT3220468.serviceLayer_services_appTracking_lastUpdate", "1359049694593");
Line Found : user_pref("CT3220468.serviceLayer_services_appsMetadata_lastUpdate", "1362903889115");
Line Found : user_pref("CT3220468.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1362903889123");
Line Found : user_pref("CT3220468.serviceLayer_services_login_10.13.40.15_lastUpdate", "1359178251684");
Line Found : user_pref("CT3220468.serviceLayer_services_login_10.14.40.128_lastUpdate", "1362903889125");
Line Found : user_pref("CT3220468.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1362903889123");
Line Found : user_pref("CT3220468.serviceLayer_services_searchAPI_lastUpdate", "1362904070377");
Line Found : user_pref("CT3220468.serviceLayer_services_serviceMap_lastUpdate", "1362903889100");
Line Found : user_pref("CT3220468.serviceLayer_services_toolbarContextMenu_lastUpdate", "1362903889122");
Line Found : user_pref("CT3220468.serviceLayer_services_toolbarSettings_lastUpdate", "1362903889572");
Line Found : user_pref("CT3220468.serviceLayer_services_translation_lastUpdate", "1362903889124");
Line Found : user_pref("CT3220468.settingsINI", true);
Line Found : user_pref("CT3220468.shouldFirstTimeDialog", "false");
Line Found : user_pref("CT3220468.smartbar.CTID", "CT3220468");
Line Found : user_pref("CT3220468.smartbar.Uninstall", "0");
Line Found : user_pref("CT3220468.smartbar.toolbarName", "uTorrentControl_v2 ");
Line Found : user_pref("CT3220468.startPage", "userChanged");
Line Found : user_pref("CT3220468.toolbarBornServerTime", "27-12-2012");
Line Found : user_pref("CT3220468.toolbarCurrentServerTime", "6-2-2013");
Line Found : user_pref("CT3220468.url_history0001.enc", "aHR0cDovL3d3dy5mYWNlYm9vay5jb20vZnJlbGljaC5tYXJlay41Ojo6Y2xpY2toYW5kbGVyOjo6MTM1OTU4NTUwNzY5NCwsLGh0dHA6Ly93d3cuZmFjZWJvb2suY29tL2t2ZXRhLnNsZXphOjo6Y2xpY2to[...]
Line Found : user_pref("CT3220468_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1372236343990,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFromPrev\":0}]");
Line Found : user_pref("CommunityToolbar.ConduitSearchList", "ProfileSong Customized Web Search");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit. ... /CT2786898", "\"72d622a8d7ab401e8509e311d2cb13d93\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... 1174667/CZ", "\"0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT2786898", "\"1367217561\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... &locale=en", "wVmmvqqOMqrv5xct1cJIHg==");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... &locale=en", "0uSPYx+Kl2jpu8sJZMeHjw==");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... &locale=en", "QmycQXJXVyFVAzIiNllWhQ==");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... &locale=en", "K4Vqu91uAzWURlxJRdXJOg==");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-ser ... rt/dlg.pkg", "\"803651ba7facb1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.14.1.0", "\"80b45d28468cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.15.1.0", "\"0343677cfb1cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.16.0.3", "\"97e416bb586ce1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.19.0.3", "\"9f8d2729abc2ce1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... r=3.20.0.4", "\"dfe74040abc2ce1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... er=3.4.1.0", "\"07b2625f8cb1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT2786898", "\"52c3f1538cb4af4ada257fcbc6b15d49\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit. ... /CT2786898", "\"1304295904\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... ?locale=en", "\"1f5851f12d58a6c6d5b555ddd5415b6a\"");
Line Found : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Lucky Spermlicker\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\1nx5w6fd.default\\conduitCommon\\modules\\3.4.1.0");
Line Found : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.4.1.0");
Line Found : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&type=937811&p=");
Line Found : user_pref("CommunityToolbar.ToolbarsList", "CT2786898");
Line Found : user_pref("CommunityToolbar.ToolbarsList2", "CT2786898");
Line Found : user_pref("CommunityToolbar.ToolbarsList4", "CT2786898");
Line Found : user_pref("CommunityToolbar.globalUserId", "827592fe-2d90-4b00-b39d-6dcd9f68735b");
Line Found : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Line Found : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Line Found : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2786898");
Line Found : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Sat Jul 19 2008 23:21:31 GMT+0200");
Line Found : user_pref("CommunityToolbar.notifications.alertEnabled", true);
Line Found : user_pref("CommunityToolbar.notifications.alertInfoInterval", 60);
Line Found : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Sat Aug 30 2008 21:14:51 GMT+0200");
Line Found : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
Line Found : user_pref("CommunityToolbar.notifications.locale", "en");
Line Found : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
Line Found : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Thu Aug 28 2008 17:18:26 GMT+0200");
Line Found : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1305622559");
Line Found : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
Line Found : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
Line Found : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
Line Found : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
Line Found : user_pref("CommunityToolbar.notifications.userId", "c46d1861-065d-4889-a758-2f7593fdaf34");
Line Found : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&type=937811&p=");
Line Found : user_pref("Smartbar.keywordURLSelectedCTID", "CT2786898");
Line Found : user_pref("browser.search.defaultthis.engineName", "ProfileSong Customized Web Search");
Line Found : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2786898&SearchSource=2&CUI=UN43824911854200854&UM=&q=");
Line Found : user_pref("smartbar.addressBarOwnerCTID", "CT2786898");
Line Found : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2786898&SearchSource=2&q=,hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2786898&SearchSource=2&CU[...]
Line Found : user_pref("smartbar.machineId", "MGLMKGVSY1WX1N8JI2U3OPUKY/LG4YZNLHCP6C1W4NZEJSGGEDX+OGDQYYP5DI60MFSMAXLTDRAOMIFP+VDN4A");
Line Found : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Line Found : user_pref("sweetim.toolbar.previous.browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2786898&SearchSource=3&q={searchTerms}");
Line Found : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "Google");
Line Found : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "hxxp://www.seznam.cz/");
Line Found : user_pref("sweetim.toolbar.previous.keyword.URL", "hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=937811&p=");
Line Found : user_pref("sweetim.toolbar.urls.homepage", "hxxp://home.sweetim.com/?crg=3.1010000.10005&barid={08C93028-4EB6-11E2-9981-60EB69137DBF}");

-\\ Google Chrome v31.0.1650.57

[ File : C:\Users\Lucky Spermlicker\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [37768 octets] - [27/11/2013 22:01:12]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [37829 octets] ##########


(toto je z Malwarebyte's Anti-Malware)

27.11.2013 22:51:42
MBAM-log-2013-11-27 (23-02-13).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 207417
Uplynulý čas: 9 minut, 54 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 1
HKLM\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 1
HKLM\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Data: {08C93028-4EB6-11E2-9981-60EB69137DBF} -> Nebyla provedena žádná instrukce.

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)


Díky moc za pomoc.

[Reklama]

[Orcus]

1) Log z HJT máme kde?

2) V ADW vše odstraň, v MBAM taky a vlož nové logy.

