VIRY.CZ

Dobry vecer prosim o kontrolu logu. Pred tyzdnom windows prezil BlueScreen a odvtedy sa s nim nieco deje. Dakujem



Logfile of random's system information tool 1.08 (written by random/random)
Run by cigo89 at 2011-11-21 20:47:09
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 43 GB (52%) free of 82 GB
Total RAM: 3959 MB (74% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:47:12, on 21. 11. 2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files\trend micro\cigo89.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t54k2k517
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT2645238
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t54k2k517
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t54k2k517
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - (no file)
R3 - URLSearchHook: (no name) - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - (no file)
R3 - URLSearchHook: (no name) - {91da5e8a-3318-4f8c-b67e-5964de3ab546} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O3 - Toolbar: (no name) - {D5D47440-0750-463D-BAEF-A47D02414806} - (no file)
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [BackupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportova do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TurboBoost - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8954 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
winlogon.exe
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe"
"C:\Program Files (x86)\Acer\Registration\GregHSRW.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00000674
\??\C:\Windows\system32\conhost.exe "18052627961472202934-4625672158477205601175384786-142591051511594338211180314592
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-165ba972-120e-46cd-98dc-dfcfef8c65fd -SystemEventPortName:HostProcess-13955394-0943-48a3-833a-19b4da100636 -IoCancelEventPortName:HostProcess-ef678219-5adc-49b9-9abe-d664ce0fc680 -NonStateChangingEventPortName:HostProcess-686aa421-c18e-48ad-9b0e-d27654b891d2 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:41e66223-928c-4f39-9a04-4e7b33da27e0
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\Program Files (x86)\Launch Manager\LMworker.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 528 532 540 65536 536
"C:\Users\cigo89\Desktop\RSITx64.exe"

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-11-10 49440]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{D5D47440-0750-463D-BAEF-A47D02414806}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-12-29 9913376]
"Acer ePower Management"=C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [2010-01-18 832544]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-12-10 1890088]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
""= []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-06-06 937920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [2011-09-05 35736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BlazeServoTool]
C:\Program Files (x86)\BlazeVideo\BlazeDTV 6.0\MediaDetector.exe [2009-07-07 282624]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EgisTecLiveUpdate]
C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Fhoion]
C:\Users\cigo89\AppData\Roaming\Fhoion.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mwlDaemon]
C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaOviSuite2]
C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe -tray []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\Windows\system32\NvCpl.dll [2010-01-25 17398376]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Program Files (x86)\uTorrent\uTorrent.exe [2011-03-28 399736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2009-10-02 1082144]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^cigo89^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^setup_9.0.0.722_10.06.2011_14-50.lnk]
C:\Users\cigo89\Desktop\VIRUSR~1\SETUP_~1.201\startup.exe []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2009-12-24 284696]
"BackupManagerTray"=C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [2010-01-13 265984]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2010-03-02 282792]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2010-01-22 1287760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2011-11-21 19:07:11 ----D---- C:\Users\cigo89\AppData\Roaming\Avira
2011-11-21 19:04:38 ----D---- C:\ProgramData\Avira
2011-11-21 19:04:38 ----A---- C:\Windows\SYSWOW64\drivers\avgntmgr.sys
2011-11-21 19:04:38 ----A---- C:\Windows\SYSWOW64\drivers\avgntdd.sys
2011-11-21 19:04:38 ----A---- C:\Windows\system32\drivers\avipbb.sys
2011-11-21 19:04:38 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2011-11-21 19:04:37 ----D---- C:\Program Files (x86)\Avira
2011-11-20 19:29:24 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2011-11-20 19:29:24 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2011-11-20 19:29:24 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2011-11-20 19:29:24 ----A---- C:\Windows\system32\XAudio2_7.dll
2011-11-20 19:29:24 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2011-11-20 19:29:24 ----A---- C:\Windows\system32\xactengine3_7.dll
2011-11-20 19:29:23 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2011-11-20 19:29:23 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2011-11-20 19:29:22 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2011-11-20 19:29:22 ----A---- C:\Windows\system32\d3dcsx_43.dll
2011-11-20 19:29:21 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2011-11-20 19:29:21 ----A---- C:\Windows\system32\d3dx11_43.dll
2011-11-20 19:29:20 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2011-11-20 19:29:20 ----A---- C:\Windows\system32\d3dx10_43.dll
2011-11-20 19:29:19 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2011-11-20 19:29:19 ----A---- C:\Windows\system32\D3DX9_43.dll
2011-11-20 19:29:18 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2011-11-20 19:29:18 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2011-11-20 19:29:18 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2011-11-20 19:29:18 ----A---- C:\Windows\system32\XAudio2_6.dll
2011-11-20 19:29:18 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2011-11-20 19:29:18 ----A---- C:\Windows\system32\xactengine3_6.dll
2011-11-20 19:29:17 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2011-11-20 19:29:17 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2011-11-20 18:56:42 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2011-11-20 18:46:41 ----D---- C:\rsit
2011-11-20 16:26:45 ----A---- C:\Windows\system32\drivers\71786222.sys
2011-11-20 16:26:45 ----A---- C:\Windows\system32\drivers\71786221.sys
2011-11-20 16:26:45 ----A---- C:\Windows\system32\drivers\7178622.sys
2011-11-19 14:17:58 ----D---- C:\ProgramData\BlazeVideo
2011-11-19 14:17:57 ----A---- C:\Windows\SYSWOW64\systeminfo.dll
2011-11-19 14:17:23 ----D---- C:\Program Files (x86)\BlazeVideo
2011-11-18 16:18:05 ----A---- C:\Windows\system32\drivers\AF15BDA.sys
2011-11-18 16:15:11 ----A---- C:\Windows\system32\AF15BDAEX.dll
2011-11-12 12:18:47 ----D---- C:\Windows\Internet Logs
2011-11-12 12:18:26 ----D---- C:\Users\cigo89\AppData\Roaming\CheckPoint
2011-11-12 12:18:10 ----D---- C:\Program Files (x86)\Conduit
2011-11-12 12:17:47 ----D---- C:\Program Files\CheckPoint
2011-11-12 12:10:55 ----D---- C:\Program Files (x86)\CheckPoint
2011-11-10 22:21:47 ----A---- C:\Windows\system32\javaws.exe
2011-11-10 22:21:47 ----A---- C:\Windows\system32\javaw.exe
2011-11-10 22:21:47 ----A---- C:\Windows\system32\java.exe
2011-11-10 22:21:47 ----A---- C:\Windows\system32\deployJava1.dll
2011-11-10 22:21:31 ----D---- C:\Program Files\Java
2011-11-08 23:18:58 ----A---- C:\Windows\system32\drivers\tcpip.sys
2011-11-08 23:18:57 ----A---- C:\Windows\system32\win32k.sys
2011-11-07 23:02:45 ----D---- C:\Program Files (x86)\Google
2011-11-07 20:52:53 ----D---- C:\Program Files (x86)\PC Connectivity Solution
2011-10-26 16:36:20 ----A---- C:\Windows\system32\shell32.dll
2011-10-26 16:36:14 ----A---- C:\Windows\SYSWOW64\shell32.dll
2011-10-26 10:09:29 ----D---- C:\Users\cigo89\AppData\Roaming\Mozilla
2011-10-25 14:12:34 ----D---- C:\Users\cigo89\AppData\Roaming\ESET
2011-10-14 15:12:50 ----SHD---- C:\ProgramData\DSS
2011-10-14 12:01:42 ----RA---- C:\Windows\SYSWOW64\tmp1AB2.tmp
2011-10-14 11:35:43 ----RA---- C:\Windows\SYSWOW64\tmp5014.tmp
2011-10-12 14:57:27 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2011-10-12 14:57:27 ----A---- C:\Windows\system32\psisdecd.dll
2011-10-12 14:57:22 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2011-10-12 14:57:22 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2011-10-12 14:57:22 ----A---- C:\Windows\system32\oleacc.dll
2011-10-12 14:57:21 ----A---- C:\Windows\system32\oleaut32.dll
2011-08-24 18:51:02 ----A---- C:\Windows\SYSWOW64\tzres.dll
2011-08-24 18:51:02 ----A---- C:\Windows\system32\tzres.dll

======List of files/folders modified in the last 3 months======

2011-11-21 20:47:11 ----D---- C:\Program Files\trend micro
2011-11-21 20:47:10 ----D---- C:\Windows\Temp
2011-11-21 20:46:40 ----D---- C:\ProgramData\boost_interprocess
2011-11-21 20:45:59 ----A---- C:\Windows\SYSWOW64\log.txt
2011-11-21 20:43:52 ----D---- C:\Windows\inf
2011-11-21 20:43:28 ----AD---- C:\Windows
2011-11-21 20:42:46 ----D---- C:\Windows\system32\config
2011-11-21 20:40:37 ----D---- C:\Windows\System32
2011-11-21 20:40:37 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-11-21 19:12:54 ----D---- C:\Windows\Logs
2011-11-21 19:12:54 ----D---- C:\Users\cigo89\AppData\Roaming\DAEMON Tools Lite
2011-11-21 19:04:43 ----D---- C:\Windows\system32\catroot
2011-11-21 19:04:38 ----HD---- C:\ProgramData
2011-11-21 19:04:38 ----D---- C:\Windows\SYSWOW64\drivers
2011-11-21 19:04:38 ----AD---- C:\Windows\system32\drivers
2011-11-21 19:04:37 ----D---- C:\Program Files (x86)
2011-11-21 19:01:37 ----SHD---- C:\Windows\Installer
2011-11-21 19:01:18 ----D---- C:\Windows\system32\DriverStore
2011-11-21 19:00:37 ----SHD---- C:\System Volume Information
2011-11-21 11:40:43 ----D---- C:\Users\cigo89\AppData\Roaming\Skype
2011-11-21 11:39:51 ----D---- C:\Users\cigo89\AppData\Roaming\skypePM
2011-11-20 21:57:18 ----RSD---- C:\Windows\assembly
2011-11-20 19:29:26 ----D---- C:\Program Files (x86)\Common Files
2011-11-20 19:29:24 ----D---- C:\Windows\SysWOW64
2011-11-20 19:12:07 ----D---- C:\Windows\winsxs
2011-11-20 16:27:42 ----D---- C:\ProgramData\Kaspersky Lab
2011-11-20 16:16:40 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-11-20 16:14:13 ----D---- C:\Windows\Prefetch
2011-11-20 16:11:19 ----D---- C:\Windows\system32\Tasks
2011-11-19 19:07:37 ----D---- C:\Windows\system32\catroot2
2011-11-18 16:33:37 ----D---- C:\Users\cigo89\AppData\Roaming\uTorrent
2011-11-18 16:33:33 ----D---- C:\Windows\Minidump
2011-11-15 15:05:57 ----D---- C:\Windows\Panther
2011-11-15 01:53:31 ----D---- C:\Program Files (x86)\CCleaner
2011-11-12 12:17:47 ----RD---- C:\Program Files
2011-11-10 22:20:33 ----D---- C:\Program Files (x86)\ESET
2011-11-09 00:18:27 ----D---- C:\Windows\SoftwareDistribution
2011-11-09 00:17:49 ----D---- C:\Windows\debug
2011-11-09 00:13:11 ----D---- C:\Program Files\Common Files\System
2011-11-08 23:35:21 ----A---- C:\Windows\system32\MRT.exe
2011-11-08 22:28:12 ----D---- C:\Windows\pss
2011-11-07 20:54:24 ----D---- C:\ProgramData\Nokia
2011-11-07 20:54:24 ----D---- C:\Program Files (x86)\Nokia
2011-11-07 20:52:59 ----DC---- C:\Windows\system32\DRVSTORE
2011-10-29 23:13:49 ----D---- C:\Users\cigo89\AppData\Roaming\dvdcss
2011-10-26 17:08:56 ----D---- C:\ProgramData\Microsoft Help
2011-10-26 17:07:07 ----A---- C:\Windows\win.ini
2011-10-26 12:58:49 ----D---- C:\Users\cigo89\AppData\Roaming\gtk-2.0
2011-10-26 10:09:15 ----D---- C:\Program Files (x86)\Mozilla Firefox
2011-10-25 14:11:47 ----D---- C:\Program Files\ESET
2011-10-22 00:14:40 ----D---- C:\Program Files (x86)\Opera
2011-10-14 22:43:37 ----D---- C:\Windows\system32\wdi
2011-10-14 15:12:50 ----D---- C:\ProgramData\Codemasters
2011-10-12 17:06:43 ----D---- C:\Windows\Microsoft.NET
2011-10-12 15:00:30 ----D---- C:\Windows\ehome
2011-10-12 14:52:36 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2011-10-10 21:51:54 ----D---- C:\Users\cigo89\AppData\Roaming\PC Suite
2011-08-31 18:45:48 ----D---- C:\Windows\rescache
2011-08-24 23:30:34 ----D---- C:\Windows\SYSWOW64\sk-SK
2011-08-24 23:30:34 ----D---- C:\Windows\system32\sk-SK

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 71786222;71786222 Boot Guard Driver; C:\Windows\system32\DRIVERS\71786222.sys [2009-10-22 40464]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-12-17 538136]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-02-16 834544]
R1 71786221;71786221; C:\Windows\system32\DRIVERS\71786221.sys [2009-09-25 157712]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2010-03-02 116568]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2010-02-16 81072]
R2 TurboB;Turbo Boost UI Monitor driver; C:\Windows\system32\DRIVERS\TurboB.sys [2009-11-02 13784]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2009-11-06 1550848]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys [2009-10-26 151936]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2009-12-29 2231584]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2009-10-16 321064]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2009-11-12 84584]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-12-10 301104]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AF15BDA;AF9015 BDA Device; C:\Windows\system32\DRIVERS\AF15BDA.sys [2011-11-19 507392]
S3 axz2j5ax;axz2j5ax; C:\Windows\system32\drivers\axz2j5ax.sys []
S3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2011-04-28 552960]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 btusbflt;Bluetooth USB Filter; C:\Windows\system32\drivers\btusbflt.sys [2009-07-01 52264]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-10-02 98344]
S3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\DRIVERS\btwavdt.sys [2009-08-28 132648]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 35104]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-08-28 21160]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2008-03-17 115328]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 nmwcdnsucx64;Nokia USB Flashing Generic; C:\Windows\system32\drivers\nmwcdnsucx64.sys [2011-08-17 12800]
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsux64.sys [2011-08-17 171008]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 Pcouffin64;Low level access layer for CD devices; C:\Windows\System32\Drivers\pcouffin64a.sys [2011-04-11 82048]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2009-12-11 232992]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2009-12-02 213280]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-20 32768]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2010-04-01 267432]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2010-02-24 135336]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-10-02 873248]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2010-01-22 310352]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2010-01-18 842784]
R2 Greg_Service;GRegService; C:\Program Files (x86)\Acer\Registration\GregHSRW.exe [2009-08-28 1150496]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-12-24 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-12-09 268824]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2010-01-07 255744]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-01-25 393320]
R2 Updater Service;Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2009-07-04 240160]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-12-09 2320920]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PnkBstrB;PnkBstrB; C:\Windows\syswow64\PnkBstrB.exe [2011-05-18 183112]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2011-10-27 718384]
S3 TurboBoost;TurboBoost; C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2009-11-02 126352]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-02-17 1255736]

