API tools faq
paste
Guest User

Untitled

a guest
Apr 18th, 2014
70
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 73.65 KB | None | 0 0
raw download clone embed print report
  1. OTL logfile created on: 2014-04-18 18:48:05 - Run 1
  2. OTL by OldTimer - Version 3.2.69.0 Folder = E:\
  3. 64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
  4. Internet Explorer (Version = 9.11.9600.16521)
  5. Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
  6.  
  7. 7,96 Gb Total Physical Memory | 5,55 Gb Available Physical Memory | 69,69% Memory free
  8. 15,92 Gb Paging File | 13,40 Gb Available in Paging File | 84,20% Paging File free
  9. Paging file location(s): ?:\pagefile.sys [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
  12. Drive C: | 126,85 Gb Total Space | 71,63 Gb Free Space | 56,47% Space Free | Partition Type: NTFS
  13. Drive D: | 390,62 Gb Total Space | 390,45 Gb Free Space | 99,96% Space Free | Partition Type: NTFS
  14. Drive E: | 413,93 Gb Total Space | 353,35 Gb Free Space | 85,36% Space Free | Partition Type: NTFS
  15.  
  16. Computer Name: KOMP-KOMPUTER | User Name: komp | Logged in as Administrator.
  17. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
  18. Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
  19.  
  20. [color=#E56717]========== Processes (SafeList) ==========[/color]
  21.  
  22. PRC - [2014-04-18 18:38:30 | 000,602,112 | ---- | M] (OldTimer Tools) -- E:\OTL.exe
  23. PRC - [2014-04-16 14:43:44 | 000,438,784 | -HS- | M] (pager) -- C:\Windows\SysWOW64\Windows Server\wserver.exe
  24. PRC - [2014-03-31 20:05:42 | 000,350,528 | ---- | M] (ClientConnect Ltd.) -- C:\Program Files (x86)\Tbccint\ToolbarService\ToolbarService.exe
  25. PRC - [2014-03-29 14:32:32 | 005,329,400 | ---- | M] () -- C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.205\deploy\LoLLauncher.exe
  26. PRC - [2014-03-16 16:26:03 | 000,076,888 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
  27. PRC - [2014-03-03 10:53:02 | 001,363,584 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
  28. PRC - [2014-03-03 10:52:32 | 001,748,608 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
  29. PRC - [2014-01-20 20:01:57 | 000,074,752 | ---- | M] () -- C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.80\deploy\LolClient.exe
  30. PRC - [2014-01-20 18:42:44 | 001,294,336 | ---- | M] () -- C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
  31. PRC - [2013-12-21 08:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
  32. PRC - [2013-02-19 19:59:47 | 003,093,624 | ---- | M] () -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
  33. PRC - [2013-01-18 08:14:20 | 000,383,264 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
  34. PRC - [2012-05-15 16:17:26 | 000,363,800 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
  35. PRC - [2012-05-15 16:17:22 | 000,277,784 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
  36. PRC - [2012-05-10 16:20:34 | 000,165,144 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
  37.  
  38.  
  39. [color=#E56717]========== Modules (No Company Name) ==========[/color]
  40.  
  41. MOD - [2014-03-29 14:32:47 | 000,264,696 | ---- | M] () -- C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.205\deploy\RiotLauncher.dll
  42. MOD - [2014-03-29 14:32:32 | 005,329,400 | ---- | M] () -- C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.205\deploy\LoLLauncher.exe
  43. MOD - [2014-01-20 20:01:57 | 000,074,752 | ---- | M] () -- C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.80\deploy\LolClient.exe
  44. MOD - [2014-01-20 18:42:44 | 001,294,336 | ---- | M] () -- C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
  45. MOD - [2013-02-19 19:59:47 | 003,093,624 | ---- | M] () -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
  46.  
  47.  
  48. [color=#E56717]========== Services (SafeList) ==========[/color]
  49.  
  50. SRV:[b]64bit:[/b] - [2014-03-01 06:33:34 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
  51. SRV:[b]64bit:[/b] - [2013-05-27 07:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
  52. SRV:[b]64bit:[/b] - [2012-05-04 13:33:20 | 000,027,760 | ---- | M] (VIA Technologies, Inc.) [Auto | Running] -- C:\Windows\SysNative\ViakaraokeSrv.exe -- (VIAKaraokeService)
  53. SRV:[b]64bit:[/b] - [2012-04-20 15:16:12 | 000,635,104 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
  54. SRV:[b]64bit:[/b] - [2011-09-20 10:51:10 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
  55. SRV:[b]64bit:[/b] - [2010-04-06 17:30:38 | 000,031,272 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysNative\AppleChargerSrv.exe -- (AppleChargerSrv)
  56. SRV - File not found [Auto | Stopped] -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe -- (avgwd)
  57. SRV - File not found [Auto | Stopped] -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe -- (AVGIDSAgent)
  58. SRV - [2014-04-11 19:45:42 | 001,390,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe -- (c2cautoupdatesvc)
  59. SRV - [2014-03-31 20:05:42 | 000,350,528 | ---- | M] (ClientConnect Ltd.) [Auto | Running] -- C:\Program Files (x86)\Tbccint\ToolbarService\ToolbarService.exe -- (TBSrv)
  60. SRV - [2014-03-16 16:26:03 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
  61. SRV - [2014-03-12 17:17:17 | 000,257,928 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
  62. SRV - [2014-03-03 10:52:32 | 001,748,608 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe -- (c2cpnrsvc)
  63. SRV - [2013-12-21 08:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
  64. SRV - [2013-10-23 09:15:08 | 000,172,192 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
  65. SRV - [2013-09-11 22:21:54 | 000,105,144 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
  66. SRV - [2013-01-18 08:14:20 | 000,383,264 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
  67. SRV - [2012-12-29 12:34:47 | 001,260,472 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
  68. SRV - [2012-05-15 16:17:26 | 000,363,800 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
  69. SRV - [2012-05-15 16:17:22 | 000,277,784 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
  70. SRV - [2012-05-10 16:20:34 | 000,165,144 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe -- (jhi_service)
  71. SRV - [2011-03-16 11:42:06 | 000,407,336 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
  72. SRV - [2009-06-10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
  73. SRV - [2007-05-31 17:11:54 | 000,443,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm)
  74. SRV - [2007-05-31 17:11:46 | 000,225,672 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr)
  75.  