[LucySpermlicker]

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:06:11, on 12.12.2013
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.8112.16476)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\IObit\Smart Defrag 2\SmartDefrag.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe
C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\ccSvcHst.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 5\DelayLoad.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\IPS\IPSBHO.DLL
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\coIEPlg.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [IObit Malware Fighter] "C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe" /autostart
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Advanced SystemCare 5] "C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 5 (AdvancedSystemCareService5) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\eMachines\eMachines Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - The Firebird Project - C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - The Firebird Project - C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbserver.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\eMachines\Registration\GREGsvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Norton 360 (N360) - Symantec Corporation - C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\ccSvcHst.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NTI, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Spyware Terminator 2012 Realtime Shield Service (ST2012_Svc) - Crawler.com - C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Updater Service - Acer Group - C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9719 bytes

[LucySpermlicker]

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2013.12.10.07

Windows 7 x64 NTFS
Internet Explorer
Lucky Spermlicker :: WILDMACHINE [administrátor]

12.12.2013 9:10:52
MBAM-log-2013-12-12 (09-36-52).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 208861
Uplynulý čas: 10 minut, 29 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 6
C:\Program Files (x86)\Better-Surf (PUP.Optional.BetterSurf) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Better-Surf\ch (PUP.Optional.BetterSurf) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Better-Surf\ff (PUP.Optional.BetterSurf) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Better-Surf\ff\chrome (PUP.Optional.BetterSurf) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Better-Surf\ff\chrome\content (PUP.Optional.BetterSurf) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Better-Surf\ie (PUP.Optional.BetterSurf) -> Nebyla provedena žádná instrukce.

Nalezené soubory: 7
C:\Program Files (x86)\Better-Surf\ch\Chrome.crx (PUP.Optional.BetterSurf) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Better-Surf\ff\Better-Surf.xpi (PUP.Optional.BetterSurf) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Better-Surf\ff\build.cmd (PUP.Optional.BetterSurf) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Better-Surf\ff\chrome.manifest (PUP.Optional.BetterSurf) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Better-Surf\ff\install.rdf (PUP.Optional.BetterSurf) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Better-Surf\ff\chrome\content\firefox.js (PUP.Optional.BetterSurf) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Better-Surf\ff\chrome\content\overlay.xul (PUP.Optional.BetterSurf) -> Nebyla provedena žádná instrukce.

(konec)

[memphisto]

Kde je log z Adw po smazání? Mbam je před smazáním nalezených položek...

[LucySpermlicker]

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2013.12.10.07

Windows 7 x64 NTFS
Internet Explorer
Lucky Spermlicker :: WILDMACHINE [administrátor]

12.12.2013 22:22:49
mbam-log-2013-12-12 (22-22-49).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 208926
Uplynulý čas: 5 minut, 57 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

[LucySpermlicker]

# AdwCleaner v3.015 - Report created 12/12/2013 at 22:37:08
# Updated 10/12/2013 by Xplode
# Operating System : Windows 7 Home Premium (64 bits)
# Username : Lucky Spermlicker - WILDMACHINE
# Running from : C:\Users\Lucky Spermlicker\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [12x3q@3244516.com]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [xz123@ya456.com]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dedmngkbaffkenlfdcbganndoghblmap
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\poheodfamflhhhdcmjfeggbgigeefaco
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{BEAA0C04-ED15-4C17-800B-28716025A4E4}
Key Deleted : HKLM\Software\BetterSurf
Key Deleted : HKLM\Software\Trymedia Systems

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16476


-\\ Mozilla Firefox v24.0 (cs)

[ File : C:\Users\Lucky Spermlicker\AppData\Roaming\Mozilla\Firefox\Profiles\1nx5w6fd.default\prefs.js ]


-\\ Google Chrome v31.0.1650.63

[ File : C:\Users\Lucky Spermlicker\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [37962 octets] - [27/11/2013 22:01:12]
AdwCleaner[R1].txt - [1050 octets] - [01/12/2013 12:28:00]
AdwCleaner[R2].txt - [1806 octets] - [12/12/2013 22:31:41]
AdwCleaner[S0].txt - [38415 octets] - [27/11/2013 22:12:39]
AdwCleaner[S1].txt - [1112 octets] - [01/12/2013 12:34:39]
AdwCleaner[S2].txt - [1591 octets] - [12/12/2013 22:37:08]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1651 octets] ##########

[jaro3]

Odinstaluj:
Spyware Terminator


Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.

[LucySpermlicker]

RogueKiller V8.7.9 _x64_ [Nov 25 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7600 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : Lucky Spermlicker [Práva správce]
Mód : Kontrola -- Datum : 12/15/2013 17:37:39
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 3 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD2500BEVT-22A23T0 +++++
--- User ---
[MBR] cdef6ed6b6eff22ef24c33358f4823cd
[BSP] 72f65c55210fd85777077dd8e2418a22 : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 13312 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 27265024 | Size: 100 Mo
2 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 27471150 | Size: 179821 Mo
3 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 395745210 | Size: 45057 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_12152013_173739.txt >>

[LucySpermlicker]