-----------------EOF-----------------

Zdravim a pekny vecer preji

Muzete prosim to "neco se neje" zkusit trochu popsat

Stahnete si TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe

• Utilitu spustte a prikazte ji, at skenuje - klik na Start Scan
• Pokud utilita najde infikekci, bude ji chtit lecit (Cure), povolte leceni kliknutim na Continue
• Pokud utilita najde podezrely soubor (suspicious), bude jej chtit preskocit (Skip), povolte preskoceni kliknutim na Continue
• Po dokonceni skenu bude mozna nutny restart PC, povolte jej kliknutim na Reboot now
• Po restartu na Vas vyskoci log, pokud se tak nestane, najdete jej primo na disku, kde mate Windows (obvykle c:\) ve tvaru TDSSKiller.nejaka cisilka _log.txt - jeho obsah sem vlozte
• Pokud restart nebude vyzadovan, kliknete na Close a nasledne na Report - vytvori se log - jeho obsah sem vlozte

Napr. Vcera ked som pozeral film tak sa Windows obcas "kousnul". Dnes sa mi nedal spustit ziadny program .... po restarte to uz bez problemov "slapalo".


21:02:19.0352 2712 TDSS rootkit removing tool 2.6.19.0 Nov 16 2011 12:18:50
21:02:19.0477 2712 ============================================================
21:02:19.0477 2712 Current date / time: 2011/11/21 21:02:19.0477
21:02:19.0477 2712 SystemInfo:
21:02:19.0477 2712
21:02:19.0477 2712 OS Version: 6.1.7601 ServicePack: 1.0
21:02:19.0477 2712 Product type: Workstation
21:02:19.0477 2712 ComputerName: CIGO89-PC
21:02:19.0477 2712 UserName: cigo89
21:02:19.0477 2712 Windows directory: C:\Windows
21:02:19.0477 2712 System windows directory: C:\Windows
21:02:19.0477 2712 Running under WOW64
21:02:19.0477 2712 Processor architecture: Intel x64
21:02:19.0477 2712 Number of processors: 4
21:02:19.0477 2712 Page size: 0x1000
21:02:19.0477 2712 Boot type: Normal boot
21:02:19.0477 2712 ============================================================
21:02:21.0458 2712 Initialize success
21:02:29.0445 3132 ============================================================
21:02:29.0445 3132 Scan started
21:02:29.0445 3132 Mode: Manual;
21:02:29.0445 3132 ============================================================
21:02:30.0022 3132 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
21:02:30.0038 3132 1394ohci - ok
21:02:30.0163 3132 71786221 (6c5461eeb3ffa1b1dcf9a07f8c3b3afe) C:\Windows\system32\DRIVERS\71786221.sys
21:02:30.0178 3132 71786221 - ok
21:02:30.0288 3132 71786222 (3ec7dfda521b4fb22ce9f76df15db099) C:\Windows\system32\DRIVERS\71786222.sys
21:02:30.0288 3132 71786222 - ok
21:02:30.0397 3132 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
21:02:30.0397 3132 ACPI - ok
21:02:30.0490 3132 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
21:02:30.0490 3132 AcpiPmi - ok
21:02:30.0662 3132 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
21:02:30.0662 3132 adp94xx - ok
21:02:30.0802 3132 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
21:02:30.0802 3132 adpahci - ok
21:02:30.0927 3132 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
21:02:30.0927 3132 adpu320 - ok
21:02:31.0083 3132 AF15BDA (0517e1670a58213e3f206066cd209273) C:\Windows\system32\DRIVERS\AF15BDA.sys
21:02:31.0083 3132 AF15BDA - ok
21:02:31.0192 3132 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
21:02:31.0208 3132 AFD - ok
21:02:31.0302 3132 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
21:02:31.0317 3132 agp440 - ok
21:02:31.0426 3132 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
21:02:31.0426 3132 aliide - ok
21:02:31.0536 3132 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
21:02:31.0536 3132 amdide - ok
21:02:31.0645 3132 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
21:02:31.0645 3132 AmdK8 - ok
21:02:31.0738 3132 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
21:02:31.0754 3132 AmdPPM - ok
21:02:31.0863 3132 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
21:02:31.0863 3132 amdsata - ok
21:02:31.0972 3132 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
21:02:31.0988 3132 amdsbs - ok
21:02:32.0082 3132 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
21:02:32.0097 3132 amdxata - ok
21:02:32.0253 3132 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
21:02:32.0253 3132 AppID - ok
21:02:32.0362 3132 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
21:02:32.0362 3132 arc - ok
21:02:32.0472 3132 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
21:02:32.0472 3132 arcsas - ok
21:02:32.0565 3132 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
21:02:32.0565 3132 AsyncMac - ok
21:02:32.0674 3132 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
21:02:32.0674 3132 atapi - ok
21:02:32.0784 3132 athr (d6cad7e5b05055bb8226bdcb1644da27) C:\Windows\system32\DRIVERS\athrx.sys
21:02:32.0971 3132 athr - ok
21:02:33.0174 3132 avgntflt (ed2b23707f19ccc1b2a4382b05d31481) C:\Windows\system32\DRIVERS\avgntflt.sys
21:02:33.0174 3132 avgntflt - ok
21:02:33.0345 3132 avipbb (c98fa6e5ad0e857d22716bd2b8b1f399) C:\Windows\system32\DRIVERS\avipbb.sys
21:02:33.0345 3132 avipbb - ok
21:02:33.0470 3132 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
21:02:33.0486 3132 b06bdrv - ok
21:02:33.0610 3132 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
21:02:33.0626 3132 b57nd60a - ok
21:02:33.0766 3132 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
21:02:33.0766 3132 Beep - ok
21:02:33.0907 3132 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
21:02:33.0907 3132 blbdrive - ok
21:02:34.0032 3132 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
21:02:34.0032 3132 bowser - ok
21:02:34.0125 3132 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:02:34.0125 3132 BrFiltLo - ok
21:02:34.0188 3132 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:02:34.0188 3132 BrFiltUp - ok
21:02:34.0312 3132 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
21:02:34.0328 3132 Brserid - ok
21:02:34.0422 3132 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
21:02:34.0422 3132 BrSerWdm - ok
21:02:34.0531 3132 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:02:34.0531 3132 BrUsbMdm - ok
21:02:34.0593 3132 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
21:02:34.0593 3132 BrUsbSer - ok
21:02:34.0734 3132 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
21:02:34.0734 3132 BthEnum - ok
21:02:34.0812 3132 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
21:02:34.0827 3132 BTHMODEM - ok
21:02:34.0921 3132 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
21:02:34.0936 3132 BthPan - ok
21:02:35.0077 3132 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\System32\Drivers\BTHport.sys
21:02:35.0092 3132 BTHPORT - ok
21:02:35.0217 3132 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\System32\Drivers\BTHUSB.sys
21:02:35.0217 3132 BTHUSB - ok
21:02:35.0326 3132 btusbflt (6e04458e98daf28826482e41a7a62df5) C:\Windows\system32\drivers\btusbflt.sys
21:02:35.0342 3132 btusbflt - ok
21:02:35.0467 3132 btwaudio (af838d8029ae7c27470862d63fa54d24) C:\Windows\system32\drivers\btwaudio.sys
21:02:35.0467 3132 btwaudio - ok
21:02:35.0592 3132 btwavdt (5c849bd7c78791c5cee9f4651d7fe38d) C:\Windows\system32\DRIVERS\btwavdt.sys
21:02:35.0592 3132 btwavdt - ok
21:02:35.0732 3132 btwl2cap (6149301dc3f81d6f9667a3fbac410975) C:\Windows\system32\DRIVERS\btwl2cap.sys
21:02:35.0732 3132 btwl2cap - ok
21:02:35.0841 3132 btwrchid (3e1991afa851a36dc978b0a1b0535c8b) C:\Windows\system32\DRIVERS\btwrchid.sys
21:02:35.0841 3132 btwrchid - ok
21:02:35.0950 3132 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
21:02:35.0950 3132 cdfs - ok
21:02:36.0060 3132 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
21:02:36.0075 3132 cdrom - ok
21:02:36.0169 3132 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
21:02:36.0169 3132 circlass - ok
21:02:36.0278 3132 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
21:02:36.0294 3132 CLFS - ok
21:02:36.0418 3132 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
21:02:36.0418 3132 CmBatt - ok
21:02:36.0528 3132 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
21:02:36.0528 3132 cmdide - ok
21:02:36.0637 3132 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
21:02:36.0652 3132 CNG - ok
21:02:36.0793 3132 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
21:02:36.0793 3132 Compbatt - ok
21:02:36.0886 3132 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
21:02:36.0902 3132 CompositeBus - ok
21:02:37.0011 3132 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
21:02:37.0011 3132 crcdisk - ok
21:02:37.0136 3132 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
21:02:37.0136 3132 DfsC - ok
21:02:37.0230 3132 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
21:02:37.0245 3132 discache - ok
21:02:37.0354 3132 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
21:02:37.0370 3132 Disk - ok
21:02:37.0495 3132 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
21:02:37.0495 3132 drmkaud - ok
21:02:37.0620 3132 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
21:02:37.0620 3132 DXGKrnl - ok
21:02:37.0776 3132 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
21:02:37.0838 3132 ebdrv - ok
21:02:37.0994 3132 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
21:02:37.0994 3132 elxstor - ok
21:02:38.0119 3132 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
21:02:38.0119 3132 ErrDev - ok
21:02:38.0228 3132 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
21:02:38.0228 3132 exfat - ok
21:02:38.0322 3132 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
21:02:38.0337 3132 fastfat - ok
21:02:38.0446 3132 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
21:02:38.0446 3132 fdc - ok
21:02:38.0556 3132 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
21:02:38.0571 3132 FileInfo - ok
21:02:38.0665 3132 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
21:02:38.0665 3132 Filetrace - ok
21:02:38.0774 3132 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
21:02:38.0774 3132 flpydisk - ok
21:02:38.0868 3132 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
21:02:38.0883 3132 FltMgr - ok
21:02:38.0992 3132 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
21:02:38.0992 3132 FsDepends - ok
21:02:39.0086 3132 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
21:02:39.0102 3132 Fs_Rec - ok
21:02:39.0195 3132 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
21:02:39.0211 3132 fvevol - ok
21:02:39.0304 3132 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
21:02:39.0304 3132 gagp30kx - ok
21:02:39.0398 3132 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
21:02:39.0414 3132 hcw85cir - ok
21:02:39.0507 3132 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
21:02:39.0523 3132 HdAudAddService - ok
21:02:39.0632 3132 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
21:02:39.0632 3132 HDAudBus - ok
21:02:39.0741 3132 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
21:02:39.0741 3132 HECIx64 - ok
21:02:39.0835 3132 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
21:02:39.0835 3132 HidBatt - ok
21:02:39.0944 3132 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
21:02:39.0944 3132 HidBth - ok
21:02:40.0053 3132 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
21:02:40.0069 3132 HidIr - ok
21:02:40.0178 3132 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
21:02:40.0194 3132 HidUsb - ok
21:02:40.0303 3132 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
21:02:40.0318 3132 HpSAMD - ok
21:02:40.0412 3132 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
21:02:40.0443 3132 HTTP - ok
21:02:40.0584 3132 hwdatacard (c8f3119ad72a507d12ef389df4c266ef) C:\Windows\system32\DRIVERS\ewusbmdm.sys
21:02:40.0584 3132 hwdatacard - ok
21:02:40.0677 3132 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
21:02:40.0677 3132 hwpolicy - ok
21:02:40.0818 3132 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
21:02:40.0818 3132 i8042prt - ok
21:02:40.0911 3132 iaStor (42e00996dfc13c46366689c0ea8abc5e) C:\Windows\system32\DRIVERS\iaStor.sys
21:02:40.0911 3132 iaStor - ok
21:02:41.0036 3132 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
21:02:41.0052 3132 iaStorV - ok
21:02:41.0161 3132 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
21:02:41.0161 3132 iirsp - ok
21:02:41.0286 3132 Impcd (36fdf367a1dabff903e2214023d71368) C:\Windows\system32\DRIVERS\Impcd.sys
21:02:41.0286 3132 Impcd - ok
21:02:41.0426 3132 IntcAzAudAddService (51c98815721b44bf70e8aeb3ff3f57d6) C:\Windows\system32\drivers\RTKVHD64.sys
21:02:41.0442 3132 IntcAzAudAddService - ok
21:02:41.0566 3132 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
21:02:41.0566 3132 intelide - ok
21:02:41.0691 3132 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
21:02:41.0691 3132 intelppm - ok
21:02:41.0832 3132 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:02:41.0832 3132 IpFilterDriver - ok
21:02:41.0910 3132 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
21:02:41.0910 3132 IPMIDRV - ok
21:02:42.0019 3132 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
21:02:42.0019 3132 IPNAT - ok
21:02:42.0144 3132 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
21:02:42.0144 3132 IRENUM - ok
21:02:42.0237 3132 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
21:02:42.0237 3132 isapnp - ok
21:02:42.0331 3132 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
21:02:42.0346 3132 iScsiPrt - ok
21:02:42.0440 3132 k57nd60a (9d7ea8c7215d8d4ae7be110eee61085d) C:\Windows\system32\DRIVERS\k57nd60a.sys
21:02:42.0440 3132 k57nd60a - ok
21:02:42.0534 3132 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
21:02:42.0534 3132 kbdclass - ok
21:02:42.0674 3132 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
21:02:42.0674 3132 kbdhid - ok
21:02:42.0783 3132 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
21:02:42.0783 3132 KSecDD - ok
21:02:42.0861 3132 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
21:02:42.0877 3132 KSecPkg - ok
21:02:42.0970 3132 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
21:02:42.0970 3132 ksthunk - ok
21:02:43.0111 3132 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
21:02:43.0111 3132 lltdio - ok
21:02:43.0267 3132 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
21:02:43.0282 3132 LSI_FC - ok
21:02:43.0376 3132 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
21:02:43.0392 3132 LSI_SAS - ok
21:02:43.0501 3132 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:02:43.0501 3132 LSI_SAS2 - ok
21:02:43.0610 3132 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:02:43.0610 3132 LSI_SCSI - ok
21:02:43.0704 3132 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
21:02:43.0704 3132 luafv - ok
21:02:43.0813 3132 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
21:02:43.0813 3132 megasas - ok
21:02:43.0938 3132 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
21:02:43.0953 3132 MegaSR - ok
21:02:44.0047 3132 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
21:02:44.0063 3132 Modem - ok
21:02:44.0172 3132 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
21:02:44.0172 3132 monitor - ok
21:02:44.0265 3132 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
