Stala se takova nahoda - pred chvili nam vypadly pojistky, zrovna jsem bootoval. Pri dalsim bootovani se spustila obnova systemu a po ni problemu vyrazne ubylo (vlastne si ted ani nejsem jisty, jestli je porad neco v neporadku) - lze kopirovat na plochu, "Windows script host" hlaska je pryc, lze spustit RSIT. Tady je log:
Logfile of random's system information tool 1.09 (written by random/random)
Run by YourAdHere at 2013-07-10 17:52:30
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 1 GB (4%) free of 30 GB
Total RAM: 4087 MB (72% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:52:33, on 10.7.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16576)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
C:\Program Files\CleanMem\mini_monitor.exe
C:\Program Files (x86)\StrokeIt\strokeit.exe
C:\Program Files (x86)\AutoHotkey\AutoHotkey.exe
C:\Program Files (x86)\Who Is On My Wifi\mywifi.exe
C:\Program Files (x86)\MSI Afterburner\Bundle\OSDServer\RTSS.exe
C:\Program Files\Avast\AvastUI.exe
C:\Program Files\trend micro\YourAdHere.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Avast\aswWebRepIE.dll
O2 - BHO: FlashGetBHO - {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} - C:\Users\YourAdHere\AppData\Roaming\FlashGetBHO\FlashGetBHO.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [avast] "C:\Program Files\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [StrokeIt] C:\Program Files (x86)\StrokeIt\StrokeIt.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [AtiTrayTools] "C:\Program Files (x86)\ATI Tray Tools\atitray.exe"
O4 - HKCU\..\Run: [BitComet] "C:\Program Files\BitComet\BitComet.exe" /tray
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [GizmoDriveDelegate] "C:\Program Files (x86)\Gizmo\gizmo.exe" /RemountStartupImages
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: always_top.ahk
O4 - Global Startup: speedfan.exe – zástupce.lnk = C:\Program Files (x86)\SpeedFan\speedfan.exe
O4 - Global Startup: Who Is On My Wifi.lnk = C:\Program Files (x86)\Who Is On My Wifi\mywifi.exe
O8 - Extra context menu item: Download all links by FlashGet3 - C:\Program Files (x86)\FlashGet 3\BHO\fdgetallurl.htm
O8 - Extra context menu item: Download by FlashGet3 - C:\Program Files (x86)\FlashGet 3\BHO\fdgeturl.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
http://fpdownload2.macromedia.com/pub/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{B7846055-7F6C-4D73-B859-E431C3353F61}: NameServer = 208.67.222.222,208.67.220.220
O20 - AppInit_DLLs:
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: BitComet Disk Boost Service (BITCOMET_HELPER_SERVICE) -
http://www.BitComet.com - C:\Program Files\BitComet\tools\BitCometService.exe
O23 - Service: COMODO LPS Launcher (CLPSLauncher) - Comodo Security Solutions Inc. - C:\Program Files (x86)\Common Files\Comodo\launcher_service.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GeekBuddy Remote Screen Protocol (GeekBuddyRSP) - Comodo Security Solutions, Inc. - C:\Program Files (x86)\Common Files\Comodo\GeekBuddyRSP.exe
O23 - Service: Gizmo Central - Arainia Solutions - C:\Program Files (x86)\Gizmo\gservice.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: O&O Defrag (OODefragAgent) - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer8\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8448 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\Common Files\Comodo\launcher_service.exe"
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Common Files\Comodo\GeekBuddyRSP.exe" -service
"C:\Program Files (x86)\Gizmo\gservice.exe"
"C:\Program Files\OO Software\Defrag\oodag.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer8\TeamViewer_Service.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-8c05b4d2-9cc4-47a7-9d77-99e4a5a54c4d -SystemEventPortName:HostProcess-58c20ae9-41e8-409b-a989-cf106b5c7b25 -IoCancelEventPortName:HostProcess-51e1402d-0bc7-460d-b2bb-784baa563f17 -NonStateChangingEventPortName:HostProcess-6ffaca8d-1371-4a2e-9edc-5b834063e6f3 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:324142b2-f465-4ed4-b208-9a971fc346df -DeviceGroupId:WpdFsGroup
