wklejto.pl

Dodane przez: mihas7f (2010-11-04 14:50) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
289.
290.
291.
292.
293.
294.
295.
296.
297.
298.
299.
300.
301.
302.
303.
304.
305.
306.
307.
308.
309.
310.
311.
312.
313.
314.
315.
316.
317.
318.
319.
320.
321.
322.
323.
324.
325.
326.
327.
328.
329.
330.
331.
332.
333.
334.
335.
336.
337.
338.
339.
340.
341.
342.
343.
344.
345.
346.
347.
348.
349.
350.
351.
352.
353.
354.
355.
356.
357.
358.
359.
360.
361.
362.
363.
364.
365.
366.
367.
368.
369.
370.
371.
372.
373.
374.
375.
376.
377.
378.
379.
380.
381.
382.
383.
384.
385.
386.
387.
388.
389.
390.
391.
392.
393.
394.
395.
396.
397.
398.
399.
400.
401.
402.
403.
404.
405.
406.
407.
408.
409.
410.
411.
412.
413.
414.
415.
416.
417.
418.
419.
420.
421.
422.
423.
424.
425.
426.
427.
428.
429.
430.
431.
432.
433.
434.
435.
436.
437.
438.
439.
440.
441.
442.
443.
444.
445.
446.
447.
448.
449.
450.
451.
452.
453.
454.
455.
456.
457.
458.
459.
460.
461.
462.
463.
464.
465.
466.
467.
468.
469.
470.
471.
472.
473.
474.
475.
476.
477.
478.
479.
480.
481.
482.
483.
484.
485.
486.
487.
488.
489.
490.
491.
492.
493.
494.
495.
496.
497.
498.
499.
500.
501.
502.
503.
504.
505.
506.
507.
508.
509.
510.
511.
512.
513.
514.
515.
516.
517.
Logfile of random\'s system information tool 1.08 (written by random/random)
Run by Marta at 2010-11-04 14:28:05
Microsoft® Windows Vista™ Business  Service Pack 1
System drive C: has 46 GB (21%) free of 222 GB
Total RAM: 1977 MB (42% free)
 
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:28:38, on 2010-11-04
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18527)
Boot mode: Normal
 
Running processes:
C:\\windows\\system32\\Dwm.exe
C:\\windows\\system32\\taskeng.exe
C:\\Program Files\\Hewlett-Packard\\IAM\\Bin\\AsGHost.exe
C:\\windows\\Explorer.EXE
C:\\Windows\\SMINST\\scheduler.exe
C:\\Windows\\System32\\igfxtray.exe
C:\\Windows\\System32\\hkcmd.exe
C:\\Windows\\System32\\igfxpers.exe
C:\\Program Files\\Analog Devices\\Core\\smax4pnp.exe
C:\\Program Files\\Common Files\\Intel\\Privacy Icon\\PrivacyIconClient.exe
C:\\Program Files\\ActivIdentity\\ActivClient\\accrdsub.exe
C:\\Program Files\\Hewlett-Packard\\HP ProtectTools Security Manager\\pthosttr.exe
C:\\Windows\\system32\\igfxsrvc.exe
C:\\Program Files\\MagicRotation\\MagicPvt.exe
C:\\Program Files\\iTunes\\iTunesHelper.exe
C:\\Program Files\\intY\\cmgrwin32.exe
C:\\Program Files\\Microsoft Office\\Office12\\GrooveMonitor.exe
C:\\windows\\System32\\mobsync.exe
C:\\Windows\\System32\\drivers\\Tray900.exe
C:\\Program Files\\PC Tools Security\\BDT\\FGuard.exe
C:\\Program Files\\AVG\\AVG10\\avgtray.exe
C:\\Program Files\\Siber Systems\\AI RoboForm\\robotaskbaricon.exe
C:\\Users\\marta.CAPTIMAX\\AppData\\Local\\Google\\Update\\GoogleUpdate.exe
C:\\Program Files\\Microsoft Office\\Office12\\ONENOTEM.EXE
C:\\Program Files\\ActivIdentity\\ActivClient\\acevents.exe
C:\\Program Files\\AVG\\AVG10\\Identity Protection\\agent\\bin\\avgidsmonitor.exe
C:\\Program Files\\3\\3Connect\\AutoUpdateSrv.exe
C:\\Program Files\\3\\3Connect\\wilog.exe
C:\\windows\\system32\\wuauclt.exe
C:\\Users\\marta.CAPTIMAX\\Downloads\\OTL.exe
C:\\Program Files\\Mozilla Firefox\\firefox.exe
C:\\windows\\system32\\SearchFilterHost.exe
C:\\windows\\explorer.exe
C:\\Users\\marta.CAPTIMAX\\Downloads\\RSIT.exe
C:\\Program Files\\trend micro\\Marta.exe
 