  76.  
  77. [color=#E56717]========== Driver Services (SafeList) ==========[/color]
  78.  
  79. DRV:[b]64bit:[/b] - [2014-03-21 18:48:25 | 000,049,952 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtpx64.sys -- (avgtp)
  80. DRV:[b]64bit:[/b] - [2014-03-20 15:50:52 | 000,240,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtdia.sys -- (Avgtdia)
  81. DRV:[b]64bit:[/b] - [2013-11-25 02:48:36 | 000,246,072 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgidsdrivera.sys -- (AVGIDSDriver)
  82. DRV:[b]64bit:[/b] - [2013-10-23 02:05:08 | 000,045,880 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgrkx64.sys -- (Avgrkx64)
  83. DRV:[b]64bit:[/b] - [2013-07-20 01:51:00 | 000,311,608 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgloga.sys -- (Avgloga)
  84. DRV:[b]64bit:[/b] - [2013-07-20 01:50:56 | 000,071,480 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgidsha.sys -- (AVGIDSHA)
  85. DRV:[b]64bit:[/b] - [2013-07-20 01:50:50 | 000,206,648 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgldx64.sys -- (Avgldx64)
  86. DRV:[b]64bit:[/b] - [2013-07-01 01:45:28 | 000,116,536 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgmfx64.sys -- (Avgmfx64)
  87. DRV:[b]64bit:[/b] - [2012-07-03 17:25:16 | 000,189,288 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
  88. DRV:[b]64bit:[/b] - [2012-05-20 18:25:32 | 000,789,824 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3xhc.sys -- (iusb3xhc)
  89. DRV:[b]64bit:[/b] - [2012-05-20 18:25:32 | 000,357,184 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3hub.sys -- (iusb3hub)
  90. DRV:[b]64bit:[/b] - [2012-05-20 18:25:32 | 000,019,264 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iusb3hcs.sys -- (iusb3hcs)
  91. DRV:[b]64bit:[/b] - [2012-05-04 13:33:12 | 002,196,592 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\viahduaa.sys -- (VIAHdAudAddService)
  92. DRV:[b]64bit:[/b] - [2012-04-25 09:07:18 | 000,104,560 | ---- | M] (Qualcomm Atheros Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C)
  93. DRV:[b]64bit:[/b] - [2012-03-01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
  94. DRV:[b]64bit:[/b] - [2012-02-03 20:23:56 | 000,084,736 | ---- | M] (Etron Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\EtronXHCI.sys -- (EtronXHCI)
  95. DRV:[b]64bit:[/b] - [2012-02-03 20:23:56 | 000,059,520 | ---- | M] (Etron Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\EtronHub3.sys -- (EtronHub3)
  96. DRV:[b]64bit:[/b] - [2011-11-10 02:04:14 | 000,060,184 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
  97. DRV:[b]64bit:[/b] - [2011-11-02 11:48:26 | 000,021,616 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\AppleCharger.sys -- (AppleCharger)
  98. DRV:[b]64bit:[/b] - [2011-09-20 10:17:44 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
  99. DRV:[b]64bit:[/b] - [2011-09-20 10:17:44 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
  100. DRV:[b]64bit:[/b] - [2011-09-20 10:15:38 | 000,360,832 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\vpcvmm.sys -- (vpcvmm)
  101. DRV:[b]64bit:[/b] - [2011-09-20 10:15:38 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\vpcnfltr.sys -- (vpcnfltr)
  102. DRV:[b]64bit:[/b] - [2011-09-20 10:15:35 | 000,194,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vpchbus.sys -- (vpcbus)
  103. DRV:[b]64bit:[/b] - [2011-09-20 10:15:35 | 000,095,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vpcusb.sys -- (vpcusb)
  104. DRV:[b]64bit:[/b] - [2011-04-12 12:39:42 | 001,579,520 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
  105. DRV:[b]64bit:[/b] - [2010-11-21 05:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
  106. DRV:[b]64bit:[/b] - [2010-11-21 05:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
  107. DRV:[b]64bit:[/b] - [2010-11-21 05:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
  108. DRV:[b]64bit:[/b] - [2010-11-21 05:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
  109. DRV:[b]64bit:[/b] - [2010-07-01 16:21:50 | 000,038,992 | ---- | M] (Screaming Bee LLC) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ScreamingBAudio64.sys -- (ScreamBAudioSvc)
  110. DRV:[b]64bit:[/b] - [2009-07-14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
  111. DRV:[b]64bit:[/b] - [2009-07-14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
  112. DRV:[b]64bit:[/b] - [2009-07-14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
  113. DRV:[b]64bit:[/b] - [2009-06-10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
  114. DRV:[b]64bit:[/b] - [2009-06-10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
  115. DRV:[b]64bit:[/b] - [2009-06-10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
  116. DRV:[b]64bit:[/b] - [2009-06-10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
  117. DRV:[b]64bit:[/b] - [2009-03-18 18:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
  118. DRV:[b]64bit:[/b] - [2008-12-26 13:56:04 | 000,021,504 | ---- | M] (Avnex) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vcsvad.sys -- (VCSVADHWSer)
  119. DRV - [2009-07-14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
  120.  
  121.  
  122. [color=#E56717]========== Standard Registry (All) ==========[/color]
  123.  
  124.  
  125. [color=#E56717]========== Internet Explorer ==========[/color]
  126.  
  127. IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
  128. IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
  129. IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
  130. IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
  131. IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
  132. IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
  133. IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
  134. IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
  135. IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
  136. IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  137. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
  138. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
  139. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
  140. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
  141. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
  142. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
  143. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
  144. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
  145. IE - HKLM\..\URLSearchHook: {8f6846ea-ddff-459b-8c78-469b34d90a49} - No CLSID value found
  146. IE - HKLM\..\SearchScopes,DefaultScope =
  147. IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  148.  
  149.  