21:02:44.0265 3132 mouclass - ok
21:02:44.0406 3132 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
21:02:44.0406 3132 mouhid - ok
21:02:44.0499 3132 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
21:02:44.0499 3132 mountmgr - ok
21:02:44.0577 3132 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
21:02:44.0593 3132 mpio - ok
21:02:44.0687 3132 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
21:02:44.0687 3132 mpsdrv - ok
21:02:44.0780 3132 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
21:02:44.0780 3132 MRxDAV - ok
21:02:44.0874 3132 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:02:44.0889 3132 mrxsmb - ok
21:02:44.0983 3132 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:02:44.0983 3132 mrxsmb10 - ok
21:02:45.0092 3132 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:02:45.0092 3132 mrxsmb20 - ok
21:02:45.0186 3132 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
21:02:45.0186 3132 msahci - ok
21:02:45.0295 3132 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
21:02:45.0295 3132 msdsm - ok
21:02:45.0420 3132 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
21:02:45.0420 3132 Msfs - ok
21:02:45.0513 3132 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
21:02:45.0513 3132 mshidkmdf - ok
21:02:45.0607 3132 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
21:02:45.0607 3132 msisadrv - ok
21:02:45.0716 3132 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
21:02:45.0716 3132 MSKSSRV - ok
21:02:45.0825 3132 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
21:02:45.0825 3132 MSPCLOCK - ok
21:02:45.0935 3132 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
21:02:45.0935 3132 MSPQM - ok
21:02:46.0028 3132 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
21:02:46.0044 3132 MsRPC - ok
21:02:46.0137 3132 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
21:02:46.0137 3132 mssmbios - ok
21:02:46.0231 3132 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
21:02:46.0247 3132 MSTEE - ok
21:02:46.0309 3132 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
21:02:46.0309 3132 MTConfig - ok
21:02:46.0371 3132 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
21:02:46.0371 3132 Mup - ok
21:02:46.0496 3132 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
21:02:46.0496 3132 NativeWifiP - ok
21:02:46.0621 3132 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
21:02:46.0621 3132 NDIS - ok
21:02:46.0730 3132 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
21:02:46.0730 3132 NdisCap - ok
21:02:46.0839 3132 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
21:02:46.0839 3132 NdisTapi - ok
21:02:46.0949 3132 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
21:02:46.0949 3132 Ndisuio - ok
21:02:47.0027 3132 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
21:02:47.0027 3132 NdisWan - ok
21:02:47.0120 3132 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
21:02:47.0120 3132 NDProxy - ok
21:02:47.0229 3132 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
21:02:47.0229 3132 NetBIOS - ok
21:02:47.0323 3132 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
21:02:47.0339 3132 NetBT - ok
21:02:47.0448 3132 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
21:02:47.0463 3132 nfrd960 - ok
21:02:47.0557 3132 nmwcd (907b5e1e4a592e5edc5e4ccbde4863c2) C:\Windows\system32\drivers\ccdcmbx64.sys
21:02:47.0557 3132 nmwcd - ok
21:02:47.0682 3132 nmwcdc (41c1ac1f3613435eb32d67bcb80a5fa5) C:\Windows\system32\drivers\ccdcmbox64.sys
21:02:47.0682 3132 nmwcdc - ok
21:02:47.0775 3132 nmwcdnsucx64 (a962be6433ef016e0dfb52eca15a5378) C:\Windows\system32\drivers\nmwcdnsucx64.sys
21:02:47.0775 3132 nmwcdnsucx64 - ok
21:02:47.0900 3132 nmwcdnsux64 (9573223e205907247ae6d948e3453770) C:\Windows\system32\drivers\nmwcdnsux64.sys
21:02:47.0900 3132 nmwcdnsux64 - ok
21:02:47.0994 3132 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
21:02:47.0994 3132 Npfs - ok
21:02:48.0087 3132 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
21:02:48.0087 3132 nsiproxy - ok
21:02:48.0197 3132 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
21:02:48.0243 3132 Ntfs - ok
21:02:48.0368 3132 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
21:02:48.0368 3132 Null - ok
21:02:48.0477 3132 NVHDA (181e7fe39211e04128a30708906627d8) C:\Windows\system32\drivers\nvhda64v.sys
21:02:48.0477 3132 NVHDA - ok
21:02:48.0758 3132 nvlddmkm (b864638defb6aa2e0a5e9b1efd34c897) C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:02:48.0821 3132 nvlddmkm - ok
21:02:48.0961 3132 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
21:02:48.0961 3132 nvraid - ok
21:02:49.0055 3132 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
21:02:49.0055 3132 nvstor - ok
21:02:49.0179 3132 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
21:02:49.0179 3132 nv_agp - ok
21:02:49.0320 3132 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
21:02:49.0320 3132 ohci1394 - ok
21:02:49.0460 3132 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
21:02:49.0476 3132 Parport - ok
21:02:49.0569 3132 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
21:02:49.0569 3132 partmgr - ok
21:02:49.0710 3132 pccsmcfd (bc0018c2d29f655188a0ed3fa94fdb24) C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
21:02:49.0710 3132 pccsmcfd - ok
21:02:49.0803 3132 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
21:02:49.0803 3132 pci - ok
21:02:49.0897 3132 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
21:02:49.0897 3132 pciide - ok
21:02:49.0991 3132 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
21:02:50.0006 3132 pcmcia - ok
21:02:50.0115 3132 Pcouffin64 (a7a134de374e91d931ba211556293b1b) C:\Windows\system32\Drivers\pcouffin64a.sys
21:02:50.0115 3132 Pcouffin64 - ok
21:02:50.0209 3132 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
21:02:50.0209 3132 pcw - ok
21:02:50.0318 3132 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
21:02:50.0349 3132 PEAUTH - ok
21:02:50.0505 3132 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
21:02:50.0505 3132 PptpMiniport - ok
21:02:50.0552 3132 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
21:02:50.0568 3132 Processor - ok
21:02:50.0677 3132 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
21:02:50.0677 3132 Psched - ok
21:02:50.0786 3132 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
21:02:50.0849 3132 ql2300 - ok
21:02:50.0973 3132 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
21:02:50.0973 3132 ql40xx - ok
21:02:51.0036 3132 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
21:02:51.0036 3132 QWAVEdrv - ok
21:02:51.0098 3132 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
21:02:51.0098 3132 RasAcd - ok
21:02:51.0192 3132 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:02:51.0207 3132 RasAgileVpn - ok
21:02:51.0301 3132 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:02:51.0301 3132 Rasl2tp - ok
21:02:51.0348 3132 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
21:02:51.0348 3132 RasPppoe - ok
21:02:51.0441 3132 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
21:02:51.0457 3132 RasSstp - ok
21:02:51.0551 3132 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
21:02:51.0566 3132 rdbss - ok
21:02:51.0613 3132 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
21:02:51.0613 3132 rdpbus - ok
21:02:51.0707 3132 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:02:51.0722 3132 RDPCDD - ok
21:02:51.0800 3132 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
21:02:51.0800 3132 RDPENCDD - ok
21:02:51.0909 3132 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
21:02:51.0909 3132 RDPREFMP - ok
21:02:51.0972 3132 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
21:02:51.0972 3132 RDPWD - ok
21:02:52.0097 3132 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
21:02:52.0097 3132 rdyboost - ok
21:02:52.0221 3132 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
21:02:52.0237 3132 RFCOMM - ok
21:02:52.0331 3132 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
21:02:52.0346 3132 rspndr - ok
21:02:52.0471 3132 RSUSBSTOR (4a286ca297cd75a53d51348ad61680fb) C:\Windows\system32\Drivers\RtsUStor.sys
21:02:52.0487 3132 RSUSBSTOR - ok
21:02:52.0580 3132 RTHDMIAzAudService (4e821c740a675f6d040be41d59a62b1d) C:\Windows\system32\drivers\RtHDMIVX.sys
21:02:52.0580 3132 RTHDMIAzAudService - ok
21:02:52.0674 3132 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
21:02:52.0674 3132 sbp2port - ok
21:02:52.0767 3132 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
21:02:52.0767 3132 scfilter - ok
21:02:52.0799 3132 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
21:02:52.0799 3132 secdrv - ok
21:02:52.0861 3132 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
21:02:52.0877 3132 Serenum - ok
21:02:52.0970 3132 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
21:02:52.0986 3132 Serial - ok
21:02:53.0095 3132 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
21:02:53.0095 3132 sermouse - ok
21:02:53.0235 3132 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
21:02:53.0235 3132 sffdisk - ok
21:02:53.0329 3132 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
21:02:53.0329 3132 sffp_mmc - ok
21:02:53.0360 3132 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
21:02:53.0360 3132 sffp_sd - ok
21:02:53.0391 3132 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
21:02:53.0391 3132 sfloppy - ok
21:02:53.0501 3132 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:02:53.0516 3132 SiSRaid2 - ok
21:02:53.0610 3132 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
21:02:53.0610 3132 SiSRaid4 - ok
21:02:53.0703 3132 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
21:02:53.0703 3132 Smb - ok
21:02:53.0766 3132 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
21:02:53.0781 3132 spldr - ok
21:02:53.0891 3132 sptd (602884696850c86434530790b110e8eb) C:\Windows\system32\Drivers\sptd.sys
21:02:53.0891 3132 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850c86434530790b110e8eb
21:02:53.0891 3132 sptd ( LockedFile.Multi.Generic ) - warning
21:02:53.0891 3132 sptd - detected LockedFile.Multi.Generic (1)
21:02:53.0984 3132 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
21:02:54.0000 3132 srv - ok
21:02:54.0031 3132 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
21:02:54.0047 3132 srv2 - ok
21:02:54.0109 3132 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
21:02:54.0125 3132 srvnet - ok
21:02:54.0156 3132 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
21:02:54.0171 3132 stexstor - ok
21:02:54.0281 3132 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
21:02:54.0281 3132 swenum - ok
21:02:54.0390 3132 SynTP (064a2530a4a7c7cec1be6a1945645be4) C:\Windows\system32\DRIVERS\SynTP.sys
21:02:54.0390 3132 SynTP - ok
21:02:54.0530 3132 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
21:02:54.0577 3132 Tcpip - ok
21:02:54.0733 3132 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
21:02:54.0733 3132 TCPIP6 - ok
21:02:54.0795 3132 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
21:02:54.0795 3132 tcpipreg - ok
21:02:54.0827 3132 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
21:02:54.0827 3132 TDPIPE - ok
21:02:54.0889 3132 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
21:02:54.0889 3132 TDTCP - ok
21:02:54.0951 3132 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
21:02:54.0951 3132 tdx - ok
21:02:55.0045 3132 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
21:02:55.0045 3132 TermDD - ok
21:02:55.0185 3132 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:02:55.0185 3132 tssecsrv - ok
21:02:55.0279 3132 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
21:02:55.0295 3132 TsUsbFlt - ok
21:02:55.0404 3132 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
21:02:55.0404 3132 tunnel - ok
21:02:55.0466 3132 TurboB (825e7a1f48fb8bcfba27c178aab4e275) C:\Windows\system32\DRIVERS\TurboB.sys
21:02:55.0466 3132 TurboB - ok
21:02:55.0575 3132 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
21:02:55.0575 3132 uagp35 - ok
21:02:55.0669 3132 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
21:02:55.0685 3132 udfs - ok
21:02:55.0747 3132 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
21:02:55.0763 3132 uliagpkx - ok
21:02:55.0856 3132 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
21:02:55.0856 3132 umbus - ok
21:02:55.0950 3132 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
21:02:55.0950 3132 UmPass - ok
21:02:56.0075 3132 upperdev (4e93c8496359e97830c75ac36393654d) C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
21:02:56.0075 3132 upperdev - ok
21:02:56.0153 3132 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
21:02:56.0168 3132 usbccgp - ok
21:02:56.0262 3132 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
21:02:56.0277 3132 usbcir - ok
21:02:56.0387 3132 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
21:02:56.0387 3132 usbehci - ok
21:02:56.0449 3132 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
21:02:56.0465 3132 usbhub - ok
21:02:56.0496 3132 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
21:02:56.0496 3132 usbohci - ok
21:02:56.0574 3132 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
21:02:56.0574 3132 usbprint - ok
21:02:56.0683 3132 usbser (4acee387fa8fd39f83564fcd2fc234f2) C:\Windows\system32\drivers\usbser.sys
21:02:56.0683 3132 usbser - ok
21:02:56.0792 3132 UsbserFilt (8844cb19a37b65e27049d4a7786726a9) C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
21:02:56.0792 3132 UsbserFilt - ok
21:02:56.0901 3132 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:02:56.0901 3132 USBSTOR - ok
21:02:56.0979 3132 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
21:02:56.0995 3132 usbuhci - ok
21:02:57.0089 3132 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
21:02:57.0104 3132 usbvideo - ok
21:02:57.0229 3132 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
21:02:57.0229 3132 vdrvroot - ok
21:02:57.0354 3132 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
21:02:57.0354 3132 vga - ok
21:02:57.0463 3132 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
21:02:57.0463 3132 VgaSave - ok
21:02:57.0557 3132 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
21:02:57.0557 3132 vhdmp - ok
21:02:57.0635 3132 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
21:02:57.0635 3132 viaide - ok
21:02:57.0744 3132 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
21:02:57.0759 3132 volmgr - ok
21:02:57.0853 3132 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
21:02:57.0869 3132 volmgrx - ok
21:02:57.0978 3132 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
21:02:57.0978 3132 volsnap - ok
21:02:58.0087 3132 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
21:02:58.0087 3132 vsmraid - ok
21:02:58.0181 3132 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
21:02:58.0181 3132 vwifibus - ok
21:02:58.0305 3132 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
21:02:58.0305 3132 vwififlt - ok
21:02:58.0415 3132 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
21:02:58.0415 3132 vwifimp - ok