R1 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_se&c=91&bd=all&pf=cmdt
R1 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = http://www.google.co.uk/
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_se&c=91&bd=all&pf=cmdt
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_se&c=91&bd=all&pf=cmdt
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Search,SearchAssistant = 
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Search,CustomizeSearch = 
R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Toolbar,LinksFolderName = 
R3 - URLSearchHook: PC Tools Browser Guard - {472734EA-242A-422b-ADF8-83D1E48CC825} - C:\\Program Files\\PC Tools Security\\BDT\\PCTBrowserDefender.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Browser Defender BHO - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\\Program Files\\PC Tools Security\\BDT\\PCTBrowserDefender.dll
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\\Program Files\\FlashGet\\jccatch.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\\Program Files\\AVG\\AVG10\\avgssie.dll
O2 - BHO: RoboForm - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\\Program Files\\Siber Systems\\AI RoboForm\\roboform.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\\Program Files\\Microsoft Office\\Office12\\GrooveShellExtensions.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\\Program Files\\Java\\jre1.6.0_07\\bin\\ssv.dll
O2 - BHO: MegaIEMn - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\\Program Files\\Megaupload\\Mega Manager\\MegaIEMn.dll
O2 - BHO: Credential Manager for HP ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\\Program Files\\Hewlett-Packard\\IAM\\Bin\\ItIEAddIn.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\\Program Files\\FlashGet\\getflash.dll
O2 - BHO: IEPluginBHO - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\\Users\\marta.CAPTIMAX\\AppData\\Roaming\\Gadu-Gadu 10\\_userdata\\ggbho.2.dll
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\\Program Files\\Siber Systems\\AI RoboForm\\roboform.dll
O3 - Toolbar: PC Tools Browser Guard - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\\Program Files\\PC Tools Security\\BDT\\PCTBrowserDefender.dll
O4 - HKLM\\..\\Run: [Windows Defender] %ProgramFiles%\\Windows Defender\\MSASCui.exe -hide
O4 - HKLM\\..\\Run: [IgfxTray] C:\\Windows\\system32\\igfxtray.exe
O4 - HKLM\\..\\Run: [HotKeysCmds] C:\\Windows\\system32\\hkcmd.exe
O4 - HKLM\\..\\Run: [Persistence] C:\\Windows\\system32\\igfxpers.exe
O4 - HKLM\\..\\Run: [SoundMAXPnP] C:\\Program Files\\Analog Devices\\Core\\smax4pnp.exe
O4 - HKLM\\..\\Run: [picon] \"C:\\Program Files\\Common Files\\Intel\\Privacy Icon\\PrivacyIconClient.exe\" -startup
O4 - HKLM\\..\\Run: [PDF Complete] C:\\Program Files\\PDF Complete\\pdfsty.exe
O4 - HKLM\\..\\Run: [accrdsub] \"C:\\Program Files\\ActivIdentity\\ActivClient\\accrdsub.exe\"
O4 - HKLM\\..\\Run: [PTHOSTTR] C:\\Program Files\\Hewlett-Packard\\HP ProtectTools Security Manager\\PTHOSTTR.EXE /Start
O4 - HKLM\\..\\Run: [CognizanceTS] rundll32.exe C:\\PROGRA~1\\HEWLET~1\\IAM\\Bin\\ASTSVCC.dll,RegisterModule
O4 - HKLM\\..\\Run: [SetRefresh] C:\\Program Files\\HP\\SetRefresh\\SetRefresh.exe
O4 - HKLM\\..\\Run: [MagicRotation] C:\\Program Files\\MagicRotation\\MagicPvt.exe
O4 - HKLM\\..\\Run: [QuickTime Task] \"C:\\Program Files\\QuickTime\\QTTask.exe\" -atboottime
O4 - HKLM\\..\\Run: [iTunesHelper] \"C:\\Program Files\\iTunes\\iTunesHelper.exe\"
O4 - HKLM\\..\\Run: [StartintY] \"C:\\Program Files\\intY\\cmgrwin32.exe\" 1713931326
O4 - HKLM\\..\\Run: [GrooveMonitor] \"C:\\Program Files\\Microsoft Office\\Office12\\GrooveMonitor.exe\"
O4 - HKLM\\..\\Run: [TrayMin900] C:\\windows\\System32\\Drivers\\Tray900.exe
O4 - HKLM\\..\\Run: [PCTools FGuard] C:\\Program Files\\PC Tools Security\\BDT\\FGuard.exe
O4 - HKLM\\..\\Run: [AVG_TRAY] C:\\Program Files\\AVG\\AVG10\\avgtray.exe
O4 - HKLM\\..\\RunOnce: [ST Recovery Launcher] %WINDIR%\\SMINST\\launcher.exe
O4 - HKCU\\..\\Run: [OfficeSyncProcess] C:\\Program Files\\Microsoft Office\\Office14\\MSOSYNC.EXE
O4 - HKCU\\..\\Run: [RoboForm] \"C:\\Program Files\\Siber Systems\\AI RoboForm\\RoboTaskBarIcon.exe\"
O4 - HKCU\\..\\Run: [Google Update] \"C:\\Users\\marta.CAPTIMAX\\AppData\\Local\\Google\\Update\\GoogleUpdate.exe\" /c
O4 - HKUS\\S-1-5-19\\..\\Run: [Sidebar] %ProgramFiles%\\Windows Sidebar\\Sidebar.exe /detectMem (User \'LOCAL SERVICE\')
O4 - HKUS\\S-1-5-19\\..\\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User \'LOCAL SERVICE\')
O4 - HKUS\\S-1-5-20\\..\\Run: [Sidebar] %ProgramFiles%\\Windows Sidebar\\Sidebar.exe /detectMem (User \'NETWORK SERVICE\')
O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\\Program Files\\Microsoft Office\\Office12\\ONENOTEM.EXE
O8 - Extra context menu item: &Download All with FlashGet - C:\\Program Files\\FlashGet\\jc_all.htm
O8 - Extra context menu item: &Download with FlashGet - C:\\Program Files\\FlashGet\\jc_link.htm
O8 - Extra context menu item: Customize Menu - file://C:\\Program Files\\Siber Systems\\AI RoboForm\\RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\\PROGRA~1\\MICROS~1\\Office12\\EXCEL.EXE/3000
O8 - Extra context menu item: Fill Forms - file://C:\\Program Files\\Siber Systems\\AI RoboForm\\RoboFormComFillForms.html
O8 - Extra context menu item: RoboForm Toolbar - file://C:\\Program Files\\Siber Systems\\AI RoboForm\\RoboFormComShowToolbar.html
O8 - Extra context menu item: Save Forms - file://C:\\Program Files\\Siber Systems\\AI RoboForm\\RoboFormComSavePass.html
O8 - Extra context menu item: Se&nd to OneNote - res:///105
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\\PROGRA~1\\Java\\JRE16~1.0_0\\bin\\ssv.dll
O9 - Extra \'Tools\' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\\PROGRA~1\\Java\\JRE16~1.0_0\\bin\\ssv.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\PROGRA~1\\MICROS~1\\Office12\\ONBttnIE.dll
O9 - Extra \'Tools\' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\PROGRA~1\\MICROS~1\\Office12\\ONBttnIE.dll
O9 - Extra button: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\\Program Files\\Siber Systems\\AI RoboForm\\RoboFormComFillForms.html
O9 - Extra \'Tools\' menuitem: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\\Program Files\\Siber Systems\\AI RoboForm\\RoboFormComFillForms.html
O9 - Extra button: Save - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\\Program Files\\Siber Systems\\AI RoboForm\\RoboFormComSavePass.html
O9 - Extra \'Tools\' menuitem: Save Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\\Program Files\\Siber Systems\\AI RoboForm\\RoboFormComSavePass.html
O9 - Extra button: RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\\Program Files\\Siber Systems\\AI RoboForm\\RoboFormComShowToolbar.html
O9 - Extra \'Tools\' menuitem: RoboForm Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\\Program Files\\Siber Systems\\AI RoboForm\\RoboFormComShowToolbar.html
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\\PROGRA~1\\MICROS~1\\Office12\\REFIEBAR.DLL
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\\Program Files\\FlashGet\\FlashGet.exe
O9 - Extra \'Tools\' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\\Program Files\\FlashGet\\FlashGet.exe
O15 - Trusted Zone: http://software.kuaiche.com
O17 - HKLM\\System\\CCS\\Services\\Tcpip\\Parameters: Domain = captimax.local
O17 - HKLM\\Software\\..\\Telephony: DomainName = captimax.local
O17 - HKLM\\System\\CCS\\Services\\Tcpip\\..\\{56735FBF-6B64-43B9-9836-D12A7F67E893}: NameServer = 80.251.201.177 80.251.201.178
O17 - HKLM\\System\\CS1\\Services\\Tcpip\\Parameters: Domain = captimax.local
O17 - HKLM\\System\\CS2\\Services\\Tcpip\\Parameters: Domain = captimax.local
O17 - HKLM\\System\\CS3\\Services\\Tcpip\\Parameters: Domain = captimax.local
O17 - HKLM\\System\\CS4\\Services\\Tcpip\\Parameters: Domain = captimax.local
O17 - HKLM\\System\\CS5\\Services\\Tcpip\\Parameters: Domain = captimax.local
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\\Program Files\\Microsoft Office\\Office12\\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\\Program Files\\AVG\\AVG10\\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\\PROGRA~1\\COMMON~1\\Skype\\SKYPE4~1.DLL
O20 - AppInit_DLLs: APSHook.dll
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\\windows\\system32\\browseui.dll
O23 - Service: McAfee Application Installer Cleanup (0037281232571833) (0037281232571833mcinstcleanup) - Unknown owner - C:\\Users\\ADMINI~1\\AppData\\Local\\Temp\\003728~1.EXE (file missing)
O23 - Service: ActivClient Middleware Service (accoca) - ActivIdentity - C:\\Program Files\\ActivIdentity\\ActivClient\\accoca.exe
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Andrea Electronics Corporation - C:\\windows\\system32\\AEADISRV.EXE
O23 - Service: Apple Mobile Device - Apple Inc. - C:\\Program Files\\Common Files\\Apple\\Mobile Device Support\\bin\\AppleMobileDeviceService.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\\Program Files\\AVG\\AVG10\\Identity Protection\\Agent\\Bin\\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\\Program Files\\AVG\\AVG10\\avgwdsvc.exe
O23 - Service: Bonjour-tjänst (Bonjour Service) - Apple Inc. - C:\\Program Files\\Bonjour\\mDNSResponder.exe
O23 - Service: Browser Defender Update Service - Unknown owner - C:\\Program Files\\PC Tools Security\\BDT\\BDTUpdateService.exe
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Ltd - C:\\Windows\\system32\\flcdlock.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - C:\\Program Files\\Hewlett-Packard\\HP ProtectTools Security Manager\\PTChangeFilterService.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - SafeBoot International - C:\\Program Files\\Hewlett-Packard\\Drive Encryption\\HpFkCrypt.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\\Program Files\\Hewlett-Packard\\Shared\\hpqwmiex.exe
O23 - Service: iPod Service - Apple Inc. - C:\\Program Files\\iPod\\bin\\iPodService.exe
O23 - Service: IviRegMgr - InterVideo - C:\\Program Files\\Common Files\\InterVideo\\RegMgr\\iviRegMgr.exe
O23 - Service: Intel(R) Active Management Technology Local Management Service (LMS) - Intel Corporation - C:\\Program Files\\Intel\\AMT\\LMS.exe
O23 - Service: OneTouch 4.0 Monitor - Visioneer Inc. - C:\\Program Files\\Visioneer\\OneTouch 4.0\\OtService.exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\\Program Files\\PDF Complete\\pdfsvc.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\\Program Files\\PC Tools Security\\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\\Program Files\\PC Tools Security\\pctsSvc.exe
O23 - Service: ThreatFire - PC Tools - C:\\Program Files\\PC Tools Security\\TFEngine\\TFService.exe
O23 - Service: Intel(R) Active Management Technology User Notification Service (UNS) - Intel Corporation - C:\\Program Files\\Common Files\\Intel\\Privacy Icon\\UNS\\UNS.exe
 