  150. IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
  151. IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  152.  
  153. IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
  154. IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  155.  
  156. IE - HKU\S-1-5-19\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
  157. IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
  158.  
  159. IE - HKU\S-1-5-20\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
  160. IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
  161.  
  162. IE - HKU\S-1-5-21-7214859-161718511-346723150-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
  163. IE - HKU\S-1-5-21-7214859-161718511-346723150-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
  164. IE - HKU\S-1-5-21-7214859-161718511-346723150-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
  165. IE - HKU\S-1-5-21-7214859-161718511-346723150-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.google.com
  166. IE - HKU\S-1-5-21-7214859-161718511-346723150-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
  167. IE - HKU\S-1-5-21-7214859-161718511-346723150-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://arabia.msn.com/?pc=UP97&ocid=UP97DHP
  168. IE - HKU\S-1-5-21-7214859-161718511-346723150-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = pl-eg
  169. IE - HKU\S-1-5-21-7214859-161718511-346723150-1000\..\URLSearchHook: {8f6846ea-ddff-459b-8c78-469b34d90a49} - No CLSID value found
  170. IE - HKU\S-1-5-21-7214859-161718511-346723150-1000\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
  171. IE - HKU\S-1-5-21-7214859-161718511-346723150-1000\..\SearchScopes,DefaultScope =
  172. IE - HKU\S-1-5-21-7214859-161718511-346723150-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR
  173. IE - HKU\S-1-5-21-7214859-161718511-346723150-1000\..\SearchScopes\{8F7DD926-2910-4172-ADFA-C6E942588FB4}: "URL" = http://searchou.com/?q={searchTerms}&id=a4264b91000000000000a6f3c1320d54&affilt=5&r=342
  174. IE - HKU\S-1-5-21-7214859-161718511-346723150-1000\..\SearchScopes\{B6C30007-1308-4783-8084-CE0506FC6193}: "URL" = http://searchou.com/?q={searchTerms}&id=a4264b91000000000000a6f3c1320d54&affilt=5&r=823
  175. IE - HKU\S-1-5-21-7214859-161718511-346723150-1000\..\SearchScopes\61E1749E0090439484BBA11BB704FED9: "URL" = http://search.ividi.org/?q={searchTerms}&src=tbsp&id=a4264b91000000000000a6f3c1320d54&affilt=3&r=739
  176. IE - HKU\S-1-5-21-7214859-161718511-346723150-1000\..\SearchScopes\A4AE0470CDC549BDBEE56D2AF12EBD4A: "URL" = http://mystart.incredibar.com/?a=6Ozfqi3Js6&loc=skw&search={searchTerms}
  177. IE - HKU\S-1-5-21-7214859-161718511-346723150-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  178. IE - HKU\S-1-5-21-7214859-161718511-346723150-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
  179.  
  180.  
  181. [color=#E56717]========== FireFox ==========[/color]
  182.  
  183. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll File not found
  184. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
  185. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
  186. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
  187. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
  188. FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
  189. FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
  190. FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.4: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
  191. FF - HKLM\Software\MozillaPlugins\@esn/npbattlelog,version=2.3.1: C:\Program Files (x86)\Battlelog Web Plugins\2.3.1\npbattlelog.dll File not found
  192. FF - HKLM\Software\MozillaPlugins\@esn/npbattlelog,version=2.3.2: C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB)
  193. FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
  194. FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
  195. FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
  196. FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
  197. FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
  198. FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
  199. FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
  200. FF - HKLM\Software\MozillaPlugins\@ngm.nexoneu.com/NxGame: C:\ProgramData\NexonEU\NGM\npnxgameEU.dll (Nexon)
  201. FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
  202. FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
  203. FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
  204. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
  205. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
  206. FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
  207. FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
  208.  
  209. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-03-06 12:46:43 | 000,000,000 | ---D | M]
  210. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Windows\system32\config\systemprofile\AppData\Roaming\okitSpace\Firefox [2014-01-24 14:24:23 | 000,000,000 | ---D | M]
  211. FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-03-06 12:46:43 | 000,000,000 | ---D | M]
  212. FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{2ed699e1-72f1-4a88-a688-ddbdd4f47b9b}: C:\Program Files (x86)\Pass-Widget\135.xpi
  213.  
  214. [2012-11-05 20:12:28 | 000,172,032 | ---- | M] (iVIDI.org) -- C:\Program Files (x86)\mozilla firefox\plugins\npffividiplg.dll
  215. [2013-09-26 20:00:39 | 000,208,760 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll
  216.  
  217. O1 HOSTS File: ([2009-06-10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
  218. O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
  219. O2:[b]64bit:[/b] - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
  220. O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
  221. O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
  222. O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
  223. O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
  224. O2 - BHO: (no name) - {8f6846ea-ddff-459b-8c78-469b34d90a49} - No CLSID value found.
  225. O2 - BHO: (no name) - {990F7BB8-5E24-EA68-B8C5-087AC14C49AE} - No CLSID value found.
  226. O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
  227. O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
  228. O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
  229. O3 - HKLM\..\Toolbar: (no name) - {8f6846ea-ddff-459b-8c78-469b34d90a49} - No CLSID value found.
  230. O3:HKU - HKU\S-1-5-21-7214859-161718511-346723150-1000\..\Toolbar\WebBrowser: (uTorrentControl_v6b Toolbar) - {8F6846EA-DDFF-459B-8C78-469B34D90A49} - C:\Users\komp\AppData\LocalLow\uTorrentControl_v6b\prxtbuTor.dll (ClientConnect Ltd.)
