Problem s pc-prosim o kontrolu

Zpráva

jack68 · #1 Příspěvek od **jack68** » 23 dub 2012 15:26

Zdravim,
po zapnuti pc(win7) nebezi tak jak by mel.Strasne dlouhe odezvy na jakoukoliv akci

Logfile of random's system information tool 1.09 (written by random/random)
Run by Janca at 2012-04-23 16:25:50
Microsoft Windows 7 Ultimate
System drive C: has 215 GB (92%) free of 234 GB
Total RAM: 2989 MB (63% free)

HijackThis download failed

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\Rxosxo.job
C:\Windows\tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Janca\AppData\Roaming\Mozilla\Firefox\Profiles\xcc1byj4.default

prefs.js - "extensions.enabledItems" - "DTToolbar@toolbarnet.com:1.1.2.0185, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.4.48, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.20"

"{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}"=C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=AdobeÂ® FlashÂ® Player 10.1 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=OracleÂ® Next Generation Javaâ„˘ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=1.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\plugins\
npdeployJava1.dll
npFoxitReaderPlugin.dll
NPOFF12.DLL

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
mall-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\Janca\AppData\Roaming\Mozilla\Firefox\Profiles\xcc1byj4.default\extensions\
DTToolbar@toolbarnet.com

C:\Users\Janca\AppData\Roaming\Mozilla\Firefox\Profiles\xcc1byj4.default\searchplugins\
daemon-search.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-03-07 1003704]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-01-05 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2010-03-25 968000]
{D4027C7F-154A-4066-A1AD-4243D8127440} - PandoraTV Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll []
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-03-07 1003704]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2012-03-07 4241512]
"ATKMEDIA"=C:\Program Files\ASUS\ATK Packag\ATK Media\DMedia.exe [2010-05-03 170624]
"HControlUser"=C:\Program Files\ASUS\ATK Packag\ATK Hotkey\HControlUser.exe [2009-06-19 105016]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2010-02-20 227328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.txt - open - "C:\Program Files\PSPad editor\PSPad.exe" "%1"

======List of files/folders created in the last 1 month======

2012-04-23 16:20:18 ----D---- C:\Program Files\trend micro
2012-04-23 16:20:16 ----D---- C:\rsit
2012-04-23 16:13:33 ----A---- C:\Windows\ntbtlog.txt
2012-04-23 13:49:03 ----D---- C:\Windows\Minidump
2012-03-29 06:57:51 ----D---- C:\Program Files\Google
2012-03-28 19:14:08 ----A---- C:\Windows\system32\drivers\aswRdr2.sys

======List of files/folders modified in the last 1 month======

2012-04-23 16:24:54 ----D---- C:\Windows\System32
2012-04-23 16:24:54 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-04-23 16:22:44 ----D---- C:\Windows\SoftwareDistribution
2012-04-23 16:21:57 ----AD---- C:\Windows
2012-04-23 16:20:38 ----D---- C:\Windows\system32\Tasks
2012-04-23 16:20:32 ----D---- C:\Windows\Temp
2012-04-23 16:20:18 ----RD---- C:\Program Files
2012-04-23 16:19:40 ----A---- C:\Windows\system32\log.txt
2012-04-23 16:09:23 ----D---- C:\Windows\system32\catroot2
2012-04-23 16:09:14 ----D---- C:\Windows\ModemLogs
2012-04-23 16:09:14 ----D---- C:\Windows\inf
2012-04-23 16:08:49 ----D---- C:\Users\Janca\AppData\Roaming\Spyware Terminator
2012-04-23 15:49:10 ----D---- C:\Windows\Prefetch
2012-04-23 15:31:00 ----HD---- C:\ProgramData
2012-04-23 08:12:40 ----A---- C:\Windows\system32\acovcnt.exe
2012-04-22 18:14:44 ----D---- C:\ProgramData\boost_interprocess
2012-04-18 07:17:11 ----A---- C:\Windows\system32\ServiceFilter.ini
2012-04-17 19:49:15 ----D---- C:\Users\Janca\AppData\Roaming\TeamViewer
2012-04-17 19:49:05 ----D---- C:\Program Files\TeamViewer
2012-04-06 08:35:03 ----D---- C:\Windows\system32\wdi
2012-03-29 08:02:30 ----SHD---- C:\Windows\Installer
2012-03-29 07:41:46 ----D---- C:\Program Files\Mozilla Firefox
2012-03-29 06:57:59 ----D---- C:\Windows\Tasks
2012-03-28 19:14:08 ----D---- C:\Windows\system32\drivers