21:02:58.0508 3132 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
21:02:58.0508 3132 WacomPen - ok
21:02:58.0820 3132 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:02:58.0820 3132 WANARP - ok
21:02:58.0961 3132 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:02:58.0961 3132 Wanarpv6 - ok
21:02:59.0538 3132 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
21:02:59.0553 3132 Wd - ok
21:02:59.0928 3132 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
21:02:59.0975 3132 Wdf01000 - ok
21:03:00.0318 3132 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
21:03:00.0333 3132 WfpLwf - ok
21:03:00.0536 3132 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
21:03:00.0536 3132 WIMMount - ok
21:03:00.0692 3132 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
21:03:00.0708 3132 WinUsb - ok
21:03:00.0817 3132 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
21:03:00.0817 3132 WmiAcpi - ok
21:03:00.0926 3132 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
21:03:00.0926 3132 ws2ifsl - ok
21:03:01.0035 3132 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
21:03:01.0035 3132 WudfPf - ok
21:03:01.0176 3132 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:03:01.0176 3132 WUDFRd - ok
21:03:01.0223 3132 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
21:03:01.0238 3132 \Device\Harddisk0\DR0 - ok
21:03:01.0238 3132 MBR (0x1B8) (973e9ba32fdbb305c552ed3e1ebf0686) \Device\Harddisk1\DR1
21:03:01.0254 3132 \Device\Harddisk1\DR1 - ok
21:03:01.0254 3132 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk2\DR2
21:03:01.0269 3132 \Device\Harddisk2\DR2 - ok
21:03:01.0269 3132 Boot (0x1200) (eaa9ff020c01bb2b90c6216d9af4e814) \Device\Harddisk0\DR0\Partition0
21:03:01.0269 3132 \Device\Harddisk0\DR0\Partition0 - ok
21:03:01.0316 3132 Boot (0x1200) (e2e167c7296d831008346b65378fa8d3) \Device\Harddisk0\DR0\Partition1
21:03:01.0316 3132 \Device\Harddisk0\DR0\Partition1 - ok
21:03:01.0332 3132 Boot (0x1200) (ca0072b55e9af84a8cc7e6094681c3f7) \Device\Harddisk0\DR0\Partition2
21:03:01.0332 3132 \Device\Harddisk0\DR0\Partition2 - ok
21:03:01.0332 3132 Boot (0x1200) (975f3f7c3c3485a9fb98a3e7cc6521f7) \Device\Harddisk1\DR1\Partition0
21:03:01.0332 3132 \Device\Harddisk1\DR1\Partition0 - ok
21:03:01.0332 3132 Boot (0x1200) (a7deb1c04ca082d91a2b87a0c4959728) \Device\Harddisk2\DR2\Partition0
21:03:01.0332 3132 \Device\Harddisk2\DR2\Partition0 - ok
21:03:01.0332 3132 ============================================================
21:03:01.0332 3132 Scan finished
21:03:01.0332 3132 ============================================================
21:03:01.0347 3176 Detected object count: 1
21:03:01.0347 3176 Actual detected object count: 1
21:03:34.0295 3176 sptd ( LockedFile.Multi.Generic ) - skipped by user
21:03:34.0295 3176 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
21:03:37.0539 4000 ============================================================
21:03:37.0539 4000 Scan started
21:03:37.0539 4000 Mode: Manual;
21:03:37.0539 4000 ============================================================
21:03:37.0820 4000 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
21:03:37.0820 4000 1394ohci - ok
21:03:37.0992 4000 71786221 (6c5461eeb3ffa1b1dcf9a07f8c3b3afe) C:\Windows\system32\DRIVERS\71786221.sys
21:03:37.0992 4000 71786221 - ok
21:03:38.0148 4000 71786222 (3ec7dfda521b4fb22ce9f76df15db099) C:\Windows\system32\DRIVERS\71786222.sys
21:03:38.0148 4000 71786222 - ok
21:03:38.0257 4000 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
21:03:38.0257 4000 ACPI - ok
21:03:38.0335 4000 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
21:03:38.0335 4000 AcpiPmi - ok
21:03:38.0429 4000 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
21:03:38.0429 4000 adp94xx - ok
21:03:38.0538 4000 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
21:03:38.0538 4000 adpahci - ok
21:03:38.0631 4000 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
21:03:38.0631 4000 adpu320 - ok
21:03:38.0819 4000 AF15BDA (0517e1670a58213e3f206066cd209273) C:\Windows\system32\DRIVERS\AF15BDA.sys
21:03:38.0819 4000 AF15BDA - ok
21:03:38.0912 4000 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
21:03:38.0912 4000 AFD - ok
21:03:39.0021 4000 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
21:03:39.0021 4000 agp440 - ok
21:03:39.0099 4000 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
21:03:39.0099 4000 aliide - ok
21:03:39.0193 4000 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
21:03:39.0193 4000 amdide - ok
21:03:39.0271 4000 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
21:03:39.0271 4000 AmdK8 - ok
21:03:39.0349 4000 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
21:03:39.0349 4000 AmdPPM - ok
21:03:39.0458 4000 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
21:03:39.0458 4000 amdsata - ok
21:03:39.0552 4000 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
21:03:39.0552 4000 amdsbs - ok
21:03:39.0661 4000 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
21:03:39.0661 4000 amdxata - ok
21:03:39.0755 4000 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
21:03:39.0755 4000 AppID - ok
21:03:39.0864 4000 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
21:03:39.0864 4000 arc - ok
21:03:39.0942 4000 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
21:03:39.0942 4000 arcsas - ok
21:03:40.0035 4000 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
21:03:40.0035 4000 AsyncMac - ok
21:03:40.0113 4000 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
21:03:40.0113 4000 atapi - ok
21:03:40.0223 4000 athr (d6cad7e5b05055bb8226bdcb1644da27) C:\Windows\system32\DRIVERS\athrx.sys
21:03:40.0223 4000 athr - ok
21:03:40.0332 4000 avgntflt (ed2b23707f19ccc1b2a4382b05d31481) C:\Windows\system32\DRIVERS\avgntflt.sys
21:03:40.0332 4000 avgntflt - ok
21:03:40.0425 4000 avipbb (c98fa6e5ad0e857d22716bd2b8b1f399) C:\Windows\system32\DRIVERS\avipbb.sys
21:03:40.0425 4000 avipbb - ok
21:03:40.0535 4000 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
21:03:40.0535 4000 b06bdrv - ok
21:03:40.0659 4000 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
21:03:40.0659 4000 b57nd60a - ok
21:03:40.0769 4000 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
21:03:40.0769 4000 Beep - ok
21:03:40.0862 4000 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
21:03:40.0862 4000 blbdrive - ok
21:03:40.0987 4000 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
21:03:40.0987 4000 bowser - ok
21:03:41.0081 4000 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:03:41.0081 4000 BrFiltLo - ok
21:03:41.0174 4000 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:03:41.0174 4000 BrFiltUp - ok
21:03:41.0299 4000 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
21:03:41.0299 4000 Brserid - ok
21:03:41.0393 4000 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
21:03:41.0393 4000 BrSerWdm - ok
21:03:41.0502 4000 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:03:41.0502 4000 BrUsbMdm - ok
21:03:41.0580 4000 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
21:03:41.0580 4000 BrUsbSer - ok
21:03:41.0689 4000 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
21:03:41.0689 4000 BthEnum - ok
21:03:41.0783 4000 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
21:03:41.0783 4000 BTHMODEM - ok
21:03:41.0876 4000 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
21:03:41.0876 4000 BthPan - ok
21:03:41.0985 4000 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\System32\Drivers\BTHport.sys
21:03:42.0001 4000 BTHPORT - ok
21:03:42.0095 4000 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\System32\Drivers\BTHUSB.sys
21:03:42.0095 4000 BTHUSB - ok
21:03:42.0188 4000 btusbflt (6e04458e98daf28826482e41a7a62df5) C:\Windows\system32\drivers\btusbflt.sys
21:03:42.0188 4000 btusbflt - ok
21:03:42.0282 4000 btwaudio (af838d8029ae7c27470862d63fa54d24) C:\Windows\system32\drivers\btwaudio.sys
21:03:42.0282 4000 btwaudio - ok
21:03:42.0360 4000 btwavdt (5c849bd7c78791c5cee9f4651d7fe38d) C:\Windows\system32\DRIVERS\btwavdt.sys
21:03:42.0360 4000 btwavdt - ok
21:03:42.0453 4000 btwl2cap (6149301dc3f81d6f9667a3fbac410975) C:\Windows\system32\DRIVERS\btwl2cap.sys
21:03:42.0453 4000 btwl2cap - ok
21:03:42.0547 4000 btwrchid (3e1991afa851a36dc978b0a1b0535c8b) C:\Windows\system32\DRIVERS\btwrchid.sys
21:03:42.0547 4000 btwrchid - ok
21:03:42.0641 4000 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
21:03:42.0641 4000 cdfs - ok
21:03:42.0734 4000 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
21:03:42.0734 4000 cdrom - ok
21:03:42.0828 4000 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
21:03:42.0828 4000 circlass - ok
21:03:42.0921 4000 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
21:03:42.0921 4000 CLFS - ok
21:03:43.0031 4000 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
21:03:43.0031 4000 CmBatt - ok
21:03:43.0140 4000 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
21:03:43.0155 4000 cmdide - ok
21:03:43.0249 4000 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
21:03:43.0249 4000 CNG - ok
21:03:43.0358 4000 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
21:03:43.0358 4000 Compbatt - ok
21:03:43.0436 4000 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
21:03:43.0436 4000 CompositeBus - ok
21:03:43.0545 4000 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
21:03:43.0545 4000 crcdisk - ok
21:03:43.0639 4000 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
21:03:43.0639 4000 DfsC - ok
21:03:43.0733 4000 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
21:03:43.0733 4000 discache - ok
21:03:43.0811 4000 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
21:03:43.0811 4000 Disk - ok
21:03:43.0920 4000 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
21:03:43.0920 4000 drmkaud - ok
21:03:44.0029 4000 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
21:03:44.0029 4000 DXGKrnl - ok
21:03:44.0169 4000 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
21:03:44.0185 4000 ebdrv - ok
21:03:44.0294 4000 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
21:03:44.0294 4000 elxstor - ok
21:03:44.0403 4000 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
21:03:44.0403 4000 ErrDev - ok
21:03:44.0497 4000 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
21:03:44.0497 4000 exfat - ok
21:03:44.0591 4000 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
21:03:44.0591 4000 fastfat - ok
21:03:44.0684 4000 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
21:03:44.0684 4000 fdc - ok
21:03:44.0778 4000 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
21:03:44.0778 4000 FileInfo - ok
21:03:44.0903 4000 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
21:03:44.0903 4000 Filetrace - ok
21:03:45.0012 4000 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
21:03:45.0012 4000 flpydisk - ok
21:03:45.0105 4000 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
21:03:45.0121 4000 FltMgr - ok
21:03:45.0199 4000 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
21:03:45.0199 4000 FsDepends - ok
21:03:45.0308 4000 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
21:03:45.0308 4000 Fs_Rec - ok
21:03:45.0402 4000 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
21:03:45.0402 4000 fvevol - ok
21:03:45.0480 4000 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
21:03:45.0480 4000 gagp30kx - ok
21:03:45.0573 4000 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
21:03:45.0573 4000 hcw85cir - ok
21:03:45.0667 4000 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
21:03:45.0667 4000 HdAudAddService - ok
21:03:45.0761 4000 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
21:03:45.0761 4000 HDAudBus - ok
21:03:45.0854 4000 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
21:03:45.0854 4000 HECIx64 - ok
21:03:45.0948 4000 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
21:03:45.0948 4000 HidBatt - ok
21:03:46.0026 4000 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
21:03:46.0026 4000 HidBth - ok
21:03:46.0119 4000 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
21:03:46.0119 4000 HidIr - ok
21:03:46.0213 4000 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
21:03:46.0213 4000 HidUsb - ok
21:03:46.0291 4000 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
21:03:46.0291 4000 HpSAMD - ok
21:03:46.0400 4000 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
21:03:46.0416 4000 HTTP - ok
21:03:46.0509 4000 hwdatacard (c8f3119ad72a507d12ef389df4c266ef) C:\Windows\system32\DRIVERS\ewusbmdm.sys
21:03:46.0509 4000 hwdatacard - ok
21:03:46.0603 4000 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
21:03:46.0603 4000 hwpolicy - ok
21:03:46.0697 4000 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
21:03:46.0697 4000 i8042prt - ok
21:03:46.0790 4000 iaStor (42e00996dfc13c46366689c0ea8abc5e) C:\Windows\system32\DRIVERS\iaStor.sys
21:03:46.0806 4000 iaStor - ok
21:03:46.0915 4000 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
21:03:46.0915 4000 iaStorV - ok
21:03:47.0024 4000 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
21:03:47.0024 4000 iirsp - ok
21:03:47.0118 4000 Impcd (36fdf367a1dabff903e2214023d71368) C:\Windows\system32\DRIVERS\Impcd.sys
21:03:47.0118 4000 Impcd - ok
21:03:47.0243 4000 IntcAzAudAddService (51c98815721b44bf70e8aeb3ff3f57d6) C:\Windows\system32\drivers\RTKVHD64.sys
21:03:47.0258 4000 IntcAzAudAddService - ok
21:03:47.0352 4000 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
21:03:47.0352 4000 intelide - ok
21:03:47.0461 4000 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
21:03:47.0461 4000 intelppm - ok
21:03:47.0570 4000 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:03:47.0570 4000 IpFilterDriver - ok
21:03:47.0679 4000 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
21:03:47.0679 4000 IPMIDRV - ok
21:03:47.0757 4000 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
21:03:47.0773 4000 IPNAT - ok
21:03:47.0851 4000 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
21:03:47.0851 4000 IRENUM - ok
21:03:47.0945 4000 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
21:03:47.0945 4000 isapnp - ok
21:03:48.0038 4000 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
21:03:48.0038 4000 iScsiPrt - ok
21:03:48.0132 4000 k57nd60a (9d7ea8c7215d8d4ae7be110eee61085d) C:\Windows\system32\DRIVERS\k57nd60a.sys
21:03:48.0132 4000 k57nd60a - ok
21:03:48.0210 4000 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
21:03:48.0210 4000 kbdclass - ok
21:03:48.0303 4000 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
21:03:48.0303 4000 kbdhid - ok
21:03:48.0413 4000 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
21:03:48.0413 4000 KSecDD - ok
21:03:48.0506 4000 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
21:03:48.0506 4000 KSecPkg - ok
21:03:48.0615 4000 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
21:03:48.0615 4000 ksthunk - ok
21:03:48.0725 4000 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
21:03:48.0725 4000 lltdio - ok
21:03:48.0834 4000 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
21:03:48.0834 4000 LSI_FC - ok

