OTL logfile created on: 2014-10-05 17:44:25 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\bbbb\Desktop\Downloads Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 0,37 Gb Available Physical Memory | 18,41% Memory free 4,00 Gb Paging File | 1,92 Gb Available in Paging File | 48,05% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 123,86 Gb Total Space | 15,96 Gb Free Space | 12,88% Space Free | Partition Type: NTFS Drive D: | 341,80 Gb Total Space | 251,78 Gb Free Space | 73,66% Space Free | Partition Type: NTFS Computer Name: IBOX-DESKTOP | User Name: bbbb | NOT logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: On | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2014-10-05 17:04:38 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\bbbb\Desktop\Downloads\OTL.exe PRC - [2014-08-21 11:53:56 | 000,730,928 | ---- | M] () -- C:\Windows\System32\mjcm\dnkt.exe PRC - [2014-06-13 09:52:08 | 003,980,280 | ---- | M] () -- C:\Program Files\fst_pl_131\fst_pl_131.exe PRC - [2014-05-14 01:40:56 | 000,860,488 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe PRC - [2014-04-17 21:07:50 | 004,672,920 | ---- | M] (Akamai Technologies, Inc.) -- C:\Users\bbbb\AppData\Local\Akamai\netsession_win.exe PRC - [2014-04-14 19:46:05 | 002,544,664 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe PRC - [2013-12-10 21:44:38 | 001,927,480 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe PRC - [2013-07-16 18:01:20 | 000,196,784 | ---- | M] (OOO Industry) -- C:\Program Files\PrivitizeVPN\PrivitizeVPN.exe PRC - [2012-10-24 15:19:20 | 005,282,200 | ---- | M] (Joyent, Inc) -- C:\Program Files\SMART Technologies\Education Software\sbsdk-server\SBWDKService.exe PRC - [2012-10-24 15:16:52 | 002,219,416 | ---- | M] (SMART Technologies) -- C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe PRC - [2012-03-09 10:14:50 | 010,132,336 | ---- | M] (SMART Technologies ULC) -- C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe PRC - [2011-10-31 09:49:03 | 001,208,832 | -H-- | M] (Cronosoft) -- C:\Windows\update.tray-7-0\svchost.exe PRC - [2011-10-31 09:49:03 | 001,208,832 | -H-- | M] (Cronosoft) -- C:\Windows\update.tray-14-0\svchost.exe PRC - [2011-10-31 09:49:03 | 001,204,736 | ---- | M] (Cronosoft) -- C:\Windows\services32.exe PRC - [2011-06-24 06:22:20 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe PRC - [2011-04-29 20:12:50 | 000,184,320 | ---- | M] (Mp3Tube) -- C:\Program Files\Mp3Tube Toolbar\Mp3TubeVideoToMp3.exe PRC - [2010-11-20 14:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe PRC - [2010-11-20 14:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2014-09-21 13:29:46 | 000,127,384 | ---- | M] () -- C:\Program Files\TheGoPhoto.it V10\b2d3a3ac-4777-4ff4-ba77-a7aea21e9299.dll MOD - [2014-09-21 13:26:28 | 000,127,384 | ---- | M] () -- C:\Program Files\TheTorntv V10\4847e960-0dbf-4799-80b9-b3c754acb8c5.dll MOD - [2014-09-18 15:51:53 | 007,163,624 | ---- | M] () -- C:\Program Files\Mail.Ru\Guard\GuardMailRu.exe MOD - [2014-08-21 11:53:56 | 001,774,896 | ---- | M] () -- C:\Windows\System32\mjcm\5131\nsib.dll MOD - [2014-08-21 11:53:56 | 000,730,928 | ---- | M] () -- C:\Windows\System32\mjcm\dnkt.exe MOD - [2014-07-08 08:18:04 | 014,663,856 | ---- | M] () -- C:\Users\bbbb\AppData\Local\Google\Chrome\User Data\PepperFlash\14.0.0.145\pepflashplayer.dll MOD - [2014-07-03 17:25:12 | 000,489,680 | ---- | M] () -- C:\Program Files\Browser Tab Search by Ask\SafetyNut\safetycrt.dll MOD - [2014-07-03 17:25:04 | 000,019,664 | ---- | M] () -- C:\Program Files\Browser Tab Search by Ask\SafetyNut\safetyldr.dll MOD - [2014-06-15 17:28:22 | 000,122,216 | ---- | M] () -- C:\Program Files\Plus-HD-9.4\Plus-HD-9.4-nova.dll MOD - [2014-06-13 09:52:08 | 003,980,280 | ---- | M] () -- C:\Program Files\fst_pl_131\fst_pl_131.exe MOD - [2014-05-14 01:40:54 | 000,414,536 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\35.0.1916.114\ppgooglenaclpluginchrome.dll MOD - [2014-05-14 01:40:50 | 004,217,672 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\35.0.1916.114\pdf.dll MOD - [2014-05-14 01:40:45 | 000,716,616 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\35.0.1916.114\libglesv2.dll MOD - [2014-05-14 01:40:44 | 000,126,280 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\35.0.1916.114\libegl.dll MOD - [2014-05-14 01:40:43 | 001,732,424 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\35.0.1916.114\ffmpegsumo.dll MOD - [2014-04-14 19:46:05 | 002,544,664 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe MOD - [2014-04-14 19:46:05 | 000,519,704 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.0.5\log4cplusU.dll MOD - [2013-12-10 16:17:47 | 000,054,184 | ---- | M] () -- C:\Windows\winsxs\x86_smarttech.boost_thread.vc100.1.44_9ca15c999435ee05_1.0.1.0_none_472b4edec4bf8550\boost_thread-vc100-mt-1_44.dll MOD - [2013-12-10 16:16:20 | 000,051,120 | ---- | M] () -- C:\Windows\winsxs\x86_smarttech.boost_date_time.vc100.1.44_9ca15c999435ee05_1.0.1.0_none_50d6b3902c95d15a\boost_date_time-vc100-mt-1_44.dll MOD - [2013-02-22 10:36:53 | 000,053,792 | ---- | M] () -- C:\Program Files\Mail.Ru\Guard\GuardMailRu.dll MOD - [2012-10-17 09:40:30 | 000,030,208 | ---- | M] () -- C:\Program Files\SMART Technologies\Education Software\sbsdk-server\node_modules\HWR.node MOD - [2012-10-17 09:40:24 | 000,454,656 | ---- | M] () -- C:\Program Files\SMART Technologies\Education Software\sbsdk-server\node_modules\SBSDK.node MOD - [2011-03-15 07:13:46 | 004,254,560 | ---- | M] () -- C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF [color=#E56717]========== Services (SafeList) ==========[/color] SRV - File not found [Auto | Unknown] -- C:\Windows\system32\config\systemprofile\AppData\Local\Windows Internet Name Service\wins.exe -- (Windows Internet Name Service) SRV - File not found [Auto | Unknown] -- C:\Users\Nowa Era\AppData\Roaming\TornTV.com\TornTVSvc.exe -- (trntv) SRV - File not found [Auto | Unknown] -- C:\Users\Oko.iBOX-Desktop.000\AppData\Local\Torch\Update\TorchCrashHandler.exe -- (TorchCrashHandler) SRV - File not found [Auto | Unknown] -- C:\Program Files\Norton AntiVirus\Engine\19.1.1.3\ccSvcHst.exe /s NAV /m C:\Program Files\Norton AntiVirus\Engine\19.1.1.3\diMaster.dll /prefetch:1 -- (NAV) SRV - [2014-09-23 23:49:14 | 000,113,344 | ---- | M] (Mobogenie.com) [Auto | Unknown] -- C:\Program Files\Mobogenie3\MobogenieService.exe -- (MobogenieService) SRV - [2014-09-18 15:51:53 | 007,163,624 | ---- | M] () [Auto | Unknown] -- C:\Program Files\Mail.Ru\Guard\GuardMailRu.exe -- (Guard.Mail.ru) SRV - [2014-09-14 11:21:24 | 000,114,288 | ---- | M] (Mozilla Foundation) [On_Demand | Unknown] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2014-08-28 13:48:02 | 000,833,728 | ---- | M] (Valve Corporation) [On_Demand | Unknown] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2014-08-21 11:53:54 | 002,375,984 | ---- | M] () [Auto | Unknown] -- C:\Windows\System32\dmwu.exe -- (IBUpdaterService) SRV - [2014-07-22 20:40:37 | 000,105,664 | ---- | M] () [Auto | Unknown] -- C:\Program Files\Mobogenie\MgAssist.exe -- (MgAssistService) SRV - [2014-07-03 17:25:01 | 003,573,456 | ---- | M] (SafetyNut Inc) [Auto | Unknown] -- C:\Program Files\Browser Tab Search by Ask\SafetyNut\SafetyNutManager.exe -- (SafetyNutManager) SRV - [2014-06-15 17:27:33 | 000,068,608 | ---- | M] (globalUpdate) [On_Demand | Unknown] -- C:\Program Files\globalUpdate\Update\GoogleUpdate.exe -- (globalUpdatem) SRV - [2014-06-15 17:27:33 | 000,068,608 | ---- | M] (globalUpdate) [Auto | Unknown] -- C:\Program Files\globalUpdate\Update\GoogleUpdate.exe -- (globalUpdate) SRV - [2014-06-12 08:53:30 | 000,761,968 | ---- | M] (Cherished Technololgy LIMITED) [Auto | Unknown] -- C:\ProgramData\IePluginServices\PluginService.exe -- (IePluginServices) SRV - [2014-06-12 01:42:22 | 000,591,776 | ---- | M] (Fuyu LIMITED) [Auto | Unknown] -- C:\ProgramData\WindowsProtectManger\wprotectmanager.exe -- (WindowsProtectManger) SRV - [2014-06-11 07:50:12 | 000,540,304 | ---- | M] () [Auto | Unknown] -- C:\ProgramData\WPM\wprotectmanager.exe -- (Wpm) SRV - [2014-06-09 16:55:22 | 000,077,705 | ---- | M] () [Auto | Unknown] -- C:\Program Files\PCDApp\StartHelp.exe -- (ProtectMonitor) SRV - [2014-04-10 10:56:42 | 000,350,528 | ---- | M] (ClientConnect Ltd.) [Auto | Unknown] -- C:\Program Files\Tbccint\ToolbarService\ToolbarService.exe -- (TBSrv) SRV - [2014-04-09 19:24:34 | 004,764,568 | ---- | M] () [Auto | Unknown] -- c:\program files\common files\akamai/netsession_win_76a2e34.dll -- (Akamai) SRV - [2014-02-28 16:23:54 | 000,009,216 | ---- | M] (Hi-Rez Studios) [Auto | Unknown] -- D:\gyh\HiPatchService.exe -- (HiPatchService) SRV - [2014-02-26 20:31:51 | 000,425,104 | ---- | M] (Taiwan Shui Mu Chih Ching Technology Limited.) [Auto | Unknown] -- C:\Program Files\WinZipper\winzipersvc.exe -- (winzipersvc) SRV - [2013-12-21 08:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Unknown] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2013-12-10 21:44:36 | 001,729,336 | ---- | M] (TuneUp Software) [Auto | Unknown] -- C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc) SRV - [2013-12-10 21:44:34 | 000,030,520 | ---- | M] (TuneUp Software) [Auto | Unknown] -- C:\Windows\System32\uxtuneup.dll -- (UxTuneUp) SRV - [2013-12-10 16:14:13 | 001,044,816 | ---- | M] (Flexera Software, Inc.) [On_Demand | Unknown] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2013-10-30 05:16:32 | 000,233,472 | ---- | M] (Teruten) [Auto | Unknown] -- C:\Windows\System32\FsUsbExService.Exe -- (FsUsbExService) SRV - [2013-09-30 17:37:00 | 000,424,016 | ---- | M] (337 Technology Limited.) [Auto | Unknown] -- C:\Program Files\Desk 365\deskSvc.exe -- (desksvc) SRV - [2013-06-03 11:57:49 | 003,085,264 | ---- | M] () [Auto | Unknown] -- C:\ProgramData\BrowserProtect\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe -- (BrowserProtect) SRV - [2013-05-28 15:05:16 | 000,163,328 | ---- | M] (Adobe Systems Incorporated) [Auto | Unknown] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2013-02-18 09:52:54 | 000,031,744 | ---- | M] () [Auto | Unknown] -- C:\Program Files\SoftwareUpdater\UpdaterService.exe -- (SrvUpdater) SRV - [2012-04-18 00:07:46 | 000,023,040 | ---- | M] () [Auto | Unknown] -- C:\Program Files\QuestBasic\questbasic.exe -- (QuestBasic Service) SRV - [2012-02-03 13:34:58 | 000,793,048 | ---- | M] (PC Tools) [Auto | Unknown] -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe -- (PCToolsSSDMonitorSvc) SRV - [2011-11-30 15:26:20 | 000,378,880 | ---- | M] () [Auto | Unknown] -- C:\Windows\update.7.1\svchostdriver.exe -- (ddservice) SRV - [2011-11-14 12:11:21 | 000,351,744 | ---- | M] () [Auto | Unknown] -- C:\Windows\update.5.0\svchost.exe -- (srvbtcclient) SRV - [2011-11-02 07:58:52 | 000,262,656 | ---- | M] () [Auto | Unknown] -- C:\Windows\sysdriver32.exe -- (srvsysdriver32) SRV - [2011-10-31 10:11:42 | 001,945,088 | ---- | M] () [Auto | Unknown] -- C:\Windows\update.2\svchost.exe -- (srviecheck) SRV - [2011-10-31 09:49:03 | 001,208,832 | -H-- | M] (Cronosoft) [Auto | Unknown] -- C:\Windows\update.1\svchost.exe -- (wxpdrivers) SRV - [2011-06-12 11:15:00 | 031,125,880 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service) SRV - [2011-04-29 23:59:32 | 000,227,840 | ---- | M] (Mp3Tube) [Auto | Unknown] -- C:\Program Files\Mp3Tube Toolbar\Mp3TubeSvc.exe -- (Mp3Tube Toolbar Service) SRV - [2011-04-25 05:55:00 | 004,066,168 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Unknown] -- C:\Windows\System32\GameMon.des -- (npggsvc) SRV - [2011-04-09 14:08:32 | 000,010,240 | ---- | M] () [Auto | Unknown] -- C:\Windows\System32\srvany.exe -- (KMService) SRV - [2011-04-09 14:02:46 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc) SRV - [2010-12-08 14:31:06 | 000,630,784 | ---- | M] (Nokia) [On_Demand | Unknown] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2010-04-06 16:30:38 | 000,031,272 | ---- | M] () [On_Demand | Unknown] -- C:\Windows\System32\AppleChargerSrv.exe -- (AppleChargerSrv) SRV - [2010-01-31 03:03:00 | 000,240,232 | ---- | M] (NVIDIA Corporation) [Auto | Unknown] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service) SRV - [2009-07-14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc) SRV - [2009-07-14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV - [2009-04-30 12:23:26 | 000,090,112 | ---- | M] () [Auto | Unknown] -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe -- (OMSI download service) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Unknown] -- C:\Windows\system32\XDva409.sys -- (XDva409) DRV - File not found [Kernel | On_Demand | Unknown] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.1.1.3\Definitions\VirusDefs\20110818.021\NAVEX15.SYS -- (NAVEX15) DRV - File not found [Kernel | On_Demand | Unknown] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.1.1.3\Definitions\VirusDefs\20110818.021\NAVENG.SYS -- (NAVENG) DRV - File not found [Kernel | System | Unknown] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.1.1.3\Definitions\IPSDefs\20110726.001\IDSVix86.sys -- (IDSVix86) DRV - File not found [Kernel | On_Demand | Unknown] -- C:\Windows\system32\drivers\EagleXNt.sys -- (EagleXNt) DRV - File not found [Kernel | On_Demand | Unknown] -- C:\Windows\system32\drivers\EagleNT.sys -- (EagleNT) DRV - File not found [Kernel | On_Demand | Unknown] -- C:\Users\Nowa Era\AppData\Local\Temp\cpuz134\cpuz134_x32.sys -- (cpuz134) DRV - File not found [Kernel | System | Unknown] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.1.1.3\Definitions\BASHDefs\20110901.001\BHDrvx86.sys -- (BHDrvx86) DRV - File not found [Kernel | On_Demand | Unknown] -- -- (.dtsoftbus01) DRV - File not found [Kernel | On_Demand | Unknown] -- -- (.cdrom) DRV - File not found [Kernel | On_Demand | Unknown] -- -- (.blbdrive) DRV - [2014-07-03 17:25:01 | 000,034,384 | ---- | M] (SafetyNut Inc) [Kernel | System | Unknown] -- C:\Program Files\Browser Tab Search by Ask\SafetyNut\configmgrc2.cfg -- (F06DEFF2-5B9C-490D-910F-35D3A91196223) DRV - [2014-04-14 19:46:06 | 000,042,272 | ---- | M] (AVG