--
End of file - 13733 bytes
 
======Scheduled tasks folder======
 
C:\\windows\\tasks\\GoogleUpdateTaskUserS-1-5-21-2083490932-3391324787-1819471116-2200Core1cb6b7f597ce1f5.job
 
======Registry dump======
 
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{2A0F3D1B-0909-4FF4-B272-609CCE6054E7}]
PC Tools Browser Guard BHO - C:\\Program Files\\PC Tools Security\\BDT\\PCTBrowserDefender.dll [2010-09-02 522192]
 
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{2F364306-AA45-47B5-9F9D-39A8B94E7EF7}]
FGCatchUrl - C:\\Program Files\\FlashGet\\jccatch.dll [2007-08-06 94308]
 
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\\Program Files\\AVG\\AVG10\\avgssie.dll [2010-10-20 2922848]
 
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{724d43a9-0d85-11d4-9908-00400523e39a}]
C:\\Program Files\\Siber Systems\\AI RoboForm\\roboform.dll [2009-12-08 5976904]
 
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\\Program Files\\Microsoft Office\\Office12\\GrooveShellExtensions.dll [2009-02-12 2217848]
 
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\\Program Files\\Java\\jre1.6.0_07\\bin\\ssv.dll [2008-06-10 509328]
 
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{bf00e119-21a3-4fd1-b178-3b8537e75c92}]
IeMonitorBho Class - C:\\Program Files\\Megaupload\\Mega Manager\\MegaIEMn.dll [2010-09-08 109568]
 
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
Credential Manager for HP ProtectTools - C:\\Program Files\\Hewlett-Packard\\IAM\\Bin\\ItIEAddIn.dll [2008-07-23 96528]
 
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{F156768E-81EF-470C-9057-481BA8380DBA}]
FlashGet GetFlash Class - C:\\Program Files\\FlashGet\\getflash.dll [2007-05-18 163840]
 
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D}]
IEPluginBHO Class - C:\\Users\\marta.CAPTIMAX\\AppData\\Roaming\\Gadu-Gadu 10\\_userdata\\ggbho.2.dll [2009-12-02 37376]
 