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 giveio;giveio; C:\Windows\system32\giveio.sys [1996-04-03 5248]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-08-06 330264]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 speedfan;speedfan; C:\Windows\system32\speedfan.sys [2011-03-18 25240]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-06-07 721904]
R1 ASPI32;ASPI32; C:\Windows\system32\drivers\ASPI32.sys [2002-07-17 16877]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2012-03-07 44376]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2012-03-07 612184]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2012-03-07 337880]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2012-03-07 53848]
R1 cdrbsdrv;cdrbsdrv; C:\Windows\system32\drivers\cdrbsdrv.sys [2010-11-24 38944]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2010-12-17 31088]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\Windows\system32\drivers\sp_rsdrv2.sys [2011-02-03 142592]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 ASMMAP;ASMMAP; \??\C:\Program Files\ASUS\ATK Packag\ATKGFNEX\ASMMAP.sys [2009-07-02 13880]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2012-03-07 20696]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2012-03-07 57688]
R2 ghaio;ghaio; \??\C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [2007-08-03 20936]
R2 PARLDR2K;ParLdr2k; \??\C:\Windows\system32\drivers\parldr2k.sys [2011-01-30 10454]
R3 AnyDVD;AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [2011-08-19 121464]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2009-10-05 1221632]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT32.sys [2009-10-30 502272]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2009-10-15 94208]
R3 HECI;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECI.sys [2009-09-17 41088]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2010-02-20 8726528]
R3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2009-08-18 119408]
R3 JME;JMicron Ethernet Adapter NDIS6.20 Driver; C:\Windows\system32\DRIVERS\JME.sys [2009-12-04 92272]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 13880]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATKACPI.sys [2009-05-13 14392]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-06-05 1766592]
R3 vsbus;Virtual Serial Bus Enumerator; C:\Windows\system32\DRIVERS\vsb.sys [2008-07-24 15264]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BthEnum;OvladaÄŤ pro Bluetooth Request Block; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
S3 BthPan;ZaĹ™ĂzenĂ Bluetooth (sĂĹĄ PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;OvladaÄŤ portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 392704]
S3 BTHUSB;OvladaÄŤ rozhranĂ USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 58880]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-07-01 86056]
S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2009-07-01 108072]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 29472]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-07-01 18344]
S3 FileObjInfo;STFileDriver; \??\C:\ProgramData\Spyware Terminator\FileObjInfo.sys [2011-02-03 5632]
S3 ipswuio;ipswuio; C:\Windows\System32\DRIVERS\ipswuio.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2010-07-30 18048]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys [2010-07-30 23040]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsu.sys [2010-07-26 137600]
S3 nmwcdnsuc;Nokia USB Flashing Generic; C:\Windows\system32\drivers\nmwcdnsuc.sys [2010-07-26 8576]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 RFCOMM;ZaĹ™ĂzenĂ Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-07-14 84992]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2010-07-30 8192]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2009-07-14 27648]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2010-07-30 8192]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
S3 vserial;ELTIMA Virtual Serial Ports Driver; C:\Windows\System32\DRIVERS\vserial.sys [2008-07-24 47744]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-23 131000]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2009-12-07 303744]
R2 ASLDRService;ASLDR Service; C:\Program Files\ASUS\ATK Packag\ATK Hotkey\ASLDRSrv.exe [2009-06-15 84536]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ASUS\ATK Packag\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2012-03-07 44768]
R2 bgsvcgen;B's Recorder GOLD Library General Service; C:\Windows\system32\bgsvcgen.exe [2010-11-24 139264]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-07-01 582944]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-09-30 262144]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2011-02-03 496128]
R2 TeamViewer6;TeamViewer 6; C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe [2011-01-27 2253688]
R2 TeamViewer7;TeamViewer 7; C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe [2012-03-19 2666880]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-09-30 2314240]
R3 spmgr;spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [2007-08-03 125496]
S2 gupdate;SluĹľba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-03-29 136176]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 DfSdkS;Defragmentation-Service; C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe [2009-08-24 406016]
S3 gupdatem;SluĹľba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-03-29 136176]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-06-07 1343400]
S4 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-12-08 628736]

-----------------EOF-----------------

#2 Příspěvek od **vyosek** » 24 dub 2012 07:24

Zdravim a pekny den preji

Poprosim i o druhy log z RSIT s nazvem info.txt, je ulozen zde c:\rsit

Mohu mit dotaz, proc si bezny uzivatel kupuje nejvyssi licenci Windows Ultimate, ktera je urcena spise pro velke korporace, kdyz stejne nevyuzije nic vic nez nabizi verze Home Premium

A nebo byla "koupena" nekde na internetu

jack68 · #3 Příspěvek od **jack68** » 24 dub 2012 07:41

Zdravim a dekuji za reakci
Ultimate je tam z toho duvodu ze byl zakoupen v obchode NB i s OS.Vse legalni.