Technologies) [Kernel | System | Unknown] -- C:\Windows\System32\drivers\avgtpx86.sys -- (avgtp) DRV - [2014-04-14 04:07:42 | 000,016,064 | ---- | M] (Glarysoft Ltd) [Kernel | Boot | Unknown] -- C:\Windows\System32\drivers\BootDefragDriver.sys -- (BootDefragDriver) DRV - [2014-04-06 16:07:18 | 000,031,096 | ---- | M] (Bandoo Media Inc) [Kernel | System | Unknown] -- C:\Program Files\Movies Toolbar\Datamngr\setmgrc1.cfg -- (F06DEFF2-5B9C-490D-910F-35D3A9119622) DRV - [2014-04-03 16:38:44 | 000,014,160 | ---- | M] () [Kernel | On_Demand | Unknown] -- C:\Windows\System32\apf005.sys -- (apf005) DRV - [2014-03-11 09:52:30 | 000,104,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv) DRV - [2014-02-16 14:03:03 | 000,127,096 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\SYMEVENT.SYS -- (SymEvent) DRV - [2014-01-25 13:08:52 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Unknown] -- C:\Windows\gdrv.sys -- (gdrv) DRV - [2013-10-30 05:16:30 | 000,037,344 | ---- | M] () [Kernel | On_Demand | Unknown] -- C:\Windows\System32\FsUsbExDisk.Sys -- (FsUsbExDisk) DRV - [2013-02-23 15:53:35 | 000,242,240 | ---- | M] (DT Soft Ltd) [Kernel | System | Unknown] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV - [2013-02-03 14:37:27 | 000,013,232 | ---- | M] () [Kernel | On_Demand | Unknown] -- C:\Windows\System32\apf003.sys -- (apf003) DRV - [2013-01-27 15:35:50 | 000,113,608 | ---- | M] (Power Software Ltd) [Kernel | System | Unknown] -- C:\Windows\System32\drivers\scdemu.sys -- (SCDEmu) DRV - [2012-10-24 15:18:14 | 000,014,232 | ---- | M] (SMART Technologies) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\SMARTMouseFilterx86.sys -- (SMARTMouseFilterx86) DRV - [2012-10-24 15:18:06 | 000,021,912 | ---- | M] (SMART Technologies ULC) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\SMARTVTabletPCx86.sys -- (SMARTVTabletPCx86) DRV - [2012-10-24 15:18:02 | 000,013,720 | ---- | M] (SMART Technologies) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\SMARTVHidMini2000x86.sys -- (SMARTVHidMini2000x86) DRV - [2012-09-19 11:50:50 | 000,010,088 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Unknown] -- C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv) DRV - [2012-02-25 12:54:27 | 000,717,296 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Unknown] -- C:\Windows\System32\drivers\sptd.sys -- (sptd) DRV - [2011-08-18 03:00:00 | 000,374,392 | ---- | M] (Symantec Corporation) [Kernel | System | Unknown] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl) DRV - [2011-08-08 17:38:12 | 000,132,744 | R--- | M] (Symantec Corporation) [Kernel | System | Unknown] -- C:\Windows\System32\drivers\NAV\1301010.003\ccSetx86.sys -- (ccSet_NAV) DRV - [2011-08-02 20:22:10 | 000,566,904 | R--- | M] (Symantec Corporation) [File_System | On_Demand | Unknown] -- C:\Windows\System32\drivers\NAV\1301010.003\srtsp.sys -- (SRTSP) DRV - [2011-08-02 20:22:10 | 000,031,864 | R--- | M] (Symantec Corporation) [Kernel | System | Unknown] -- C:\Windows\System32\drivers\NAV\1301010.003\srtspx.sys -- (SRTSPX) DRV - [2011-07-28 21:20:02 | 000,897,656 | R--- | M] (Symantec Corporation) [File_System | Boot | Unknown] -- C:\Windows\System32\drivers\NAV\1301010.003\SymEFA.sys -- (SymEFA) DRV - [2011-07-25 20:18:40 | 000,314,488 | R--- | M] (Symantec Corporation) [Kernel | System | Unknown] -- C:\Windows\System32\drivers\NAV\1301010.003\symnets.sys -- (SymNetS) DRV - [2011-07-25 20:18:36 | 000,340,088 | R--- | M] (Symantec Corporation) [Kernel | Boot | Unknown] -- C:\Windows\System32\drivers\NAV\1301010.003\SymDS.sys -- (SymDS) DRV - [2011-07-25 20:15:52 | 000,149,624 | R--- | M] (Symantec Corporation) [Kernel | System | Unknown] -- C:\Windows\System32\drivers\NAV\1301010.003\Ironx86.sys -- (SymIRON) DRV - [2010-12-21 15:04:06 | 000,137,144 | ---- | M] (ESET) [File_System | Auto | Unknown] -- C:\Windows\System32\drivers\eamonm.sys -- (eamonm) DRV - [2010-12-21 15:04:06 | 000,115,008 | ---- | M] (ESET) [Kernel | System | Unknown] -- C:\Windows\System32\drivers\ehdrv.sys -- (ehdrv) DRV - [2010-12-21 13:47:38 | 000,095,384 | ---- | M] (ESET) [Kernel | Auto | Unknown] -- C:\Windows\System32\drivers\epfwwfpr.sys -- (epfwwfpr) DRV - [2010-12-02 12:13:26 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\ccdcmbo.sys -- (nmwcdc) DRV - [2010-12-02 12:13:22 | 000,018,304 | ---- | M] (Nokia) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd) DRV - [2010-12-02 10:36:42 | 000,137,600 | ---- | M] (Nokia) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\nmwcdnsu.sys -- (nmwcdnsu) DRV - [2010-11-20 12:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV - [2010-11-20 11:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb) DRV - [2010-04-22 15:08:26 | 000,019,496 | ---- | M] () [Kernel | System | Unknown] -- C:\Windows\System32\drivers\AppleCharger.sys -- (AppleCharger) DRV - [2010-01-30 19:12:44 | 011,595,848 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm) DRV - [2009-11-12 06:14:28 | 000,066,664 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA) DRV - [2009-07-27 09:06:46 | 000,051,712 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\L1C62x86.sys -- (L1C) DRV - [2009-07-14 01:23:04 | 000,035,328 | ---- | M] () [Kernel | System | Unknown] -- C:\Windows\System32\drivers\blbdrive.sys -- (blbdrive) DRV - [2009-07-14 00:02:53 | 000,545,792 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\netr73.sys -- (netr73) DRV - [2009-03-18 16:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi) DRV - [2008-10-21 11:22:48 | 000,114,600 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\s0017mdm.sys -- (s0017mdm) DRV - [2008-10-21 11:22:48 | 000,109,736 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\s0017unic.sys -- (s0017unic) DRV - [2008-10-21 11:22:48 | 000,104,616 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\s0017obex.sys -- (s0017obex) DRV - [2008-10-21 11:22:48 | 000,086,824 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\s0017bus.sys -- (s0017bus) DRV - [2008-10-21 11:22:48 | 000,026,024 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\s0017nd5.sys -- (s0017nd5) DRV - [2008-10-21 11:22:48 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\s0017mdfl.sys -- (s0017mdfl) DRV - [2008-08-26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2008-05-16 13:33:14 | 000,025,512 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\s0016nd5.sys -- (s0016nd5) DRV - [2008-05-16 12:33:14 | 000,115,752 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\s0016unic.sys -- (s0016unic) DRV - [2008-05-16 12:33:14 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\s0016mdfl.sys -- (s0016mdfl) DRV - [2008-05-16 12:33:12 | 000,120,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\s0016mdm.sys -- (s0016mdm) DRV - [2008-05-16 12:33:12 | 000,114,216 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\s0016mgmt.sys -- (s0016mgmt) DRV - [2008-05-16 12:33:12 | 000,110,632 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\s0016obex.sys -- (s0016obex) DRV - [2008-05-16 12:33:12 | 000,089,256 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\s0016bus.sys -- (s0016bus) DRV - [2008-02-12 04:42:38 | 000,232,472 | ---- | M] (Microsoft Corporation) [Kernel | System | Unknown] -- C:\Windows\System32\drivers\VMM.sys -- (vmm) DRV - [2008-02-05 02:50:44 | 000,059,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\VMNetSrv.sys -- (VPCNetS2) DRV - [2005-09-29 19:01:51 | 000,066,048 | ---- | M] (Protection Technology) [Kernel | Boot | Unknown] -- C:\Windows\System32\drivers\sfvfs02.sys -- (sfvfs02) DRV - [2005-08-10 14:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Unknown] -- C:\Windows\System32\drivers\sfdrv01.sys -- (sfdrv01) DRV - [2005-05-16 15:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Unknown] -- C:\Windows\System32\drivers\sfhlp02.sys -- (sfhlp02) DRV - [2005-05-12 23:56:00 | 000,028,182 | ---- | M] (Analog Devices Inc.) [Kernel | On_Demand | Unknown] -- C:\Windows\System32\drivers\adipfusb.sys -- (adipfusb) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com/?type=hp&ts=1402845752&from=amt&uid=WDCXWD5000AAKS-00V0A0_WD-WCAWFC35827658276 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.webssearches.com/web/?type=ds&ts=1402845752&from=amt&uid=WDCXWD5000AAKS-00V0A0_WD-WCAWFC35827658276&q={searchTerms} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.certified-toolbar.com?si=41516&tid=553&bs=true&q= IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com/web/?type=ds&ts=1402845752&from=amt&uid=WDCXWD5000AAKS-00V0A0_WD-WCAWFC35827658276&q={searchTerms} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.certified-toolbar.com?si=41516&home=true&tid=553 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://istart.webssearches.com/?type=hp&ts=1402845752&from=amt&uid=WDCXWD5000AAKS-00V0A0_WD-WCAWFC35827658276 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://istart.webssearches.com/web/?type=ds&ts=1402845752&from=amt&uid=WDCXWD5000AAKS-00V0A0_WD-WCAWFC35827658276&q={searchTerms} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.certified-toolbar.com?si=41516&tid=553&bs=true&q= IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar = http://search.certified-toolbar.com?si=41516&tid=553&bs=true&q= IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.certified-toolbar.com?si=41516&tid=553&bs=true&q= IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://istart.webssearches.com/web/?type=ds&ts=1402845752&from=amt&uid=WDCXWD5000AAKS-00V0A0_WD-WCAWFC35827658276&q={searchTerms} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = http://search.certified-toolbar.com?si=41516&home=true&tid=553 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = http://search.certified-toolbar.com?si=41516&home=true&tid=553 IE - HKLM\..\URLSearchHook: {09ec805c-cb2e-4d53-b0d3-a75a428b81c7} - No CLSID value found IE - HKLM\..\URLSearchHook: {707db484-2428-402d-afb5-d85b387544c7} - No CLSID value found IE - HKLM\..\URLSearchHook: {84452a8c-bc09-4187-ad3b-b275b98eb939} - No CLSID value found IE - HKLM\..\URLSearchHook: {8532a8b7-c06a-41bb-936a-8ce73e4711ed} - No CLSID value found IE - HKLM\..\URLSearchHook: {90b49673-5506-483e-b92b-ca0265bd9ca8} - No CLSID value found IE - HKLM\..\URLSearchHook: {96f454ea-9d38-474f-b504-56193e00c1a5} - C:\Program Files\uTorrentControl_v6\prxtbuTor.dll (Conduit Ltd.) IE - HKLM\..\URLSearchHook: {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - No CLSID value found IE - HKLM\..\URLSearchHook: {f2e99efd-72dc-4c5d-9f7c-219133ff8e40} - No CLSID value found IE - HKLM\..\SearchScopes,DefaultScope = {F8DA724C-B79D-4DAA-A38F-74104154D700} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://istart.webssearches.com/web/?type=ds&ts=1402845752&from=amt&uid=WDCXWD5000AAKS-00V0A0_WD-WCAWFC35827658276&q={searchTerms} IE - HKLM\..\SearchScopes\{64B3B655-3FDC-49BB-933C-2BF0324CB28D}: "URL" = http://search.sweetim.com/search.asp?src=6&st=17&q={searchTerms}&barid={BBCD3C31-A2E2-11E0-B033-001E741B774D} IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search.ask.com/sr?src=ieb&gct=ds&appid=484&systemid=406&v=a12281-116&apn_uid=8362438165114751&apn_dtid=BND406&o=APN10645&apn_ptnrs=AG6&q={searchTerms} IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2488}: "URL" = http://dts.search.ask.com/sr?src=ieb&gct=ds&appid=210&systemid=488&v=a13277-348&apn_uid=2090850645444295&apn_dtid=TCH001&o=APN11459&apn_ptnrs=AG1&q={searchTerms} IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.sweetim.com/search.asp?src=6&q={searchTerms}&crg=3.1010000.10011&barid={BBCD3C31-A2E2-11E0-B033-001E741B774D} IE - HKLM\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://websearch.helpmefindyour.info/?l=1&q={searchTerms}&pid=729&r=2013/03/20&hid=2431064110&lg=EN&cc=PL IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?src=6&q={searchTerms}&st=6&barid={BBCD3C31-A2E2-11E0-B033-001E741B774D} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.search.ask.com/?o=APN11459&gct=hp&d=488-210&v=a13277-348&t=4 IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2488}: "URL" = http://dts.search.ask.com/sr?src=ieb&gct=ds&appid=210&systemid=488&v=a13277-348&apn_uid=2090850645444295&apn_dtid=TCH001&o=APN11459&apn_ptnrs=AG1&q={searchTerms} IE - HKCU\..\SearchScopes\{A52ED6BC-F38F-445B-8CCF-90B9AD78FE19}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3289075&CUI=UN40803136227522240&UM=1 IE - HKCU\..\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}: "URL" = http://mystart.incredibar.com/?a=6OzNkFGMva&loc=skw&search={searchTerms}&i=26 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = [color=#E56717]========== FireFox ==========[/color] FF - prefs.js - File not found FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw_1211151.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\18.0.5\\npsitesafety.dll () FF - HKLM\Software\MozillaPlugins\@funwebproducts.com/Plugin: C:\Program Files\FunWebProducts\Installr\1.bin\NPFunWeb.dll (Fun Web Products, Inc.) FF - HKLM\Software\MozillaPlugins\@ganymede/GanymedeNetPlugin,version=1.0: C:\Program Files\Ganymede\Plugins\npganymedenet.dll ( ) FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.55.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.450: C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found FF - HKLM\Software\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10: C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate) FF - HKLM\Software\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4: C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=1.1.7: C:\Program Files\VideoLAN\VLC\npvlc.dll (the VideoLAN Team) FF - HKLM\Software\MozillaPlugins\@zylom.com/ZylomGamesPlayer: C:\ProgramData\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll (Zylom) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\bbbb\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\m3ffxtbr@mywebsearch.com: C:\Program Files\MyWebSearch\bar\5.bin [2011-09-18 15:59:05 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.1.1.3\IPSFFPlgn\ FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\quick_start@gmail.com: C:\Users\Nowa Era\AppData\Roaming\Mozilla\Firefox\Profiles\bbeuji2j.default\extensions\quick_start@gmail.com FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\faststartff@gmail.com: C:\Users\Nowa Era\AppData\Roaming\Mozilla\Firefox\Profiles\bbeuji2j.default\extensions\faststartff@gmail.com FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\shortcutff@gmail.com: C:\Users\Nowa Era\AppData\Roaming\Mozilla\Firefox\Profiles\bbeuji2j.default\extensions\shortcutff@gmail.com FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 33.