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Internet Explorer\\Toolbar]
{724d43a0-0d85-11d4-9908-00400523e39a} - &RoboForm - C:\\Program Files\\Siber Systems\\AI RoboForm\\roboform.dll [2009-12-08 5976904]
{472734EA-242A-422B-ADF8-83D1E48CC825} - PC Tools Browser Guard - C:\\Program Files\\PC Tools Security\\BDT\\PCTBrowserDefender.dll [2010-09-02 522192]
 
[HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\Run]
\"Windows Defender\"=C:\\Program Files\\Windows Defender\\MSASCui.exe [2008-01-21 1008184]
\"IgfxTray\"=C:\\Windows\\system32\\igfxtray.exe [2008-07-11 150040]
\"HotKeysCmds\"=C:\\Windows\\system32\\hkcmd.exe [2008-07-11 170520]
\"Persistence\"=C:\\Windows\\system32\\igfxpers.exe [2008-07-11 145944]
\"SoundMAXPnP\"=C:\\Program Files\\Analog Devices\\Core\\smax4pnp.exe [2008-04-04 1314816]
\"picon\"=C:\\Program Files\\Common Files\\Intel\\Privacy Icon\\PrivacyIconClient.exe [2008-07-19 773144]
\"PDF Complete\"=C:\\Program Files\\PDF Complete\\pdfsty.exe [2008-04-07 318488]
\"accrdsub\"=C:\\Program Files\\ActivIdentity\\ActivClient\\accrdsub.exe [2007-11-28 298536]
\"PTHOSTTR\"=C:\\Program Files\\Hewlett-Packard\\HP ProtectTools Security Manager\\PTHOSTTR.EXE [2008-08-20 329520]
\"CognizanceTS\"=C:\\PROGRA~1\\HEWLET~1\\IAM\\Bin\\ASTSVCC.dll [2008-07-23 24848]
\"SetRefresh\"=C:\\Program Files\\HP\\SetRefresh\\SetRefresh.exe [2003-11-20 525824]
\"MagicRotation\"=C:\\Program Files\\MagicRotation\\MagicPvt.exe [2009-09-15 1819648]
\"QuickTime Task\"=C:\\Program Files\\QuickTime\\QTTask.exe [2009-11-10 417792]
\"iTunesHelper\"=C:\\Program Files\\iTunes\\iTunesHelper.exe [2009-11-12 141600]
\"StartintY\"=C:\\Program Files\\intY\\cmgrwin32.exe [2003-05-14 503808]
\"GrooveMonitor\"=C:\\Program Files\\Microsoft Office\\Office12\\GrooveMonitor.exe [2008-10-25 31072]
\"TrayMin900\"=C:\\windows\\System32\\Drivers\\Tray900.exe [2005-09-12 266240]
\"PCTools FGuard\"=C:\\Program Files\\PC Tools Security\\BDT\\FGuard.exe [2010-09-02 108496]
\"AVG_TRAY\"=C:\\Program Files\\AVG\\AVG10\\avgtray.exe [2010-09-15 2745696]
 
[HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\RunOnce]
\"ST Recovery Launcher\"=C:\\windows\\SMINST\\launcher.exe [2008-02-22 44168]
 
[HKEY_CURRENT_USER\\Software\\Microsoft\\Windows\\CurrentVersion\\Run]
\"OfficeSyncProcess\"=C:\\Program Files\\Microsoft Office\\Office14\\MSOSYNC.EXE []
\"RoboForm\"=C:\\Program Files\\Siber Systems\\AI RoboForm\\RoboTaskBarIcon.exe [2009-12-08 160592]
\"Google Update\"=C:\\Users\\marta.CAPTIMAX\\AppData\\Local\\Google\\Update\\GoogleUpdate.exe [2010-02-10 135664]
 
[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\Flashget]
C:\\Program Files\\FlashGet\\FlashGet.exe [2007-09-25 2007088]
 
[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\McAfee Managed Services Tray]
C:\\Program Files\\McAfee\\Managed VirusScan\\Agent\\StartMyAgtTry.Exe []
 
[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\MVS Splash]
C:\\Program Files\\McAfee\\Managed VirusScan\\Agent\\Splash.exe []
 
[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\PhiBtn]
C:\\windows\\System32\\Drivers\\PhiBtn.exe [2005-09-12 155648]
 
[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\SiteAdvisor]
C:\\Program Files\\SiteAdvisor\\6173\\SiteAdv.exe []
 
C:\\Users\\marta.CAPTIMAX\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup
OneNote 2007 Screen Clipper and Launcher.lnk - C:\\Program Files\\Microsoft Office\\Office12\\ONENOTEM.EXE
 
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Windows]
\"AppInit_DLLs\"=\"APSHook.dll\"
 
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Winlogon\\Notify\\DeviceNP]
C:\\windows\\system32\\DeviceNP.dll [2008-08-07 69632]
 
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Winlogon\\Notify\\igfxcui]
C:\\windows\\system32\\igfxdev.dll [2008-07-07 208896]
 
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\ShellExecuteHooks]
\"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}\"=C:\\Program Files\\Microsoft Office\\Office12\\GrooveShellExtensions.dll [2009-02-12 2217848]
 
[HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\Lsa]
\"notification packages\"=scecli
ASWLNPkg
 
[HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System]
\"dontdisplaylastusername\"=0
\"legalnoticecaption\"=
\"legalnoticetext\"=
\"shutdownwithoutlogon\"=1
\"undockwithoutlogon\"=1
\"EnableUIADesktopToggle\"=0
 
[HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\explorer]
\"NoWelcomeScreen\"=1
 
[HKEY_LOCAL_MACHINE\\system\\currentcontrolset\\services\\sharedaccess\\parameters\\firewallpolicy\\standardprofile\\authorizedapplications\\list]
\"C:\\Program Files\\FlashGet Network\\FlashGet 3\\FlashGet3.exe\"=\"C:\\Program Files\\FlashGet Network\\FlashGet 3\\FlashGet3.exe:*:Enabled:Flashget3\"
\"C:\\Nexon\\NEXON_EU_Downloader\\NEXON_EU_Downloader_Engine.exe\"=\"C:\\Nexon\\NEXON_EU_Downloader\\NEXON_EU_Downloader_Engine.exe:*:Enabled:NEXON_EU_Downloader_Engine.exe\"
\"C:\\Nexon\\Combat Arms EU\\CombatArms.exe\"=\"C:\\Nexon\\Combat Arms EU\\CombatArms.exe:*Enabled:CombatArms.exe\"
\"C:\\Nexon\\Combat Arms EU\\Engine.exe\"=\"C:\\Nexon\\Combat Arms EU\\Engine.exe:*Enabled:Engine.exe\"
 