"taskhost.exe"
taskeng.exe {2D0C8514-E5C9-4D40-AA13-46ECF4FAA9AF}
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe" /s
C:\Windows\Explorer.EXE
"C:\Program Files\CleanMem\mini_monitor.exe" /startup
"C:\Program Files\OO Software\Defrag\oodtray.exe"
"C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\StrokeIt\strokeit.exe"
"C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"
"C:\Program Files (x86)\AutoHotkey\AutoHotkey.exe" "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\always_top.ahk"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\Who Is On My Wifi\mywifi.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\MSI Afterburner\Bundle\OSDServer\RTSS.exe" /h
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\Avast\AvastSvc.exe"
"C:\Program Files\Avast\AvastUI.exe" /nogui
"c:\program files\windows defender\MpCmdRun.exe" SpyNetService -RestrictPrivileges -AccessKey D718D4F3-8AB9-5552-24D5-63CB60F9A798 -Reinvoke
"D:\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
=========Mozilla firefox=========
ProfilePath - C:\Users\YourAdHere\AppData\Roaming\Mozilla\Firefox\Profiles\iyl6gyzr.default
prefs.js - "browser.startup.homepage" - "chrome://fvd.speeddial/content/fvd_about_blank.html"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.7.700.224 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.13.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.13.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.7.700.224 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
C:\Program Files (x86)\Mozilla Firefox\components\
nsIBitCometAgent.xpt
C:\Program Files (x86)\Mozilla Firefox\plugins\
npBitCometAgent.dll
C:\Users\YourAdHere\AppData\Roaming\Mozilla\Firefox\Profiles\iyl6gyzr.default\extensions\
pavel.sherbakov@gmail.com
{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\Avast\aswWebRepIE64.dll [2013-05-09 242496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-02-11 461216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Avast\aswWebRepIE.dll [2013-05-09 198688]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0}]
FlashGetBHO - C:\Users\YourAdHere\AppData\Roaming\FlashGetBHO\FlashGetBHO.dll [2012-01-06 149128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-02-11 170912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\Avast\aswWebRepIE64.dll [2013-05-09 242496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - C:\Program Files\Avast\aswWebRepIE.dll [2013-05-09 198688]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"OODefragTray"=C:\Program Files\OO Software\Defrag\oodtray.exe [2011-06-06 3992904]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cfp.exe [2012-03-11 9569096]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-05-31 13545032]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"StrokeIt"=C:\Program Files (x86)\StrokeIt\StrokeIt.exe [2010-01-03 26248]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-08-28 3671904]
"AtiTrayTools"=C:\Program Files (x86)\ATI Tray Tools\atitray.exe [2011-10-29 929792]
"BitComet"=C:\Program Files\BitComet\BitComet.exe [2013-02-19 20529920]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2013-05-15 5622512]
"GizmoDriveDelegate"=C:\Program Files (x86)\Gizmo\gizmo.exe [2013-06-18 223640]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tvncontrol]
C:\Program Files (x86)\Common Files\Comodo\tvnserver.exe -controlservice -slave []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-12-19 642808]
"Driver Genius"= []
"avast"=C:\Program Files\Avast\avastUI.exe [2013-05-09 4858968]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
always_top.ahk
speedfan.exe – zástupce.lnk - C:\Program Files (x86)\SpeedFan\speedfan.exe