info.txt logfile of random's system information tool 1.09 2012-04-23 16:20:27

======Uninstall list======

-->C:\Program Files\Conexant\SAII\SETUP.EXE -U -ISAII -SM=SmartAudio.EXE,1801
-->MsiExec /X{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}
-->MsiExec.exe /I{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049} /S /v/qn
abgx360 v1.0.5-->"C:\Programy\xbox\abgx360\uninstall.exe"
Adobe Flash Player 11 ActiveX-->C:\Windows\system32\Macromed\Flash\FlashUtil11e_ActiveX.exe -maintain activex
Adobe Flash Player 11 Plugin-->C:\Windows\system32\Macromed\Flash\FlashUtil11e_Plugin.exe -maintain plugin
AnyDVD-->"C:\Program Files\SlySoft\AnyDVD\AnyDVD-uninst.exe" /D="C:\Program Files\SlySoft\AnyDVD"
Ashampoo WinOptimizer 6.60-->"C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\unins000.exe"
Ask Toolbar-->MsiExec.exe /X{86D4B82A-ABED-442A-BE86-96357B70F4FE}
ASUS AI Recovery-->MsiExec.exe /I{06585B02-F20D-4AB2-9A64-86EF2AE0F8F0}
ASUS FancyStart-->MsiExec.exe /I{2B81872B-A054-48DA-BE3B-FA5C164C303A}
ASUS LifeFrame3-->MsiExec.exe /I{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}
ASUS MultiFrame-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9D48531D-2135-49FC-BC29-ACCDA5396A76}\setup.exe" -l0x9
ASUS Power4Gear Hybrid-->MsiExec.exe /I{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}
ASUS SmartLogon-->MsiExec.exe /I{64452561-169F-4A36-A2FF-B5E118EC65F5}
ASUS Splendid Video Enhancement Technology-->MsiExec.exe /I{0969AF05-4FF6-4C00-9406-43599238DE0D}
ASUS Virtual Camera-->MsiExec.exe /I{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}
ATK Package-->MsiExec.exe /I{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}
avast! Free Antivirus-->C:\Program Files\Alwil Software\Avast5\aswRunDll.exe "C:\Program Files\Alwil Software\Avast5\Setup\setiface.dll" RunSetup
Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)-->C:\PROGRA~1\DIFX\B4723E9A0713E5B1\dpinst.exe /u C:\Windows\system32\DRVSTORE\pccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294\pccsmcfd.inf
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
CloneDVD2-->"C:\Program Files\Elaborate Bytes\CloneDVD21\CloneDVD2-uninst.exe" /D="C:\Program Files\Elaborate Bytes\CloneDVD21"
Conexant HD Audio-->C:\Program Files\CONEXANT\CNXT_AUDIO_HDA\UIU32a.exe -U -IK52CC2xa.INF
ControlDeck-->MsiExec.exe /I{5B65EF64-1DFA-414A-8C94-7BB726158E21}
DAEMON Tools Toolbar-->C:\Program Files\DAEMON Tools Toolbar\uninst.exe
Dárek k Valentýnu 1.0-->"C:\Program Files\Dárek k Valentýnu\unins000.exe"
Emergency 2012-->"d:\hry\Emergency 2012\uninstall.exe"
ETDWare PS/2-x86 7.0.5.9_WHQL-->C:\Program Files\Elantech\ETDUninst.exe
Fast Boot-->MsiExec.exe /X{13F4A7F3-EABC-4261-AF6B-1317777F0755}
Foxit Reader-->C:\Program Files\Foxit Software\Foxit Reader\Uninstall.exe
Google Chrome-->"C:\Program Files\Google\Chrome\Application\18.0.1025.162\Installer\setup.exe" --uninstall --multi-install --chrome --system-level
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Heroes of Might and Magic V - Tribes of the East-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{07BE4679-4318-4413-9701-B3D92354F11D}\setup.exe" -l0x5
HijackThis 2.0.2-->"H:\HijackThis.exe" /uninstall
ImgBurn-->"C:\Programy\xbox\ImgBurn\uninstall.exe"
Intel(R) Management Engine Components-->C:\Program Files\Intel\Intel(R) Management Engine Components\Uninstall\setup.exe -uninstall
IP Camera Viewer 1.0-->"C:\Programy\IP Camera Viewer 1.0\unins000.exe"
JAF Setup-->"C:\Program Files\ODEON\JAF\uninstall.exe"
Java(TM) 6 Update 23-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216020FF}
JMicron Ethernet Adapter NDIS Driver-->"C:\Program Files\JMicron\JME_DIR\setup.exe" delpkg
JMicron Flash Media Controller Driver-->"C:\Program Files\JMicron\JMCR_DIR\setup.exe" delpkg
KProbe 2.5.2-->C:\Windows\iun6002.exe "C:\Program Files\KProbe\irunin.ini"
Microsoft Office Access MUI (Czech) 2007-->MsiExec.exe /X{90120000-0015-0405-0000-0000000FF1CE}
Microsoft Office Enterprise 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL
Microsoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (Czech) 2007-->MsiExec.exe /X{90120000-0016-0405-0000-0000000FF1CE}
Microsoft Office Groove MUI (Czech) 2007-->MsiExec.exe /X{90120000-00BA-0405-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (Czech) 2007-->MsiExec.exe /X{90120000-0044-0405-0000-0000000FF1CE}
Microsoft Office OneNote MUI (Czech) 2007-->MsiExec.exe /X{90120000-00A1-0405-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Czech) 2007-->MsiExec.exe /X{90120000-001A-0405-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Czech) 2007-->MsiExec.exe /X{90120000-0018-0405-0000-0000000FF1CE}
Microsoft Office Proof (Czech) 2007-->MsiExec.exe /X{90120000-001F-0405-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Slovak) 2007-->MsiExec.exe /X{90120000-001F-041B-0000-0000000FF1CE}
Microsoft Office Proofing (Czech) 2007-->MsiExec.exe /X{90120000-002C-0405-0000-0000000FF1CE}
Microsoft Office Publisher MUI (Czech) 2007-->MsiExec.exe /X{90120000-0019-0405-0000-0000000FF1CE}
Microsoft Office Shared MUI (Czech) 2007-->MsiExec.exe /X{90120000-006E-0405-0000-0000000FF1CE}
Microsoft Office Word MUI (Czech) 2007-->MsiExec.exe /X{90120000-001B-0405-0000-0000000FF1CE}
Microsoft Primary Interoperability Assemblies 2005-->MsiExec.exe /X{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729-->MsiExec.exe /X{6AFCA4E1-9B78-3640-8F72-A7BF33448200}
Mozilla Firefox 11.0 (x86 cs)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSVC80_x86_v2-->MsiExec.exe /I{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}
MSVC90_x86-->MsiExec.exe /I{AF111648-99A1-453E-81DD-80DBBF6DAD0D}
NB Probe-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6324A1EF-CEF4-43E3-8BCD-9EF3F67317FD}\Setup.exe" -l0x9
Net4Switch-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9D6D7811-43B3-463C-BC79-5D1755269989}\SETUP.EXE" -l0x9
Nokia Connectivity Cable Driver-->MsiExec.exe /I{4216D328-0FE8-48B8-85B8-BD300E6F080F}
Nokia Ovi Suite Software Updater-->MsiExec.exe /X{3553E875-F00E-4031-BDEC-75FB1DFEB093}
Nokia Ovi Suite-->C:\ProgramData\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\{36ABE32F-D7D4-4A5E-AADD-589F506B1B50}\Installer.exe
Nokia Ovi Suite-->MsiExec.exe /X{36ABE32F-D7D4-4A5E-AADD-589F506B1B50}
Nokia Service Tool Drivers-->MsiExec.exe /I{3DAD83B9-4C8B-4AC6-BF5E-B9FB181CCBE8}
NVIDIA PhysX-->MsiExec.exe /X{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}
Ovi Desktop Sync Engine-->MsiExec.exe /X{69916AD2-3710-4C86-895E-8F475290AA64}
OviMPlatform-->MsiExec.exe /I{08600005-5228-4BF6-845E-E9A957AFDCB4}
ParadisePoker-->D:\Hry\PARADI~1\UNWISE.EXE D:\Hry\PARADI~1\INSTALL.LOG
PC Connectivity Solution-->MsiExec.exe /I{D4AEC53C-1720-41D9-B6D7-6A60DE62D444}
Phoenix Service Software 2009.34.7.40015-->"C:\Program Files\Nokia\Phoenix\unins000.exe"
Phoenix Service Software-->MsiExec.exe /I{888F53F2-0F13-4CA2-AE1B-211425A59D46}
PokerStars-->"C:\Programy\PokerStars\PokerStarsUninstall.exe" /u:PokerStars
PSPad editor-->"C:\Program Files\PSPad editor\Uninst\unins000.exe"
Skype™ 5.3-->MsiExec.exe /X{5335DADB-34BA-4AE8-A519-648D78498846}
Software Bluetooth WIDCOMM-->MsiExec.exe /X{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}
SpeedFan (remove only)-->"C:\Program Files\SpeedFan\uninstall.exe"
Spyware Terminator-->"C:\Program Files\Spyware Terminator\unins000.exe"
TeamViewer 6-->C:\Program Files\TeamViewer\Version6\uninstall.exe
TeamViewer 7-->C:\Program Files\TeamViewer\Version7\uninstall.exe
The KMPlayer (remove only)-->"C:\Program Files\The KMPlayer\uninstall.exe"
TMPGEnc Authoring Works 4-->MsiExec.exe /I{D7D38949-8251-4F07-BC2C-AA767308010B}
Total Commander (Remove or Repair)-->c:\programy\totalcmd\tcuninst.exe
USB 2.0 1.3M UVC WebCam-->C:\Windows\Uninstsxga.bat
VLC media player 1.1.5-->C:\Program Files\VideoLAN\VLC\uninstall.exe
WinFlash-->MsiExec.exe /X{8F21291E-0444-4B1D-B9F9-4370A73E346D}
WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Wireless Console 3-->MsiExec.exe /I{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}
Zoner Photo Studio 12-->"C:\Program Files\Zoner\Photo Studio 12\unins000.exe" /SILENT