[HKEY_LOCAL_MACHINE\\system\\currentcontrolset\\services\\sharedaccess\\parameters\\firewallpolicy\\domainprofile\\authorizedapplications\\list]
 
======List of files/folders created in the last 1 months======
 
2010-11-04 14:28:05 ----D---- C:\\rsit
2010-11-04 14:28:05 ----D---- C:\\Program Files\\trend micro
2010-11-03 11:07:49 ----D---- C:\\Users\\marta.CAPTIMAX\\AppData\\Roaming\\Malwarebytes
2010-11-03 11:07:20 ----A---- C:\\windows\\system32\\drivers\\mbamswissarmy.sys
2010-11-03 11:07:18 ----D---- C:\\ProgramData\\Malwarebytes
2010-11-03 11:07:18 ----D---- C:\\Program Files\\Malwarebytes\' Anti-Malware
2010-11-03 11:07:18 ----A---- C:\\windows\\system32\\drivers\\mbam.sys
2010-10-29 14:27:10 ----D---- C:\\Users\\marta.CAPTIMAX\\AppData\\Roaming\\AVG10
2010-10-29 14:23:56 ----D---- C:\\windows\\system32\\drivers\\AVG
2010-10-29 12:55:20 ----HD---- C:\\ProgramData\\Common Files
2010-10-29 12:50:58 ----D---- C:\\Program Files\\AVG
2010-10-28 12:10:28 ----D---- C:\\ProgramData\\AVG10
2010-10-28 11:10:52 ----D---- C:\\ProgramData\\MFAData
2010-10-28 11:07:55 ----D---- C:\\Program Files\\CCleaner
2010-10-28 02:01:08 ----D---- C:\\windows\\CheckSur
2010-10-27 15:59:51 ----D---- C:\\_OTL
2010-10-27 14:40:48 ----D---- C:\\windows\\system32\\appmgmt
2010-10-27 10:50:18 ----A---- C:\\windows\\system32\\GameUXLegacyGDFs.dll
2010-10-27 10:50:16 ----A---- C:\\windows\\system32\\Apphlpdm.dll
2010-10-27 09:42:08 ----ASH---- C:\\hiberfil.sys
2010-10-25 11:59:15 ----S---- C:\\windows\\system32\\drivers\\TfSysMon.sys
2010-10-25 11:59:15 ----S---- C:\\windows\\system32\\drivers\\TfNetMon.sys
2010-10-25 11:59:15 ----S---- C:\\windows\\system32\\drivers\\TfFsMon.sys
2010-10-25 11:59:03 ----A---- C:\\windows\\SGDetectionTool.dll
2010-10-25 11:59:03 ----A---- C:\\windows\\PCTBDRes.dll
2010-10-25 11:59:03 ----A---- C:\\windows\\PCTBDCore.dll
2010-10-25 11:59:03 ----A---- C:\\windows\\BDTSupport.dll
2010-10-25 11:49:04 ----A---- C:\\windows\\system32\\drivers\\pctwfpfilter.sys
2010-10-25 11:49:04 ----A---- C:\\windows\\system32\\drivers\\pctgntdi.sys
2010-10-25 11:49:04 ----A---- C:\\windows\\system32\\drivers\\pctEFA.sys
2010-10-25 11:49:04 ----A---- C:\\windows\\system32\\drivers\\pctDS.sys
2010-10-25 11:48:55 ----A---- C:\\windows\\system32\\drivers\\PCTCore.sys
2010-10-25 11:48:55 ----A---- C:\\windows\\system32\\drivers\\PCTAppEvent.sys
2010-10-25 11:48:50 ----A---- C:\\windows\\system32\\drivers\\pctNdis-PacketFilter.sys
2010-10-25 11:48:50 ----A---- C:\\windows\\system32\\drivers\\pctNdis-DNS.sys
2010-10-25 11:48:49 ----A---- C:\\windows\\system32\\drivers\\pctplsg.sys
2010-10-25 11:48:49 ----A---- C:\\windows\\system32\\drivers\\pctplfw.sys
2010-10-25 11:29:04 ----A---- C:\\windows\\system32\\drivers\\mod7700.sys
2010-10-25 11:29:04 ----A---- C:\\windows\\system32\\drivers\\ewusbnet.sys
2010-10-25 11:29:04 ----A---- C:\\windows\\system32\\drivers\\ewusbmdm.sys
2010-10-25 11:29:04 ----A---- C:\\windows\\system32\\drivers\\ewdcsc.sys
2010-10-25 11:26:26 ----A---- C:\\windows\\Huawei ModemsUninstall.exe
2010-10-25 02:01:14 ----D---- C:\\Program Files\\Microsoft CAPICOM 2.1.0.2
2010-10-24 15:25:23 ----D---- C:\\Users\\marta.CAPTIMAX\\AppData\\Roaming\\PC Tools
2010-10-24 15:25:23 ----D---- C:\\Program Files\\PC Tools Security
2010-10-24 15:25:23 ----D---- C:\\Program Files\\Common Files\\PC Tools
2010-10-24 15:25:23 ----AD---- C:\\ProgramData\\TEMP
2010-10-24 15:14:40 ----D---- C:\\Users\\marta.CAPTIMAX\\AppData\\Roaming\\Birdstep Technology
2010-10-24 15:14:06 ----D---- C:\\ProgramData\\Birdstep Technology
2010-10-24 15:09:59 ----D---- C:\\Program Files\\Huawei Modems
2010-10-24 15:09:39 ----D---- C:\\Program Files\\3
2010-10-24 14:32:32 ----D---- C:\\ProgramData\\PC Tools
2010-10-14 09:38:41 ----D---- C:\\downloads
2010-10-14 02:02:31 ----A---- C:\\windows\\system32\\msshsq.dll
2010-10-13 21:51:23 ----A---- C:\\windows\\system32\\wmp.dll
2010-10-13 21:51:19 ----A---- C:\\windows\\system32\\wmploc.DLL
2010-10-13 21:51:09 ----A---- C:\\windows\\system32\\ole32.dll
2010-10-13 21:51:08 ----A---- C:\\windows\\system32\\schannel.dll
2010-10-13 21:51:06 ----A---- C:\\windows\\system32\\srvsvc.dll
2010-10-13 21:51:06 ----A---- C:\\windows\\system32\\netevent.dll
2010-10-13 21:51:06 ----A---- C:\\windows\\system32\\drivers\\srvnet.sys
2010-10-13 21:51:06 ----A---- C:\\windows\\system32\\drivers\\srv2.sys
2010-10-13 21:51:06 ----A---- C:\\windows\\system32\\drivers\\srv.sys
2010-10-13 21:51:00 ----A---- C:\\windows\\system32\\t2embed.dll
2010-10-13 21:50:59 ----A---- C:\\windows\\system32\\mfc40u.dll
2010-10-13 21:50:59 ----A---- C:\\windows\\system32\\mfc40.dll
2010-10-13 21:50:58 ----A---- C:\\windows\\system32\\win32k.sys
2010-10-13 21:50:57 ----A---- C:\\windows\\system32\\wmpmde.dll
2010-10-13 21:50:55 ----A---- C:\\windows\\system32\\comctl32.dll
2010-10-13 21:50:51 ----A---- C:\\windows\\system32\\ieframe.dll
2010-10-13 21:50:50 ----A---- C:\\windows\\system32\\mshtml.dll
2010-10-13 21:50:50 ----A---- C:\\windows\\system32\\msfeeds.dll
2010-10-13 21:50:49 ----A---- C:\\windows\\system32\\urlmon.dll
2010-10-13 21:50:49 ----A---- C:\\windows\\system32\\mstime.dll
2010-10-13 21:50:49 ----A---- C:\\windows\\system32\\mshtmled.dll
2010-10-13 21:50:49 ----A---- C:\\windows\\system32\\ieapfltr.dll
2010-10-13 21:50:49 ----A---- C:\\windows\\system32\\ieaksie.dll
2010-10-13 21:50:48 ----A---- C:\\windows\\system32\\wininet.dll
2010-10-13 21:50:48 ----A---- C:\\windows\\system32\\occache.dll
2010-10-13 21:50:48 ----A---- C:\\windows\\system32\\jsproxy.dll
2010-10-13 21:50:48 ----A---- C:\\windows\\system32\\iertutil.dll
2010-10-13 21:50:48 ----A---- C:\\windows\\system32\\iepeers.dll
2010-10-13 21:50:48 ----A---- C:\\windows\\system32\\ieencode.dll
2010-10-13 21:50:48 ----A---- C:\\windows\\system32\\iedkcs32.dll
2010-10-08 14:17:12 ----D---- C:\\Program Files\\MediaFeed
 