Who Is On My Wifi.lnk - C:\Program Files (x86)\Who Is On My Wifi\mywifi.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\FlashGet 3\FlashGet3.exe"="C:\Program Files (x86)\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.RTV1"=rtvcvfw64.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.iv50"=ir50_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iv32"=ir32_32.dll
"vidc.iv31"=ir32_32.dll
"msacm.iac2"=C:\Windows\system32\iac25_32.ax
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-07-10 17:52:01 ----A---- C:\AdwCleaner[R5].txt
2013-07-10 17:39:38 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2013-07-10 17:39:37 ----A---- C:\Windows\system32\drivers\aswSP.sys
2013-07-10 17:39:36 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2013-07-10 17:39:35 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2013-07-10 17:39:35 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2013-07-10 17:39:33 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2013-07-10 17:39:33 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2013-07-10 17:39:29 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2013-07-10 17:39:29 ----A---- C:\Windows\system32\aswBoot.exe
2013-07-10 17:38:58 ----A---- C:\Windows\avastSS.scr
2013-07-10 17:38:44 ----D---- C:\Program Files\Avast
2013-07-10 17:37:47 ----D---- C:\ProgramData\AVAST Software
2013-07-10 16:23:30 ----A---- C:\AdwCleaner[R4].txt
2013-07-10 16:19:45 ----A---- C:\AdwCleaner[R3].txt
2013-07-09 16:25:00 ----D---- C:\Users\YourAdHere\AppData\Roaming\SUPERAntiSpyware.com
2013-07-09 16:24:42 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2013-07-09 16:24:42 ----D---- C:\Program Files\SUPERAntiSpyware
2013-07-09 16:19:03 ----D---- C:\Users\YourAdHere\AppData\Roaming\Malwarebytes
2013-07-09 16:19:01 ----D---- C:\ProgramData\Malwarebytes
2013-07-09 16:18:59 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-07-09 16:18:59 ----A---- C:\Windows\system32\drivers\mbam.sys
2013-07-09 16:17:16 ----D---- C:\Program Files (x86)\Windows Repair
2013-07-09 14:35:27 ----A---- C:\AdwCleaner[S1].txt
2013-07-09 14:35:15 ----A---- C:\AdwCleaner[R2].txt
2013-07-09 14:31:59 ----A---- C:\AdwCleaner[R1].txt
2013-07-09 13:44:37 ----D---- C:\Program Files (x86)\trend micro
2013-07-09 13:43:26 ----D---- C:\Program Files\trend micro
2013-07-09 13:43:25 ----D---- C:\rsit
2013-07-08 18:14:34 ----D---- C:\ProgramData\PopCap Games
2013-07-07 18:51:12 ----D---- C:\Windows\Sun
2013-06-26 00:15:14 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-06-21 12:11:16 ----D---- C:\ProgramData\Steam
2013-06-21 03:43:39 ----A---- C:\Windows\SYSWOW64\register.bat
2013-06-21 03:42:24 ----D---- C:\Program Files (x86)\Combined Community Codec Pack
2013-06-19 18:12:20 ----D---- C:\Program Files\Realtek
2013-06-19 18:12:19 ----D---- C:\Windows\SYSWOW64\RTCOM
2013-06-19 18:11:48 ----A---- C:\Windows\system32\drivers\DTSU2PParamEQ.DAT
2013-06-19 18:11:48 ----A---- C:\Windows\system32\drivers\DTSU2PClearAudio.DAT
2013-06-19 18:11:48 ----A---- C:\Windows\system32\drivers\DTSU2P.DAT
2013-06-19 18:11:45 ----A---- C:\Windows\system32\WavesGUILib64.dll
2013-06-19 18:11:45 ----A---- C:\Windows\system32\SRSWOW64.dll
2013-06-19 18:11:45 ----A---- C:\Windows\system32\SRSTSX64.dll
2013-06-19 18:11:45 ----A---- C:\Windows\system32\SRSTSH64.dll
2013-06-19 18:11:45 ----A---- C:\Windows\system32\SRSHP64.dll
2013-06-19 18:11:44 ----A---- C:\Windows\system32\RtPgEx64.dll
2013-06-19 18:11:44 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2013-06-19 18:11:44 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2013-06-19 18:11:44 ----A---- C:\Windows\system32\RtkCfg64.dll
2013-06-19 18:11:44 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2013-06-19 18:11:43 ----A---- C:\Windows\system32\RtkAPO64.dll
2013-06-19 18:11:43 ----A---- C:\Windows\system32\RtkApi64.dll
2013-06-19 18:11:43 ----A---- C:\Windows\system32\RTEEP64A.dll