=====HijackThis Backups=====

O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe [2012-04-23]
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe [2012-04-23]
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2012-04-23]
O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe [2012-04-23]
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe [2012-04-23]

======System event log======

Computer Name: Janca-PC
Event Code: 7036
Message: Stav služby Protokol událostí systému Windows byl změněn na: Spuštěno
Record Number: 125197
Source Name: Service Control Manager
Time Written: 20111231195758.547633-000
Event Type: Informace
User:

Computer Name: Janca-PC
Event Code: 7036
Message: Stav služby Vzdálené volání procedur (RPC) byl změněn na: Spuštěno
Record Number: 125196
Source Name: Service Control Manager
Time Written: 20111231195758.485233-000
Event Type: Informace
User:

Computer Name: Janca-PC
Event Code: 7036
Message: Stav služby Mapovač koncových bodů protokolu RPC byl změněn na: Spuštěno
Record Number: 125195
Source Name: Service Control Manager
Time Written: 20111231195758.438433-000
Event Type: Informace
User:

Computer Name: Janca-PC
Event Code: 7036
Message: Stav služby Spouštěč procesů serveru DCOM byl změněn na: Spuštěno
Record Number: 125194
Source Name: Service Control Manager
Time Written: 20111231195758.422833-000
Event Type: Informace
User:

Computer Name: Janca-PC
Event Code: 6
Message: Filtr systému souborů aswFsBlk (verze 6.0, ‎2011‎-‎11‎-‎28T18:51:49.000000000Z) byl úspěšně načten a zaregistrován ve Správci filtrů.
Record Number: 125193
Source Name: Microsoft-Windows-FilterManager
Time Written: 20111231195758.407233-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

=====Application event log=====

Computer Name: 37L4247D28-05
Event Code: 1001
Message: Chybný blok , typ 0
Název události: PnPDriverNotFound
Reakce: Není k dispozici
ID souboru CAB: 0

Podpis problému:
P1: x86
P2: PCI\VEN_8086&DEV_3B64&SUBSYS_1F271043&REV_06
P3:
P4:
P5:
P6:
P7:
P8:
P9:
P10:

Připojené soubory:
C:\Windows\Temp\DMIEA2F.tmp.log.xml

Tyto soubory mohou být k dispozici zde:
C:\ProgramData\Microsoft\Windows\WER\ReportQueue\NonCritical_x86_d1649fa387abef5d28d42e44c7c1ecfa0cdf81d_cab_0680eaea

Symbol analýzy:
Opětovné hledání řešení: 0
ID hlášení: a7fecdaa-7282-11df-85f9-f36bb620e74c
Stav hlášení: 6
Record Number: 5
Source Name: Windows Error Reporting
Time Written: 20100607221854.000000-000
Event Type: Informace
User:

Computer Name: 37L4247D28-05
Event Code: 5617
Message: Windows Management Instrumentation Service subsystems initialized successfully
Record Number: 4
Source Name: Microsoft-Windows-WMI
Time Written: 20100607221853.000000-000
Event Type: Informace
User:

Computer Name: 37L4247D28-05
Event Code: 5615
Message: Windows Management Instrumentation Service started sucessfully
Record Number: 3
Source Name: Microsoft-Windows-WMI
Time Written: 20100607221850.000000-000
Event Type: Informace
User:

Computer Name: 37L4247D28-05
Event Code: 1531
Message: Služba Profil uživatele byla úspěšně spuštěna.

Record Number: 2
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20100607221847.104890-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: 37L4247D28-05
Event Code: 4625
Message: Subsystém EventSystem zabraňuje vytváření duplicitních záznamů v protokolu událostí po dobu 86400 sekund. Tuto dobu lze změnit pomocí hodnoty REG_DWORD s názvem SuppressDuplicateDuration v následujícím klíči registru: HKLM\Software\Microsoft\EventSystem\EventLog.
Record Number: 1
Source Name: Microsoft-Windows-EventSystem
Time Written: 20100607221847.000000-000
Event Type: Informace
User:

#4 Příspěvek od **vyosek** » 24 dub 2012 08:05

Diky za odpoved

Doporucuji odinstalovat (pokud nepouzivate) toolbary (listy prohlizecu) v Přidat nebo odebrat programy