21:03:48.0943 4000 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
21:03:48.0943 4000 LSI_SAS - ok
21:03:49.0037 4000 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:03:49.0037 4000 LSI_SAS2 - ok
21:03:49.0146 4000 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:03:49.0146 4000 LSI_SCSI - ok
21:03:49.0224 4000 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
21:03:49.0224 4000 luafv - ok
21:03:49.0317 4000 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
21:03:49.0317 4000 megasas - ok
21:03:49.0411 4000 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
21:03:49.0411 4000 MegaSR - ok
21:03:49.0505 4000 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
21:03:49.0505 4000 Modem - ok
21:03:49.0614 4000 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
21:03:49.0614 4000 monitor - ok
21:03:49.0692 4000 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
21:03:49.0692 4000 mouclass - ok
21:03:49.0801 4000 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
21:03:49.0801 4000 mouhid - ok
21:03:49.0910 4000 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
21:03:49.0910 4000 mountmgr - ok
21:03:50.0004 4000 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
21:03:50.0004 4000 mpio - ok
21:03:50.0113 4000 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
21:03:50.0113 4000 mpsdrv - ok
21:03:50.0207 4000 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
21:03:50.0207 4000 MRxDAV - ok
21:03:50.0316 4000 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:03:50.0316 4000 mrxsmb - ok
21:03:50.0409 4000 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:03:50.0409 4000 mrxsmb10 - ok
21:03:50.0519 4000 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:03:50.0519 4000 mrxsmb20 - ok
21:03:50.0612 4000 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
21:03:50.0612 4000 msahci - ok
21:03:50.0706 4000 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
21:03:50.0706 4000 msdsm - ok
21:03:50.0831 4000 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
21:03:50.0831 4000 Msfs - ok
21:03:50.0924 4000 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
21:03:50.0924 4000 mshidkmdf - ok
21:03:51.0018 4000 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
21:03:51.0018 4000 msisadrv - ok
21:03:51.0111 4000 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
21:03:51.0111 4000 MSKSSRV - ok
21:03:51.0205 4000 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
21:03:51.0205 4000 MSPCLOCK - ok
21:03:51.0314 4000 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
21:03:51.0314 4000 MSPQM - ok
21:03:51.0408 4000 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
21:03:51.0408 4000 MsRPC - ok
21:03:51.0501 4000 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
21:03:51.0501 4000 mssmbios - ok
21:03:51.0595 4000 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
21:03:51.0595 4000 MSTEE - ok
21:03:51.0689 4000 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
21:03:51.0689 4000 MTConfig - ok
21:03:51.0767 4000 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
21:03:51.0767 4000 Mup - ok
21:03:51.0860 4000 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
21:03:51.0860 4000 NativeWifiP - ok
21:03:51.0985 4000 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
21:03:51.0985 4000 NDIS - ok
21:03:52.0079 4000 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
21:03:52.0079 4000 NdisCap - ok
21:03:52.0157 4000 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
21:03:52.0157 4000 NdisTapi - ok
21:03:52.0250 4000 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
21:03:52.0250 4000 Ndisuio - ok
21:03:52.0344 4000 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
21:03:52.0344 4000 NdisWan - ok
21:03:52.0422 4000 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
21:03:52.0422 4000 NDProxy - ok
21:03:52.0515 4000 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
21:03:52.0515 4000 NetBIOS - ok
21:03:52.0609 4000 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
21:03:52.0625 4000 NetBT - ok
21:03:52.0718 4000 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
21:03:52.0718 4000 nfrd960 - ok
21:03:52.0812 4000 nmwcd (907b5e1e4a592e5edc5e4ccbde4863c2) C:\Windows\system32\drivers\ccdcmbx64.sys
21:03:52.0812 4000 nmwcd - ok
21:03:52.0905 4000 nmwcdc (41c1ac1f3613435eb32d67bcb80a5fa5) C:\Windows\system32\drivers\ccdcmbox64.sys
21:03:52.0905 4000 nmwcdc - ok
21:03:52.0999 4000 nmwcdnsucx64 (a962be6433ef016e0dfb52eca15a5378) C:\Windows\system32\drivers\nmwcdnsucx64.sys
21:03:52.0999 4000 nmwcdnsucx64 - ok
21:03:53.0093 4000 nmwcdnsux64 (9573223e205907247ae6d948e3453770) C:\Windows\system32\drivers\nmwcdnsux64.sys
21:03:53.0093 4000 nmwcdnsux64 - ok
21:03:53.0186 4000 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
21:03:53.0186 4000 Npfs - ok
21:03:53.0280 4000 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
21:03:53.0280 4000 nsiproxy - ok
21:03:53.0389 4000 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
21:03:53.0405 4000 Ntfs - ok
21:03:53.0498 4000 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
21:03:53.0498 4000 Null - ok
21:03:53.0592 4000 NVHDA (181e7fe39211e04128a30708906627d8) C:\Windows\system32\drivers\nvhda64v.sys
21:03:53.0592 4000 NVHDA - ok
21:03:53.0857 4000 nvlddmkm (b864638defb6aa2e0a5e9b1efd34c897) C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:03:53.0919 4000 nvlddmkm - ok
21:03:54.0029 4000 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
21:03:54.0029 4000 nvraid - ok
21:03:54.0138 4000 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
21:03:54.0138 4000 nvstor - ok
21:03:54.0231 4000 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
21:03:54.0231 4000 nv_agp - ok
21:03:54.0309 4000 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
21:03:54.0309 4000 ohci1394 - ok
21:03:54.0356 4000 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
21:03:54.0356 4000 Parport - ok
21:03:54.0434 4000 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
21:03:54.0450 4000 partmgr - ok
21:03:54.0512 4000 pccsmcfd (bc0018c2d29f655188a0ed3fa94fdb24) C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
21:03:54.0512 4000 pccsmcfd - ok
21:03:54.0621 4000 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
21:03:54.0621 4000 pci - ok
21:03:54.0715 4000 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
21:03:54.0715 4000 pciide - ok
21:03:54.0793 4000 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
21:03:54.0793 4000 pcmcia - ok
21:03:54.0887 4000 Pcouffin64 (a7a134de374e91d931ba211556293b1b) C:\Windows\system32\Drivers\pcouffin64a.sys
21:03:54.0887 4000 Pcouffin64 - ok
21:03:54.0980 4000 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
21:03:54.0980 4000 pcw - ok
21:03:55.0089 4000 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
21:03:55.0089 4000 PEAUTH - ok
21:03:55.0214 4000 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
21:03:55.0214 4000 PptpMiniport - ok
21:03:55.0308 4000 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
21:03:55.0308 4000 Processor - ok
21:03:55.0401 4000 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
21:03:55.0401 4000 Psched - ok
21:03:55.0511 4000 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
21:03:55.0511 4000 ql2300 - ok
21:03:55.0620 4000 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
21:03:55.0620 4000 ql40xx - ok
21:03:55.0698 4000 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
21:03:55.0713 4000 QWAVEdrv - ok
21:03:55.0776 4000 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
21:03:55.0776 4000 RasAcd - ok
21:03:55.0838 4000 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:03:55.0838 4000 RasAgileVpn - ok
21:03:55.0932 4000 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:03:55.0932 4000 Rasl2tp - ok
21:03:55.0963 4000 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
21:03:55.0963 4000 RasPppoe - ok
21:03:56.0041 4000 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
21:03:56.0041 4000 RasSstp - ok
21:03:56.0119 4000 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
21:03:56.0119 4000 rdbss - ok
21:03:56.0197 4000 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
21:03:56.0197 4000 rdpbus - ok
21:03:56.0291 4000 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:03:56.0291 4000 RDPCDD - ok
21:03:56.0384 4000 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
21:03:56.0384 4000 RDPENCDD - ok
21:03:56.0447 4000 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
21:03:56.0447 4000 RDPREFMP - ok
21:03:56.0509 4000 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
21:03:56.0509 4000 RDPWD - ok
21:03:56.0571 4000 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
21:03:56.0571 4000 rdyboost - ok
21:03:56.0618 4000 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
21:03:56.0618 4000 RFCOMM - ok
21:03:56.0712 4000 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
21:03:56.0712 4000 rspndr - ok
21:03:56.0821 4000 RSUSBSTOR (4a286ca297cd75a53d51348ad61680fb) C:\Windows\system32\Drivers\RtsUStor.sys
21:03:56.0821 4000 RSUSBSTOR - ok
21:03:56.0930 4000 RTHDMIAzAudService (4e821c740a675f6d040be41d59a62b1d) C:\Windows\system32\drivers\RtHDMIVX.sys
21:03:56.0930 4000 RTHDMIAzAudService - ok
21:03:57.0024 4000 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
21:03:57.0024 4000 sbp2port - ok
21:03:57.0102 4000 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
21:03:57.0102 4000 scfilter - ok
21:03:57.0211 4000 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
21:03:57.0211 4000 secdrv - ok
21:03:57.0289 4000 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
21:03:57.0289 4000 Serenum - ok
21:03:57.0351 4000 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
21:03:57.0351 4000 Serial - ok
21:03:57.0414 4000 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
21:03:57.0414 4000 sermouse - ok
21:03:57.0523 4000 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
21:03:57.0523 4000 sffdisk - ok
21:03:57.0554 4000 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
21:03:57.0554 4000 sffp_mmc - ok
21:03:57.0570 4000 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
21:03:57.0570 4000 sffp_sd - ok
21:03:57.0601 4000 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
21:03:57.0601 4000 sfloppy - ok
21:03:57.0695 4000 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:03:57.0695 4000 SiSRaid2 - ok
21:03:57.0788 4000 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
21:03:57.0788 4000 SiSRaid4 - ok
21:03:57.0882 4000 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
21:03:57.0897 4000 Smb - ok
21:03:57.0975 4000 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
21:03:57.0991 4000 spldr - ok
21:03:58.0100 4000 sptd (602884696850c86434530790b110e8eb) C:\Windows\system32\Drivers\sptd.sys
21:03:58.0100 4000 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850c86434530790b110e8eb
21:03:58.0100 4000 sptd ( LockedFile.Multi.Generic ) - warning
21:03:58.0100 4000 sptd - detected LockedFile.Multi.Generic (1)
21:03:58.0194 4000 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
21:03:58.0209 4000 srv - ok
21:03:58.0287 4000 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
21:03:58.0287 4000 srv2 - ok
21:03:58.0350 4000 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
21:03:58.0350 4000 srvnet - ok
21:03:58.0428 4000 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
21:03:58.0428 4000 stexstor - ok
21:03:58.0521 4000 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
21:03:58.0521 4000 swenum - ok
21:03:58.0615 4000 SynTP (064a2530a4a7c7cec1be6a1945645be4) C:\Windows\system32\DRIVERS\SynTP.sys
21:03:58.0615 4000 SynTP - ok
21:03:58.0755 4000 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
21:03:58.0771 4000 Tcpip - ok
21:03:58.0911 4000 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
21:03:58.0911 4000 TCPIP6 - ok
21:03:59.0005 4000 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
21:03:59.0005 4000 tcpipreg - ok
21:03:59.0083 4000 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
21:03:59.0083 4000 TDPIPE - ok
21:03:59.0161 4000 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
21:03:59.0161 4000 TDTCP - ok
21:03:59.0255 4000 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
21:03:59.0255 4000 tdx - ok
21:03:59.0333 4000 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
21:03:59.0333 4000 TermDD - ok
21:03:59.0442 4000 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:03:59.0442 4000 tssecsrv - ok
21:03:59.0535 4000 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
21:03:59.0535 4000 TsUsbFlt - ok
21:03:59.0567 4000 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
21:03:59.0567 4000 tunnel - ok
21:03:59.0660 4000 TurboB (825e7a1f48fb8bcfba27c178aab4e275) C:\Windows\system32\DRIVERS\TurboB.sys
21:03:59.0660 4000 TurboB - ok
21:03:59.0754 4000 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
21:03:59.0754 4000 uagp35 - ok
21:03:59.0863 4000 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
21:03:59.0863 4000 udfs - ok
21:03:59.0972 4000 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
21:03:59.0972 4000 uliagpkx - ok
21:04:00.0066 4000 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
21:04:00.0066 4000 umbus - ok
21:04:00.0159 4000 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
21:04:00.0159 4000 UmPass - ok
21:04:00.0253 4000 upperdev (4e93c8496359e97830c75ac36393654d) C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
21:04:00.0253 4000 upperdev - ok
21:04:00.0362 4000 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
21:04:00.0362 4000 usbccgp - ok
21:04:00.0471 4000 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
21:04:00.0471 4000 usbcir - ok
21:04:00.0581 4000 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
21:04:00.0581 4000 usbehci - ok
21:04:00.0690 4000 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
21:04:00.0690 4000 usbhub - ok
21:04:00.0783 4000 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
21:04:00.0783 4000 usbohci - ok
21:04:00.0893 4000 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
21:04:00.0893 4000 usbprint - ok
21:04:00.0971 4000 usbser (4acee387fa8fd39f83564fcd2fc234f2) C:\Windows\system32\drivers\usbser.sys
21:04:00.0971 4000 usbser - ok
21:04:01.0064 4000 UsbserFilt (8844cb19a37b65e27049d4a7786726a9) C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
21:04:01.0064 4000 UsbserFilt - ok
21:04:01.0158 4000 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:04:01.0173 4000 USBSTOR - ok
21:04:01.0267 4000 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
21:04:01.0267 4000 usbuhci - ok
21:04:01.0345 4000 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
21:04:01.0345 4000 usbvideo - ok
21:04:01.0439 4000 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
21:04:01.0439 4000 vdrvroot - ok
21:04:01.0548 4000 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
21:04:01.0548 4000 vga - ok
21:04:01.0641 4000 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
21:04:01.0641 4000 VgaSave - ok
21:04:01.0735 4000 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
21:04:01.0735 4000 vhdmp - ok
21:04:01.0813 4000 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
21:04:01.0813 4000 viaide - ok
21:04:01.0907 4000 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
21:04:01.0922 4000 volmgr - ok
21:04:02.0031 4000 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
21:04:02.0031 4000 volmgrx - ok
21:04:02.0125 4000 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
21:04:02.0125 4000 volsnap - ok
21:04:02.0234 4000 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
21:04:02.0234 4000 vsmraid - ok
21:04:02.0312 4000 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
21:04:02.0312 4000 vwifibus - ok
21:04:02.0406 4000 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
21:04:02.0406 4000 vwififlt - ok
21:04:02.0515 4000 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
21:04:02.0515 4000 vwifimp - ok
21:04:02.0624 4000 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
21:04:02.0624 4000 WacomPen - ok
21:04:02.0718 4000 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:04:02.0718 4000 WANARP - ok
21:04:02.0718 4000 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:04:02.0718 4000 Wanarpv6 - ok
21:04:02.0843 4000 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
21:04:02.0843 4000 Wd - ok
21:04:02.0952 4000 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
21:04:02.0952 4000 Wdf01000 - ok
21:04:03.0077 4000 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
21:04:03.0077 4000 WfpLwf - ok
21:04:03.0170 4000 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
21:04:03.0170 4000 WIMMount - ok
21:04:03.0279 4000 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
21:04:03.0279 4000 WinUsb - ok
21:04:03.0373 4000 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
21:04:03.0373 4000 WmiAcpi - ok
21:04:03.0482 4000 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
21:04:03.0482 4000 ws2ifsl - ok
21:04:03.0591 4000 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
21:04:03.0591 4000 WudfPf - ok
21:04:03.0669 4000 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:04:03.0669 4000 WUDFRd - ok
21:04:03.0701 4000 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
21:04:03.0716 4000 \Device\Harddisk0\DR0 - ok
21:04:03.0716 4000 MBR (0x1B8) (973e9ba32fdbb305c552ed3e1ebf0686) \Device\Harddisk1\DR1
21:04:03.0732 4000 \Device\Harddisk1\DR1 - ok
21:04:03.0732 4000 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk2\DR2
21:04:03.0747 4000 \Device\Harddisk2\DR2 - ok
21:04:03.0747 4000 Boot (0x1200) (eaa9ff020c01bb2b90c6216d9af4e814) \Device\Harddisk0\DR0\Partition0
21:04:03.0747 4000 \Device\Harddisk0\DR0\Partition0 - ok
21:04:03.0763 4000 Boot (0x1200) (e2e167c7296d831008346b65378fa8d3) \Device\Harddisk0\DR0\Partition1
21:04:03.0763 4000 \Device\Harddisk0\DR0\Partition1 - ok
21:04:03.0779 4000 Boot (0x1200) (ca0072b55e9af84a8cc7e6094681c3f7) \Device\Harddisk0\DR0\Partition2
21:04:03.0779 4000 \Device\Harddisk0\DR0\Partition2 - ok
21:04:03.0779 4000 Boot (0x1200) (975f3f7c3c3485a9fb98a3e7cc6521f7) \Device\Harddisk1\DR1\Partition0
21:04:03.0794 4000 \Device\Harddisk1\DR1\Partition0 - ok
21:04:03.0794 4000 Boot (0x1200) (a7deb1c04ca082d91a2b87a0c4959728) \Device\Harddisk2\DR2\Partition0
21:04:03.0794 4000 \Device\Harddisk2\DR2\Partition0 - ok
21:04:03.0794 4000 ============================================================
21:04:03.0794 4000 Scan finished
21:04:03.0794 4000 ============================================================
21:04:03.0794 4012 Detected object count: 1
21:04:03.0794 4012 Actual detected object count: 1
21:04:08.0927 4012 sptd ( LockedFile.Multi.Generic ) - skipped by user
21:04:08.0927 4012 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
21:04:14.0995 2828 Deinitialize success