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2014-09-14 11:21:14 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 33.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2014-09-14 11:21:17 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 33.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2014-09-14 11:21:14 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 33.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2014-09-14 11:21:17 | 000,000,000 | ---D | M] [2014-05-22 18:49:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\bbbb\AppData\Roaming\mozilla\Extensions [2014-10-05 14:59:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\bbbb\AppData\Roaming\mozilla\Firefox\Profiles\f0vrxyue.default\extensions [2014-08-24 18:40:23 | 000,000,000 | ---D | M] ("Plus-HD-9.4") -- C:\Users\bbbb\AppData\Roaming\mozilla\Firefox\Profiles\f0vrxyue.default\extensions\55d597b4-643f-421e-b007-26a68e26903b@a62d99f0-1402-44d5-8671-7a618c9c4868.com [2014-10-05 15:00:05 | 000,000,000 | ---D | M] ("TheTorntv V10") -- C:\Users\bbbb\AppData\Roaming\mozilla\Firefox\Profiles\f0vrxyue.default\extensions\a338c5448f724f94af2f11@cc4cdd6788a64e7ca7d83cb2cd.com [2014-08-05 21:55:09 | 000,000,000 | ---D | M] (Ginyas Browser Companion) -- C:\Users\bbbb\AppData\Roaming\mozilla\Firefox\Profiles\f0vrxyue.default\extensions\bbrs_002@blabbers.com [2014-09-14 15:07:52 | 000,000,000 | ---D | M] ("Plus-HD-9.4c") -- C:\Users\bbbb\AppData\Roaming\mozilla\Firefox\Profiles\f0vrxyue.default\extensions\prestonhull81@yahoo.com [2014-09-15 17:04:41 | 000,000,000 | ---D | M] (No name found) -- C:\Users\bbbb\AppData\Roaming\mozilla\Firefox\Profiles\f0vrxyue.default\extensions\staged [2014-09-13 09:46:40 | 000,000,000 | ---D | M] (No name found) -- C:\Users\bbbb\AppData\Roaming\mozilla\Firefox\Profiles\f0vrxyue.default\extensions\55d597b4-643f-421e-b007-26a68e26903b@a62d99f0-1402-44d5-8671-7a618c9c4868.com\extensionData [2014-09-13 09:46:42 | 000,000,000 | ---D | M] (No name found) -- C:\Users\bbbb\AppData\Roaming\mozilla\Firefox\Profiles\f0vrxyue.default\extensions\55d597b4-643f-421e-b007-26a68e26903b@a62d99f0-1402-44d5-8671-7a618c9c4868.com\extensionData\plugins [2014-09-13 09:46:42 | 000,000,000 | ---D | M] (No name found) -- C:\Users\bbbb\AppData\Roaming\mozilla\Firefox\Profiles\f0vrxyue.default\extensions\55d597b4-643f-421e-b007-26a68e26903b@a62d99f0-1402-44d5-8671-7a618c9c4868.com\extensionData\userCode [2014-10-05 15:00:03 | 000,000,000 | ---D | M] (No name found) -- C:\Users\bbbb\AppData\Roaming\mozilla\Firefox\Profiles\f0vrxyue.default\extensions\a338c5448f724f94af2f11@cc4cdd6788a64e7ca7d83cb2cd.com\extensionData [2014-10-05 15:00:03 | 000,000,000 | ---D | M] (No name found) -- C:\Users\bbbb\AppData\Roaming\mozilla\Firefox\Profiles\f0vrxyue.default\extensions\a338c5448f724f94af2f11@cc4cdd6788a64e7ca7d83cb2cd.com\extensionData\plugins [2014-10-05 15:00:03 | 000,000,000 | ---D | M] (No name found) -- C:\Users\bbbb\AppData\Roaming\mozilla\Firefox\Profiles\f0vrxyue.default\extensions\a338c5448f724f94af2f11@cc4cdd6788a64e7ca7d83cb2cd.com\extensionData\userCode [2014-09-14 15:07:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\bbbb\AppData\Roaming\mozilla\Firefox\Profiles\f0vrxyue.default\extensions\prestonhull81@yahoo.com\extensionData [2014-09-14 15:07:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\bbbb\AppData\Roaming\mozilla\Firefox\Profiles\f0vrxyue.default\extensions\prestonhull81@yahoo.com\extensionData\plugins [2014-09-14 15:07:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\bbbb\AppData\Roaming\mozilla\Firefox\Profiles\f0vrxyue.default\extensions\prestonhull81@yahoo.com\extensionData\userCode [2014-09-15 17:04:41 | 000,000,000 | ---D | M] (No name found) -- C:\Users\bbbb\AppData\Roaming\mozilla\Firefox\Profiles\f0vrxyue.default\extensions\staged\prestonhull81@yahoo.com\extensionData [2014-09-15 17:04:41 | 000,000,000 | ---D | M] (No name found) -- C:\Users\bbbb\AppData\Roaming\mozilla\Firefox\Profiles\f0vrxyue.default\extensions\staged\prestonhull81@yahoo.com\extensionData\plugins [2014-09-15 17:04:41 | 000,000,000 | ---D | M] (No name found) -- C:\Users\bbbb\AppData\Roaming\mozilla\Firefox\Profiles\f0vrxyue.default\extensions\staged\prestonhull81@yahoo.com\extensionData\userCode [2014-05-28 09:27:33 | 000,002,542 | ---- | M] () -- C:\Users\bbbb\AppData\Roaming\mozilla\firefox\profiles\f0vrxyue.default\searchplugins\ask-search.xml [2014-08-07 09:53:19 | 000,002,664 | ---- | M] () -- C:\Users\bbbb\AppData\Roaming\mozilla\firefox\profiles\f0vrxyue.default\searchplugins\Ask.xml [2014-09-14 11:21:15 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2014-09-14 11:21:15 | 000,000,000 | ---D | M] (QuestBasic) -- C:\Program Files\Mozilla Firefox\extensions\{1CE72EFA-E2D1-48FA-A5EC-D7111C2C5BB6} [2014-09-14 11:21:15 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-09-14 11:21:16 | 000,000,000 | ---D | M] (z) -- C:\Program Files\Mozilla Firefox\extensions\{c478a0de-ce87-478d-be3f-1221b7c1673c} [2014-09-14 11:21:15 | 000,000,000 | ---D | M] (MP3Tube Toolbar) -- C:\Program Files\Mozilla Firefox\extensions\mp3tubetoolbar@mp3tubetoolbar.com [2014-09-14 11:21:14 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions [2014-09-14 11:21:14 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2011-12-20 12:33:56 | 000,120,984 | ---- | M] ( ) -- C:\Program Files\mozilla firefox\plugins\npganymedenet.dll [2010-07-27 16:13:46 | 000,027,136 | ---- | M] (NHN USA Inc.) -- C:\Program Files\mozilla firefox\plugins\npijjiautoinstallpluginff.dll [2009-10-23 15:01:34 | 000,102,400 | ---- | M] (Zylom) -- C:\Program Files\mozilla firefox\plugins\npzylomgamesplayer.dll [color=#E56717]========== Chrome ==========[/color] CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter}, CHR - plugin: Error reading preferences file CHR - Extension: Dokumenty Google = C:\Users\bbbb\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\ CHR - Extension: Dysk Google = C:\Users\bbbb\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_5\ CHR - Extension: YouTube = C:\Users\bbbb\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_5\ CHR - Extension: Plus-HD-9.4 = C:\Users\bbbb\AppData\Local\Google\Chrome\User Data\Default\Extensions\cckahkoimnbpflhhobnanhfdihegpedf\1.26.104_0\crossrider CHR - Extension: Plus-HD-9.4 = C:\Users\bbbb\AppData\Local\Google\Chrome\User Data\Default\Extensions\cckahkoimnbpflhhobnanhfdihegpedf\1.26.104_0\ CHR - Extension: Szukaj w Google = C:\Users\bbbb\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_5\ CHR - Extension: TheTorntv V10 = C:\Users\bbbb\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdbaidolhfnecgiloehbailojonjaloa\19990.9309.79_0\ CHR - Extension: Google Wallet = C:\Users\bbbb\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_5\ CHR - Extension: Gmail = C:\Users\bbbb\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_11\ O1 HOSTS File: ([2012-05-13 15:36:05 | 000,000,761 | RHS- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O2 - BHO: (Ginyas Browser Companion) - {00cbb66b-1d3b-46d3-9577-323a336acb50} - C:\Program Files\BrowserCompanion\jsloader.dll ( ) O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (Browse2save) - {0AB53DF7-BA36-E491-5E6F-B6670CC544A2} - C:\ProgramData\Browse2save\5127a6cebde64.dll () O2 - BHO: (hosts2) - {11111111-1111-1111-1111-110311691128} - C:\Program Files\hosts2\hosts2-bho.dll (DownLite) O2 - BHO: (Plus-HD-9.4) - {11111111-1111-1111-1111-110511311164} - C:\Program Files\Plus-HD-9.4\Plus-HD-9.4-bho.dll (Plus HD) O2 - BHO: (TheTorntv V10) - {11111111-1111-1111-1111-110611331111} - C:\Program Files\TheTorntv V10\TheTorntv V10-bho.dll (esc) O2 - BHO: (TheGoPhoto.it V10) - {11111111-1111-1111-1111-110611331113} - C:\Program Files\TheGoPhoto.it V10\TheGoPhoto.it V10-bho.dll (joep) O2 - BHO: (IETabPage Class) - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files\SupTab\SupTab.dll (Thinknice Co. Limited) O2 - BHO: (MagniPic) - {436CDA45-1B8B-B7BB-3E1C-1B6BEE3D94E3} - C:\ProgramData\MagniPic\511a88d20e7cf.dll () O2 - BHO: (DealPly Shopping) - {4B6ACEA2-308A-4876-AD36-57CEC5B4FCC7} - C:\Program Files\DealPly\DealPlyIE.dll (DealPly) O2 - BHO: (Search-NewTab) - {4D987F1E-EAB4-EEAF-46C0-407CB3B69257} - C:\ProgramData\Search-NewTab\5126321f54bcb.dll () O2 - BHO: (SMART Notebook Download Utility) - {67BCF957-85FC-4036-8DC4-D4D80E00A77B} - C:\Program Files\SMART Technologies\Education Software\Win32\NotebookPlugin.dll (SMART Technologies ULC.) O2 - BHO: (no name) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - No CLSID value found. O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Search-NewTAb) - {78B417AF-A373-75B2-AB7F-CC7E6A61BCF2} - C:\ProgramData\Search-NewTab\5149b2d8241d4.dll () O2 - BHO: (Breowsse2isavee) - {84E491D5-AC07-C077-F726-D5BBCC374607} - C:\ProgramData\Breowsse2isavee\5149b2b6993b5.dll () O2 - BHO: (no name) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - No CLSID value found. O2 - BHO: (ValueApps) - {93DBF2BB-A2B3-4683-A92E-57E60751F346} - C:\Program Files\Conduit\ValueApps\IE\ValueAppsLoader.dll (Conduit Ltd.) O2 - BHO: (Ginyas Browser Companion Verifier) - {963B125B-8B21-49A2-A3A8-E37092276531} - C:\Program Files\BrowserCompanion\updatebhoWin32.dll (Blabbers Communications Ltd) O2 - BHO: (uTorrentControl_v6 Toolbar) - {96f454ea-9d38-474f-b504-56193e00c1a5} - C:\Program Files\uTorrentControl_v6\prxtbuTor.dll (Conduit Ltd.) O2 - BHO: (MagnniPici) - {96FDF36C-EC23-6388-14F4-21C372F30673} - C:\ProgramData\MagnniPici\51ce896c04405.dll () O2 - BHO: (DealPly) - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - C:\Program Files\DealPly\DealPlyIE.dll (DealPly) O2 - BHO: (Search-NewTab) - {A658777E-DB18-6628-63EB-84BBD74422AB} - C:\ProgramData\Search-NewTab\5127a6e860769.dll () O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) O2 - BHO: (Browse2save) - {BF29262A-804F-7D7F-F24B-E186BD1FCF73} - C:\ProgramData\Browse2save\5126320ad5635.dll () O2 - BHO: (delta Helper Object) - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files\Delta\delta\1.8.21.5\bh\delta.dll (Delta-search.com) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (Movies Toolbar (Dist. by Bandoo Media, Inc.)) - {ec2bae47-25af-4ce9-9e78-10627a49c9ea} - C:\Program Files\Movies Toolbar\Datamngr\SRToolBar\IE\searchresultsDx.dll () O2 - BHO: (MaegnaiPIc) - {FD3A49B3-D11F-D04A-F884-14ED1FBBF447} - C:\ProgramData\MaegnaiPIc\51e571ab8c4c3.dll () O3 - HKLM\..\Toolbar: (Mp3Tube Toolbar) - {46897C77-E7A6-4c33-BFFB-E9C2E2718942} - C:\Program Files\Mp3Tube Toolbar\mp3tubetb.DLL (Mp3Tube Toolbar) O3 - HKLM\..\Toolbar: (Delta Toolbar) - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files\Delta\delta\1.8.21.5\deltaTlbr.dll (Delta-search.com) O3 - HKLM\..\Toolbar: (no name) - {84452a8c-bc09-4187-ad3b-b275b98eb939} - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - {90b49673-5506-483e-b92b-ca0265bd9ca8} - No CLSID value found. O3 - HKLM\..\Toolbar: (uTorrentControl_v6 Toolbar) - {96f454ea-9d38-474f-b504-56193e00c1a5} - C:\Program Files\uTorrentControl_v6\prxtbuTor.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (Movies Toolbar (Dist. by Bandoo Media, Inc.)) - {ec2bae47-25af-4ce9-9e78-10627a49c9ea} - C:\Program Files\Movies Toolbar\Datamngr\SRToolBar\IE\searchresultsDx.dll () O3 - HKLM\..\Toolbar: (no name) - {f2e99efd-72dc-4c5d-9f7c-219133ff8e40} - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (uTorrentControl_v6 Toolbar) - {96F454EA-9D38-474F-B504-56193E00C1A5} - C:\Program Files\uTorrentControl_v6\prxtbuTor.dll (Conduit Ltd.) O3:HKU - HKCU\..\Toolbar\WebBrowser: (uTorrentControl_v6 Toolbar) - {96F454EA-9D38-474F-B504-56193E00C1A5} - C:\Users\bbbb\AppData\LocalLow\uTorrentControl_v6\prxtbuTo0.dll (ClientConnect Ltd.) O4 - HKLM..\Run: [Aeria Ignite] C:\Program Files\Aeria Games\Ignite\aeriaignite.exe (Aeria Games & Entertainment) O4 - HKLM..\Run: [BasicScan Service] C:\Program Files\BasicScan\basicscan.exe () O4 - HKLM..\Run: [fst_pl_131] C:\Program Files\fst_pl_131\fst_pl_131.exe () O4 - HKLM..\Run: [PrivitizeVPN] C:\Program Files\PrivitizeVPN\PrivitizeVPN.exe (OOO Industry) O4 - HKLM..\Run: [sbsdk-server] C:\Program Files\SMART Technologies\Education Software\sbsdk-server\NodeLauncher.exe (SMART Technologies) O4 - HKLM..\Run: [SMART Board Service] C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe (SMART Technologies) O4 - HKLM..\Run: [SMART Board Tools] C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe (SMART Technologies ULC) O4 - HKLM..\Run: [tray_ico0] C:\Windows\update.tray-14-0\svchost.exe (Cronosoft) O4 - HKLM..\Run: [tray_ico1] C:\Windows\update.tray-7-0\svchost.exe (Cronosoft) O4 - HKLM..\Run: [vProt] C:\Program Files\AVG Secure Search\vprot.exe () O4 - HKLM..\Run: [wxpdrv] C:\Windows\services32.exe (Cronosoft) O4 - HKCU..\Run: [Akamai NetSession Interface] C:\Users\bbbb\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.) O4 - HKCU..\Run: [BackgroundContainerV2] C:\Users\bbbb\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll (ClientConnect Ltd.) O4 - HKCU..\Run: [uTorrent] C:\Users\bbbb\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.) O4 - HKLM..