Stahnete si TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe

Kliknete na volbu Change parametrs
V obou oknech (Objects to scan i Additional Option) zakliknete vsechny moznosti - ve vsech ctvereccich musi mit fajecka
Kliknete na OK
Utilite prikazte, at skenuje - klik na Start Scan
Po dokonceni skenu se objevi okno, zkontrolujte, zda-li je vsude moznost Skip
Pokud moznost Skip nebude primarne nastavena, prekliknete ji na Skip
Pokud mate vsude Skip, kliknete na Continue
Na disku, kde mate Windows (obvykle c:\) ve tvaru TDSSKiller.nejaka cisilka _log.txt bude log - jeho obsah sem vlozte

jack68 · #5 Příspěvek od **jack68** » 24 dub 2012 12:14

Opet dekuji za reakci.
bohuzel toolbary nejdou odebrat, protoze mi po case pocitac zamrzne

13:11:39.0069 3044 TDSS rootkit removing tool 2.7.32.0 Apr 23 2012 19:12:34
13:11:39.0116 3044 ============================================================
13:11:39.0116 3044 Current date / time: 2012/04/24 13:11:39.0116
13:11:39.0116 3044 SystemInfo:
13:11:39.0116 3044
13:11:39.0116 3044 OS Version: 6.1.7600 ServicePack: 0.0
13:11:39.0116 3044 Product type: Workstation
13:11:39.0116 3044 ComputerName: JANCA-PC
13:11:39.0116 3044 UserName: Janca
13:11:39.0116 3044 Windows directory: C:\Windows
13:11:39.0116 3044 System windows directory: C:\Windows
13:11:39.0116 3044 Processor architecture: Intel x86
13:11:39.0116 3044 Number of processors: 4
13:11:39.0116 3044 Page size: 0x1000
13:11:39.0116 3044 Boot type: Normal boot
13:11:39.0116 3044 ============================================================
13:11:41.0362 3044 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
13:11:41.0378 3044 Drive \Device\Harddisk1\DR1 - Size: 0x3B9BC7000 (14.90 Gb), SectorSize: 0x200, Cylinders: 0x799, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
13:11:41.0378 3044 ============================================================
13:11:41.0378 3044 \Device\Harddisk0\DR0:
13:11:41.0378 3044 MBR partitions:
13:11:41.0378 3044 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
13:11:41.0378 3044 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1388800, BlocksNum 0x1C918000
13:11:41.0378 3044 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1DCA0800, BlocksNum 0x1C6E4800
13:11:41.0378 3044 \Device\Harddisk1\DR1:
13:11:41.0378 3044 MBR partitions:
13:11:41.0378 3044 \Device\Harddisk1\DR1\Partition0: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x1DCD621
13:11:41.0378 3044 ============================================================
13:11:41.0409 3044 C: <-> \Device\Harddisk0\DR0\Partition1
13:11:41.0440 3044 D: <-> \Device\Harddisk0\DR0\Partition2
13:11:41.0440 3044 ============================================================
13:11:41.0440 3044 Initialize success
13:11:41.0440 3044 ============================================================
13:11:51.0986 3012 ============================================================
13:11:51.0986 3012 Scan started
13:11:51.0986 3012 Mode: Manual; SigCheck; TDLFS;
13:11:51.0986 3012 ============================================================
13:11:52.0968 3012 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys
13:11:53.0546 3012 1394ohci - ok
13:11:53.0608 3012 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys
13:11:53.0655 3012 ACPI - ok
13:11:53.0686 3012 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys
13:11:53.0733 3012 AcpiPmi - ok
13:11:53.0811 3012 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
13:11:53.0858 3012 adp94xx - ok
13:11:53.0904 3012 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
13:11:53.0951 3012 adpahci - ok
13:11:53.0982 3012 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
13:11:53.0998 3012 adpu320 - ok
13:11:54.0029 3012 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
13:11:54.0076 3012 AeLookupSvc - ok
13:11:54.0154 3012 AFBAgent (2d4561e1665d72849a0b916ab30556d0) C:\Windows\system32\FBAgent.exe
13:11:54.0372 3012 AFBAgent - ok
13:11:54.0435 3012 AFD (ddc040fdb01ef1712a6b13e52afb104c) C:\Windows\system32\drivers\afd.sys