  231. O4:[b]64bit:[/b] - HKLM..\Run: [Windows Mobile Device Center] C:\Windows\WindowsMobile\wmdc.exe (Microsoft Corporation)
  232. O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
  233. O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
  234. O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
  235. O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
  236. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
  237. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
  238. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceActiveDesktopOn = 0
  239. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
  240. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
  241. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
  242. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
  243. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
  244. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
  245. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
  246. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
  247. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
  248. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
  249. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
  250. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
  251. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
  252. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
  253. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
  254. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
  255. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
  256. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
  257. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
  258. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
  259. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
  260. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
  261. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
  262. O7 - HKU\S-1-5-21-7214859-161718511-346723150-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
  263. O8:[b]64bit:[/b] - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
  264. O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
  265. O9:[b]64bit:[/b] - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
  266. O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation)
  267. O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation)
  268. O9 - Extra Button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
  269. O9 - Extra 'Tools' menuitem : @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
  270. O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
  271. O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL (Microsoft Corporation)
  272. O9 - Extra Button: Pokaż lub ukryj HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
  273. O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000001 [] - C:\Windows\SysNative\nlaapi.dll (Microsoft Corporation)
  274. O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000002 [] - C:\Windows\SysNative\NapiNSP.dll (Microsoft Corporation)
  275. O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000003 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
  276. O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000004 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
  277. O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
  278. O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000006 [] - C:\Windows\SysNative\winrnr.dll (Microsoft Corporation)
  279. O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000001 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
  280. O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000002 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
  281. O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000003 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
  282. O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000004 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
  283. O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000005 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
  284. O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000006 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
  285. O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000007 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
  286. O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000008 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
  287. O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000009 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
  288. O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000010 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
  289. O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysWOW64\nlaapi.dll (Microsoft Corporation)
  290. O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysWOW64\NapiNSP.dll (Microsoft Corporation)
  291. O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
  292. O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
  293. O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
  294. O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysWOW64\winrnr.dll (Microsoft Corporation)
  295. O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
  296. O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
  297. O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
  298. O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
  299. O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
  300. O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
  301. O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
  302. O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
  303. O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
  304. O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
  305. O13[b]64bit:[/b] - gopher Prefix: missing
  306. O13 - gopher Prefix: missing
  307. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
  308. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7F7171F5-07E6-465D-AD4C-477B1D488896}: DhcpNameServer = 192.168.1.1 192.168.1.1
  309. O18:[b]64bit:[/b] - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
  310. O18:[b]64bit:[/b] - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
  311. O18:[b]64bit:[/b] - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
  312. O18:[b]64bit:[/b] - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
  313. O18:[b]64bit:[/b] - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
  314. O18:[b]64bit:[/b] - Protocol\Handler\grooveLocalGWS - No CLSID value found
  315. O18:[b]64bit:[/b] - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