\RunOnce: [*WerKernelReporting] C:\Windows\System32\WerFault.exe (Microsoft Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 2 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1 O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.) O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation) O8 - Extra context menu item: Wyślij &do programu OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - Reg Error: Key error. File not found O9 - Extra Button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Users\Nowa Era\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk File not found O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll (InterTrust Technologies Corporation, Inc.) O13 - gopher Prefix: missing O15 - HKCU\..Trusted Domains: aeriagames.com ([]http in Trusted sites) O15 - HKCU\..Trusted Domains: aeriagames.com ([]https in Trusted sites) O16 - DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 10.55.2) O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{501A75D7-4E4E-478B-8A0C-574AA529D19E}: DhcpNameServer = 192.168.1.1 0.0.0.0 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{50B5DD21-A508-4F0E-A0D0-432F6AA22831}: DhcpNameServer = 192.168.1.1 0.0.0.0 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{87A8A43E-B611-48AF-BF8A-525F29A7D137}: DhcpNameServer = 192.168.1.1 0.0.0.0 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{ADC92E22-98B9-4D12-A5A0-88CAEEC998FF}: DhcpNameServer = 192.168.1.1 0.0.0.0 O18 - Protocol\Handler\base64 {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program Files\BrowserCompanion\tdataprotocol.dll (Blabbers Communications Ltd) O18 - Protocol\Handler\chrome {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program Files\BrowserCompanion\tdataprotocol.dll (Blabbers Communications Ltd) O18 - Protocol\Handler\prox {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program Files\BrowserCompanion\tdataprotocol.dll (Blabbers Communications Ltd) O18 - Protocol\Handler\skype-ie-addon-data - No CLSID value found O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\18.0.5\ViProtocol.dll (AVG Secure Search) O20 - AppInit_DLLs: (C:\PROGRA~1\SupTab\SearchProtect32.dll) - C:\Program Files\SupTab\SearchProtect32.dll (Skytech Co., Ltd.) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation) O20 - HKCU Winlogon: Shell - (C:\Users\bbbb\AppData\Local\5e981d0d\X) - File not found O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O27 - HKLM IFEO\_avp32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\_avpcc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\_avpm.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\~1.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\~2.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\a.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\aAvgApi.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\AAWTray.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\About.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ackwin32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\adaware.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\Ad-Aware.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\advxdwin.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\AdwarePrj.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\agentsvr.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\agentw.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\alertsvc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\alevir.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\alogserv.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\AlphaAV: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\AlphaAV.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\AluSchedulerSvc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\amon9x.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\AntispywarXP2009.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\anti-trojan.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\Anti-Virus Professional.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\antivirus.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\AntiVirus_Pro.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\AntivirusPlus: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\AntivirusPlus.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\AntivirusPro_2010.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\AntivirusXP: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\AntivirusXP.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\antivirusxppro2009.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ants.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\apimonitor.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\aplica32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\apvxdwin.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\arr.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\Arrakis3.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ashAvast.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ashBug.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ashChest.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ashCnsnt.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ashDisp.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ashLogV.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ashMaiSv.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ashPopWz.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ashQuick.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ashServ.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ashSimp2.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ashSimpl.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ashSkPcc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ashSkPck.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ashUpd.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ashWebSv.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\aswChLic.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\aswRegSvr.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\aswRunDll.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\aswUpdSv.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\atcon.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\atguard.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\atro55en.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\atupdater.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\atwatch.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\au.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\aupdate.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\autodown.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\auto-protect.nav80try.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\autotrace.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\autoupdate.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\av360.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avadmin.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\AVCare.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avcenter.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avciman.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avconfig.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avconsol.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ave32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\AVENGINE.EXE: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avgcc32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avgchk.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avgcmgr.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avgcsrvx.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avgctrl.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avgdumpx.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avgemc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avgiproxy.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avgnsx.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avgnt.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avgrsx.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avgscanx.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avgserv.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avgserv9.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avgsrmax.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avgtray.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avgui.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avgupd.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avgw.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avgwdsvc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avkpop.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avkserv.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avkservice.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avkwctl9.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avltmain.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avmailc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avmcdlg.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avnotify.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avnt.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avp32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avpcc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avpdos32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avpm.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avptc32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avpupd.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avsched32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avsynmgr.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avupgsvc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\AVWEBGRD.EXE: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avwin.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avwin95.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avwinnt.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avwsc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avwupd.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avwupd32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avwupsrv.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avxmonitor9x.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avxmonitornt.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\avxquar.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\b.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\backweb.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\bargains.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\bd_professional.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\bdagent.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\bdfvcl.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\bdfvwiz.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\BDInProcPatch.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\bdmcon.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\BDMsnScan.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\bdreinit.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\bdsubwiz.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\BDSurvey.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\bdtkexec.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\bdwizreg.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\beagle.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\belt.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\bidef.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\bidserver.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\bipcp.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\bipcpevalsetup.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\bisp.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\bitguard.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation) O27 - HKLM IFEO\blackd.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\blackice.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\blink.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\blss.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\bootconf.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\bootwarn.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\borg2.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\bpc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\bprotect.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation) O27 - HKLM IFEO\bpsvc.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation) O27 - HKLM IFEO\brasil.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\brastk.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\browserdefender.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation) O27 - HKLM IFEO\browserprotect.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation) O27 - HKLM IFEO\browsersafeguard.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation) O27 - HKLM IFEO\brw.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\bs120.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\bspatch.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\bundle.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\bvt.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\c.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cavscan.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ccapp.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ccevtmgr.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ccpxysvc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cdp.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cfd.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cfgwiz.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cfiadmin.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cfiaudit.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cfinet.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cfinet32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cfp.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cfpconfg.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cfplogvw.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cfpupdat.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\Cl.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\claw95.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\claw95cf.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\clean.