Stahnete Malwarebytes' Anti-Malware (zkracene MBAM) (viz muj podpis)

• Provedte aktualizaci
• Provedte uplny sken - nic nemazte
• MBAM miva obcas falesne detekce, proto vlozte log do prispevku a pockejte na posouzeni

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Verzia databázy: 8211

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

21. 11. 2011 22:48:03
mbam-log-2011-11-21 (22-46-56).txt

Typ kontroly: Úplná kontrola (C:\|D:\|E:\|H:\|)
Objektov kontrolovaných: 292448
Uplynutý èas: 34 min, 47 sek

Infikované služby pamäte: 0
Infikované moduly pamäte: 0
Infikované registraèné kŸúèe: 0
Infikované registraèné hodnoty: 0
Infikované položky registraèných dát: 0
Infikované prieèinky: 0
Infikované súbory: 3

Infikované služby pamäte:
(Škodlivé položky neboli zistené)

Infikované moduly pamäte:
(Škodlivé položky neboli zistené)

Infikované registraèné kŸúèe:
(Škodlivé položky neboli zistené)

Infikované registraèné hodnoty:
(Škodlivé položky neboli zistené)

Infikované položky registraèných dát:
(Škodlivé položky neboli zistené)

Infikované prieèinky:
(Škodlivé položky neboli zistené)

Infikované súbory:
h:\_programy_\install\abbyy pdf transformer 2.0.0.1147-full\patch\pdft2.0.0.1147patch.exe (RiskWare.Tool.CK) -> No action taken.
h:\_programy_\install\ccproxy v6.0\CCProxy\CDial.dll (PUP.ServerCCProxy) -> No action taken.
h:\_programy_\install\ccproxy v6.0\CCProxy\uuid.dll (PUP.ServerCCProxy) -> No action taken.

PROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK
Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe

• Vypnete vsechny rezidentni bezpecnostní programy - firewally, antiviry, antispywary apod.
• Pokud mate Win XP spustte pod uctem Spravce\Administratora
• Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
• Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
• Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
• Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
• Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
• Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte
• Detailni postup vc. obrazku mate zde http://www.bleepingcomputer.com/combofi ... t-combofix

ComboFix 11-11-22.01 - cigo89 . 11. 2011 11:12:36.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.421.1051.18.3959.2741 [GMT 1:00]
Running from: c:\users\cigo89\Desktop\ComboFix.exe
AV: AntiVir Desktop *Disabled/Outdated* {090F9C29-64CE-6C6F-379C-5901B49A85B7}
SP: AntiVir Desktop *Disabled/Outdated* {B26E7DCD-42F4-63E1-0D2C-6273CF1DCF0A}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\SysWow64\systeminfo.dll
.
.
((((((((((((((((((((((((( Files Created from 2011-10-22 to 2011-11-22 )))))))))))))))))))))))))))))))
.
.
2011-11-22 10:16 . 2011-11-22 10:16 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-11-21 22:19 . 2011-11-21 22:19 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{0BC1B118-D51D-431D-96B2-8345CCF70251}\offreg.dll
2011-11-21 21:03 . 2011-10-07 04:16 8570192 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{0BC1B118-D51D-431D-96B2-8345CCF70251}\mpengine.dll
2011-11-21 19:51 . 2011-11-21 19:51 -------- d-----w- C:\rsit
2011-11-21 18:07 . 2011-11-21 18:07 -------- d-----w- c:\users\cigo89\AppData\Roaming\Avira
2011-11-21 18:04 . 2011-11-21 18:04 -------- d-----w- c:\programdata\Avira
2011-11-21 18:04 . 2010-03-02 12:35 116568 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-11-21 18:04 . 2010-02-16 13:24 81072 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-11-21 18:04 . 2009-05-11 11:49 51992 ----a-w- c:\windows\SysWow64\drivers\avgntdd.sys
2011-11-21 18:04 . 2009-05-11 11:49 17016 ----a-w- c:\windows\SysWow64\drivers\avgntmgr.sys
2011-11-21 18:04 . 2011-11-21 18:04 -------- d-----w- c:\program files (x86)\Avira
2011-11-20 17:56 . 2011-11-20 17:56 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite
2011-11-20 15:26 . 2009-10-22 12:54 40464 ----a-w- c:\windows\system32\drivers\71786222.sys
2011-11-20 15:26 . 2009-10-09 22:30 352784 ----a-w- c:\windows\system32\drivers\7178622.sys
2011-11-20 15:26 . 2009-09-25 16:59 157712 ----a-w- c:\windows\system32\drivers\71786221.sys
2011-11-19 13:17 . 2011-11-19 13:17 -------- d-----w- c:\programdata\BlazeVideo
2011-11-19 13:17 . 2011-11-19 13:17 -------- d-----w- c:\program files (x86)\BlazeVideo
2011-11-18 15:18 . 2011-11-19 13:17 507392 ----a-w- c:\windows\system32\drivers\AF15BDA.sys
2011-11-18 15:15 . 2011-11-19 13:17 28672 ----a-w- c:\windows\system32\AF15BDAEX.dll
2011-11-18 15:15 . 2011-11-19 13:17 140 ----a-w- c:\windows\system32\AF15IRTBL.bin
2011-11-12 11:18 . 2011-11-20 15:20 -------- d-----w- c:\windows\Internet Logs
2011-11-12 11:18 . 2011-11-12 11:18 -------- d-----w- c:\users\cigo89\AppData\Roaming\CheckPoint
2011-11-12 11:18 . 2011-11-12 11:18 -------- d-----w- c:\program files (x86)\Conduit
2011-11-12 11:18 . 2011-11-15 14:06 -------- d-----w- c:\users\cigo89\AppData\Local\Conduit
2011-11-12 11:17 . 2011-11-20 15:24 -------- d-----w- c:\program files\CheckPoint
2011-11-12 11:10 . 2011-11-20 15:24 -------- d-----w- c:\program files (x86)\CheckPoint
2011-11-10 21:21 . 2011-11-10 21:21 521448 ----a-w- c:\windows\system32\deployJava1.dll
2011-11-10 21:21 . 2011-11-10 21:21 -------- d-----w- c:\program files\Java
2011-11-08 22:18 . 2011-09-29 16:29 1923952 ----a-w- c:\windows\system32\drivers\tcpip.sys
2011-11-08 22:18 . 2011-09-29 04:03 3144704 ----a-w- c:\windows\system32\win32k.sys
2011-11-08 22:18 . 2011-10-01 05:45 886784 ----a-w- c:\program files\Common Files\System\wab32.dll
2011-11-08 22:18 . 2011-10-01 04:37 708608 ----a-w- c:\program files (x86)\Common Files\System\wab32.dll
2011-11-07 22:02 . 2011-11-14 22:24 -------- d-----w- c:\users\cigo89\AppData\Local\Google
2011-11-07 22:02 . 2011-11-14 22:24 -------- d-----w- c:\program files (x86)\Google
2011-11-07 19:52 . 2011-11-07 19:52 -------- d-----w- c:\program files (x86)\PC Connectivity Solution
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-18 08:51 . 2011-04-22 20:06 159080 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10138.bin
2011-11-15 16:14 . 2011-05-28 09:08 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-08-31 16:00 . 2011-06-09 09:02 25416 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-08-27 05:37 . 2011-10-12 13:57 861696 ----a-w- c:\windows\system32\oleaut32.dll
2011-08-27 05:37 . 2011-10-12 13:57 331776 ----a-w- c:\windows\system32\oleacc.dll
2011-08-27 04:26 . 2011-10-12 13:57 571904 ----a-w- c:\windows\SysWow64\oleaut32.dll
2011-08-27 04:26 . 2011-10-12 13:57 233472 ----a-w- c:\windows\SysWow64\oleacc.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2009-12-24 284696]
"BackupManagerTray"="c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" [2010-01-13 265984]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2010-03-02 282792]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2010-01-22 1287760]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
R3 nmwcdnsucx64;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsucx64.sys [x]
R3 nmwcdnsux64;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsux64.sys [x]
R3 Pcouffin64;Low level access layer for CD devices;c:\windows\system32\Drivers\pcouffin64a.sys [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 TurboBoost;TurboBoost;c:\program files\Intel\TurboBoost\TurboBoost.exe [2009-11-02 126352]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 71786222;71786222 Boot Guard Driver;c:\windows\system32\DRIVERS\71786222.sys [x]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x]
S1 71786221;71786221;c:\windows\system32\DRIVERS\71786221.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
S2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2010-02-24 135336]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe [2010-01-22 310352]
S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [2010-01-18 842784]
S2 Greg_Service;GRegService;c:\program files (x86)\Acer\Registration\GregHSRW.exe [2009-08-28 1150496]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-12-24 13336]
S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2010-01-07 255744]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [x]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-12-09 2320920]
S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2009-07-04 240160]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [x]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [x]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [x]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
.
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-12-29 9913376]
"Acer ePower Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2010-01-18 832544]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Supplementary Scan -------
.
uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT2645238
uLocal Page = c:\windows\system32\blank.htm
mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=041b&m=aspire_5741g&r=27360211j535l04f4z1j5t54k2k517
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportova do programu Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Send image to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
FF - ProfilePath - c:\users\cigo89\AppData\Roaming\Mozilla\Firefox\Profiles\7lmc4e14.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2645238&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - ZoneAlarm Security Customized Web Search
FF - prefs.js: browser.startup.homepage - hxxp://search.conduit.com/?ctid=CT2645238&SearchSource=13
.
- - - - ORPHANS REMOVED - - - -
.
URLSearchHooks-{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - (no file)
URLSearchHooks-{a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - (no file)
URLSearchHooks-{91da5e8a-3318-4f8c-b67e-5964de3ab546} - (no file)
Toolbar-Locked - (no file)
SafeBoot-mcmscsvc
SafeBoot-MCODS
Toolbar-Locked - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10c.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil10c.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0007\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2011-11-22 11:17:50
ComboFix-quarantined-files.txt 2011-11-22 10:17
.
Pre-Run: 46 797 828 096 bytes free
Post-Run: 46 542 278 656 bytes free
.
- - End Of File - - B31C5335615B4B088028B136516F408B