17:40:20.0101 1156 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
17:40:22.0192 1156 ============================================================
17:40:22.0192 1156 Current date / time: 2013/12/15 17:40:22.0192
17:40:22.0192 1156 SystemInfo:
17:40:22.0192 1156
17:40:22.0192 1156 OS Version: 6.1.7600 ServicePack: 0.0
17:40:22.0192 1156 Product type: Workstation
17:40:22.0192 1156 ComputerName: WILDMACHINE
17:40:22.0208 1156 UserName: Lucky Spermlicker
17:40:22.0208 1156 Windows directory: C:\Windows
17:40:22.0208 1156 System windows directory: C:\Windows
17:40:22.0208 1156 Running under WOW64
17:40:22.0208 1156 Processor architecture: Intel x64
17:40:22.0208 1156 Number of processors: 2
17:40:22.0208 1156 Page size: 0x1000
17:40:22.0208 1156 Boot type: Normal boot
17:40:22.0208 1156 ============================================================
17:40:23.0066 1156 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:40:23.0081 1156 ============================================================
17:40:23.0081 1156 \Device\Harddisk0\DR0:
17:40:23.0081 1156 MBR partitions:
17:40:23.0081 1156 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1A00800, BlocksNum 0x32000
17:40:23.0081 1156 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1A32D6D, BlocksNum 0x15F36A4D
17:40:23.0081 1156 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x179697BA, BlocksNum 0x5800A70
17:40:23.0081 1156 ============================================================
17:40:23.0097 1156 E: <-> \Device\Harddisk0\DR0\Partition2
17:40:23.0159 1156 C: <-> \Device\Harddisk0\DR0\Partition3
17:40:23.0159 1156 ============================================================
17:40:23.0159 1156 Initialize success
17:40:23.0159 1156 ============================================================
17:40:24.0923 3272 ============================================================
17:40:24.0923 3272 Scan started
17:40:24.0923 3272 Mode: Manual;
17:40:24.0923 3272 ============================================================
17:40:25.0173 3272 ================ Scan system memory ========================
17:40:25.0173 3272 System memory - ok
17:40:25.0173 3272 ================ Scan services =============================
17:40:25.0344 3272 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
17:40:25.0344 3272 1394ohci - ok
17:40:25.0469 3272 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
17:40:25.0469 3272 ACPI - ok
17:40:25.0516 3272 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
17:40:25.0532 3272 AcpiPmi - ok
17:40:25.0563 3272 [ 2F0683FD2DF1D92E891CACA14B45A8C1 ] adfs C:\Windows\system32\drivers\adfs.sys
17:40:25.0594 3272 adfs - ok
17:40:25.0688 3272 [ 11A52CF7B265631DEEB24C6149309EFF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:40:25.0688 3272 AdobeARMservice - ok
17:40:25.0812 3272 [ 1BA1AB4141A92EB34DA99F1249CA2D4D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:40:25.0828 3272 AdobeFlashPlayerUpdateSvc - ok
17:40:25.0859 3272 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
17:40:25.0875 3272 adp94xx - ok
17:40:25.0922 3272 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
17:40:25.0922 3272 adpahci - ok
17:40:25.0953 3272 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
17:40:25.0953 3272 adpu320 - ok
17:40:26.0046 3272 [ E410DA575FF48D976B41670C6D262A82 ] AdvancedSystemCareService5 C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe
17:40:26.0062 3272 AdvancedSystemCareService5 - ok
17:40:26.0109 3272 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:40:26.0109 3272 AeLookupSvc - ok
17:40:26.0156 3272 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
17:40:26.0171 3272 AFD - ok
17:40:26.0202 3272 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
17:40:26.0202 3272 agp440 - ok
17:40:26.0218 3272 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
17:40:26.0218 3272 ALG - ok
17:40:26.0234 3272 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
17:40:26.0234 3272 aliide - ok
17:40:26.0265 3272 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
17:40:26.0265 3272 amdide - ok
17:40:26.0280 3272 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
17:40:26.0280 3272 AmdK8 - ok
17:40:26.0296 3272 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:40:26.0296 3272 AmdPPM - ok
17:40:26.0327 3272 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:40:26.0327 3272 amdsata - ok
17:40:26.0358 3272 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
17:40:26.0358 3272 amdsbs - ok
17:40:26.0374 3272 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:40:26.0374 3272 amdxata - ok
17:40:26.0405 3272 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
17:40:26.0405 3272 AppID - ok
17:40:26.0436 3272 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:40:26.0436 3272 AppIDSvc - ok
17:40:26.0452 3272 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
17:40:26.0452 3272 Appinfo - ok
17:40:26.0483 3272 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
17:40:26.0483 3272 arc - ok
17:40:26.0514 3272 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
17:40:26.0514 3272 arcsas - ok
17:40:26.0546 3272 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:40:26.0546 3272 AsyncMac - ok
17:40:26.0561 3272 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
17:40:26.0561 3272 atapi - ok
17:40:26.0624 3272 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:40:26.0624 3272 AudioEndpointBuilder - ok
17:40:26.0639 3272 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:40:26.0655 3272 AudioSrv - ok
17:40:26.0670 3272 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:40:26.0670 3272 AxInstSV - ok
17:40:26.0733 3272 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
17:40:26.0733 3272 b06bdrv - ok
17:40:26.0780 3272 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:40:26.0795 3272 b57nd60a - ok
17:40:26.0967 3272 [ 2D659B569A76CDB83B815675A80D7096 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
17:40:27.0045 3272 BCM43XX - ok
17:40:27.0092 3272 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
17:40:27.0092 3272 BDESVC - ok
17:40:27.0107 3272 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
17:40:27.0107 3272 Beep - ok
17:40:27.0154 3272 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
17:40:27.0154 3272 BFE - ok
17:40:27.0419 3272 [ 613883A3BAC6920149C83ED751589433 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\BASHDefs\20131203.001\BHDrvx64.sys
17:40:27.0482 3272 BHDrvx64 - ok
17:40:27.0560 3272 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
17:40:27.0591 3272 BITS - ok
17:40:27.0622 3272 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:40:27.0622 3272 blbdrive - ok
17:40:27.0669 3272 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:40:27.0684 3272 bowser - ok
17:40:27.0716 3272 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:40:27.0716 3272 BrFiltLo - ok
17:40:27.0731 3272 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:40:27.0731 3272 BrFiltUp - ok
17:40:27.0778 3272 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
17:40:27.0778 3272 Browser - ok
17:40:27.0809 3272 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:40:27.0809 3272 Brserid - ok
17:40:27.0840 3272 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:40:27.0840 3272 BrSerWdm - ok
17:40:27.0856 3272 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:40:27.0856 3272 BrUsbMdm - ok
17:40:27.0872 3272 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:40:27.0872 3272 BrUsbSer - ok
17:40:27.0903 3272 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
17:40:27.0903 3272 BTHMODEM - ok
17:40:27.0934 3272 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
17:40:27.0934 3272 bthserv - ok
17:40:27.0965 3272 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:40:27.0965 3272 cdfs - ok
17:40:27.0981 3272 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:40:27.0996 3272 cdrom - ok
17:40:28.0028 3272 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