  316. O18:[b]64bit:[/b] - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
  317. O18:[b]64bit:[/b] - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
  318. O18:[b]64bit:[/b] - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
  319. O18:[b]64bit:[/b] - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
  320. O18:[b]64bit:[/b] - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
  321. O18:[b]64bit:[/b] - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysNative\inetcomm.dll (Microsoft Corporation)
  322. O18:[b]64bit:[/b] - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
  323. O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found
  324. O18:[b]64bit:[/b] - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
  325. O18:[b]64bit:[/b] - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
  326. O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found
  327. O18:[b]64bit:[/b] - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
  328. O18:[b]64bit:[/b] - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
  329. O18:[b]64bit:[/b] - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
  330. O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
  331. O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
  332. O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
  333. O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
  334. O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
  335. O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
  336. O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
  337. O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
  338. O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
  339. O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
  340. O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
  341. O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
  342. O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll (Microsoft Corporation)
  343. O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
  344. O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
  345. O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
  346. O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
  347. O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
  348. O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
  349. O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
  350. O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
  351. O18:[b]64bit:[/b] - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
  352. O18:[b]64bit:[/b] - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
  353. O18:[b]64bit:[/b] - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
  354. O18:[b]64bit:[/b] - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
  355. O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
  356. O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
  357. O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
  358. O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
  359. O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
  360. O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
  361. O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
  362. O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
  363. O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
  364. O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
  365. O20 - HKU\S-1-5-21-7214859-161718511-346723150-1000 Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
  366. O20 - HKU\S-1-5-21-7214859-161718511-346723150-1000 Winlogon: Shell - ("C:\Windows\SysWOW64\Windows Server\wserver.exe") - C:\Windows\SysWOW64\Windows Server\wserver.exe (pager)
  367. O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  368. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  369. O27:[b]64bit:[/b] - HKLM IFEO\AvastSvc.exe: Debugger - nqij.exe File not found
  370. O27:[b]64bit:[/b] - HKLM IFEO\AvastUI.exe: Debugger - nqij.exe File not found
  371. O27:[b]64bit:[/b] - HKLM IFEO\avcenter.exe: Debugger - nqij.exe File not found
  372. O27:[b]64bit:[/b] - HKLM IFEO\avconfig.exe: Debugger - nqij.exe File not found
  373. O27:[b]64bit:[/b] - HKLM IFEO\avgcsrva.exe: Debugger - nqij.exe File not found
  374. O27:[b]64bit:[/b] - HKLM IFEO\avgcsrvx.exe: Debugger - nqij.exe File not found
  375. O27:[b]64bit:[/b] - HKLM IFEO\avgemca.exe: Debugger - nqij.exe File not found
  376. O27:[b]64bit:[/b] - HKLM IFEO\avgidsagent.exe: Debugger - nqij.exe File not found
  377. O27:[b]64bit:[/b] - HKLM IFEO\avgnsa.exe: Debugger - nqij.exe File not found
  378. O27:[b]64bit:[/b] - HKLM IFEO\avgnt.exe: Debugger - nqij.exe File not found
  379. O27:[b]64bit:[/b] - HKLM IFEO\avgrsa.exe: Debugger - nqij.exe File not found
  380. O27:[b]64bit:[/b] - HKLM IFEO\avgrsx.exe: Debugger - nqij.exe File not found
  381. O27:[b]64bit:[/b] - HKLM IFEO\avguard.exe: Debugger - nqij.exe File not found
  382. O27:[b]64bit:[/b] - HKLM IFEO\avgui.exe: Debugger - nqij.exe File not found
  383. O27:[b]64bit:[/b] - HKLM IFEO\avgwdsvc.exe: Debugger - nqij.exe File not found
  384. O27:[b]64bit:[/b] - HKLM IFEO\avp.exe: Debugger - nqij.exe File not found
  385. O27:[b]64bit:[/b] - HKLM IFEO\avscan.exe: Debugger - nqij.exe File not found
  386. O27:[b]64bit:[/b] - HKLM IFEO\bdagent.exe: Debugger - nqij.exe File not found
  387. O27:[b]64bit:[/b] - HKLM IFEO\blindman.exe: Debugger - nqij.exe File not found
  388. O27:[b]64bit:[/b] - HKLM IFEO\ccuac.exe: Debugger - nqij.exe File not found
  389. O27:[b]64bit:[/b] - HKLM IFEO\ComboFix.exe: Debugger - nqij.exe File not found
  390. O27:[b]64bit:[/b] - HKLM IFEO\egui.exe: Debugger - nqij.exe File not found
  391. O27:[b]64bit:[/b] - HKLM IFEO\hijackthis.exe: Debugger - nqij.exe File not found
  392. O27:[b]64bit:[/b] - HKLM IFEO\instup.exe: Debugger - nqij.exe File not found
  393. O27:[b]64bit:[/b] - HKLM IFEO\keyscrambler.exe: Debugger - nqij.exe File not found
  394. O27:[b]64bit:[/b] - HKLM IFEO\loggingserver.exe: Debugger - nqij.exe File not found
  395. O27:[b]64bit:[/b] - HKLM IFEO\mbam.exe: Debugger - nqij.exe File not found
  396. O27:[b]64bit:[/b] - HKLM IFEO\mbamgui.exe: Debugger - nqij.exe File not found
  397. O27:[b]64bit:[/b] - HKLM IFEO\mbampt.exe: Debugger - nqij.exe File not found
  398. O27:[b]64bit:[/b] - HKLM IFEO\mbamscheduler.exe: Debugger - nqij.exe File not found
  399. O27:[b]64bit:[/b] - HKLM IFEO\mbamservice.exe: Debugger - nqij.exe File not found
  400. O27:[b]64bit:[/b] - HKLM IFEO\MpCmdRun.exe: Debugger - nqij.exe File not found
  401. O27:[b]64bit:[/b] - HKLM IFEO\MSASCui.exe: Debugger - nqij.exe File not found
  402. O27:[b]64bit:[/b] - HKLM IFEO\MsMpEng.exe: Debugger - nqij.exe File not found
  403. O27:[b]64bit:[/b] - HKLM IFEO\msseces.exe: Debugger - nqij.exe File not found