Pokud nemate, tak presunte Combofix na plochu

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  KillAll::
  
  Registry::
  [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
  ""=-
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EgisTecLiveUpdate]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Fhoion]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mwlDaemon]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaOviSuite2]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
  
  Driver::
  71786222
  71786221
  
  Collect::
  c:\windows\system32\DRIVERS\71786222.sys
  c:\windows\system32\DRIVERS\71786221.sys
  h:\_programy_\install\abbyy pdf transformer 2.0.0.1147-full\patch\pdft2.0.0.1147patch.exe
  C:\Users\cigo89\AppData\Roaming\Fhoion.exe 
  
  Folder::
  C:\Program Files\ESET
  C:\Program Files (x86)\ESET
  
  DDS::
  uStart Page = hxxp://search.conduit.com?SearchSource= ... =CT2645238
  uLocal Page = c:\windows\system32\blank.htm
  mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACA ... 5t54k2k517
  
  Firefox::
  FF - ProfilePath - c:\users\cigo89\AppData\Roaming\Mozilla\Firefox\Profiles\7lmc4e14.default\
  FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.as ... ource=3&q={searchTerms}
  FF - prefs.js: browser.search.selectedEngine - ZoneAlarm Security Customized Web Search
  FF - prefs.js: browser.startup.homepage - hxxp://search.conduit.com/?ctid=CT26452 ... hSource=13
  
  RegLock::
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
  [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
  [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
  [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
  [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
  [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
  [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings]
  [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0007\AllUserSettings]
  [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
  
  Reboot::

• Ulozte vytvoreny TXT jako CFScript.txt
• Pretahnete vytvoreny CFScript.txt nad Combofix a pustte (viz obrazek nize)
  
• Po aplikaci skriptu (a pripadnem restartu) na Vas vypadne log, jeho obsah sem vlozte

Muze se stat, ze po aplikaci skriptu nenabehnou windows, v tomto pripade restartuje PC a mackejte F8 a zvolte Posledni znamou konfiguraci

ComboFix 11-11-22.01 - cigo89 . 11. 2011 20:59:07.3.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.421.1051.18.3959.2554 [GMT 1:00]
Running from: c:\users\cigo89\Desktop\ComboFix.exe
Command switches used :: c:\users\cigo89\Desktop\CFScript.txt
AV: AntiVir Desktop *Disabled/Updated* {090F9C29-64CE-6C6F-379C-5901B49A85B7}
SP: AntiVir Desktop *Disabled/Updated* {B26E7DCD-42F4-63E1-0D2C-6273CF1DCF0A}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\ESET
c:\program files (x86)\ESET\Install\advheur.nup
c:\program files (x86)\ESET\Install\archs.nup
c:\program files (x86)\ESET\Install\engine.nup
c:\program files (x86)\ESET\Install\charon.nup
c:\program files (x86)\ESET\Install\main.dll
c:\program files (x86)\ESET\Install\mainlang.dll
c:\program files (x86)\ESET\Install\mfc42.dll
c:\program files (x86)\ESET\Install\mfc42u.dll
c:\program files (x86)\ESET\Install\msvcrt.dll
c:\program files (x86)\ESET\Install\ntbasecz.nup
c:\program files (x86)\ESET\Install\ntinetcz.nup
c:\program files (x86)\ESET\Install\ntstdcz.nup
c:\program files (x86)\ESET\Install\pwscan.nup
c:\program files (x86)\ESET\Install\readme.txt
c:\program files (x86)\ESET\Install\setup.exe
c:\program files (x86)\ESET\Install\setup.xml
c:\program files (x86)\ESET\Install\utilmod.nup
c:\program files (x86)\ESET\Program's manual.chm
c:\program files\ESET
c:\program files\ESET\ESET NOD32 Antivirus\nod32krn.exe
c:\program files\ESET\ESET Smart Security\nod32krn.exe
c:\windows\system32\DRIVERS\71786221.sys
c:\windows\system32\DRIVERS\71786222.sys
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_71786221
-------\Legacy_71786222
-------\Service_71786221
-------\Service_71786222
.
.
((((((((((((((((((((((((( Files Created from 2011-10-22 to 2011-11-22 )))))))))))))))))))))))))))))))
.
.
2011-11-22 20:03 . 2011-11-22 20:03 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{266BA6FD-C57A-4344-BA65-D01E5EAF9467}\offreg.dll
2011-11-21 19:51 . 2011-11-21 19:51 -------- d-----w- C:\rsit
2011-11-21 18:07 . 2011-11-21 18:07 -------- d-----w- c:\users\cigo89\AppData\Roaming\Avira
2011-11-21 18:04 . 2011-11-22 18:58 88288 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-11-21 18:04 . 2011-11-22 18:58 123784 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-11-21 18:04 . 2011-11-21 18:04 -------- d-----w- c:\programdata\Avira
2011-11-21 18:04 . 2009-05-11 11:49 51992 ----a-w- c:\windows\SysWow64\drivers\avgntdd.sys
2011-11-21 18:04 . 2009-05-11 11:49 17016 ----a-w- c:\windows\SysWow64\drivers\avgntmgr.sys
2011-11-21 18:04 . 2011-11-21 18:04 -------- d-----w- c:\program files (x86)\Avira
2011-11-20 17:56 . 2011-11-20 17:56 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite
2011-11-20 15:26 . 2009-10-09 22:30 352784 ----a-w- c:\windows\system32\drivers\7178622.sys
2011-11-19 13:17 . 2011-11-19 13:17 -------- d-----w- c:\programdata\BlazeVideo
2011-11-19 13:17 . 2011-11-19 13:17 -------- d-----w- c:\program files (x86)\BlazeVideo
2011-11-18 15:18 . 2011-11-19 13:17 507392 ----a-w- c:\windows\system32\drivers\AF15BDA.sys
2011-11-18 15:15 . 2011-11-19 13:17 28672 ----a-w- c:\windows\system32\AF15BDAEX.dll
2011-11-18 15:15 . 2011-11-19 13:17 140 ----a-w- c:\windows\system32\AF15IRTBL.bin
2011-11-12 11:18 . 2011-11-20 15:20 -------- d-----w- c:\windows\Internet Logs
2011-11-12 11:18 . 2011-11-12 11:18 -------- d-----w- c:\users\cigo89\AppData\Roaming\CheckPoint
2011-11-12 11:18 . 2011-11-12 11:18 -------- d-----w- c:\program files (x86)\Conduit
2011-11-12 11:18 . 2011-11-15 14:06 -------- d-----w- c:\users\cigo89\AppData\Local\Conduit
2011-11-12 11:17 . 2011-11-20 15:24 -------- d-----w- c:\program files\CheckPoint
2011-11-12 11:10 . 2011-11-20 15:24 -------- d-----w- c:\program files (x86)\CheckPoint
2011-11-10 21:21 . 2011-11-10 21:21 521448 ----a-w- c:\windows\system32\deployJava1.dll
2011-11-10 21:21 . 2011-11-10 21:21 -------- d-----w- c:\program files\Java
2011-11-08 22:18 . 2011-09-29 16:29 1923952 ----a-w- c:\windows\system32\drivers\tcpip.sys
2011-11-08 22:18 . 2011-09-29 04:03 3144704 ----a-w- c:\windows\system32\win32k.sys
2011-11-08 22:18 . 2011-10-01 05:45 886784 ----a-w- c:\program files\Common Files\System\wab32.dll
2011-11-08 22:18 . 2011-10-01 04:37 708608 ----a-w- c:\program files (x86)\Common Files\System\wab32.dll
2011-11-07 22:02 . 2011-11-14 22:24 -------- d-----w- c:\users\cigo89\AppData\Local\Google
2011-11-07 22:02 . 2011-11-14 22:24 -------- d-----w- c:\program files (x86)\Google
2011-11-07 19:52 . 2011-11-07 19:52 -------- d-----w- c:\program files (x86)\PC Connectivity Solution
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-22 19:50 . 2011-04-22 20:06 159080 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10138.bin
2011-11-15 16:14 . 2011-05-28 09:08 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-08-31 16:00 . 2011-06-09 09:02 25416 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-08-27 05:37 . 2011-10-12 13:57 861696 ----a-w- c:\windows\system32\oleaut32.dll
2011-08-27 05:37 . 2011-10-12 13:57 331776 ----a-w- c:\windows\system32\oleacc.dll
2011-08-27 04:26 . 2011-10-12 13:57 571904 ----a-w- c:\windows\SysWow64\oleaut32.dll
2011-08-27 04:26 . 2011-10-12 13:57 233472 ----a-w- c:\windows\SysWow64\oleacc.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-11-22_10.16.22 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-02-19 22:03 . 2011-02-19 22:03 51024 c:\windows\SysWOW64\vcomp100.dll
+ 2011-02-19 22:03 . 2011-02-19 22:03 81744 c:\windows\SysWOW64\mfcm100u.dll
+ 2011-02-19 22:03 . 2011-02-19 22:03 81744 c:\windows\SysWOW64\mfcm100.dll
+ 2011-02-19 22:03 . 2011-02-19 22:03 60752 c:\windows\SysWOW64\mfc100rus.dll
+ 2011-02-19 22:03 . 2011-02-19 22:03 43344 c:\windows\SysWOW64\mfc100kor.dll
+ 2011-02-19 22:03 . 2011-02-19 22:03 43856 c:\windows\SysWOW64\mfc100jpn.dll
+ 2011-02-19 22:03 . 2011-02-19 22:03 62288 c:\windows\SysWOW64\mfc100ita.dll
+ 2011-02-19 22:03 . 2011-02-19 22:03 36176 c:\windows\SysWOW64\mfc100cht.dll
+ 2011-02-19 22:03 . 2011-02-19 22:03 36176 c:\windows\SysWOW64\mfc100chs.dll
+ 2011-02-19 22:03 . 2011-02-19 22:03 64336 c:\windows\SysWOW64\mfc100fra.dll
+ 2011-02-19 22:03 . 2011-02-19 22:03 63824 c:\windows\SysWOW64\mfc100esn.dll
+ 2011-02-19 22:03 . 2011-02-19 22:03 55120 c:\windows\SysWOW64\mfc100enu.dll
+ 2011-02-19 22:03 . 2011-02-19 22:03 64336 c:\windows\SysWOW64\mfc100deu.dll
- 2009-07-14 04:54 . 2011-11-21 18:12 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-07-14 04:54 . 2011-11-22 19:41 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-07-14 04:54 . 2011-11-21 18:12 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-07-14 04:54 . 2011-11-22 19:41 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-07-14 04:54 . 2011-11-22 19:41 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-07-14 04:54 . 2011-11-21 18:12 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-01-16 03:28 . 2011-11-22 19:01 53966 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10 . 2011-11-22 18:50 33744 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
- 2011-02-16 14:29 . 2011-11-21 22:20 16092 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3523180445-1824959616-3891377187-1000_UserData.bin
+ 2011-02-16 14:29 . 2011-11-22 18:50 16092 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3523180445-1824959616-3891377187-1000_UserData.bin
+ 2009-07-14 04:46 . 2011-11-22 18:52 94000 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat
- 2011-11-21 22:19 . 2011-11-21 22:19 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2011-11-22 20:03 . 2011-11-22 20:03 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2011-11-22 20:03 . 2011-11-22 20:03 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2011-11-21 22:19 . 2011-11-21 22:19 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2009-07-14 05:01 . 2011-11-21 22:18 394912 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2009-07-14 05:01 . 2011-11-22 20:02 394912 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2011-02-19 22:08 . 2011-02-19 22:08 163840 c:\windows\Installer\253613.msi
+ 2011-02-19 22:03 . 2011-02-19 22:03 4422992 c:\windows\SysWOW64\mfc100u.dll
+ 2011-02-19 22:03 . 2011-02-19 22:03 4397384 c:\windows\SysWOW64\mfc100.dll
+ 2011-03-29 03:48 . 2011-11-22 20:02 4828284 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-3523180445-1824959616-3891377187-1000-8192.dat
- 2011-03-29 03:48 . 2011-11-21 19:42 4828284 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-3523180445-1824959616-3891377187-1000-8192.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2009-12-24 284696]
"BackupManagerTray"="c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" [2010-01-13 265984]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2011-11-22 281768]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2010-01-22 1287760]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
R3 nmwcdnsucx64;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsucx64.sys [x]
R3 nmwcdnsux64;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsux64.sys [x]
R3 Pcouffin64;Low level access layer for CD devices;c:\windows\system32\Drivers\pcouffin64a.sys [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 TurboBoost;TurboBoost;c:\program files\Intel\TurboBoost\TurboBoost.exe [2009-11-02 126352]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
S2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2011-11-22 136360]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe [2010-01-22 310352]
S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [2010-01-18 842784]
S2 Greg_Service;GRegService;c:\program files (x86)\Acer\Registration\GregHSRW.exe [2009-08-28 1150496]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-12-24 13336]
S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2010-01-07 255744]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [x]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-12-09 2320920]
S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2009-07-04 240160]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [x]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [x]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [x]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
.
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-12-29 9913376]
"Acer ePower Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2010-01-18 832544]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"combofix"="c:\combofix\CF16389.3XE" [2010-11-20 345088]
.
------- Supplementary Scan -------
.
uLocal Page = %SystemRoot%\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovať do programu Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Send image to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
TCP: DhcpNameServer = 192.168.1.192 192.168.10.254
FF - ProfilePath - c:\users\cigo89\AppData\Roaming\Mozilla\Firefox\Profiles\7lmc4e14.default\
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
.
.
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Completion time: 2011-11-22 21:07:43 - machine was rebooted
ComboFix-quarantined-files.txt 2011-11-22 20:07
ComboFix2.txt 2011-11-22 19:57
ComboFix3.txt 2011-11-22 10:17
.
Pre-Run: 45 870 247 936 bytes free
Post-Run: 45 545 177 088 bytes free
.
- - End Of File - - E56D2CD597847516D61B1E4F672AA58E
Upload was successful

Jak se chova PC

Dobry den. PC sa spravalo uplen normalne po vykonani scriptu sa pocitac restartol no po opetovnom "nastartovani" systemu nastali problemy so spustenim aplikacii (Opera,Mozila, kopirovanie). Opat som restartol PC a bolo vsetko OK. Na mojom externom disku a disku v počitači sa nachadza odkaz recyklebin zrejme tam nema byt. Ci ano? Dakujem pekny den prajem

Zapojte do PC vsechny USB klice (flashky, ext. disky apod.)