2013-06-19 18:11:43 ----A---- C:\Windows\system32\RTEEL64A.dll
2013-06-19 18:11:43 ----A---- C:\Windows\system32\RTEEG64A.dll
2013-06-19 18:11:43 ----A---- C:\Windows\system32\RTEED64A.dll
2013-06-19 18:11:43 ----A---- C:\Windows\system32\RtDataProc64.dll
2013-06-19 18:11:43 ----A---- C:\Windows\system32\RTCOM64.dll
2013-06-19 18:11:43 ----A---- C:\Windows\system32\RP3DHT64.dll
2013-06-19 18:11:43 ----A---- C:\Windows\system32\RP3DAA64.dll
2013-06-19 18:11:43 ----A---- C:\Windows\system32\RCoInstII64.dll
2013-06-19 18:11:43 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2013-06-19 18:11:42 ----A---- C:\Windows\SYSWOW64\MBAPO32.dll
2013-06-19 18:11:42 ----A---- C:\Windows\system32\MBWrp64.dll
2013-06-19 18:11:42 ----A---- C:\Windows\system32\MBppld64.dll
2013-06-19 18:11:42 ----A---- C:\Windows\system32\MBPPCn64.dll
2013-06-19 18:11:42 ----A---- C:\Windows\system32\MBAPO64.dll
2013-06-19 18:11:42 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2013-06-19 18:11:42 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2013-06-19 18:11:42 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2013-06-19 18:11:40 ----A---- C:\Windows\system32\FMAPO64.dll
2013-06-19 18:11:39 ----D---- C:\Program Files (x86)\Realtek
2013-06-19 18:11:39 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2013-06-19 18:11:39 ----A---- C:\Windows\system32\AERTAR64.dll
2013-06-19 18:11:39 ----A---- C:\Windows\system32\AERTAC64.dll
2013-06-19 18:11:36 ----HD---- C:\Program Files (x86)\Temp
2013-06-19 18:11:36 ----A---- C:\Windows\RtlExUpd.dll
2013-06-19 18:03:51 ----D---- C:\ProgramData\DriverGenius
2013-06-19 18:02:33 ----D---- C:\Program Files (x86)\DriverGenius
2013-06-19 17:55:20 ----D---- C:\Users\YourAdHere\AppData\Roaming\Realtek Driver Updates Scanner
2013-06-19 17:02:35 ----A---- C:\RAMDisk.img.bak
2013-06-19 16:33:36 ----D---- C:\Users\YourAdHere\AppData\Roaming\Mp3CompressorFreeEdition
2013-06-19 16:30:52 ----D---- C:\Program Files (x86)\Mp3 Compressor
2013-06-19 16:09:56 ----D---- C:\Users\YourAdHere\AppData\Roaming\MP3 Quality Modifier
2013-06-19 15:26:35 ----A---- C:\Windows\SYSWOW64\unrar.dll
2013-06-19 15:26:33 ----D---- C:\Program Files (x86)\K-Lite Codec Pack
2013-06-18 12:14:40 ----D---- C:\Program Files (x86)\Radeon RAMDisk
2013-06-18 12:11:32 ----D---- C:\Users\YourAdHere\AppData\Roaming\Gizmo
2013-06-18 12:11:29 ----A---- C:\Windows\system32\drivers\gizmodrv.sys
2013-06-18 12:11:22 ----D---- C:\Program Files (x86)\Gizmo
2013-06-14 22:55:49 ----A---- C:\Windows\SYSWOW64\CmdLineExt.dll
2013-06-14 00:39:12 ----D---- C:\Program Files (x86)\Who Is On My Wifi
2013-06-11 17:30:46 ----D---- C:\Windows\pss
2013-06-11 01:57:40 ----D---- C:\Program Files\CCleaner
2013-06-11 01:35:20 ----D---- C:\Textures Backup
======List of files/folders modified in the last 1 month======
2013-07-10 18:31:45 ----D---- C:\Windows\system32\config
2013-07-10 18:31:42 ----RD---- C:\Program Files (x86)
2013-07-10 18:31:42 ----D---- C:\Windows\system32\wfp
2013-07-10 18:31:42 ----D---- C:\Windows\system32\catroot2
2013-07-10 18:31:42 ----D---- C:\ProgramData\MFAData
2013-07-10 18:31:42 ----D---- C:\Program Files (x86)\SpeedFan
2013-07-10 18:31:42 ----D---- C:\Program Files (x86)\AVG
2013-07-10 18:31:41 ----D---- C:\Windows\system32\wbem
2013-07-10 18:31:41 ----D---- C:\Windows\registration
2013-07-10 17:52:34 ----D---- C:\Windows\Temp
2013-07-10 17:52:09 ----D---- C:\Windows\Prefetch
2013-07-10 17:44:04 ----D---- C:\Users\YourAdHere\AppData\Roaming\BitComet
2013-07-10 17:39:41 ----D---- C:\Windows\system32\drivers
2013-07-10 17:39:29 ----D---- C:\Windows\SysWOW64
2013-07-10 17:39:29 ----D---- C:\Windows\system32\Tasks
2013-07-10 17:39:29 ----D---- C:\Windows\System32
2013-07-10 17:39:26 ----SHD---- C:\Windows\Installer
2013-07-10 17:39:26 ----SHD---- C:\Config.Msi
2013-07-10 17:38:58 ----D---- C:\Windows
2013-07-10 17:38:44 ----SHD---- C:\System Volume Information
2013-07-10 17:38:44 ----RD---- C:\Program Files