  404. O27:[b]64bit:[/b] - HKLM IFEO\rstrui.exe: Debugger - nqij.exe File not found
  405. O27:[b]64bit:[/b] - HKLM IFEO\SDFiles.exe: Debugger - nqij.exe File not found
  406. O27:[b]64bit:[/b] - HKLM IFEO\SDMain.exe: Debugger - nqij.exe File not found
  407. O27:[b]64bit:[/b] - HKLM IFEO\SDWinSec.exe: Debugger - nqij.exe File not found
  408. O27:[b]64bit:[/b] - HKLM IFEO\spybotsd.exe: Debugger - nqij.exe File not found
  409. O27:[b]64bit:[/b] - HKLM IFEO\ToolbarUpdater.exe: Debugger - nqij.exe File not found
  410. O27:[b]64bit:[/b] - HKLM IFEO\vprot.exe: Debugger - nqij.exe File not found
  411. O27:[b]64bit:[/b] - HKLM IFEO\wireshark.exe: Debugger - nqij.exe File not found
  412. O27:[b]64bit:[/b] - HKLM IFEO\zlclient.exe: Debugger - nqij.exe File not found
  413. O27 - HKLM IFEO\AvastSvc.exe: Debugger - nqij.exe File not found
  414. O27 - HKLM IFEO\AvastUI.exe: Debugger - nqij.exe File not found
  415. O27 - HKLM IFEO\avcenter.exe: Debugger - nqij.exe File not found
  416. O27 - HKLM IFEO\avconfig.exe: Debugger - nqij.exe File not found
  417. O27 - HKLM IFEO\avgcsrva.exe: Debugger - nqij.exe File not found
  418. O27 - HKLM IFEO\avgcsrvx.exe: Debugger - nqij.exe File not found
  419. O27 - HKLM IFEO\avgemca.exe: Debugger - nqij.exe File not found
  420. O27 - HKLM IFEO\avgidsagent.exe: Debugger - nqij.exe File not found
  421. O27 - HKLM IFEO\avgnsa.exe: Debugger - nqij.exe File not found
  422. O27 - HKLM IFEO\avgnt.exe: Debugger - nqij.exe File not found
  423. O27 - HKLM IFEO\avgrsa.exe: Debugger - nqij.exe File not found
  424. O27 - HKLM IFEO\avgrsx.exe: Debugger - nqij.exe File not found
  425. O27 - HKLM IFEO\avguard.exe: Debugger - nqij.exe File not found
  426. O27 - HKLM IFEO\avgui.exe: Debugger - nqij.exe File not found
  427. O27 - HKLM IFEO\avgwdsvc.exe: Debugger - nqij.exe File not found
  428. O27 - HKLM IFEO\avp.exe: Debugger - nqij.exe File not found
  429. O27 - HKLM IFEO\avscan.exe: Debugger - nqij.exe File not found
  430. O27 - HKLM IFEO\bdagent.exe: Debugger - nqij.exe File not found
  431. O27 - HKLM IFEO\blindman.exe: Debugger - nqij.exe File not found
  432. O27 - HKLM IFEO\ccuac.exe: Debugger - nqij.exe File not found
  433. O27 - HKLM IFEO\ComboFix.exe: Debugger - nqij.exe File not found
  434. O27 - HKLM IFEO\egui.exe: Debugger - nqij.exe File not found
  435. O27 - HKLM IFEO\hijackthis.exe: Debugger - nqij.exe File not found
  436. O27 - HKLM IFEO\instup.exe: Debugger - nqij.exe File not found
  437. O27 - HKLM IFEO\keyscrambler.exe: Debugger - nqij.exe File not found
  438. O27 - HKLM IFEO\loggingserver.exe: Debugger - nqij.exe File not found
  439. O27 - HKLM IFEO\mbam.exe: Debugger - nqij.exe File not found
  440. O27 - HKLM IFEO\mbamgui.exe: Debugger - nqij.exe File not found
  441. O27 - HKLM IFEO\mbampt.exe: Debugger - nqij.exe File not found
  442. O27 - HKLM IFEO\mbamscheduler.exe: Debugger - nqij.exe File not found
  443. O27 - HKLM IFEO\mbamservice.exe: Debugger - nqij.exe File not found
  444. O27 - HKLM IFEO\MpCmdRun.exe: Debugger - nqij.exe File not found
  445. O27 - HKLM IFEO\MSASCui.exe: Debugger - nqij.exe File not found
  446. O27 - HKLM IFEO\MsMpEng.exe: Debugger - nqij.exe File not found
  447. O27 - HKLM IFEO\msseces.exe: Debugger - nqij.exe File not found
  448. O27 - HKLM IFEO\rstrui.exe: Debugger - nqij.exe File not found
  449. O27 - HKLM IFEO\SDFiles.exe: Debugger - nqij.exe File not found
  450. O27 - HKLM IFEO\SDMain.exe: Debugger - nqij.exe File not found
  451. O27 - HKLM IFEO\SDWinSec.exe: Debugger - nqij.exe File not found
  452. O27 - HKLM IFEO\spybotsd.exe: Debugger - nqij.exe File not found
  453. O27 - HKLM IFEO\ToolbarUpdater.exe: Debugger - nqij.exe File not found
  454. O27 - HKLM IFEO\vprot.exe: Debugger - nqij.exe File not found
  455. O27 - HKLM IFEO\wireshark.exe: Debugger - nqij.exe File not found
  456. O27 - HKLM IFEO\zlclient.exe: Debugger - nqij.exe File not found
  457. O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
  458. O29:[b]64bit:[/b] - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
  459. O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
  460. O30:[b]64bit:[/b] - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)
  461. O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
  462. O30:[b]64bit:[/b] - LSA: Security Packages - (kerberos) - C:\Windows\SysNative\kerberos.dll (Microsoft Corporation)
  463. O30:[b]64bit:[/b] - LSA: Security Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)
  464. O30:[b]64bit:[/b] - LSA: Security Packages - (schannel) - C:\Windows\SysNative\schannel.dll (Microsoft Corporation)
  465. O30:[b]64bit:[/b] - LSA: Security Packages - (wdigest) - C:\Windows\SysNative\wdigest.dll (Microsoft Corporation)
  466. O30:[b]64bit:[/b] - LSA: Security Packages - (tspkg) - C:\Windows\SysNative\tspkg.dll (Microsoft Corporation)
  467. O30:[b]64bit:[/b] - LSA: Security Packages - (pku2u) - C:\Windows\SysNative\pku2u.dll (Microsoft Corporation)
  468. O30 - LSA: Security Packages - (kerberos) - C:\Windows\SysWow64\kerberos.dll (Microsoft Corporation)
  469. O30 - LSA: Security Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
  470. O30 - LSA: Security Packages - (schannel) - C:\Windows\SysWow64\schannel.dll (Microsoft Corporation)
  471. O30 - LSA: Security Packages - (wdigest) - C:\Windows\SysWow64\wdigest.dll (Microsoft Corporation)
  472. O30 - LSA: Security Packages - (tspkg) - C:\Windows\SysWow64\tspkg.dll (Microsoft Corporation)
  473. O30 - LSA: Security Packages - (pku2u) - C:\Windows\SysWow64\pku2u.dll (Microsoft Corporation)
  474. O31 - SafeBoot: AlternateShell - cmd.exe
  475. O32 - HKLM CDRom: AutoRun - 1
  476. O33 - MountPoints2\{92c0c693-1c70-11e3-863b-902b34590b2a}\Shell - "" = AutoRun
  477. O33 - MountPoints2\{92c0c693-1c70-11e3-863b-902b34590b2a}\Shell\AutoRun\command - "" = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL G:\VoiceClient.exe
  478. O34 - HKLM BootExecute: (autocheck autochk *)
  479. O34 - HKLM BootExecute: (MACHINE BootExecut)
  480. O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
  481. O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
  482. O35 - HKLM\..comfile [open] -- "%1" %*
  483. O35 - HKLM\..exefile [open] -- "%1" %*
  484. O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
  485. O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
  486. O37 - HKLM\...com [@ = comfile] -- "%1" %*
  487. O37 - HKLM\...exe [@ = exefile] -- "%1" %*
  488. O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
  489. O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
  490. O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
  491.  
  492. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
  493.  