• Stahne a ulozte na plochu UsbFix http://www.viry.cz/forum/viewtopic.php?f=24&t=102308
• Spustte a kliknete na Deletion
• Po dokonceni sem vlozte log, pokud na Vas nevyskoci, najdete jej zde C:\UsbFix.txt

############################## | UsbFix V 7.069 | [Deletion]

User: cigo89 (Administrator) # CIGO89-PC
Updated 20/11/2011 by El Desaparecido
Started at 21:02:06 | 23/11/2011

Website: http://eldesaparecido.com
Suspicious file ? : http://eldesaparecido.com/support.php
Contact: contact@eldesaparecido.com

PC: Acer (Aspire 5741G ) (x64-based PC) # Notebook
CPU: Intel(R) Core(TM) i5 CPU M 430 @ 2.27GHz (2267)
RAM -> [ Total : 3959 | Free : 2257 ]
BIOS: InsydeH2O Version V1.02
BOOT: Normal boot

OS: Microsoft Windows 7 Home Premium (6.1.7601 64-Bit) # Service Pack 1
WB: Windows Internet Explorer 9.0.8112.16421

SC: Security Center Service [ Enabled ]
WU: Windows Update Service [ Enabled ]
AV: AntiVir Desktop [ Enabled | Updated ]
FW: Windows FireWall Service [ Enabled ]

C:\ (%systemdrive%) -> Fixed drive # 80 Gb (42 Mb free - 53%) [Acer] # NTFS
D:\ -> Fixed drive # 504 Gb (327 Mb free - 65%) [] # NTFS
E:\ -> CD-ROM
F:\ -> CD-ROM
G:\ -> Removable drive # 15 Gb (1 Mb free - 10%) [] # NTFS
H:\ -> Fixed drive # 466 Gb (365 Mb free - 78%) [ dado disk] # NTFS

################## | Active Processes |

C:\Windows\system32\csrss.exe (492)
C:\Windows\system32\wininit.exe (552)
C:\Windows\system32\csrss.exe (576)
C:\Windows\system32\services.exe (608)
C:\Windows\system32\lsass.exe (636)
C:\Windows\system32\lsm.exe (644)
C:\Windows\system32\winlogon.exe (720)
C:\Windows\system32\svchost.exe (788)
C:\Windows\system32\nvvsvc.exe (860)
C:\Windows\system32\svchost.exe (900)
C:\Windows\System32\svchost.exe (988)
C:\Windows\System32\svchost.exe (128)
C:\Windows\system32\svchost.exe (384)
C:\Windows\system32\svchost.exe (688)
C:\Windows\system32\svchost.exe (1144)
C:\Windows\system32\nvvsvc.exe (1216)
C:\Windows\System32\spoolsv.exe (1412)
C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (1440)
C:\Windows\system32\svchost.exe (1472)
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (1572)
C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (1596)
C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (1624)
C:\Program Files (x86)\Launch Manager\dsiwmis.exe (1664)
C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe (1712)
C:\Program Files (x86)\Acer\Registration\GregHSRW.exe (1740)
C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe (1756)
C:\Windows\system32\conhost.exe (1768)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (1832)
C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe (1876)
C:\Windows\system32\svchost.exe (1940)
C:\Program Files\Acer\Acer Updater\UpdaterService.exe (2000)
C:\Windows\System32\svchost.exe (2040)
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (1120)
C:\Windows\system32\taskhost.exe (2140)
C:\Windows\system32\Dwm.exe (2212)
C:\Windows\Explorer.EXE (2324)
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (2580)
C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe (2616)
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (2892)
C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe (2924)
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (2984)
C:\Program Files (x86)\Launch Manager\LManager.exe (2996)
C:\Windows\system32\wbem\unsecapp.exe (2228)
C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe (2248)
C:\Windows\system32\wbem\wmiprvse.exe (2336)
C:\Program Files (x86)\Launch Manager\LMworker.exe (2356)
C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe (2084)
C:\Program Files (x86)\Opera\opera.exe (976)
C:\Windows\system32\SearchIndexer.exe (3128)
C:\Program Files\Windows Media Player\wmpnetwk.exe (3528)
C:\Windows\system32\svchost.exe (3624)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (3420)
C:\Windows\system32\WUDFHost.exe (1492)
C:\Program Files (x86)\Mozilla Firefox\firefox.exe (2904)
C:\Windows\system32\SearchProtocolHost.exe (2028)
C:\Windows\system32\SearchFilterHost.exe (3596)
C:\UsbFix\UsbFix.exe (3364)
C:\Windows\system32\wbem\wmiprvse.exe (1044)

################## | Stopped processes |

Stopped! C:\Windows\system32\nvvsvc.exe (860)
Stopped! C:\Windows\system32\nvvsvc.exe (1216)
Stopped! C:\Windows\System32\spoolsv.exe (1412)
Stopped! C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (1440)
Stopped! C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (1572)
Stopped! C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (1596)
Stopped! C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (1624)
Stopped! C:\Program Files (x86)\Launch Manager\dsiwmis.exe (1664)
Stopped! C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe (1712)
Stopped! C:\Program Files (x86)\Acer\Registration\GregHSRW.exe (1740)
Stopped! C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe (1756)
Stopped! C:\Windows\system32\conhost.exe (1768)
Stopped! C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (1832)
Stopped! C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe (1876)
Stopped! C:\Program Files\Acer\Acer Updater\UpdaterService.exe (2000)
Stopped! C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (1120)
Stopped! C:\Windows\system32\taskhost.exe (2140)
Stopped! C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (2580)
Stopped! C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe (2616)
Stopped! C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (2892)
Stopped! C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe (2924)
Stopped! C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (2984)
Stopped! C:\Program Files (x86)\Launch Manager\LManager.exe (2996)
Stopped! C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe (2248)
Stopped! C:\Program Files (x86)\Launch Manager\LMworker.exe (2356)
Stopped! C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe (2084)
Stopped! C:\Program Files (x86)\Opera\opera.exe (976)
Stopped! C:\Windows\system32\SearchIndexer.exe (3128)
Stopped! C:\Program Files\Windows Media Player\wmpnetwk.exe (3528)
Stopped! C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (3420)
Stopped! C:\Windows\system32\WUDFHost.exe (1492)
Stopped! C:\Program Files (x86)\Mozilla Firefox\firefox.exe (2904)

################## | Files # Infected Folders |

Deleted ! C:\$RECYCLE.BIN\S-1-5-21-3523180445-1824959616-3891377187-1000
Deleted ! D:\$RECYCLE.BIN\S-1-5-21-3523180445-1824959616-3891377187-1000
Deleted ! H:\$RECYCLE.BIN\S-1-5-21-1345732471-1687573740-328697185-1002
Deleted ! H:\$RECYCLE.BIN\S-1-5-21-1432885060-2459966597-1974008575-1000
Deleted ! H:\$RECYCLE.BIN\S-1-5-21-1675173025-3486011599-3655988462-1001
Deleted ! H:\$RECYCLE.BIN\S-1-5-21-2193472827-3699375327-508692746-1000
Deleted ! H:\$RECYCLE.BIN\S-1-5-21-2194444523-3186589597-4109243064-1000
Deleted ! H:\$RECYCLE.BIN\S-1-5-21-2527182469-500431871-1788355437-1000
Deleted ! H:\$RECYCLE.BIN\S-1-5-21-3313271991-508274466-272786480-1000
Deleted ! H:\$RECYCLE.BIN\S-1-5-21-3523180445-1824959616-3891377187-1000
Deleted ! H:\$RECYCLE.BIN\S-1-5-21-3795315242-3918665621-692557495-1001
Deleted ! H:\$RECYCLE.BIN\S-1-5-21-3927369792-457331124-2204793043-1000
Deleted ! H:\$RECYCLE.BIN\S-1-5-21-4202379624-377161421-1688311783-1000
Deleted ! H:\Recycler\S-1-5-21-1004336348-1614895754-1417001333-1003

(!) Temporary files deleted.

################## | Registry |

Deleted ! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System|DisableRegistryTools
Deleted ! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoDrives
Deleted ! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoDrives

################## | Mountpoints2 |


################## | Listing |

[23/11/2011 - 21:03:19 | SHD ] C:\$RECYCLE.BIN
[19/11/2011 - 14:42:57 | N | 4608] C:\6XSourceFilter.grf
[16/02/2011 - 14:59:11 | D ] C:\book
[16/01/2010 - 04:13:54 | N | 8192] C:\BOOTSECT.BAK
[22/11/2011 - 21:08:29 | N | 15736] C:\ComboFix.txt
[14/07/2009 - 06:08:56 | SHD ] C:\Documents and Settings
[23/11/2011 - 20:36:21 | ASH | 3113308160] C:\hiberfil.sys
[16/01/2010 - 04:27:12 | D ] C:\Intel
[02/03/2011 - 13:18:17 | RD ] C:\MSOCache
[16/02/2011 - 15:25:50 | D ] C:\OEM
[23/11/2011 - 20:36:25 | ASH | 4151078912] C:\pagefile.sys
[14/07/2009 - 04:20:08 | D ] C:\PerfLogs
[22/11/2011 - 21:01:44 | D ] C:\Program Files
[22/11/2011 - 21:01:44 | D ] C:\Program Files (x86)
[21/11/2011 - 19:04:38 | D ] C:\ProgramData
[22/11/2011 - 21:08:32 | D ] C:\Qoobox
[16/02/2011 - 14:56:01 | D ] C:\Recovery
[16/01/2010 - 04:33:36 | N | 3274] C:\RHDSetup.log
[23/11/2011 - 16:19:16 | SHD ] C:\System Volume Information
[21/11/2011 - 21:04:14 | N | 164164] C:\TDSSKiller.2.6.19.0_21.11.2011_21.02.19_log.txt
[22/11/2011 - 20:51:23 | N | 82104] C:\TDSSKiller.2.6.20.0_22.11.2011_20.49.54_log.txt
[11/06/2011 - 20:53:38 | D ] C:\totalcmd
[23/11/2011 - 21:03:19 | D ] C:\UsbFix
[23/11/2011 - 21:02:16 | A | 9212] C:\UsbFix.txt
[16/02/2011 - 14:56:11 | D ] C:\Users
[22/11/2011 - 21:04:00 | D ] C:\Windows
[23/11/2011 - 21:03:19 | SHD ] D:\$RECYCLE.BIN
[05/11/2011 - 22:05:51 | D ] D:\Config.Msi
[20/11/2011 - 19:35:42 | D ] D:\INSTAL GAME
[19/04/2010 - 12:47:26 | SHD ] D:\System Volume Information
[10/09/2011 - 21:27:40 | D ] D:\_FILMY_
[15/11/2011 - 15:03:45 | D ] G:\Battlefield.3-RELOADED-unrar
[08/11/2011 - 23:04:56 | SHD ] G:\System Volume Information
[16/02/2011 - 12:11:02 | D ] H:\!ANGLICKÝ JAZYK
[23/11/2011 - 21:03:19 | D ] H:\$RECYCLE.BIN
[02/02/2011 - 15:43:05 | D ] H:\autobusy
[07/05/2009 - 21:58:54 | RA | 383454] H:\BOOTMGR
[08/11/2011 - 12:58:14 | N | 56399] H:\CD-KEY Seznam.txt
[18/11/2011 - 15:58:15 | D ] H:\HUDBA
[06/03/2011 - 23:33:15 | D ] H:\Human Weapon
[19/11/2011 - 19:27:55 | D ] H:\nokia files
[20/11/2011 - 16:38:59 | D ] H:\Nokia Video Converter Factory Pro 3.0
[01/02/2011 - 16:53:36 | D ] H:\OFFICE
[14/10/2011 - 12:02:27 | D ] H:\Recepty LA COLLINA
[04/05/2011 - 14:53:39 | D ] H:\RECYCLER
[19/11/2011 - 20:04:50 | D ] H:\rp
[20/11/2011 - 16:28:30 | D ] H:\Security www.viry.cz
[20/11/2011 - 16:38:49 | D ] H:\Swype
[21/07/2011 - 21:13:40 | SHD ] H:\System Volume Information
[16/02/2011 - 11:55:48 | D ] H:\Title Boxing DvD's
[09/09/2010 - 22:16:57 | D ] H:\User Manuals
[08/09/2010 - 18:51:24 | N | 4615456] H:\WD Quick Formatter.exe
[09/09/2010 - 22:17:30 | D ] H:\WD SmartWare
[09/09/2010 - 22:17:02 | D ] H:\WD SmartWare for Mac
[08/09/2010 - 18:51:22 | N | 5553952] H:\WD SmartWare.exe
[18/11/2011 - 16:41:51 | D ] H:\_GAME_
[08/05/2011 - 14:57:20 | D ] H:\_PRACA_david
[21/11/2011 - 18:57:46 | D ] H:\_PROGRAMY_
[21/11/2011 - 14:47:49 | D ] H:\životopis
[29/06/2011 - 13:43:25 | D ] H:\životopis čigo

################## | Vaccin |

C:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
D:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
G:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
H:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)

################## | Upload |

Please send the file: C:\UsbFix_Upload_Me_CIGO89-PC.zip
http://eldesaparecido.com/upload.htmlp
Thank you for your contribution.

################## | Reboot |

(!) The computer was restarted.

################## | E.O.F |

Byla tam havet, co nas pacient nyni