2013-07-10 17:37:47 ----HD---- C:\ProgramData
2013-07-10 17:15:56 ----D---- C:\ProgramData\AVG2013
2013-07-10 17:15:24 ----D---- C:\Windows\inf
2013-07-10 06:10:53 ----D---- C:\Program Files (x86)\MSI Afterburner
2013-07-09 22:02:41 ----D---- C:\Program Files (x86)\Razer Game Booster
2013-07-09 22:00:39 ----D---- C:\Users\YourAdHere\AppData\Roaming\DAEMON Tools Lite
2013-07-09 22:00:35 ----D---- C:\Windows\debug
2013-07-09 17:45:52 ----D---- C:\Windows\system32\LogFiles
2013-07-09 16:37:33 ----D---- C:\Windows\system32\NDF
2013-07-09 14:50:49 ----D---- C:\Windows\SYSWOW64\drivers
2013-07-09 14:35:44 ----D---- C:\Program Files (x86)\Common Files
2013-07-09 14:08:37 ----D---- C:\Users\YourAdHere\AppData\Roaming\vlc
2013-07-09 13:24:12 ----SD---- C:\ProgramData\Microsoft
2013-06-27 23:58:44 ----D---- C:\Program Files (x86)\Paint Shop Pro 7
2013-06-26 19:01:05 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-06-19 18:12:11 ----D---- C:\Windows\system32\catroot
2013-06-19 18:12:09 ----D---- C:\Windows\system32\DriverStore
2013-06-19 18:11:39 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-06-19 17:59:06 ----D---- C:\Users\YourAdHere\AppData\Roaming\Ubisoft
2013-06-14 22:38:29 ----RSD---- C:\Windows\assembly
2013-06-12 18:25:00 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-06-11 02:18:09 ----D---- C:\Windows\Panther
2013-06-11 02:18:09 ----D---- C:\Windows\Logs
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amdxata;amdxata; C:\Windows\system32\drivers\amdxata.sys [2011-03-11 27008]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-07-10 189936]
R0 CNG;CNG; C:\Windows\System32\Drivers\cng.sys [2012-06-02 458704]
R0 fvevol;@%SystemRoot%\system32\drivers\fvevol.sys,-100; C:\Windows\System32\DRIVERS\fvevol.sys [2013-01-24 223752]
R0 hwpolicy;@%systemroot%\system32\drivers\hwpolicy.sys,-101; C:\Windows\System32\drivers\hwpolicy.sys [2010-11-20 14720]
R0 KSecPkg;KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [2012-06-02 151920]
R0 pcw;Performance Counters for Windows Driver; C:\Windows\System32\drivers\pcw.sys [2009-07-14 50768]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-03-17 560184]
R0 vdrvroot;Ovladač rozpoznávacího modulu virtuální jednotky společnosti Microsoft; C:\Windows\system32\drivers\vdrvroot.sys [2009-07-14 36432]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-05-09 72016]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-07-10 378944]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-05-09 64288]
R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [2013-02-19 39768]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\System32\DRIVERS\cmdguard.sys [2012-03-11 577824]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys [2012-03-11 43248]
R1 discache;@%systemroot%\system32\drivers\discache.sys,-102; C:\Windows\System32\drivers\discache.sys [2009-07-14 40448]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-09-26 283200]
R1 GizmoDrv;Gizmo Device Driver; C:\Windows\system32\drivers\GizmoDrv.sys [2013-06-18 34704]
R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys [2012-02-03 93200]
R1 RDPREFMP;@%systemroot%\system32\drivers\RdpRefMp.sys,-101; C:\Windows\system32\drivers\rdprefmp.sys [2009-07-14 8192]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys [2012-12-19 237992]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\Windows\system32\DRIVERS\VBoxUSBMon.sys [2012-12-19 120232]
R1 WfpLwf;WFP Lightweight Filter; C:\Windows\system32\DRIVERS\wfplwf.sys [2009-07-14 12800]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-05-09 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-05-09 80816]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2013-05-15 314016]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2013-05-15 43680]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-12-19 11278336]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-12-19 552960]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-11-06 96256]