  494. [2014-04-18 18:29:15 | 000,000,000 | ---D | C] -- C:\AdwCleaner
  495. [2014-04-18 18:09:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
  496. [2014-04-18 18:05:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
  497. [2014-04-18 17:59:33 | 000,000,000 | ---D | C] -- C:\Users\komp\AppData\Roaming\1H1Q
  498. [2014-04-18 17:59:08 | 000,000,000 | ---D | C] -- C:\Users\komp\AppData\Roaming\sweet-page
  499. [2014-04-18 17:58:59 | 000,000,000 | ---D | C] -- C:\Users\komp\AppData\Roaming\AppCloudUpdater
  500. [2014-04-16 16:45:16 | 000,000,000 | ---D | C] -- C:\Users\komp\AppData\Roaming\.zyczujdk7
  501. [2014-04-16 16:33:27 | 000,000,000 | -HSD | C] -- C:\Windows\SysWow64\Windows Server
  502. [2014-04-11 19:22:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft Pingwin Pack 4 - Ultimate
  503. [2014-04-11 18:51:50 | 000,000,000 | ---D | C] -- C:\Users\komp\Documents\DragonNest
  504. [2014-04-11 18:49:43 | 000,000,000 | ---D | C] -- C:\Users\komp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SDGi Europe
  505. [2014-04-11 15:04:10 | 000,000,000 | ---D | C] -- C:\Users\komp\AppData\Local\Tbccint
  506. [2014-04-11 15:04:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Tbccint
  507. [2014-04-11 15:04:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Tbccint
  508. [2014-04-10 13:31:19 | 000,190,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storport.sys
  509. [2014-04-10 13:31:19 | 000,027,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Diskdump.sys
  510. [2014-04-10 13:31:19 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iologmsg.dll
  511. [2014-04-10 13:31:19 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iologmsg.dll
  512. [2014-04-10 13:31:17 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
  513. [2014-04-10 13:31:17 | 000,421,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
  514. [2014-04-10 13:31:17 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
  515. [2014-04-10 13:31:17 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
  516. [2014-04-10 13:31:17 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
  517. [2014-04-10 13:31:17 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
  518. [2014-04-10 13:31:17 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
  519. [2014-04-10 13:31:17 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
  520. [2014-04-10 13:31:17 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
  521. [2014-04-10 13:31:17 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
  522. [2014-04-10 13:31:17 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
  523. [2014-04-10 13:31:17 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
  524. [2014-04-10 13:31:17 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
  525. [2014-04-10 13:31:17 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
  526. [2014-04-10 13:31:17 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
  527. [2014-04-10 13:31:17 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
  528. [2014-04-10 13:31:17 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
  529. [2014-04-10 13:31:17 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
  530. [2014-04-10 13:31:17 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
  531. [2014-04-10 13:31:17 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
  532. [2014-04-10 13:31:17 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
  533. [2014-04-10 13:31:17 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
  534. [2014-04-10 13:31:17 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
  535. [2014-04-10 13:31:17 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
  536. [2014-04-10 13:31:17 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
  537. [2014-04-10 13:31:17 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
  538. [2014-04-10 13:31:17 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
  539. [2014-04-10 13:31:17 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
  540. [2014-04-10 13:31:17 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
  541. [2014-04-10 13:31:17 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
  542. [2014-04-10 13:31:17 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
  543. [2014-04-10 13:31:17 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
  544. [2014-04-10 13:31:17 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
  545. [2014-04-10 13:31:17 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
  546. [2014-04-10 13:31:17 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
  547. [2014-04-10 13:31:17 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
  548. [2014-04-10 13:31:17 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
  549. [2014-04-10 13:31:17 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
  550. [2014-04-10 13:31:17 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
  551. [2014-04-10 13:31:17 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
  552. [2014-04-10 13:31:17 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
  553. [2014-04-10 13:31:17 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
  554. [2014-04-10 13:31:17 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
  555. [2014-04-10 13:31:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
  556. [2014-04-10 13:31:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
  557. [2014-04-10 13:31:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
  558. [2014-04-10 13:31:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
  559. [2014-04-10 13:31:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
  560. [2014-04-10 13:31:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
  561. [2014-04-10 13:31:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
  562. [2014-04-10 13:31:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
  563. [2014-04-10 13:31:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
  564. [2014-04-10 13:31:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
  565. [2014-04-10 13:31:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
  566. [2014-04-10 13:31:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
  567. [2014-04-10 13:31:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
  568. [2014-04-10 13:31:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
  569. [2014-04-10 13:31:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
  570. [2014-04-10 13:31:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
  571. [2014-04-10 13:31:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
  572. [2014-04-10 13:31:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
  573. [2014-04-10 13:31:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
  574. [2014-04-10 13:31:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
  575. [2014-04-10 13:31:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
  576. [2014-04-10 13:31:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
  577. [2014-04-10 13:31:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
  578. [2014-04-10 13:31:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
  579. [2014-04-10 13:31:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
  580. [2014-04-10 13:31:17 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
  581. [2014-04-08 13:31:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
  582. [2014-03-31 10:32:32 | 000,000,000 | ---D | C] -- C:\Users\komp\Desktop\rzeczy mamy
  583. [2014-03-20 15:50:52 | 000,240,952 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgtdia.sys
  584.  
  585. [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
  586.  
  587. [2014-04-18 18:48:22 | 000,070,744 | ---- | M] () -- C:\Users\komp\AppData\Roaming\msconfig.ini
  588. [2014-04-18 18:31:33 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
  589. [2014-04-18 18:31:27 | 2114,609,151 | -HS- | M] () -- C:\hiberfil.sys
  590. [2014-04-18 18:05:04 | 000,000,605 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
  591. [2014-04-18 17:59:44 | 000,000,250 | ---- | M] () -- C:\Windows\tasks\AppSafe.job
  592. [2014-04-18 17:32:05 | 004,461,232 | ---- | M] () -- C:\Users\komp\Desktop\avg_free_stb_all_2014_4336_ppc1 (2).exe
  593. [2014-04-18 17:25:50 | 001,679,202 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
  594. [2014-04-18 17:25:50 | 000,745,336 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat
  595. [2014-04-18 17:25:50 | 000,657,716 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
  596. [2014-04-18 17:25:50 | 000,157,888 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat
  597. [2014-04-18 17:25:50 | 000,123,528 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
  598. [2014-04-18 17:16:50 | 000,846,296 | ---- | M] () -- C:\Users\komp\Desktop\PandaCloudAntivirus.exe.part
  599. [2014-04-16 16:33:55 | 000,000,224 | ---- | M] () -- C:\Windows\SysWow64\idp2.cfg
  600. [2014-04-16 16:21:00 | 000,001,044 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
  601. [2014-04-16 16:17:00 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
  602. [2014-04-16 15:07:04 | 000,001,040 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
  603. [2014-04-16 15:07:04 | 000,000,374 | ---- | M] () -- C:\Windows\tasks\SmartPCFix Task.job
  604. [2014-04-15 19:33:08 | 000,291,128 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr
  605. [2014-04-15 19:33:08 | 000,291,128 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe
  606. [2014-04-14 16:39:37 | 000,016,848 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
  607. [2014-04-14 16:39:37 | 000,016,848 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
  608. [2014-04-11 18:49:43 | 000,001,088 | ---- | M] () -- C:\Users\komp\Desktop\Dragon Nest Europe.lnk
  609. [2014-04-06 14:02:38 | 000,291,128 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0
  610. [2014-03-21 18:48:25 | 000,049,952 | ---- | M] (AVG Technologies) -- C:\Windows\SysNative\drivers\avgtpx64.sys
  611. [2014-03-20 15:50:52 | 000,240,952 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgtdia.sys
  612.  