17:40:28.0043 3272 CertPropSvc - ok
17:40:28.0059 3272 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:40:28.0074 3272 circlass - ok
17:40:28.0121 3272 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
17:40:28.0121 3272 CLFS - ok
17:40:28.0215 3272 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:40:28.0230 3272 clr_optimization_v2.0.50727_32 - ok
17:40:28.0308 3272 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:40:28.0308 3272 clr_optimization_v2.0.50727_64 - ok
17:40:28.0371 3272 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:40:28.0433 3272 clr_optimization_v4.0.30319_32 - ok
17:40:28.0480 3272 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:40:28.0480 3272 clr_optimization_v4.0.30319_64 - ok
17:40:28.0511 3272 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:40:28.0511 3272 CmBatt - ok
17:40:28.0542 3272 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
17:40:28.0542 3272 cmdide - ok
17:40:28.0589 3272 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
17:40:28.0620 3272 CNG - ok
17:40:28.0683 3272 [ 61FFF3F1CEB499E329E7F9DC713FCCF0 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys
17:40:28.0730 3272 CnxtHdAudService - ok
17:40:28.0745 3272 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:40:28.0761 3272 Compbatt - ok
17:40:28.0776 3272 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
17:40:28.0776 3272 CompositeBus - ok
17:40:28.0792 3272 COMSysApp - ok
17:40:28.0808 3272 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
17:40:28.0808 3272 crcdisk - ok
17:40:28.0870 3272 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:40:28.0870 3272 CryptSvc - ok
17:40:28.0964 3272 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
17:40:28.0979 3272 cvhsvc - ok
17:40:29.0026 3272 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:40:29.0042 3272 DcomLaunch - ok
17:40:29.0088 3272 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
17:40:29.0088 3272 defragsvc - ok
17:40:29.0120 3272 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:40:29.0135 3272 DfsC - ok
17:40:29.0166 3272 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
17:40:29.0166 3272 Dhcp - ok
17:40:29.0213 3272 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
17:40:29.0213 3272 discache - ok
17:40:29.0229 3272 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
17:40:29.0244 3272 Disk - ok
17:40:29.0291 3272 [ D5BCB77BE83CF99F508943945D46343D ] DKbFltr C:\Windows\syswow64\Drivers\DKbFltr.sys
17:40:29.0307 3272 DKbFltr - ok
17:40:29.0338 3272 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:40:29.0354 3272 Dnscache - ok
17:40:29.0385 3272 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
17:40:29.0400 3272 dot3svc - ok
17:40:29.0447 3272 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
17:40:29.0447 3272 DPS - ok
17:40:29.0463 3272 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:40:29.0463 3272 drmkaud - ok
17:40:29.0510 3272 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:40:29.0541 3272 DXGKrnl - ok
17:40:29.0588 3272 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
17:40:29.0588 3272 EapHost - ok
17:40:29.0728 3272 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
17:40:29.0790 3272 ebdrv - ok
17:40:29.0853 3272 [ 1B7AA375F711F66D5FF2B855F9EC987F ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
17:40:29.0853 3272 eeCtrl - ok
17:40:29.0900 3272 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
17:40:29.0900 3272 EFS - ok
17:40:29.0962 3272 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:40:29.0993 3272 ehRecvr - ok
17:40:30.0040 3272 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
17:40:30.0071 3272 ehSched - ok
17:40:30.0118 3272 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
17:40:30.0118 3272 elxstor - ok
17:40:30.0258 3272 [ 3EA2C4F68A782839D97B3C83595575B6 ] ePowerSvc C:\Program Files\eMachines\eMachines Power Management\ePowerSvc.exe
17:40:30.0290 3272 ePowerSvc - ok
17:40:30.0305 3272 EraserUtilDrv11310 - ok
17:40:30.0383 3272 [ 7230C8B80DDE1F0524C353240B78CC0E ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
17:40:30.0383 3272 EraserUtilRebootDrv - ok
17:40:30.0414 3272 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
17:40:30.0414 3272 ErrDev - ok
17:40:30.0492 3272 esgiguard - ok
17:40:30.0539 3272 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
17:40:30.0539 3272 EventSystem - ok
17:40:30.0602 3272 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
17:40:30.0602 3272 exfat - ok
17:40:30.0648 3272 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:40:30.0648 3272 fastfat - ok
17:40:30.0695 3272 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
17:40:30.0742 3272 Fax - ok
17:40:30.0773 3272 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:40:30.0773 3272 fdc - ok
17:40:30.0789 3272 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
17:40:30.0804 3272 fdPHost - ok
17:40:30.0820 3272 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
17:40:30.0836 3272 FDResPub - ok
17:40:30.0851 3272 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:40:30.0851 3272 FileInfo - ok
17:40:30.0976 3272 [ D409D4A4517865131999FAC96D366CBF ] FileMonitor C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys
17:40:30.0976 3272 FileMonitor - ok
17:40:30.0992 3272 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:40:30.0992 3272 Filetrace - ok
17:40:31.0054 3272 FirebirdGuardianDefaultInstance - ok
17:40:31.0054 3272 FirebirdServerDefaultInstance - ok
17:40:31.0116 3272 [ 1F63900E2EB00101B9ACA2B7A870704E ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
17:40:31.0163 3272 FLEXnet Licensing Service - ok
17:40:31.0257 3272 [ 1C3FB052A0BB72EDAED90785C34D6EED ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
17:40:31.0319 3272 FLEXnet Licensing Service 64 - ok
17:40:31.0382 3272 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:40:31.0382 3272 flpydisk - ok
17:40:31.0413 3272 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:40:31.0413 3272 FltMgr - ok
17:40:31.0506 3272 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
17:40:31.0553 3272 FontCache - ok
17:40:31.0631 3272 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:40:31.0647 3272 FontCache3.0.0.0 - ok
17:40:31.0678 3272 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:40:31.0678 3272 FsDepends - ok
17:40:31.0709 3272 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:40:31.0709 3272 Fs_Rec - ok
17:40:31.0756 3272 [ 1F44F8559E61A8306ECC67BB1E168B7C ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:40:31.0756 3272 fvevol - ok
17:40:31.0772 3272 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
17:40:31.0772 3272 gagp30kx - ok
17:40:31.0850 3272 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
17:40:31.0881 3272 GamesAppService - ok
17:40:31.0928 3272 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:40:31.0928 3272 GEARAspiWDM - ok
17:40:31.0990 3272 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
17:40:32.0006 3272 gpsvc - ok
17:40:32.0084 3272 [ 0191DEE9B9EB7902AF2CF4F67301095D ] GREGService C:\Program Files (x86)\eMachines\Registration\GREGsvc.exe
17:40:32.0099 3272 GREGService - ok
17:40:32.0177 3272 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:40:32.0177 3272 gupdate - ok
17:40:32.0177 3272 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:40:32.0177 3272 gupdatem - ok
17:40:32.0224 3272 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
17:40:32.0240 3272 gusvc - ok
17:40:32.0271 3272 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:40:32.0271 3272 hcw85cir - ok
17:40:32.0302 3272 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:40:32.0318 3272 HdAudAddService - ok
17:40:32.0333 3272 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
17:40:32.0349 3272 HDAudBus - ok
17:40:32.0380 3272 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
17:40:32.0380 3272 HidBatt - ok
17:40:32.0396 3272 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