R3 CompositeBus;Ovladač rozpoznávacího modulu složené sběrnice; C:\Windows\system32\drivers\CompositeBus.sys [2010-11-20 38912]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-05-31 3432776]
R3 RasAgileVpn;WAN Miniport (IKEv2); C:\Windows\system32\DRIVERS\AgileVpn.sys [2009-07-14 60416]
R3 RTCore64;RTCore64; \??\C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [2013-01-23 13368]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-03-01 187392]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2012-12-19 132008]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys [2012-12-19 146856]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 87040]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 198656]
S0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-05-09 65336]
S1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-07-10 1030952]
S1 CFRMD;CFRMD; C:\Windows\system32\DRIVERS\CFRMD.sys []
S3 1394ohci;Hostitelský řadič pro rozhraní OHCI standardu 1394; C:\Windows\system32\drivers\1394ohci.sys [2010-11-20 229888]
S3 a9wv8z98;a9wv8z98; C:\Windows\system32\drivers\a9wv8z98.sys []
S3 AcpiPmi;Ovladač měřiče napájení standardu ACPI; C:\Windows\system32\drivers\acpipmi.sys [2010-11-20 12800]
S3 AmdPPM;AMD Processor Driver; C:\Windows\system32\DRIVERS\amdppm.sys [2009-07-14 60928]
S3 amdsata;amdsata; C:\Windows\system32\drivers\amdsata.sys [2011-03-11 107904]
S3 amdsbs;amdsbs; C:\Windows\system32\DRIVERS\amdsbs.sys [2009-07-14 194128]
S3 AppID;@%systemroot%\system32\appidsvc.dll,-102; C:\Windows\system32\drivers\appid.sys [2010-11-20 61440]
S3 b06bdrv;Broadcom NetXtreme II VBD; C:\Windows\system32\DRIVERS\bxvbda.sys [2009-06-10 468480]
S3 b57nd60a;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60a.sys [2009-06-10 270848]
S3 drmkaud;Ovladače zvuku považované společností Microsoft za důvěryhodné; C:\Windows\system32\drivers\drmkaud.sys [2009-07-14 5632]
S3 ebdrv;Broadcom NetXtreme II 10 GigE VBD; C:\Windows\system32\DRIVERS\evbda.sys [2009-06-10 3286016]
S3 epmntdrv;epmntdrv; \??\C:\Windows\syswow64\epmntdrv.sys [2011-07-29 14216]
S3 ErrDev;Ovladače chybového zařízení hardwaru Microsoft; C:\Windows\system32\drivers\errdev.sys [2009-07-14 9728]
S3 EuGdiDrv;EuGdiDrv; \??\C:\Windows\syswow64\EuGdiDrv.sys [2011-07-29 8456]
S3 FsDepends;@%SystemRoot%\system32\drivers\fsdepends.sys,-10001; C:\Windows\System32\drivers\FsDepends.sys [2009-07-14 55376]
S3 hcw85cir;Hauppauge Consumer Infrared Receiver; C:\Windows\system32\drivers\hcw85cir.sys [2009-06-10 31232]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2010-11-20 350208]
S3 HidBatt;HID UPS Battery Driver; C:\Windows\system32\DRIVERS\HidBatt.sys [2009-07-14 26624]
S3 HpSAMD;HpSAMD; C:\Windows\system32\drivers\HpSAMD.sys [2010-11-20 78720]
S3 LSI_SAS2;LSI_SAS2; C:\Windows\system32\DRIVERS\lsi_sas2.sys [2009-07-14 65600]
S3 MegaSR;MegaSR; C:\Windows\system32\DRIVERS\MegaSR.sys [2009-07-14 284736]
S3 mshidkmdf;@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100; C:\Windows\System32\drivers\mshidkmdf.sys [2009-07-14 8192]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2009-07-14 11136]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2009-07-14 7168]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2009-07-14 6784]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2009-07-14 8064]
S3 MTConfig;Microsoft Input Configuration Driver; C:\Windows\system32\DRIVERS\MTConfig.sys [2009-07-14 15360]
S3 NdisCap;NDIS Capture LightWeight Filter; C:\Windows\system32\DRIVERS\ndiscap.sys [2009-07-14 35328]
S3 RAMDiskVE;RAMDiskVE; C:\Windows\System32\Drivers\RAMDiskVE.sys []
S3 rdpbus;Remote Desktop Device Redirector Bus Driver; C:\Windows\system32\DRIVERS\rdpbus.sys [2009-07-14 24064]