  613. [color=#E56717]========== Files Created - No Company Name ==========[/color]
  614.  
  615. [2014-04-18 18:05:04 | 000,000,605 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
  616. [2014-04-18 17:59:44 | 000,000,250 | ---- | C] () -- C:\Windows\tasks\AppSafe.job
  617. [2014-04-18 17:32:05 | 004,461,232 | ---- | C] () -- C:\Users\komp\Desktop\avg_free_stb_all_2014_4336_ppc1 (2).exe
  618. [2014-04-18 17:16:37 | 000,846,296 | ---- | C] () -- C:\Users\komp\Desktop\PandaCloudAntivirus.exe.part
  619. [2014-04-16 16:33:55 | 000,000,224 | ---- | C] () -- C:\Windows\SysWow64\idp2.cfg
  620. [2014-04-16 16:33:27 | 000,070,744 | ---- | C] () -- C:\Users\komp\AppData\Roaming\msconfig.ini
  621. [2014-04-11 18:49:43 | 000,001,088 | ---- | C] () -- C:\Users\komp\Desktop\Dragon Nest Europe.lnk
  622. [2014-01-20 21:17:46 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
  623. [2013-12-04 16:09:51 | 002,601,752 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_moh.exe
  624. [2013-10-04 18:57:36 | 000,291,128 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
  625. [2013-10-04 18:57:34 | 000,076,888 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
  626. [2013-06-18 15:28:45 | 000,003,725 | ---- | C] () -- C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
  627. [2013-03-06 12:40:34 | 000,172,478 | ---- | C] () -- C:\Windows\hpoins44.dat
  628. [2013-02-19 16:16:52 | 001,653,510 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
  629. [2013-02-18 10:03:52 | 000,178,688 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
  630. [2013-02-15 16:54:28 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
  631. [2012-04-20 14:59:44 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll
  632.  
  633. [color=#E56717]========== ZeroAccess Check ==========[/color]
  634.  
  635. [2009-07-14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
  636.  
  637. [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
  638.  
  639. [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  640.  
  641. [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
  642.  
  643. [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
  644.  
  645. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
  646. "" = C:\Windows\SysNative\shell32.dll -- [2013-07-26 04:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation)
  647. "ThreadingModel" = Apartment
  648.  
  649. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  650. "" = %SystemRoot%\system32\shell32.dll -- [2013-07-26 03:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
  651. "ThreadingModel" = Apartment
  652.  
  653. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
  654. "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009-07-14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
  655. "ThreadingModel" = Free
  656.  
  657. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
  658. "" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-21 05:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
  659. "ThreadingModel" = Free
  660.  
  661. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
  662. "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009-07-14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
  663. "ThreadingModel" = Both
  664.  
  665. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
  666.  
  667. [color=#E56717]========== LOP Check ==========[/color]
  668.  
  669. [2013-03-08 14:24:28 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\TuneUp Software
  670. [2013-03-08 14:24:28 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\TuneUp Software
  671. [2014-04-16 16:46:00 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\.minecraft
  672. [2014-04-16 16:44:10 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\.minecraftzyczu
  673. [2013-09-17 20:24:59 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\.spoutcraft
  674. [2013-09-15 15:15:14 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\.technic
  675. [2014-04-16 16:45:17 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\.zyczujdk7
  676. [2014-04-18 17:59:33 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\1H1Q
  677. [2014-04-18 18:07:11 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\AIMP3
  678. [2014-04-18 17:58:59 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\AppCloudUpdater
  679. [2013-02-18 10:11:18 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\AVG2013
  680. [2013-12-07 19:11:49 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\Avnex
  681. [2013-05-28 17:55:05 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\BitTorrent
  682. [2013-03-06 11:28:18 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\e-Deklaracje.A1909296681C7ACEFE45687D3A64758C8659BF46.1
  683. [2014-01-05 12:44:55 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\Firefly Studios
  684. [2014-02-01 16:44:24 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\GameRanger
  685. [2013-11-22 20:27:00 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\gd.sos.McPixel
  686. [2013-02-18 17:14:56 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\ImgBurn
  687. [2013-02-20 15:33:43 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\LolClient
  688. [2013-08-07 11:54:15 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\MKKE
  689. [2013-02-18 10:39:41 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\Opera
  690. [2014-02-03 19:36:21 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\Opera Software
  691. [2013-12-30 11:03:17 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\Origin
  692. [2014-01-05 14:00:04 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\Red Alert 3 Powstanie
  693. [2014-01-20 18:42:42 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\Riot Games
  694. [2013-12-07 19:20:01 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\Screaming Bee
  695. [2013-04-03 18:43:08 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\SmartPCFix
  696. [2014-04-17 13:46:45 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\Spotify
  697. [2014-04-18 17:59:08 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\sweet-page
  698. [2014-04-18 17:34:29 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\TS3Client
  699. [2013-02-18 10:10:27 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\TuneUp Software
  700. [2014-04-11 18:52:11 | 000,000,000 | ---D | M] -- C:\Users\komp\AppData\Roaming\uTorrent
  701. [2014-02-10 17:57:24 | 000,000,000 | -HSD | M] -- C:\Users\komp\AppData\Roaming\wyUpdate AU
  702.  
  703. [color=#E56717]========== Purity Check ==========[/color]
  704.  
  705.  
  706.  
  707. < End of report >
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!