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cleaner.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cleaner3.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cleanIELow.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cleanpc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\click.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cmd32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cmdagent.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cmesys.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cmgrdian.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cmon016.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\connectionmonitor.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\control: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cpd.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cpf9x206.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cpfnt206.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\crashrep.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\csc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cssconfg.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cssupdat.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cssurf.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ctrl.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cv.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cwnb181.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\cwntdwmo.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\d.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\datemanager.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\dcomx.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\defalert.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\defscangui.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\defwatch.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\deloeminfs.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\deputy.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\divx.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\dllcache.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\dllreg.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\doors.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\dop.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\dpf.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\dpfsetup.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\dpps2.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\dprotectsvc.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation) O27 - HKLM IFEO\driverctrl.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\drwatson.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\drweb32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\drwebupw.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\dssagent.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\dvp95.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\dvp95_0.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ecengine.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\efpeadm.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\egui.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ekrn.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\emsw.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ent.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\esafe.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\escanhnt.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\escanv95.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\espwatch.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ethereal.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\etrustcipe.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\evpn.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\exantivirus-cnet.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\exe.avxw.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\expert.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\explore.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\fact.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\f-agnt95.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\fameh32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\fast.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\fch32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\fih32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\findviru.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\firewall.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\fixcfg.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\fixfp.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\fnrb32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\fprot.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\f-prot.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\f-prot95.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\fp-win.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\fp-win_trial.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\frmwrk32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\frw.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\fsaa.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\fsav.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\fsav32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\fsav530stbyb.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\fsav530wtbyb.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\fsav95.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\fsgk32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\fsm32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\fsma32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\fsmb32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\f-stopw.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\gator.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\gav.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\gbmenu.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\gbn976rl.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\gbpoll.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\generics.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\gmt.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\guard.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\guarddog.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\guardgui.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\hacktracersetup.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\hbinst.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\hbsrv.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\History.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\homeav2010.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\hotactio.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\hotpatch.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\htlog.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\htpatch.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\hwpe.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\hxdl.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\hxiul.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\iamapp.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\iamserv.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\iamstats.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ibmasn.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ibmavsp.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\icload95.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\icloadnt.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\icmon.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\icsupp95.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\icsuppnt.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\Identity.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\idle.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\iedll.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\iedriver.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\IEShow.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\iface.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ifw2000.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\inetlnfo.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\infus.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\infwin.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\init.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\init32.exe : Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\install.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\install[1].exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\install[2].exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\install[3].exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\install[4].exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\install[5].exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\intdel.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\intren.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\iomon98.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\istsvc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\jammer.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\jdbgmrg.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\jedi.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\JsRcGen.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\jumpflip: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation) O27 - HKLM IFEO\kavlite40eng.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\kavpers40eng.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\kavpf.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\kazza.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\keenvalue.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\kerio-pf-213-en-win.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\kerio-wrl-421-en-win.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\kerio-wrp-421-en-win.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\killprocesssetup161.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ldnetmon.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ldpro.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ldpromenu.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ldscan.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\licmgr.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\livesrv.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\lnetinfo.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\loader.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\localnet.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\lockdown.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\lockdown2000.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\lookout.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\lordpe.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\lsetup.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\luall.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\luau.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\lucomserver.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\luinit.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\luspt.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\MalwareRemoval.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mapisvc32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mcagent.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mcmnhdlr.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mcmscsvc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mcnasvc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mcproxy.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\McSACore.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mcshell.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mcshield.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mcsysmon.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mctool.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mcupdate.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mcvsrte.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mcvsshld.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\md.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mfin32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mfw2en.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mfweng3.02d30.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mgavrtcl.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mgavrte.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mghtml.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mgui.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\minilog.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mmod.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\monitor.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\moolive.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mostat.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mpfagent.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mpfservice.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\MPFSrv.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mpftray.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mrflux.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mrt.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\msa.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\msapp.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\MSASCui.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\msbb.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\msblast.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mscache.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\msccn32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mscman.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\msconfig: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\msdm.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\msdos.