======List of files/folders modified in the last 1 months======
 
2010-11-04 14:28:19 ----D---- C:\\windows\\Temp
2010-11-04 14:28:05 ----RD---- C:\\Program Files
2010-11-04 14:27:46 ----D---- C:\\windows\\Prefetch
2010-11-04 13:23:09 ----D---- C:\\windows\\System32
2010-11-04 13:23:09 ----D---- C:\\windows\\inf
2010-11-04 13:23:09 ----A---- C:\\windows\\system32\\PerfStringBackup.INI
2010-11-04 13:16:37 ----D---- C:\\windows\\SMINST
2010-11-04 13:15:56 ----A---- C:\\windows\\system32\\log.txt
2010-11-04 13:15:54 ----D---- C:\\ProgramData\\hpqLog
2010-11-04 13:15:49 ----D---- C:\\Windows
2010-11-03 15:21:45 ----SHD---- C:\\System Volume Information
2010-11-03 11:07:25 ----D---- C:\\windows\\system32\\drivers
2010-11-03 11:07:18 ----HD---- C:\\ProgramData
2010-11-03 10:54:32 ----D---- C:\\Users\\marta.CAPTIMAX\\AppData\\Roaming\\Media Player Classic
2010-10-29 14:27:10 ----SHD---- C:\\windows\\Installer
2010-10-29 12:39:38 ----D---- C:\\windows\\Tasks
2010-10-29 12:39:34 ----D---- C:\\Program Files\\Common Files
2010-10-29 12:37:21 ----D---- C:\\windows\\system32\\Tasks
2010-10-29 09:56:12 ----D---- C:\\Program Files\\Mozilla Firefox
2010-10-28 13:25:51 ----D---- C:\\windows\\system32\\catroot2
2010-10-28 12:09:01 ----D---- C:\\windows\\winsxs
2010-10-28 11:08:15 ----D---- C:\\windows\\Minidump
2010-10-28 03:06:27 ----D---- C:\\windows\\AppPatch
2010-10-27 16:11:09 ----D---- C:\\Program Files\\Hewlett-Packard
2010-10-27 14:45:09 ----SD---- C:\\Users\\marta.CAPTIMAX\\AppData\\Roaming\\Microsoft
2010-10-27 14:40:03 ----HD---- C:\\Program Files\\InstallShield Installation Information
2010-10-27 14:39:12 ----D---- C:\\Users\\marta.CAPTIMAX\\AppData\\Roaming\\HPQLOG
2010-10-27 10:50:52 ----D---- C:\\windows\\system32\\catroot
2010-10-27 10:42:45 ----D---- C:\\Users\\marta.CAPTIMAX\\AppData\\Roaming\\Skype
2010-10-27 10:38:01 ----D---- C:\\windows\\system32\\Msdtc
2010-10-27 10:37:57 ----D---- C:\\windows\\system32\\wbem
2010-10-27 10:37:01 ----D---- C:\\windows\\system32\\config
2010-10-27 10:36:32 ----D---- C:\\windows\\system32\\spool
2010-10-27 10:36:32 ----D---- C:\\windows\\system32\\drivers\\etc
2010-10-27 10:36:32 ----D---- C:\\windows\\system32\\CodeIntegrity
2010-10-27 10:36:22 ----RD---- C:\\Program Files\\Skype
2010-10-27 10:36:20 ----D---- C:\\Program Files\\Megaupload
2010-10-27 10:36:18 ----D---- C:\\Program Files\\FlashGet
2010-10-27 10:36:16 ----D---- C:\\windows\\registration
2010-10-27 08:51:58 ----D---- C:\\windows\\Debug
2010-10-27 07:58:01 ----D---- C:\\Users\\marta.CAPTIMAX\\AppData\\Roaming\\skypePM
2010-10-25 12:11:41 ----D---- C:\\Nexon
2010-10-25 10:26:27 ----D---- C:\\windows\\system32\\drivers\\UMDF
2010-10-25 10:24:57 ----D---- C:\\Download
2010-10-25 10:16:03 ----D---- C:\\windows\\ModemLogs
2010-10-23 17:34:49 ----SD---- C:\\ProgramData\\Microsoft
2010-10-19 10:41:44 ----N---- C:\\windows\\system32\\MpSigStub.exe
2010-10-14 02:40:35 ----D---- C:\\windows\\rescache
2010-10-14 02:22:56 ----D---- C:\\windows\\system32\\en-US
2010-10-14 02:22:56 ----D---- C:\\Program Files\\Windows Media Player
2010-10-14 02:22:55 ----D---- C:\\Program Files\\Internet Explorer
2010-10-14 02:05:11 ----D---- C:\\ProgramData\\Microsoft Help
2010-10-13 12:32:21 ----D---- C:\\Program Files\\Microsoft Silverlight
2010-10-07 18:05:31 ----D---- C:\\Users\\marta.CAPTIMAX\\AppData\\Roaming\\U3
2010-10-06 13:03:25 ----D---- C:\\scaner
 