S3 scfilter;@%SystemRoot%\System32\drivers\scfilter.sys,-11; C:\Windows\System32\DRIVERS\scfilter.sys [2010-11-20 29696]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2012-06-27 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2012-06-27 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2012-06-27 177640]
S3 stexstor;stexstor; C:\Windows\system32\DRIVERS\stexstor.sys [2009-07-14 24656]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 UmPass;Microsoft UMPass Driver; C:\Windows\system32\DRIVERS\umpass.sys [2009-07-14 9728]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 vhdmp;vhdmp; C:\Windows\system32\drivers\vhdmp.sys [2010-11-20 215936]
S3 vwifibus;@%SystemRoot%\System32\drivers\vwifibus.sys,-257; C:\Windows\System32\drivers\vwifibus.sys [2009-07-14 24576]
S3 WIMMount;WIMMount; C:\Windows\system32\drivers\wimmount.sys [2009-07-14 22096]
S3 WinRing0_1_2_0;WinRing0_1_2_0; \??\C:\Program Files (x86)\Razer Game Booster\Driver\WinRing0x64.sys [2012-08-01 14544]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2013-05-23 143120]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-12-19 240640]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Avast\AvastSvc.exe [2013-05-09 46808]
R2 CLPSLauncher;COMODO LPS Launcher; C:\Program Files (x86)\Common Files\Comodo\launcher_service.exe [2012-11-01 70352]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2012-03-11 2815496]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 GeekBuddyRSP;GeekBuddy Remote Screen Protocol; C:\Program Files (x86)\Common Files\Comodo\GeekBuddyRSP.exe [2012-10-31 1467088]
R2 Gizmo Central;Gizmo Central; C:\Program Files (x86)\Gizmo\gservice.exe [2013-06-18 34728]
R2 OODefragAgent;O&O Defrag; C:\Program Files\OO Software\Defrag\oodag.exe [2011-06-06 3246920]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-10-22 76888]
R2 Power;@%SystemRoot%\system32\umpo.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 RpcEptMapper;@%windir%\system32\RpcEpMap.dll,-1001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 TeamViewer8;TeamViewer 8; C:\Program Files (x86)\TeamViewer8\TeamViewer_Service.exe [2012-11-29 3463080]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 sppsvc;@%SystemRoot%\system32\sppsvc.exe,-101; C:\Windows\system32\sppsvc.exe [2010-11-20 3524608]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-12 256904]
S3 AppIDSvc;@%systemroot%\system32\appidsvc.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 AxInstSV;@%SystemRoot%\system32\AxInstSV.dll,-103; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 BDESVC;@%SystemRoot%\system32\bdesvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service; C:\Program Files\BitComet\tools\BitCometService.exe [2010-12-28 1296728]
S3 bthserv;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 defragsvc;@%SystemRoot%\system32\defragsvc.dll,-101; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 EFS;@%SystemRoot%\system32\efssvc.dll,-100; C:\Windows\System32\lsass.exe [2011-11-17 31232]
S3 HomeGroupListener;@%SystemRoot%\System32\ListSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 HomeGroupProvider;@%SystemRoot%\System32\provsvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-06-26 117144]
S3 PerfHost;@%systemroot%\sysWow64\perfhost.exe,-2; C:\Windows\SysWow64\perfhost.exe [2009-07-14 20992]
S3 sppuinotify;@%SystemRoot%\system32\sppuinotify.dll,-103; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 VaultSvc;@%SystemRoot%\system32\vaultsvc.dll,-1003; C:\Windows\system32\lsass.exe [2011-11-17 31232]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-09-29 1255736]
S3 WwanSvc;@%SystemRoot%\System32\wwansvc.dll,-257; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 SensrSvc;Adaptivní jas; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S4 WbioSrvc;Biometrická služba systému Windows; C:\Windows\system32\svchost.exe [2009-07-14 27136]
-----------------EOF-----------------
Jeste jednou diky, ze se tim zabyvate.
Stahnete RogueKiller 
Nevadi, ten je nahraditelny.
Přispějete na provoz fóra?