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\msiexec16.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mslaugh.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\msmgt.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\msmsgri32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\msseces.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mssmmc32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mssys.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\msvxd.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mu0311ad.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\mwatch.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\n32scanw.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\nav.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\navap.navapsvc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\navapsvc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\navapw32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\navdx.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\navlu32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\navnt.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\navstub.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\nc2000.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ncinst4.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ndd32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\neomonitor.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\neowatchlog.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\netarmor.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\netd32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\netinfo.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\netmon.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\netscanpro.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\netspyhunter-1.2.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\netutils.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\nisserv.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\nisum.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\nmain.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\nod32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\normist.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\norton_internet_secu_3.0_407.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\notstart.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\npf40_tw_98_nt_me_2k.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\npfmessenger.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\nprotect.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\npscheck.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\npssvc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\nsched32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\nssys32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\nstask32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\nsupdate.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\nt.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ntrtscan.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ntvdm.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ntxconfig.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\nui.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\nupgrade.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\nvarch16.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\nvc95.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\nvsvc32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\nwinst4.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\nwservice.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\nwtool16.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\OAcat.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\OAhlp.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\OAReg.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\oasrv.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\oaui.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\oaview.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ODSW.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ollydbg.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\OLT.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\onsrvr.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\optimize.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ostronet.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\otfix.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\outpost.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\outpostinstall.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\outpostproinstall.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ozn695m5.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\padmin.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\panixk.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\patch.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\pav.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\pavcl.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\PavFnSvr.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\pavproxy.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\pavprsrv.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\pavsched.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\pavsrv51.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\pavw.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\pc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\PC_Antispyware2010.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\pccwin98.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\pcfwallicon.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\pcip10117_0.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\pcscan.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\pctsAuxs.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\pctsGui.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\pctsSvc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\pctsTray.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\pdfndr.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\pdsetup.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\PerAvir.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\periscope.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\persfw.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\personalguard: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\personalguard.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\perswf.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\pf2.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\pfwadmin.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\pgmonitr.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\pingscan.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\platin.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\pop3trap.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\poproxy.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\popscan.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\portdetective.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\portmonitor.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\powerscan.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ppinupdt.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\pptbc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ppvstop.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\prizesurfer.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\prmt.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\prmvr.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\procdump.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\processmonitor.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\procexplorerv1.0.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\programauditor.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\proport.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\protectedsearch.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation) O27 - HKLM IFEO\protector.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\protectx.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\PSANCU.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\PSANHost.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\PSANToManager.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\PsCtrls.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\PsImSvc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\PskSvc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\pspf.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\PSUNMain.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\purge.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\qconsole.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\qh.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\qserver.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\Quick Heal.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\QuickHealCleaner.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\rapapp.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\rav7.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\rav7win.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\rav8win32eng.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ray.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\rb32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\rcsync.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\realmon.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\reged.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\regedt32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\rescue.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\rescue32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\rrguard.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\rscdwld.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\rshell.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\rtvscan.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\rtvscn95.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\rulaunch.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\rwg: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\rwg.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\SafetyKeeper.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\safeweb.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\sahagent.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\Save.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\SaveArmor.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\SaveDefense.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\SaveKeep.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\savenow.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\sbserv.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\sc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\scam32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\scan32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\scan95.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\scanpm.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\scrscan.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\searchinstaller.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation) O27 - HKLM IFEO\searchprotection.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation) O27 - HKLM IFEO\searchprotector.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation) O27 - HKLM IFEO\searchsettings.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation) O27 - HKLM IFEO\searchsettings64.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation) O27 - HKLM IFEO\seccenter.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\Secure Veteran.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\secureveteran.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\Security Center.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\SecurityFighter.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\securitysoldier.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\serv95.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\setloadorder.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\setup_flowprotector_us.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\setupvameeval.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\sgssfw32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\sh.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\shellspyinstall.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\shield.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\shn.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\showbehind.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\signcheck.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\smart.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\smartprotector.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\smc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\smrtdefp.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\sms.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\smss32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\snapdo.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation) O27 - HKLM IFEO\snetcfg.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\soap.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\sofi.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\SoftSafeness.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\sperm.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\spf.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\sphinx.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\spoler.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\spoolcv.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\spoolsv32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\spywarexpguard.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\spyxx.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\srexe.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\srng.