17:40:32.0396 3272 HidBth - ok
17:40:32.0427 3272 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
17:40:32.0427 3272 HidIr - ok
17:40:32.0458 3272 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
17:40:32.0458 3272 hidserv - ok
17:40:32.0474 3272 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:40:32.0474 3272 HidUsb - ok
17:40:32.0520 3272 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:40:32.0520 3272 hkmsvc - ok
17:40:32.0567 3272 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:40:32.0567 3272 HomeGroupListener - ok
17:40:32.0614 3272 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:40:32.0614 3272 HomeGroupProvider - ok
17:40:32.0645 3272 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
17:40:32.0645 3272 HpSAMD - ok
17:40:32.0692 3272 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:40:32.0708 3272 HTTP - ok
17:40:32.0739 3272 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:40:32.0739 3272 hwpolicy - ok
17:40:32.0770 3272 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
17:40:32.0770 3272 i8042prt - ok
17:40:32.0801 3272 [ ABBF174CB394F5C437410A788B7E404A ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
17:40:32.0817 3272 iaStor - ok
17:40:32.0864 3272 [ 31A0E93CDF29007D6C6FFFB632F375ED ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
17:40:32.0864 3272 IAStorDataMgrSvc - ok
17:40:32.0910 3272 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:40:32.0910 3272 iaStorV - ok
17:40:32.0988 3272 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:40:33.0051 3272 idsvc - ok
17:40:33.0285 3272 [ D7CB14B41DA52DF2EC143768E02F0E97 ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\IPSDefs\20131213.001\IDSvia64.sys
17:40:33.0316 3272 IDSVia64 - ok
17:40:33.0612 3272 [ 2D18C9E1F23970DE32D78D3B1CDDA0A7 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
17:40:33.0894 3272 igfx - ok
17:40:33.0910 3272 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
17:40:33.0910 3272 iirsp - ok
17:40:33.0972 3272 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
17:40:33.0988 3272 IKEEXT - ok
17:40:34.0050 3272 [ EAEA4B0005869A4ABE6070BD364143B7 ] IMFservice C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
17:40:34.0050 3272 IMFservice - ok
17:40:34.0097 3272 [ 88A20FA54C73DED4E8DAC764E9130AE9 ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
17:40:34.0097 3272 IntcHdmiAddService - ok
17:40:34.0113 3272 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
17:40:34.0113 3272 intelide - ok
17:40:34.0144 3272 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:40:34.0144 3272 intelppm - ok
17:40:34.0159 3272 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:40:34.0159 3272 IPBusEnum - ok
17:40:34.0191 3272 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:40:34.0191 3272 IpFilterDriver - ok
17:40:34.0237 3272 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:40:34.0237 3272 iphlpsvc - ok
17:40:34.0269 3272 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
17:40:34.0269 3272 IPMIDRV - ok
17:40:34.0300 3272 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:40:34.0300 3272 IPNAT - ok
17:40:34.0315 3272 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:40:34.0315 3272 IRENUM - ok
17:40:34.0331 3272 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
17:40:34.0331 3272 isapnp - ok
17:40:34.0362 3272 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
17:40:34.0378 3272 iScsiPrt - ok
17:40:34.0393 3272 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
17:40:34.0393 3272 kbdclass - ok
17:40:34.0409 3272 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
17:40:34.0409 3272 kbdhid - ok
17:40:34.0425 3272 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
17:40:34.0425 3272 KeyIso - ok
17:40:34.0471 3272 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:40:34.0471 3272 KSecDD - ok
17:40:34.0487 3272 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:40:34.0487 3272 KSecPkg - ok
17:40:34.0503 3272 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:40:34.0503 3272 ksthunk - ok
17:40:34.0612 3272 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
17:40:34.0627 3272 KtmRm - ok
17:40:34.0690 3272 [ 0EB28A5F9BD82F0357A77FF11722763F ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
17:40:34.0705 3272 L1C - ok
17:40:34.0783 3272 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
17:40:34.0799 3272 LanmanServer - ok
17:40:34.0861 3272 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:40:34.0861 3272 LanmanWorkstation - ok
17:40:34.0893 3272 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:40:34.0893 3272 lltdio - ok
17:40:34.0986 3272 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:40:35.0002 3272 lltdsvc - ok
17:40:35.0064 3272 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:40:35.0064 3272 lmhosts - ok
17:40:35.0111 3272 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
17:40:35.0111 3272 LSI_FC - ok
17:40:35.0127 3272 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
17:40:35.0127 3272 LSI_SAS - ok
17:40:35.0142 3272 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:40:35.0142 3272 LSI_SAS2 - ok
17:40:35.0173 3272 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:40:35.0173 3272 LSI_SCSI - ok
17:40:35.0205 3272 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
17:40:35.0205 3272 luafv - ok
17:40:35.0283 3272 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
17:40:35.0298 3272 MBAMProtector - ok
17:40:35.0423 3272 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
17:40:35.0423 3272 MBAMScheduler - ok
17:40:35.0485 3272 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
17:40:35.0517 3272 MBAMService - ok
17:40:35.0563 3272 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:40:35.0563 3272 Mcx2Svc - ok
17:40:35.0610 3272 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
17:40:35.0610 3272 megasas - ok
17:40:35.0626 3272 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
17:40:35.0641 3272 MegaSR - ok
17:40:35.0673 3272 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
17:40:35.0673 3272 MMCSS - ok
17:40:35.0688 3272 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
17:40:35.0688 3272 Modem - ok
17:40:35.0704 3272 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:40:35.0720 3272 monitor - ok
17:40:35.0736 3272 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:40:35.0736 3272 mouclass - ok
17:40:35.0767 3272 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:40:35.0767 3272 mouhid - ok
17:40:35.0783 3272 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:40:35.0798 3272 mountmgr - ok
17:40:35.0845 3272 [ 0329A45C849C9D77901094B8FFE8BBB9 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:40:35.0876 3272 MozillaMaintenance - ok
17:40:35.0892 3272 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
17:40:35.0908 3272 mpio - ok
17:40:35.0923 3272 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:40:35.0923 3272 mpsdrv - ok
17:40:35.0986 3272 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:40:36.0017 3272 MpsSvc - ok
17:40:36.0064 3272 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:40:36.0064 3272 MRxDAV - ok
17:40:36.0095 3272 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:40:36.0110 3272 mrxsmb - ok
17:40:36.0157 3272 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:40:36.0173 3272 mrxsmb10 - ok
17:40:36.0204 3272 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:40:36.0204 3272 mrxsmb20 - ok
17:40:36.0235 3272 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
17:40:36.0235 3272 msahci - ok
17:40:36.0266 3272 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
17:40:36.0266 3272 msdsm - ok
17:40:36.0298 3272 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
17:40:36.0329 3272 MSDTC - ok
17:40:36.0391 3272 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:40:36.0391 3272 Msfs - ok
17:40:36.0407 3272 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:40:36.0407 3272 mshidkmdf - ok