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
 
R0 AVGIDSEH;AVGIDSEH; C:\\windows\\system32\\DRIVERS\\AVGIDSEH.Sys [2010-09-13 25680]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\\windows\\system32\\DRIVERS\\avgrkx86.sys [2010-09-07 26064]
R0 iaStor;Intel AHCI Controller; C:\\windows\\system32\\drivers\\iastor.sys [2008-09-12 327192]
R0 PCTCore;PCTools KDS; C:\\windows\\system32\\drivers\\PCTCore.sys [2010-08-18 237632]
R0 pctDS;PC Tools Data Store; C:\\windows\\system32\\drivers\\pctDS.sys [2010-07-16 338880]
R0 pctEFA;PC Tools Extended File Attributes; C:\\windows\\system32\\drivers\\pctEFA.sys [2010-07-16 656320]
R0 SafeBoot;SafeBoot; C:\\windows\\system32\\drivers\\SafeBoot.sys [2008-08-08 109184]
R0 SbAlg;SbAlg; C:\\windows\\system32\\drivers\\SbAlg.sys [2008-08-08 51376]
R0 SbFsLock;SbFsLock; C:\\windows\\system32\\drivers\\SbFsLock.sys [2008-08-08 12928]
R0 TfFsMon;TfFsMon; C:\\windows\\system32\\drivers\\TfFsMon.sys [2010-08-26 51984]
R0 TfSysMon;TfSysMon; C:\\windows\\system32\\drivers\\TfSysMon.sys [2010-08-26 68880]
R1 Avgldx86;AVG AVI Loader Driver; C:\\windows\\system32\\DRIVERS\\avgldx86.sys [2010-09-07 249424]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\\windows\\system32\\DRIVERS\\avgmfx86.sys [2010-09-07 34384]
R1 Avgtdix;AVG TDI Driver; C:\\windows\\system32\\DRIVERS\\avgtdix.sys [2010-09-07 298448]
R1 FSLX;FSLX; \\??\\C:\\Windows\\system32\\drivers\\fslx.sys [2008-07-11 191872]
R1 magicpvt;magicpvt; C:\\windows\\system32\\drivers\\magicpvt.sys [2006-12-04 26240]
R1 mfetdik;McAfee Inc. mfetdik; C:\\windows\\system32\\drivers\\mfetdik.sys [2008-04-29 55112]
R1 pctgntdi;pctgntdi; \\??\\C:\\Windows\\System32\\drivers\\pctgntdi.sys [2010-09-01 247824]
R1 RsvLock;RsvLock; C:\\windows\\system32\\drivers\\RsvLock.sys [2008-08-08 12496]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\\windows\\system32\\drivers\\ADIHdAud.sys [2008-05-13 382976]
R3 AVGIDSDriver;AVGIDSDriver; C:\\windows\\system32\\DRIVERS\\AVGIDSDriver.Sys [2010-08-19 123472]
R3 AVGIDSFilter;AVGIDSFilter; C:\\windows\\system32\\DRIVERS\\AVGIDSFilter.Sys [2010-08-19 30288]
R3 AVGIDSShim;AVGIDSShim; C:\\windows\\system32\\DRIVERS\\AVGIDSShim.Sys [2010-08-19 27216]
R3 e1kexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver K; C:\\windows\\system32\\DRIVERS\\e1k6032.sys [2008-07-25 165984]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\\windows\\system32\\DRIVERS\\GEARAspiWDM.sys [2009-05-18 26600]
R3 HECI;Intel(R) Management Engine Interface; C:\\windows\\system32\\DRIVERS\\HECI.sys [2008-07-19 40832]
R3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\\windows\\system32\\DRIVERS\\ewusbmdm.sys [2009-01-09 101760]
R3 igfx;igfx; C:\\windows\\system32\\DRIVERS\\igdkmd32.sys [2008-07-07 2378752]
R3 NuidFltr;NUID filter driver; C:\\windows\\system32\\DRIVERS\\NuidFltr.sys [2009-05-09 14736]
R3 TPM;TPM; C:\\windows\\system32\\drivers\\tpm.sys [2008-01-21 45624]
R3 WUDFRd;WUDFRd; C:\\windows\\system32\\DRIVERS\\WUDFRd.sys [2008-01-21 83328]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\\windows\\system32\\DRIVERS\\b57nd60x.sys [2008-01-21 179712]
S3 camdrv41;Philips SPC 900NC PC Camera; C:\\windows\\system32\\DRIVERS\\camdrv41.sys [2007-04-23 1347584]
S3 DAMDrv;DAMDrv; C:\\windows\\system32\\DRIVERS\\DAMDrv.sys [2008-08-06 32256]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\\windows\\system32\\drivers\\drmkaud.sys [2008-01-21 5632]
S3 EagleNT;EagleNT; \\??\\C:\\windows\\system32\\drivers\\EagleNT.sys []
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\\windows\\system32\\drivers\\HdAudio.sys [2006-11-02 235520]
S3 MBAMSwissArmy;MBAMSwissArmy; \\??\\C:\\windows\\system32\\drivers\\mbamswissarmy.sys [2010-04-29 38224]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\\windows\\system32\\drivers\\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\\windows\\system32\\drivers\\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\\windows\\system32\\drivers\\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\\windows\\system32\\drivers\\MSTEE.sys [2008-01-21 6016]
S3 pctplsg;pctplsg; \\??\\C:\\Windows\\System32\\drivers\\pctplsg.sys [2010-08-27 70536]
S3 TfNetMon;TfNetMon; \\??\\C:\\windows\\system32\\drivers\\TfNetMon.sys [2010-08-26 33552]
S3 USBAAPL;Apple Mobile USB Driver; C:\\windows\\System32\\Drivers\\usbaapl.sys [2009-08-28 40448]
S3 usbaudio;USB Audio Driver (WDM); C:\\windows\\system32\\drivers\\usbaudio.sys [2008-01-21 73088]
S3 usbscan;USB Scanner Driver; C:\\windows\\system32\\DRIVERS\\usbscan.sys [2008-01-21 35328]
S3 WimFltr;WimFltr; C:\\windows\\system32\\DRIVERS\\wimfltr.sys [2006-11-02 128104]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\\windows\\system32\\drivers\\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\\windows\\system32\\drivers\\megasr.sys [2008-01-21 386616]
 