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ss3edit.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ssg_4104.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\ssgrate.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\st2.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\start.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\stcloader.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\stinst32.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation) O27 - HKLM IFEO\stinst64.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation) O27 - HKLM IFEO\supftrl.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\support.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\supporter5.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\svc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\svchostc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\svchosts.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\svshost.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\sweep95.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\sweepnet.sweepsrv.sys.swnetsup.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\symlcsvc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\symproxysvc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\symtray.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\system.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\system32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\sysupd.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\tapinstall.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\taskmgr.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\taumon.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\tbscan.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\tc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\tca.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\tcm.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\tds2-98.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\tds2-nt.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\tds-3.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\teekids.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\tfak.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\tfak5.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\tgbob.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\titanin.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\titaninxp.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\TPSrv.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\trickler.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\trjscan.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\trjsetup.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\trojantrap3.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\TrustWarrior.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\tsadbot.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\tsc.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\tvmd.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\tvtmd.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\uiscan.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\umbrella.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation) O27 - HKLM IFEO\undoboot.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\updat.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\upgrad.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\upgrepl.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\utiljumpflip.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation) O27 - HKLM IFEO\utpost.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vbcmserv.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vbcons.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vbust.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vbwin9x.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vbwinntw.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vcsetup.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vet32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vet95.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vettray.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vfsetup.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vir-help.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\virusmdpersonalfirewall.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\VisthAux.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\VisthLic.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\VisthUpd.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vnlan300.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vnpc3000.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\volaro: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation) O27 - HKLM IFEO\vonteera: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation) O27 - HKLM IFEO\vpc32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vpc42.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vpfw30s.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vptray.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vscan40.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vscenu6.02d30.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vsched.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vsecomr.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vshwin32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vsisetup.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vsmain.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vsmon.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vsserv.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vsstat.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vswin9xe.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vswinntse.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\vswinperse.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\w32dsm89.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\W3asbas.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\w9x.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\watchdog.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\webdav.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\WebProxy.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\webscanx.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\websteroids.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation) O27 - HKLM IFEO\websteroidsservice.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation) O27 - HKLM IFEO\webtrap.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\wfindv32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\whoswatchingme.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\wimmun32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\win32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\win32us.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\winactive.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\winav.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\win-bugsfix.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\windll32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\window.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\windows Police Pro.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\windows.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\wininetd.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\wininitx.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\winlogin.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\winmain.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\winppr32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\winrecon.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\winservn.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\winssk32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\winstart.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\winstart001.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\wintsk32.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\winupdate.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\wkufind.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\wnad.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\wnt.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\wradmin.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\wrctrl.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\wsbgate.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\wscfxas.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\wscfxav.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\wscfxfw.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\wsctool.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\wupdater.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\wupdt.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\wyvernworksfirewall.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\xp_antispyware.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\xpdeluxe.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\xpf202en.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\zapro.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\zapsetup3001.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\zatutor.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\zonalm2601.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O27 - HKLM IFEO\zonealarm.exe: Debugger - C:\Windows\System32\svchost.exe (Microsoft Corporation) O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) O31 - SafeBoot: AlternateShell - services32.exe O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009-06-10 23:42:20 | 000,000,024 | -H-- | M] () - C:\autoexec.bat -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O36 - AppCertDlls: x64 - (c:\program files\browser tab search by ask\safetynut\x64\safetycrt.dll) - File not found O36 - AppCertDlls: x86 - (C:\Program Files\Browser Tab Search by Ask\SafetyNut\safetycrt.dll) - C:\Program Files\Browser Tab Search by Ask\SafetyNut\safetycrt.dll () O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2014-09-21 13:31:53 | 000,000,000 | ---D | C] -- C:\ProgramData\DSearchLink [2014-09-21 13:29:14 | 000,000,000 | ---D | C] -- C:\Program Files\TheGoPhoto.it V10 [2014-09-21 13:25:46 | 000,000,000 | ---D | C] -- C:\Program Files\TheTorntv V10 [2014-09-14 11:21:14 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2014-09-14 10:50:57 | 000,000,000 | ---D | C] -- C:\Users\bbbb\AppData\Local\Aeria Games [2014-09-14 10:49:13 | 000,000,000 | ---D | C] -- C:\Users\bbbb\AppData\Local\Akamai [2014-09-13 15:19:44 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox.bak [2014-09-09 19:15:34 | 000,000,000 | ---D | C] -- C:\Program Files\Aeria Games [2012-10-28 14:39:30 | 000,148,736 | ---- | C] (Avanquest Software) -- C:\ProgramData\hpe81CD.dll [7 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ] [4 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] File not found -- C:\Windows\System32\ File not found -- C:\Windows\ [2014-10-05 17:56:25 | 008,126,464 | -HS- | M] () -- C:\Users\bbbb\ntuser.dat [2014-10-05 17:54:45 | 000,000,918 | ---- | M] () -- C:\Windows\tasks\GinyasBrowserCompanion Update Checker.job [2014-10-05 17:44:01 | 000,000,918 | ---- | M] () -- C:\Windows\tasks\GinyasBrowserCompanion Runner.job [2014-10-05 17:33:57 | 000,003,112 | ---- | M] () -- C:\Windows\tasks\586f69c1-a224-4045-bacd-9a2247fe80b3-3.job [2014-10-05 17:33:51 | 000,004,482 | ---- | M] () -- C:\Windows\tasks\8bbbf7b1-3b68-4dc9-a4c7-b883a278e825-11.job [2014-10-05 17:33:51 | 000,004,474 | ---- | M] () -- C:\Windows\tasks\586f69c1-a224-4045-bacd-9a2247fe80b3-11.job [2014-10-05 17:33:51 | 000,004,136 | ---- | M] () -- C:\Windows\tasks\586f69c1-a224-4045-bacd-9a2247fe80b3-4.job [2014-10-05 17:33:51 | 000,003,800 | ---- | M] () -- C:\Windows\tasks\8bbbf7b1-3b68-4dc9-a4c7-b883a278e825-4.job [2014-10-05 17:33:51 | 000,003,790 | ---- | M] () -- C:\Windows\tasks\1b1d9b86-fa7e-48f6-8ad3-9db6717d0ec7-11.job [2014-10-05 17:33:51 | 000,003,120 | ---- | M] () -- C:\Windows\tasks\8bbbf7b1-3b68-4dc9-a4c7-b883a278e825-7.job [2014-10-05 17:33:51 | 000,003,112 | ---- | M] () -- C:\Windows\tasks\586f69c1-a224-4045-bacd-9a2247fe80b3-7.job [2014-10-05 17:33:51 | 000,003,108 | ---- | M] () -- C:\Windows\tasks\1b1d9b86-fa7e-48f6-8ad3-9db6717d0ec7-3.job [2014-10-05 17:33:51 | 000,002,432 | ---- | M] () -- C:\Windows\tasks\8bbbf7b1-3b68-4dc9-a4c7-b883a278e825-5.job [2014-10-05 17:33:51 | 000,002,424 | ---- | M] () -- C:\Windows\tasks\586f69c1-a224-4045-bacd-9a2247fe80b3-5.job [2014-10-05 17:33:51 | 000,002,212 | ---- | M] () -- C:\Windows\tasks\1b1d9b86-fa7e-48f6-8ad3-9db6717d0ec7-4.job [2014-10-05 17:33:51 | 000,001,414 | ---- | M] () -- C:\Windows\tasks\1b1d9b86-fa7e-48f6-8ad3-9db6717d0ec7-5.job [2014-10-05 17:33:51 | 000,001,394 | ---- | M] () -- C:\Windows\tasks\7cd83429-cbcb-4042-80d5-a7ac55a54735.job [2014-10-05 17:33:51 | 000,000,986 | ---- | M] () -- C:\Windows\tasks\GinyasBrowserCompanion Stats Report.job [2014-10-05 17:33:51 | 000,000,986 | ---- | M] () -- C:\Windows\tasks\GinyasBrowserCompanion FireFox Watcher.job [2014-10-05 17:33:51 | 000,000,986 | ---- | M] () -- C:\Windows\tasks\GinyasBrowserCompanion Chrome Watcher.job [2014-10-05 17:33:51 | 000,000,904 | ---- | M] () -- C:\Windows\tasks\globalUpdateUpdateTaskMachineCore.job [2014-10-05 17:33:29 | 000,001,502 | ---- | M] () -- C:\Windows\tasks\1b1d9b86-fa7e-48f6-8ad3-9db6717d0ec7-1.job [2014-10-05 17:33:26 | 000,002,088 | ---- | M] () -- C:\Windows\tasks\586f69c1-a224-4045-bacd-9a2247fe80b3-2.job [2014-10-05 17:33:23 | 000,000,544 | ---- | M] () -- C:\Windows\tasks\242955c1-bb96-411e-9979-c474af47ea5f.job [2014-10-05 17:33:22 | 000,003,448 | ---- | M] () -- C:\Windows\tasks\586f69c1-a224-4045-bacd-9a2247fe80b3-6.job [2014-10-05 17:33:22 | 000,002,764 | ---- | M] () -- C:\Windows\tasks\8bbbf7b1-3b68-4dc9-a4c7-b883a278e825-1.job [2014-10-05 17:33:22 | 000,002,096 | ---- | M] () -- C:\Windows\tasks\8bbbf7b1-3b68-4dc9-a4c7-b883a278e825-2.job [2014-10-05 17:33:22 | 000,001,350 | ---- | M] () -- C:\Windows\tasks\LGMRTD.job [2014-10-05 17:33:22 | 000,000,560 | ---- | M] () -- C:\Windows\tasks\fac95ffd-789a-48b7-97cc-cfa9f6fe59bd.job [2014-10-05 17:33:18 | 000,003,120 | ---- | M] () -- C:\Windows\tasks\8bbbf7b1-3b68-4dc9-a4c7-b883a278e825-3.job [2014-10-05 17:33:18 | 000,001,446 | ---- | M] () -- C:\Windows\tasks\1b1d9b86-fa7e-48f6-8ad3-9db6717d0ec7-7.job [2014-10-05 17:33:18 | 000,001,350 | ---- | M] () -- C:\Windows\tasks\RPTXIY.job [2014-10-05 17:33:18 | 000,001,330 | ---- | M] () -- C:\Windows\tasks\1b1d9b86-fa7e-48f6-8ad3-9db6717d0ec7-2.job [2014-10-05 17:33:15 | 000,000,242 | ---- | M] () -- C:\Windows\tasks\SpeedUpMyPC.job [2014-10-05 17:33:11 | 000,003,456 | ---- | M] () -- C:\Windows\tasks\8bbbf7b1-3b68-4dc9-a4c7-b883a278e825-6.job [2014-10-05 17:33:11 | 000,002,432 | ---- | M] () -- C:\Windows\tasks\8bbbf7b1-3b68-4dc9-a4c7-b883a278e825-5_user.job [2014-10-05 17:33:11 | 000,001,514 | ---- | M] () -- C:\Windows\tasks\1b1d9b86-fa7e-48f6-8ad3-9db6717d0ec7-6.job [2014-10-05 17:33:11 | 000,001,378 | ---- | M] () -- C:\Windows\tasks\eb94b16e-1067-4ff7-bf7a-66a081b38643.job [2014-10-05 17:33:11 | 000,001,344 | ---- | M] () -- C:\Windows\tasks\NYI.job [2014-10-05 17:33:10 | 000,002,424 | ---- | M] () -- C:\Windows\tasks\586f69c1-a224-4045-bacd-9a2247fe80b3-5_user.job [2014-10-05 17:33:10 | 000,000,320 | ---- | M] () -- C:\Windows\tasks\spmonitor.job [2014-10-05 17:33:06 | 000,002,748 | ---- | M] () -- C:\Windows\tasks\586f69c1-a224-4045-bacd-9a2247fe80b3-1.job [2014-10-05 17:33:06 | 000,000,324 | ---- | M] () -- C:\Windows\tasks\GlaryInitialize 4.job [2014-10-05 17:33:02 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2014-10-05 17:32:58 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2014-10-05 17:32:51 | 1609,424,896 | -HS- | M] () -- C:\hiberfil.sys [2014-10-05 17:31:44 | 000,010,320 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2014-10-05 17:31:44 | 000,010,320 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2014-10-05 17:30:57 | 003,534,269 | -H-- | M] () -- C:\Users\bbbb\AppData\Local\IconCache.db [2014-10-05 17:12:04 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2014-10-05 15:06:59 | 000,000,924 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1495774856-1328017135-2697362928-1000UA.job [2014-09-28 13:23:58 | 000,000,150 | ---- | M] () -- C:\Windows\System32\queries-02.cache [2014-09-28 13:23:58 | 000,000,065 | ---- | M] () -- C:\Windows\System32\cache.00 [2014-09-27 15:43:00 | 000,000,920 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1495774856-1328017135-2697362928-1005UA.job [2014-09-27 15:43:00 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1495774856-1328017135-2697362928-1005Core.job [2014-09-27 15:19:00 | 000,000,278 | ---- | M] () -- C:\Windows\tasks\DLL-Files.Com Fixer_Updates.job [2014-09-27 09:31:46 | 000,002,369 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2014-09-27 09:31:46 | 000,001,347 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2014-09-23 19:00:00 | 000,000,272 | ---- | M] () -- C:\Windows\tasks\RMSchedule.job [2014-09-22 17:32:55 | 000,000,908 | ---- | M] () -- C:\Windows\tasks\globalUpdateUpdateTaskMachineUA.job [2014-09-20 18:13:49 | 000,000,017 | ---- | M] () -- C:\queries-07.cache [2014-09-20 18:13:49 | 000,000,005 | ---- | M] () -- C:\server.met [2014-09-20 18:13:49 | 000,000,005 | ---- | M] () -- C:\queries-00.cache [2014-09-20 18:13:49 | 000,000,005 | ---- | M] () -- C:\known.met [2014-09-20 18:07:00 | 000,000,902 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1495774856-1328017135-2697362928-1000Core.job [2014-09-19 16:24:44 | 000,000,005 | ---- | M] () -- C:\server_met.old [2014-09-17 18:46:46 | 000,071,011 | ---- | M] () -- C:\Users\bbbb\Desktop\bg.pdf [2014-09-09 19:15:34 | 000,001,990 | ---- | M] () -- C:\Users\Public\Desktop\Aeria Ignite.lnk [7 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ] [4 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] File not found -- C:\Windows\System32\ File not found -- C:\Windows\ [2014-09-21 13:30:39 | 000,002,432 | ---- | C] () -- C:\Windows\tasks\8bbbf7b1-3b68-4dc9-a4c7-b883a278e825-5_user.job [2014-09-21 13:30:37 | 000,002,432 | ---- | C] () -- C:\Windows\tasks\8bbbf7b1-3b68-4dc9-a4c7-b883a278e825-5.job [2014-09-21 13:30:33 | 000,001,394 | ---- | C] () -- C:\Windows\tasks\7cd83429-cbcb-4042-80d5-a7ac55a54735.job [2014-09-21 13:30:23 | 000,002,096 | ---- | C] () -- C:\Windows\tasks\8bbbf7b1-3b68-4dc9-a4c7-b883a278e825-2.job [2014-09-21 13:30:18 | 000,002,764 | ---- | C] () -- C:\Windows\tasks\8bbbf7b1-3b68-4dc9-a4c7-b883a278e825-1.job [2014-09-21 13:30:16 | 000,001,350 | ---- | C] () -- C:\Windows\tasks\LGMRTD.job [2014-09-21 13:29:57 | 000,003,800 | ---- | C] () -- C:\Windows\tasks\8bbbf7b1-3b68-4dc9-a4c7-b883a278e825-4.job [2014-09-21 13:29:40 | 000,003,456 | ---- | C] () -- C:\Windows\tasks\8bbbf7b1-3b68-4dc9-a4c7-b883a278e825-6.job [2014-09-21 13:29:38 | 000,003,120 | ---- | C] () -- C:\Windows\tasks\8bbbf7b1-3b68-4dc9-a4c7-b883a278e825-7.job [2014-09-21 13:29:32 | 000,000,560 | ---- | C] () -- C:\Windows\tasks\fac95ffd-789a-48b7-97cc-cfa9f6fe59bd.job [2014-09-21 13:29:22 | 000,004,482 | ---- | C] () -- C:\Windows\tasks\8bbbf7b1-3b68-4dc9-a4c7-b883a278e825-11.job [2014-09-21 13:29:20 | 000,001,350 | ---- | C] () -- C:\Windows\tasks\RPTXIY.job [2014-09-21 13:29:17 | 000,003,120 | ---- | C] () -- C:\Windows\tasks\8bbbf7b1-3b68-4dc9-a4c7-b883a278e825-3.job [2014-09-21 13:27:31 | 000,002,424 | ---- | C] () -- C:\Windows\tasks\586f69c1-a224-4045-bacd-9a2247fe80b3-5_user.job [2014-09-21 13:27:30 | 000,002,424 | ---- | C] () -- C:\Windows\tasks\586f69c1-a224-4045-bacd-9a2247fe80b3-5.job [2014-09-21 13:27:25 | 000,001,378 | ---- | C] () -- C:\Windows\tasks\eb94b16e-1067-4ff7-bf7a-66a081b38643.job [2014-09-21 13:27:13 | 000,002,088 | ---- | C] () -- C:\Windows\tasks\586f69c1-a224-4045-bacd-9a2247fe80b3-2.job [2014-09-21 13:27:04 | 000,002,748 | ---- | C] () -- C:\Windows\tasks\586f69c1-a224-4045-bacd-9a2247fe80b3-1.job [2014-09-21 13:27:01 | 000,001,344 | ---- | C] () -- C:\Windows\tasks\NYI.job [2014-09-21 13:26:44 | 000,004,136 | ---- | C] () -- C:\Windows\tasks\586f69c1-a224-4045-bacd-9a2247fe80b3-4.job [2014-09-21 13:26:19 | 000,003,448 | ---- | C] () -- C:\Windows\tasks\586f69c1-a224-4045-bacd-9a2247fe80b3-6.job [2014-09-21 13:26:17 | 000,003,112 | ---- | C] () -- C:\Windows\tasks\586f69c1-a224-4045-bacd-9a2247fe80b3-7.job [2014-09-21 13:26:10 | 000,000,544 | ---- | C] () -- C:\Windows\tasks\242955c1-bb96-411e-9979-c474af47ea5f.job [2014-09-21 13:25:56 | 000,004,474 | ---- | C] () -- C:\Windows\tasks\586f69c1-a224-4045-bacd-9a2247fe80b3-11.job [2014-09-21 13:25:49 | 000,003,112 | ---- | C] () -- C:\Windows\tasks\586f69c1-a224-4045-bacd-9a2247fe80b3-3.job [2014-09-17 18:46:40 | 000,071,011 | ---- | C] () -- C:\Users\bbbb\Desktop\bg.pdf [2014-09-13 09:17:56 | 000,000,930 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2014-09-09 19:15:34 | 000,001,990 | ---- | C] () -- C:\Users\Public\Desktop\Aeria Ignite.lnk [2014-08-28 09:55:23 | 000,115,184 | ---- | C] () -- C:\Users\bbbb\AppData\Roaming\icarus-dxdiag.xml [2014-07-26 09:46:32 | 000,524,288 | -HS- | C] () -- C:\Users\bbbb\NTUSER.DAT{e547a680-1498-11e4-8d02-001e741b774d}.TMContainer00000000000000000002.regtrans-ms [2014-07-26 09:46:32 | 000,524,288 | -HS- | C] () -- C:\Users\bbbb\NTUSER.DAT{e547a680-1498-11e4-8d02-001e741b774d}.TMContainer00000000000000000001.regtrans-ms [2014-07-26 09:46:32 | 000,065,536 | -HS- | C] () -- C:\Users\bbbb\NTUSER.DAT{e547a680-1498-11e4-8d02-001e741b774d}.TM.blf [2014-07-24 18:42:09 | 000,192,352 | ---- | C] () -- C:\Windows\System32\drivers\aswVmm.sys [2014-07-24 18:42:08 | 000,049,944 | ---- | C] () -- C:\Windows\System32\drivers\aswRvrt.sys [2014-07-24 18:42:07 | 000,024,184 | ---- | C] () -- C:\Windows\System32\drivers\aswHwid.sys [2014-07-11 16:39:08 | 000,000,163 | ---- | C] () -- C:\Windows\Reimage.ini [2014-07-05 19:18:41 | 000,317,152 | ---- | C] () -- C:\Windows\System32\WindowsUpdateKB12695__4914_il156.exe [2014-06-17 17:20:27 | 000,347,096 | ---- | C] () -- C:\Windows\System32\WindowsUpdateKB12695__4914_il70.exe [2014-06-15 17:20:37 | 000,346,144 | ---- | C] () -- C:\Windows\System32\WindowsUpdateKB12695__4914_il5142076.exe [2014-06-10 17:55:29 | 000,118,600 | ---- | C] () -- C:\Users\bbbb\AppData\Local\GDIPFONTCACHEV1.DAT [2014-05-21 21:35:46 | 003,534,269 | -H-- | C] () -- C:\Users\bbbb\AppData\Local\IconCache.db [2014-05-18 09:58:32 | 000,000,640 | RHS- | C] () -- C:\Users\bbbb\ntuser.pol [2014-05-18 09:58:30 | 000,524,288 | -HS- | C] () -- C:\Users\bbbb\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms [2014-05-18 09:58:30 | 000,524,288 | -HS- | C] () -- C:\Users\bbbb\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms [2014-05-18 09:58:30 | 000,065,536 | -HS- | C] () -- C:\Users\bbbb\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf [2014-05-18 09:58:30 | 000,000,020 | -HS- | C] () -- C:\Users\bbbb\ntuser.ini [2014-05-18 09:58:29 | 008,126,464 | -HS- | C] () -- C:\Users\bbbb\ntuser.dat [2014-04-03 16:38:44 | 000,025,424 | ---- | C] () -- C:\Windows\System32\apl005.sys [2014-04-03 16:38:44 | 000,014,160 | ---- | C] () -- C:\Windows\System32\apf005.sys [2014-02-12 21:14:05 | 000,000,038 | ---- | C] () -- C:\Windows\AviSplitter.INI [2014-01-17 13:45:18 | 000,110,592 | ---- | C] () -- C:\Windows\System32\FsUsbExDevice.Dll [2014-01-17 13:45:18 | 000,037,344 | ---- | C] () -- C:\Windows\System32\FsUsbExDisk.Sys [2014-01-03 14:27:38 | 001,050,624 | ---- | C] () -- C:\Windows\core.exe [2014-01-03 12:31:58 | 000,368,161 | ---- | C] () -- C:\Windows\start.exe [2013-11-30 10:43:16 | 000,478,208 | ---- | C] () -- C:\Windows\ati.exe [2013-11-30 10:43:08 | 000,082,432 | ---- | C] () -- C:\Windows\pthread.dll [2013-11-28 20:03:40 | 005,499,768 | ---- | C] () -- C:\Windows\proxy.exe [2013-11-22 01:46:00 | 011,307,520 | ---- | C] () -- C:\Windows\cuda.exe [2013-08-26 09:35:58 | 000,000,032 | R--- | C] () -- C:\ProgramData\hash.dat [2013-07-18 16:06:02 | 000,187,904 | ---- | C] () -- C:\Windows\cpu.exe [2013-06-12 15:15:00 | 000,245,795 | ---- | C] () -- C:\Windows\libcurl-4.dll [2013-06-12 15:15:00 | 000,100,864 | ---- | C] () -- C:\Windows\zlib1.dll [2013-06-02 09:55:11 | 002,375,984 | ---- | C] () -- C:\Windows\System32\dmwu.exe [2013-04-28 16:25:59 | 000,002,693 | ---- | C] () -- C:\Windows\Ascd_tmp.ini [2013-03-20 12:47:35 | 000,000,000 | ---- | C] () -- C:\ProgramData\bbc614e94b897585f3588c61be0982f6_c [2013-03-10 21:33:23 | 000,000,035 | ---- | C] () -- C:\Windows\Worldbuilder.INI [2013-02-24 11:38:26 | 000,022,328 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys [2013-02-24 11:38:08 | 000,103,736 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe [2013-02-24 11:38:06 | 001,957,672 | ---- | C] () -- C:\Windows\System32\pbsvc.exe [2013-02-24 11:38:06 | 000,066,872 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe [2013-02-23 10:53:15 | 000,449,024 | ---- | C] () -- C:\Windows\System32\mss32.dll [2013-02-08 22:51:25 | 000,004,096 | ---- | C] () -- C:\Windows\d3dx.dat [2013-02-03 14:37:27 | 000,016,304 | ---- | C] () -- C:\Windows\System32\apl003.sys [2013-02-03 14:37:27 | 000,013,232 | ---- | C] () -- C:\Windows\System32\apf003.sys [2012-12-06 20:53:57 | 000,293,889 | ---- | C] () -- C:\Windows\System32\drivers\RTAIODAT.DAT [2012-01-09 17:33:57 | 000,000,000 | ---- | C] () -- C:\ProgramData\89ffab7fcf69ba060ea4635cc768b9aa_c [color=#E56717]========== ZeroAccess Check ==========[/color] [2009-07-14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [2011-11-14 12:09:48 | 000,028,160 | -HS- | M] () -- C:\Windows\assembly\GAC_MSIL\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2010-11-20 14:21:19 | 012,872,192 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = %systemroot%\system32\wbem\wbemess.dll -- [2009-07-14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [color=#E56717]========== LOP Check ==========[/color] [2014-09-10 16:59:54 | 000,000,000 | ---D | M] -- C:\Users\bbbb\AppData\Roaming\.minecraft [2014-09-10 16:59:42 | 000,000,000 | ---D | M] -- C:\Users\bbbb\AppData\Roaming\.minecraftzyczu [2014-07-03 20:48:51 | 000,000,000 | ---D | M] -- C:\Users\bbbb\AppData\Roaming\Browser Tab Search by Ask [2014-08-18 08:53:53 | 000,000,000 | ---D | M] -- C:\Users\bbbb\AppData\Roaming\Cubic [2014-05-21 20:31:16 | 000,000,000 | ---D | M] -- C:\Users\bbbb\AppData\Roaming\Desk 365 [2014-07-18 18:31:51 | 000,000,000 | ---D | M] -- C:\Users\bbbb\AppData\Roaming\Mobogenie [2014-09-01 13:54:02 | 000,000,000 | ---D | M] -- C:\Users\bbbb\AppData\Roaming\Mount&Blade With Fire and Sword [2014-05-28 09:13:31 | 000,000,000 | ---D | M] -- C:\Users\bbbb\AppData\Roaming\Opera Software [2014-08-23 15:33:27 | 000,000,000 | ---D | M] -- C:\Users\bbbb\AppData\Roaming\RotMG.Production [2014-05-21 20:32:05 | 000,000,000 | ---D | M] -- C:\Users\bbbb\AppData\Roaming\SMART Technologies [2014-09-03 14:13:30 | 000,000,000 | ---D | M] -- C:\Users\bbbb\AppData\Roaming\SPORE [2014-06-16 18:14:54 | 000,000,000 | ---D | M] -- C:\Users\bbbb\AppData\Roaming\Systweak [2014-05-21 20:40:41 | 000,000,000 | ---D | M] -- C:\Users\bbbb\AppData\Roaming\TuneUp Software [2014-07-30 11:40:41 | 000,000,000 | ---D | M] -- C:\Users\bbbb\AppData\Roaming\Unity [2014-08-24 19:02:32 | 000,000,000 | ---D | M] -- C:\Users\bbbb\AppData\Roaming\URSoft [2014-10-05 17:35:52 | 000,000,000 | ---D | M] -- C:\Users\bbbb\AppData\Roaming\uTorrent [2014-05-21 21:26:35 | 000,000,000 | ---D | M] -- C:\Users\bbbb\AppData\Roaming\WinZipper [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Hard Links - Junction Points - Mount Points - Symbolic Links ==========[/color] [C:\Windows\$NtUninstallKB48234$] -> Error: Cannot create file handle -> Unknown point type [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 157 bytes -> C:\ProgramData\TEMP:1CE11B51 @Alternate Data Stream - 144 bytes -> C:\ProgramData\TEMP:373E1720 @Alternate Data Stream - 116 bytes -> C:\ProgramData\TEMP:D1B5B4F1 < End of report >