17:40:36.0438 3272 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
17:40:36.0438 3272 msisadrv - ok
17:40:36.0485 3272 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:40:36.0500 3272 MSiSCSI - ok
17:40:36.0516 3272 msiserver - ok
17:40:36.0547 3272 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:40:36.0547 3272 MSKSSRV - ok
17:40:36.0578 3272 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:40:36.0578 3272 MSPCLOCK - ok
17:40:36.0594 3272 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:40:36.0594 3272 MSPQM - ok
17:40:36.0625 3272 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:40:36.0625 3272 MsRPC - ok
17:40:36.0656 3272 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
17:40:36.0672 3272 mssmbios - ok
17:40:36.0688 3272 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:40:36.0688 3272 MSTEE - ok
17:40:36.0703 3272 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
17:40:36.0703 3272 MTConfig - ok
17:40:36.0719 3272 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
17:40:36.0719 3272 Mup - ok
17:40:36.0798 3272 [ E78A365CC3E0FBFC018A33DCE01909F8 ] N360 C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\ccSvcHst.exe
17:40:36.0798 3272 N360 - ok
17:40:36.0845 3272 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
17:40:36.0860 3272 napagent - ok
17:40:36.0907 3272 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:40:36.0938 3272 NativeWifiP - ok
17:40:37.0063 3272 [ 702E07EC32F96ACDB873E9A5465D4401 ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20131214.005\ENG64.SYS
17:40:37.0079 3272 NAVENG - ok
17:40:37.0188 3272 [ 302EA314A1AF0D7CEF0A3D0195F79561 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20131214.005\EX64.SYS
17:40:37.0266 3272 NAVEX15 - ok
17:40:37.0344 3272 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
17:40:37.0375 3272 NDIS - ok
17:40:37.0437 3272 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:40:37.0437 3272 NdisCap - ok
17:40:37.0469 3272 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:40:37.0469 3272 NdisTapi - ok
17:40:37.0500 3272 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:40:37.0500 3272 Ndisuio - ok
17:40:37.0547 3272 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:40:37.0547 3272 NdisWan - ok
17:40:37.0578 3272 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:40:37.0578 3272 NDProxy - ok
17:40:37.0609 3272 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:40:37.0609 3272 NetBIOS - ok
17:40:37.0656 3272 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:40:37.0656 3272 NetBT - ok
17:40:37.0687 3272 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
17:40:37.0687 3272 Netlogon - ok
17:40:37.0734 3272 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
17:40:37.0734 3272 Netman - ok
17:40:37.0766 3272 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
17:40:37.0782 3272 netprofm - ok
17:40:37.0813 3272 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:40:37.0813 3272 NetTcpPortSharing - ok
17:40:37.0828 3272 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
17:40:37.0828 3272 nfrd960 - ok
17:40:37.0860 3272 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:40:37.0860 3272 NlaSvc - ok
17:40:37.0875 3272 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:40:37.0891 3272 Npfs - ok
17:40:37.0906 3272 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
17:40:37.0906 3272 nsi - ok
17:40:37.0938 3272 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:40:37.0938 3272 nsiproxy - ok
17:40:38.0031 3272 [ 9A6089B056EA1B83B36424FC9D0A300E ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:40:38.0062 3272 Ntfs - ok
17:40:38.0140 3272 [ 28C59F594044CBF8598B18C927097091 ] NTIBackupSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
17:40:38.0156 3272 NTIBackupSvc - ok
17:40:38.0187 3272 [ 710263B44C1D1AEE07525A53401FBE48 ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
17:40:38.0187 3272 NTIDrvr - ok
17:40:38.0218 3272 [ B8D903B2894FF9AFBD99CA51C35590D7 ] NTISchedulerSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
17:40:38.0250 3272 NTISchedulerSvc - ok
17:40:38.0296 3272 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
17:40:38.0296 3272 Null - ok
17:40:38.0328 3272 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:40:38.0343 3272 nvraid - ok
17:40:38.0374 3272 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:40:38.0374 3272 nvstor - ok
17:40:38.0406 3272 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
17:40:38.0406 3272 nv_agp - ok
17:40:38.0437 3272 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
17:40:38.0437 3272 ohci1394 - ok
17:40:38.0499 3272 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:40:38.0499 3272 ose - ok
17:40:38.0718 3272 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:40:38.0889 3272 osppsvc - ok
17:40:38.0936 3272 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:40:38.0936 3272 p2pimsvc - ok
17:40:38.0967 3272 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
17:40:38.0998 3272 p2psvc - ok
17:40:39.0030 3272 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
17:40:39.0030 3272 Parport - ok
17:40:39.0061 3272 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:40:39.0061 3272 partmgr - ok
17:40:39.0076 3272 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:40:39.0092 3272 PcaSvc - ok
17:40:39.0170 3272 PCDSRVC{D368CD8C-B55B6F08-06020101}_0 - ok
17:40:39.0201 3272 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
17:40:39.0201 3272 pci - ok
17:40:39.0232 3272 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
17:40:39.0232 3272 pciide - ok
17:40:39.0264 3272 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
17:40:39.0264 3272 pcmcia - ok
17:40:39.0279 3272 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
17:40:39.0279 3272 pcw - ok
17:40:39.0310 3272 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:40:39.0326 3272 PEAUTH - ok
17:40:39.0435 3272 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:40:39.0435 3272 PerfHost - ok
17:40:39.0544 3272 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
17:40:39.0607 3272 pla - ok
17:40:39.0654 3272 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:40:39.0669 3272 PlugPlay - ok
17:40:39.0685 3272 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:40:39.0700 3272 PNRPAutoReg - ok
17:40:39.0732 3272 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:40:39.0732 3272 PNRPsvc - ok
17:40:39.0778 3272 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:40:39.0794 3272 PolicyAgent - ok
17:40:39.0841 3272 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
17:40:39.0841 3272 Power - ok
17:40:39.0888 3272 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:40:39.0903 3272 PptpMiniport - ok
17:40:39.0934 3272 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
17:40:39.0934 3272 Processor - ok
17:40:39.0997 3272 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
17:40:39.0997 3272 ProfSvc - ok
17:40:40.0012 3272 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:40:40.0028 3272 ProtectedStorage - ok
17:40:40.0044 3272 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:40:40.0044 3272 Psched - ok
17:40:40.0090 3272 [ 41AD0FCF47275A9BC70FA1B56BFD3E23 ] pwdrvio C:\Windows\system32\pwdrvio.sys
17:40:40.0106 3272 pwdrvio - ok
17:40:40.0137 3272 [ 19CF17076F2524AF6746B528584AA3C9 ] pwdspio C:\Windows\system32\pwdspio.sys
17:40:40.0168 3272 pwdspio - ok
17:40:40.0231 3272 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
17:40:40.0278 3272 ql2300 - ok
17:40:40.0309 3272 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
17:40:40.0309 3272 ql40xx - ok
17:40:40.0356 3272 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
17:40:40.0356 3272 QWAVE - ok
17:40:40.0387 3272 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:40:40.0387 3272 QWAVEdrv - ok
17:40:40.0418 3272 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys