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
 
R2 accoca;ActivClient Middleware Service; C:\\Program Files\\ActivIdentity\\ActivClient\\accoca.exe [2007-11-28 185896]
R2 AEADIFilters;Andrea ADI Filters Service; C:\\windows\\system32\\AEADISRV.EXE [2008-05-20 86016]
R2 Apple Mobile Device;Apple Mobile Device; C:\\Program Files\\Common Files\\Apple\\Mobile Device Support\\bin\\AppleMobileDeviceService.exe [2009-08-28 144672]
R2 ASBroker;Logon Session Broker; C:\\windows\\System32\\svchost.exe [2008-01-21 21504]
R2 ASChannel;Local Communication Channel; C:\\windows\\System32\\svchost.exe [2008-01-21 21504]
R2 AVGIDSAgent;AVGIDSAgent; C:\\Program Files\\AVG\\AVG10\\Identity Protection\\Agent\\Bin\\AVGIDSAgent.exe [2010-10-11 6104656]
R2 avgwd;AVG WatchDog; C:\\Program Files\\AVG\\AVG10\\avgwdsvc.exe [2010-09-10 265400]
R2 Bonjour Service;Bonjour-tjänst; C:\\Program Files\\Bonjour\\mDNSResponder.exe [2008-12-12 238888]
R2 Browser Defender Update Service;Browser Defender Update Service; C:\\Program Files\\PC Tools Security\\BDT\\BDTUpdateService.exe [2010-09-02 235472]
R2 HP ProtectTools Service;HP ProtectTools Service; C:\\Program Files\\Hewlett-Packard\\HP ProtectTools Security Manager\\PTChangeFilterService.exe [2008-08-20 32768]
R2 HpFkCryptService;Drive Encryption Service; C:\\Program Files\\Hewlett-Packard\\Drive Encryption\\HpFkCrypt.exe [2008-08-08 256512]
R2 IviRegMgr;IviRegMgr; C:\\Program Files\\Common Files\\InterVideo\\RegMgr\\iviRegMgr.exe [2007-01-05 112152]
R2 LMS;Intel(R) Active Management Technology Local Management Service; C:\\Program Files\\Intel\\AMT\\LMS.exe [2008-07-19 174616]
R2 OneTouch 4.0 Monitor;OneTouch 4.0 Monitor; C:\\Program Files\\Visioneer\\OneTouch 4.0\\OtService.exe [2010-06-17 219136]
R2 pdfcDispatcher;PDF Document Manager; C:\\Program Files\\PDF Complete\\pdfsvc.exe [2008-04-07 576024]
R2 UNS;Intel(R) Active Management Technology User Notification Service; C:\\Program Files\\Common Files\\Intel\\Privacy Icon\\UNS\\UNS.exe [2008-07-19 2054680]
R3 hpqwmiex;hpqwmiex; C:\\Program Files\\Hewlett-Packard\\Shared\\hpqwmiex.exe [2008-04-16 165192]
R3 iPod Service;iPod Service; C:\\Program Files\\iPod\\bin\\iPodService.exe [2009-11-12 545568]
S2 0037281232571833mcinstcleanup;McAfee Application Installer Cleanup (0037281232571833); C:\\Users\\ADMINI~1\\AppData\\Local\\Temp\\003728~1.EXE C:\\PROGRA~1\\COMMON~1\\McAfee\\INSTAL~1\\cleanup.ini -cleanup -nolog -service []
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\\windows\\Microsoft.NET\\Framework\\v4.0.30319\\mscorsvw.exe [2010-03-18 130384]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; C:\\Windows\\system32\\flcdlock.exe [2008-08-07 349432]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\\Program Files\\Microsoft Office\\Office12\\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\\Program Files\\Common Files\\Microsoft Shared\\OFFICE12\\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\\Program Files\\Common Files\\Microsoft Shared\\Source Engine\\OSE.EXE [2006-10-26 145184]
S3 sdAuxService;PC Tools Auxiliary Service; C:\\Program Files\\PC Tools Security\\pctsAuxs.exe [2010-03-15 366840]
S3 sdCoreService;PC Tools Security Service; C:\\Program Files\\PC Tools Security\\pctsSvc.exe [2010-08-30 1145816]
S3 ThreatFire;ThreatFire; C:\\Program Files\\PC Tools Security\\TFEngine\\TFService.exe [2010-08-26 70928]
S3 WPFFontCache_v0400;@C:\\windows\\Microsoft.NET\\Framework\\v4.0.30319\\WPF\\WPFFontCache_v0400.exe,-100; C:\\windows\\Microsoft.NET\\Framework\\v4.0.30319\\WPF\\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 EngineServer;EngineServer; C:\\PROGRA~1\\McAfee\\MANAGE~1\\VScan\\ENGINE~1.EXE []
S4 myAgtSvc;McAfee Virus and Spyware Protection Service; C:\\Program Files\\McAfee\\Managed VirusScan\\Agent\\myAgtSvc.Exe /ServiceStart []
 
-----------------EOF-----------------
 
Wygenerowano w 0.275s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!