[LucySpermlicker]

17:40:40.0434 3272 RasAcd - ok
17:40:40.0449 3272 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:40:40.0465 3272 RasAgileVpn - ok
17:40:40.0480 3272 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
17:40:40.0480 3272 RasAuto - ok
17:40:40.0496 3272 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:40:40.0512 3272 Rasl2tp - ok
17:40:40.0543 3272 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
17:40:40.0558 3272 RasMan - ok
17:40:40.0574 3272 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:40:40.0590 3272 RasPppoe - ok
17:40:40.0621 3272 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:40:40.0621 3272 RasSstp - ok
17:40:40.0636 3272 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:40:40.0652 3272 rdbss - ok
17:40:40.0683 3272 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
17:40:40.0683 3272 rdpbus - ok
17:40:40.0699 3272 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:40:40.0699 3272 RDPCDD - ok
17:40:40.0714 3272 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:40:40.0714 3272 RDPENCDD - ok
17:40:40.0746 3272 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:40:40.0746 3272 RDPREFMP - ok
17:40:40.0792 3272 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:40:40.0792 3272 RDPWD - ok
17:40:40.0808 3272 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:40:40.0808 3272 rdyboost - ok
17:40:40.0933 3272 [ 5623E2CC4F1F6DE24BE9DB3319E42D23 ] RegFilter C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys
17:40:40.0948 3272 RegFilter - ok
17:40:41.0011 3272 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:40:41.0026 3272 RemoteAccess - ok
17:40:41.0073 3272 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:40:41.0089 3272 RemoteRegistry - ok
17:40:41.0104 3272 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:40:41.0120 3272 RpcEptMapper - ok
17:40:41.0167 3272 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
17:40:41.0167 3272 RpcLocator - ok
17:40:41.0245 3272 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
17:40:41.0260 3272 RpcSs - ok
17:40:41.0307 3272 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:40:41.0323 3272 rspndr - ok
17:40:41.0354 3272 [ 763AE0C6D9DF4C24B7E2C26036A8188A ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
17:40:41.0370 3272 RSUSBSTOR - ok
17:40:41.0401 3272 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
17:40:41.0401 3272 SamSs - ok
17:40:41.0448 3272 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
17:40:41.0448 3272 sbp2port - ok
17:40:41.0494 3272 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:40:41.0494 3272 SCardSvr - ok
17:40:41.0541 3272 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:40:41.0541 3272 scfilter - ok
17:40:41.0604 3272 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
17:40:41.0635 3272 Schedule - ok
17:40:41.0666 3272 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
17:40:41.0666 3272 SCPolicySvc - ok
17:40:41.0697 3272 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:40:41.0728 3272 SDRSVC - ok
17:40:41.0775 3272 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:40:41.0775 3272 secdrv - ok
17:40:41.0806 3272 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
17:40:41.0806 3272 seclogon - ok
17:40:41.0838 3272 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
17:40:41.0838 3272 SENS - ok
17:40:41.0869 3272 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:40:41.0884 3272 SensrSvc - ok
17:40:41.0900 3272 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:40:41.0900 3272 Serenum - ok
17:40:41.0931 3272 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:40:41.0931 3272 Serial - ok
17:40:41.0947 3272 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
17:40:41.0962 3272 sermouse - ok
17:40:42.0009 3272 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
17:40:42.0009 3272 SessionEnv - ok
17:40:42.0025 3272 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
17:40:42.0025 3272 sffdisk - ok
17:40:42.0056 3272 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
17:40:42.0056 3272 sffp_mmc - ok
17:40:42.0072 3272 [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
17:40:42.0072 3272 sffp_sd - ok
17:40:42.0087 3272 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
17:40:42.0087 3272 sfloppy - ok
17:40:42.0150 3272 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
17:40:42.0181 3272 Sftfs - ok
17:40:42.0259 3272 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
17:40:42.0259 3272 sftlist - ok
17:40:42.0290 3272 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
17:40:42.0321 3272 Sftplay - ok
17:40:42.0352 3272 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
17:40:42.0352 3272 Sftredir - ok
17:40:42.0384 3272 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
17:40:42.0384 3272 Sftvol - ok
17:40:42.0415 3272 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
17:40:42.0430 3272 sftvsa - ok
17:40:42.0493 3272 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:40:42.0493 3272 SharedAccess - ok
17:40:42.0540 3272 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:40:42.0555 3272 ShellHWDetection - ok
17:40:42.0602 3272 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:40:42.0602 3272 SiSRaid2 - ok
17:40:42.0618 3272 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
17:40:42.0618 3272 SiSRaid4 - ok
17:40:42.0789 3272 [ 9F712B26EE3B0242DE997A42FD302E2C ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
17:40:42.0899 3272 Skype C2C Service - ok
17:40:42.0977 3272 [ 3E587DBBDFF938DDE5D4CE4047BE9041 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
17:40:42.0977 3272 SkypeUpdate - ok
17:40:43.0040 3272 [ DD0443BC6CC78A19FD399817F8C51401 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
17:40:43.0040 3272 SmartDefragDriver - ok
17:40:43.0071 3272 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:40:43.0071 3272 Smb - ok
17:40:43.0118 3272 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:40:43.0133 3272 SNMPTRAP - ok
17:40:43.0149 3272 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
17:40:43.0149 3272 spldr - ok
17:40:43.0211 3272 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
17:40:43.0211 3272 Spooler - ok
17:40:43.0336 3272 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
17:40:43.0477 3272 sppsvc - ok
17:40:43.0492 3272 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:40:43.0492 3272 sppuinotify - ok
17:40:43.0586 3272 [ 90EF30C3867BCDE4579C01A6D6E75A7A ] SRTSP C:\Windows\System32\Drivers\N360x64\0502020.003\SRTSP64.SYS
17:40:43.0617 3272 SRTSP - ok
17:40:43.0648 3272 [ C513E8A5E7978DA49077F5484344EE1B ] SRTSPX C:\Windows\system32\drivers\N360x64\0502020.003\SRTSPX64.SYS
17:40:43.0648 3272 SRTSPX - ok
17:40:43.0695 3272 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
17:40:43.0726 3272 srv - ok
17:40:43.0757 3272 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:40:43.0757 3272 srv2 - ok
17:40:43.0773 3272 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:40:43.0789 3272 srvnet - ok
17:40:43.0835 3272 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:40:43.0835 3272 SSDPSRV - ok
17:40:43.0851 3272 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:40:43.0867 3272 SstpSvc - ok
17:40:43.0898 3272 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
17:40:43.0898 3272 stexstor - ok
17:40:43.0960 3272 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
17:40:43.0991 3272 stisvc - ok
17:40:44.0007 3272 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
17:40:44.0007 3272 swenum - ok
17:40:44.0054 3272 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
17:40:44.0069 3272 swprv - ok
17:40:44.0116 3272 [ 6160145C7A87FC7672E8E3B886888176 ] SymDS C:\Windows\system32\drivers\N360x64\0502020.003\SYMDS64.SYS
17:40:44.0116 3272 SymDS - ok
17:40:44.0179 3272 [ 96AEED40D4D3521568B42027687E69E0 ] SymEFA C:\Windows\system32\drivers\N360x64\0502020.003\SYMEFA64.SYS
17:40:44.0210 3272 SymEFA - ok
17:40:44.0257 3272 [ 21A1C2D694C3CF962D31F5E873AB3D6F ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
17:40:44.0272 3272 SymEvent - ok
17:40:44.0319 3272 [ BD0D711D8CBFCAA19CA123306EAF53A5 ] SymIRON C:\Windows\system32\drivers\N360x64\0502020.003\Ironx64.SYS
17:40:44.0319 3272 SymIRON - ok
17:40:44.0350 3272 [ A6ADB3D83023F8DAA0F7B6FDA785D83B ] SymNetS C:\Windows\System32\Drivers\N360x64\0502020.003\SYMNETS.SYS
17:40:44.0366 3272 SymNetS - ok
17:40:44.0397 3272 [ 868DFB220A18312A12CEF01BA9AC069B ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
17:40:44.0413 3272 SynTP - ok
17:40:44.0506 3272 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
17:40:44.0569 3272 SysMain - ok
17:40:44.0584 3272 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:40:44.0600 3272 TabletInputService - ok
17:40:44.0615 3272 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
17:40:44.0631 3272 TapiSrv - ok
17:40:44.0647 3272 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
17:40:44.0647 3272 TBS - ok
17:40:44.0756 3272 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:40:44.0787 3272 Tcpip - ok
17:40:44.0865 3272 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:40:44.0881 3272 TCPIP6 - ok
17:40:44.0927 3272 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:40:44.0943 3272 tcpipreg - ok
17:40:44.0974 3272 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:40:44.0974 3272 TDPIPE - ok
17:40:45.0005 3272 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:40:45.0021 3272 TDTCP - ok
17:40:45.0037 3272 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:40:45.0052 3272 tdx - ok
17:40:45.0083 3272 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
17:40:45.0083 3272 TermDD - ok
17:40:45.0146 3272 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
17:40:45.0177 3272 TermService - ok
17:40:45.0208 3272 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
17:40:45.0224 3272 Themes - ok
17:40:45.0255 3272 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
17:40:45.0255 3272 THREADORDER - ok
17:40:45.0302 3272 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
17:40:45.0302 3272 TrkWks - ok
17:40:45.0364 3272 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:40:45.0380 3272 TrustedInstaller - ok
17:40:45.0442 3272 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:40:45.0442 3272 tssecsrv - ok
17:40:45.0473 3272 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:40:45.0473 3272 tunnel - ok
17:40:45.0520 3272 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
17:40:45.0520 3272 uagp35 - ok
17:40:45.0551 3272 [ 40079B0B801C5432BA435B5AD61CE6E3 ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
17:40:45.0551 3272 UBHelper - ok
17:40:45.0583 3272 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:40:45.0598 3272 udfs - ok
17:40:45.0629 3272 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:40:45.0645 3272 UI0Detect - ok
17:40:45.0676 3272 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
17:40:45.0676 3272 uliagpkx - ok
17:40:45.0739 3272 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
17:40:45.0739 3272 umbus - ok
17:40:45.0770 3272 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
17:40:45.0770 3272 UmPass - ok
17:40:45.0863 3272 [ F9EC9ACD504D823D9B9CA98A4F8D3CA2 ] Updater Service C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe
17:40:45.0863 3272 Updater Service - ok
17:40:45.0895 3272 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
17:40:45.0895 3272 upnphost - ok
17:40:45.0941 3272 [ 893A6B67C8AA502648AD946CF50DDFD1 ] UrlFilter C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys
17:40:45.0941 3272 UrlFilter - ok
17:40:45.0988 3272 [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:40:45.0988 3272 usbccgp - ok
17:40:46.0035 3272 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
17:40:46.0035 3272 usbcir - ok
17:40:46.0097 3272 [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
17:40:46.0097 3272 usbehci - ok
17:40:46.0144 3272 [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:40:46.0160 3272 usbhub - ok
17:40:46.0191 3272 [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci C:\Windows\system32\drivers\usbohci.sys
17:40:46.0191 3272 usbohci - ok
17:40:46.0222 3272 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:40:46.0222 3272 usbprint - ok
17:40:46.0253 3272 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
17:40:46.0253 3272 usbscan - ok
17:40:46.0285 3272 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:40:46.0285 3272 USBSTOR - ok
17:40:46.0316 3272 [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
17:40:46.0316 3272 usbuhci - ok
17:40:46.0363 3272 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
17:40:46.0363 3272 usbvideo - ok
17:40:46.0394 3272 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
17:40:46.0394 3272 UxSms - ok
17:40:46.0425 3272 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
17:40:46.0425 3272 VaultSvc - ok
17:40:46.0425 3272 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
17:40:46.0441 3272 vdrvroot - ok
17:40:46.0487 3272 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
17:40:46.0503 3272 vds - ok
17:40:46.0519 3272 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:40:46.0519 3272 vga - ok
17:40:46.0550 3272 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
17:40:46.0550 3272 VgaSave - ok
17:40:46.0565 3272 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
17:40:46.0581 3272 vhdmp - ok
17:40:46.0597 3272 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
17:40:46.0597 3272 viaide - ok
17:40:46.0628 3272 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
17:40:46.0628 3272 volmgr - ok
17:40:46.0659 3272 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:40:46.0675 3272 volmgrx - ok
17:40:46.0706 3272 [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:40:46.0706 3272 volsnap - ok
17:40:46.0721 3272 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
17:40:46.0737 3272 vsmraid - ok
17:40:46.0815 3272 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
17:40:46.0863 3272 VSS - ok
17:40:46.0910 3272 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
17:40:46.0910 3272 vwifibus - ok
17:40:46.0925 3272 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
17:40:46.0925 3272 vwififlt - ok
17:40:46.0956 3272 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
17:40:46.0956 3272 vwifimp - ok
17:40:46.0988 3272 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
17:40:47.0003 3272 W32Time - ok
17:40:47.0034 3272 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
17:40:47.0034 3272 WacomPen - ok
17:40:47.0066 3272 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:40:47.0066 3272 WANARP - ok
17:40:47.0081 3272 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:40:47.0081 3272 Wanarpv6 - ok
17:40:47.0175 3272 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
17:40:47.0253 3272 WatAdminSvc - ok
17:40:47.0346 3272 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
17:40:47.0409 3272 wbengine - ok
17:40:47.0440 3272 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:40:47.0456 3272 WbioSrvc - ok
17:40:47.0502 3272 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:40:47.0534 3272 wcncsvc - ok
17:40:47.0549 3272 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:40:47.0565 3272 WcsPlugInService - ok
17:40:47.0596 3272 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
17:40:47.0596 3272 Wd - ok
17:40:47.0674 3272 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:40:47.0674 3272 Wdf01000 - ok
17:40:47.0705 3272 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:40:47.0705 3272 WdiServiceHost - ok
17:40:47.0705 3272 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:40:47.0721 3272 WdiSystemHost - ok
17:40:47.0768 3272 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
17:40:47.0768 3272 WebClient - ok
17:40:47.0814 3272 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:40:47.0814 3272 Wecsvc - ok
17:40:47.0861 3272 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:40:47.0861 3272 wercplsupport - ok
17:40:47.0892 3272 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
17:40:47.0892 3272 WerSvc - ok
17:40:47.0924 3272 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:40:47.0924 3272 WfpLwf - ok
17:40:47.0939 3272 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:40:47.0939 3272 WIMMount - ok
17:40:47.0986 3272 WinDefend - ok
17:40:48.0002 3272 WinHttpAutoProxySvc - ok
17:40:48.0064 3272 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:40:48.0080 3272 Winmgmt - ok
17:40:48.0189 3272 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
17:40:48.0267 3272 WinRM - ok
17:40:48.0345 3272 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
17:40:48.0360 3272 WinUsb - ok
17:40:48.0423 3272 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
17:40:48.0454 3272 Wlansvc - ok
17:40:48.0610 3272 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:40:48.0688 3272 wlidsvc - ok
17:40:48.0735 3272 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
17:40:48.0735 3272 WmiAcpi - ok
17:40:48.0782 3272 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:40:48.0782 3272 wmiApSrv - ok
17:40:48.0813 3272 WMPNetworkSvc - ok
17:40:48.0860 3272 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:40:48.0860 3272 WPCSvc - ok
17:40:48.0875 3272 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:40:48.0891 3272 WPDBusEnum - ok
17:40:48.0906 3272 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:40:48.0906 3272 ws2ifsl - ok
17:40:48.0953 3272 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\Windows\System32\wscsvc.dll
17:40:48.0953 3272 wscsvc - ok
17:40:48.0953 3272 WSearch - ok
17:40:49.0078 3272 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
17:40:49.0172 3272 wuauserv - ok
17:40:49.0218 3272 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:40:49.0218 3272 WudfPf - ok
17:40:49.0250 3272 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:40:49.0250 3272 WUDFRd - ok
17:40:49.0281 3272 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:40:49.0296 3272 wudfsvc - ok
17:40:49.0343 3272 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
17:40:49.0374 3272 WwanSvc - ok
17:40:49.0406 3272 ================ Scan global ===============================
17:40:49.0468 3272 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:40:49.0515 3272 [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
17:40:49.0546 3272 [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
17:40:49.0577 3272 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:40:49.0624 3272 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:40:49.0624 3272 [Global] - ok
17:40:49.0624 3272 ================ Scan MBR ==================================
17:40:49.0655 3272 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:40:49.0937 3272 \Device\Harddisk0\DR0 - ok
17:40:49.0937 3272 ================ Scan VBR ==================================
17:40:49.0937 3272 [ 34059595AA6534F9B43FAD25E051C4FE ] \Device\Harddisk0\DR0\Partition1
17:40:49.0953 3272 \Device\Harddisk0\DR0\Partition1 - ok
17:40:49.0968 3272 [ 1334811A3A35457CC56CBED1A73D512C ] \Device\Harddisk0\DR0\Partition2
17:40:49.0968 3272 \Device\Harddisk0\DR0\Partition2 - ok
17:40:49.0999 3272 [ 4380837B1CC5CAC5C316A01D88E150CE ] \Device\Harddisk0\DR0\Partition3
17:40:49.0999 3272 \Device\Harddisk0\DR0\Partition3 - ok
17:40:49.0999 3272 ============================================================
17:40:49.0999 3272 Scan finished
17:40:49.0999 3272 ============================================================
17:40:50.0015 1440 Detected object count: 0
17:40:50.0015 1440 Actual detected object count: 0
17:41:45.0360 4772 Deinitialize success

[Orcus]

Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "

- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje "Smazání- Finished "
- Klikni na "Zprávy " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

====================================================

Stáhni si Junkware Removal Tool

na svojí plochu.
Deaktivuj si svůj antivirový program.
Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

====================================================

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.