13:11:54.0544 3012 AFD - ok
13:11:54.0560 3012 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys
13:11:54.0591 3012 agp440 - ok
13:11:54.0622 3012 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
13:11:54.0638 3012 aic78xx - ok
13:11:54.0684 3012 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
13:11:54.0731 3012 ALG - ok
13:11:54.0747 3012 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys
13:11:54.0762 3012 aliide - ok
13:11:54.0778 3012 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys
13:11:54.0809 3012 amdagp - ok
13:11:54.0809 3012 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys
13:11:54.0825 3012 amdide - ok
13:11:54.0840 3012 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
13:11:54.0872 3012 AmdK8 - ok
13:11:54.0887 3012 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
13:11:54.0934 3012 AmdPPM - ok
13:11:54.0950 3012 amdsata (2101a86c25c154f8314b24ef49d7fbc2) C:\Windows\system32\DRIVERS\amdsata.sys
13:11:54.0996 3012 amdsata - ok
13:11:55.0012 3012 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
13:11:55.0043 3012 amdsbs - ok
13:11:55.0059 3012 amdxata (b81c2b5616f6420a9941ea093a92b150) C:\Windows\system32\DRIVERS\amdxata.sys
13:11:55.0074 3012 amdxata - ok
13:11:55.0168 3012 AnyDVD (64f24088dbb1d68ee9963f66f8eb68cf) C:\Windows\system32\Drivers\AnyDVD.sys
13:11:55.0184 3012 AnyDVD - ok
13:11:55.0215 3012 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys
13:11:55.0262 3012 AppID - ok
13:11:55.0293 3012 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
13:11:55.0386 3012 AppIDSvc - ok
13:11:55.0433 3012 Appinfo (7dead9e3f65dcb2794f2711003bbf650) C:\Windows\System32\appinfo.dll
13:11:55.0464 3012 Appinfo - ok
13:11:55.0511 3012 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll
13:11:55.0558 3012 AppMgmt - ok
13:11:55.0589 3012 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
13:11:55.0620 3012 arc - ok
13:11:55.0652 3012 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
13:11:55.0667 3012 arcsas - ok
13:11:55.0823 3012 ASLDRService (18e5c2f937f9deb8c282df66a3761925) C:\Program Files\ASUS\ATK Packag\ATK Hotkey\ASLDRSrv.exe
13:11:55.0839 3012 ASLDRService - ok
13:11:55.0870 3012 ASMMAP (b9fdfa552eba5b4bf377f7ccec9b8bc7) C:\Program Files\ASUS\ATK Packag\ATKGFNEX\ASMMAP.sys
13:11:55.0886 3012 ASMMAP - ok
13:11:55.0964 3012 ASPI32 (5b01af89d16d562825c4db4530f20cbb) C:\Windows\system32\drivers\ASPI32.sys
13:11:56.0026 3012 ASPI32 ( UnsignedFile.Multi.Generic ) - warning
13:11:56.0026 3012 ASPI32 - detected UnsignedFile.Multi.Generic (1)
13:11:56.0073 3012 aswFsBlk (0ae43c6c411254049279c2ee55630f95) C:\Windows\system32\drivers\aswFsBlk.sys
13:11:56.0088 3012 aswFsBlk - ok
13:11:56.0135 3012 aswMonFlt (6693141560b1615d8dccf0d8eb00087e) C:\Windows\system32\drivers\aswMonFlt.sys
13:11:56.0151 3012 aswMonFlt - ok
13:11:56.0182 3012 aswRdr (225013c16fe096714d71649ad7a20e8b) C:\Windows\System32\Drivers\aswrdr2.sys
13:11:56.0198 3012 aswRdr - ok
13:11:56.0712 3012 aswSnx (dcb199b967375753b5019ec15f008f53) C:\Windows\system32\drivers\aswSnx.sys
13:11:56.0759 3012 aswSnx - ok
13:11:56.0884 3012 aswSP (b32873e5a1443c0a1e322266e203bf10) C:\Windows\system32\drivers\aswSP.sys
13:11:56.0915 3012 aswSP - ok
13:11:56.0978 3012 aswTdi (6ff544175a9180c5d88534d3d9c9a9f7) C:\Windows\system32\drivers\aswTdi.sys
13:11:57.0009 3012 aswTdi - ok
13:11:57.0040 3012 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
13:11:57.0134 3012 AsyncMac - ok
13:11:57.0165 3012 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys
13:11:57.0180 3012 atapi - ok
13:11:57.0399 3012 athr (b01751cc563aecac09bbe36aaa21fbef) C:\Windows\system32\DRIVERS\athr.sys
13:11:57.0492 3012 athr - ok
13:11:57.0680 3012 ATKGFNEXSrv (7910158929571214a959d5a6d16dd9c0) C:\Program Files\ASUS\ATK Packag\ATKGFNEX\GFNEXSrv.exe
13:11:57.0711 3012 ATKGFNEXSrv - ok
13:11:58.0179 3012 AudioEndpointBuilder (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll
13:11:58.0272 3012 AudioEndpointBuilder - ok
13:11:58.0288 3012 Audiosrv (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll
13:11:58.0366 3012 Audiosrv - ok
13:11:58.0522 3012 avast! Antivirus (4041d31508a2a084dfb42c595854090f) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
13:11:58.0538 3012 avast! Antivirus - ok
13:11:58.0584 3012 AxInstSV (dd6a431b43e34b91a767d1ce33728175) C:\Windows\System32\AxInstSV.dll
13:11:58.0631 3012 AxInstSV - ok
13:11:58.0725 3012 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
13:11:58.0787 3012 b06bdrv - ok
13:11:58.0818 3012 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
13:11:58.0865 3012 b57nd60x - ok
13:11:58.0912 3012 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
13:11:58.0959 3012 BDESVC - ok
13:11:58.0974 3012 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
13:11:59.0037 3012 Beep - ok
13:11:59.0115 3012 BFE (85ac71c045ceb054ed48a7841aae0c11) C:\Windows\System32\bfe.dll
13:11:59.0208 3012 BFE - ok
13:11:59.0286 3012 bgsvcgen (27fdd13bec08ceeac4be6b900a6c39ce) C:\Windows\system32\bgsvcgen.exe
13:11:59.0318 3012 bgsvcgen ( UnsignedFile.Multi.Generic ) - warning
13:11:59.0318 3012 bgsvcgen - detected UnsignedFile.Multi.Generic (1)
13:11:59.0380 3012 BITS (53f476476f55a27f580661bde09c4ec4) C:\Windows\System32\qmgr.dll
13:11:59.0489 3012 BITS - ok
13:11:59.0552 3012 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
13:11:59.0583 3012 blbdrive - ok
13:11:59.0614 3012 bowser (fcafaef6798d7b51ff029f99a9898961) C:\Windows\system32\DRIVERS\bowser.sys
13:11:59.0708 3012 bowser - ok
13:11:59.0723 3012 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
13:11:59.0770 3012 BrFiltLo - ok
13:11:59.0770 3012 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
13:11:59.0801 3012 BrFiltUp - ok
13:11:59.0832 3012 Browser (598e1280e7ff3744f4b8329366cc5635) C:\Windows\System32\browser.dll
13:11:59.0926 3012 Browser - ok
13:11:59.0957 3012 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
13:12:00.0004 3012 Brserid - ok
13:12:00.0020 3012 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
13:12:00.0066 3012 BrSerWdm - ok
13:12:00.0082 3012 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
13:12:00.0129 3012 BrUsbMdm - ok
13:12:00.0129 3012 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
13:12:00.0176 3012 BrUsbSer - ok
13:12:00.0191 3012 BthEnum (2865a5c8e98c70c605f417908cebb3a4) C:\Windows\system32\DRIVERS\BthEnum.sys
13:12:00.0238 3012 BthEnum - ok
13:12:00.0254 3012 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
13:12:00.0300 3012 BTHMODEM - ok
13:12:00.0316 3012 BthPan (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\Windows\system32\DRIVERS\bthpan.sys
13:12:00.0363 3012 BthPan - ok
13:12:00.0410 3012 BTHPORT (4a34888e13224678dd062466afec4240) C:\Windows\system32\Drivers\BTHport.sys
13:12:00.0472 3012 BTHPORT - ok
13:12:00.0503 3012 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
13:12:00.0581 3012 bthserv - ok
13:12:00.0612 3012 BTHUSB (fa04c63916fa221dbb91fce153d07a55) C:\Windows\system32\Drivers\BTHUSB.sys
13:12:00.0659 3012 BTHUSB - ok
13:12:00.0690 3012 btwaudio (d57d29132efe13a83133d9bd449e0cf1) C:\Windows\system32\drivers\btwaudio.sys
13:12:00.0722 3012 btwaudio - ok
13:12:00.0753 3012 btwavdt (d282c14a69357d0e1bafaecc2ca98c3a) C:\Windows\system32\drivers\btwavdt.sys
13:12:00.0784 3012 btwavdt - ok
13:12:00.0909 3012 btwdins (f7434401ae320bb97903a3c1865242fb) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
13:12:00.0971 3012 btwdins - ok
13:12:01.0002 3012 btwl2cap (aafd7cb76ba61fbb08e302da208c974a) C:\Windows\system32\DRIVERS\btwl2cap.sys
13:12:01.0018 3012 btwl2cap - ok
13:12:01.0034 3012 btwrchid (02eb4d2b05967df2d32f29c84ab1fb17) C:\Windows\system32\DRIVERS\btwrchid.sys
13:12:01.0049 3012 btwrchid - ok
13:12:01.0080 3012 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
13:12:01.0174 3012 cdfs - ok
13:12:01.0268 3012 cdrbsdrv (9008ad94f28360a2f1409592bfc7acf7) C:\Windows\system32\drivers\cdrbsdrv.sys
13:12:01.0299 3012 cdrbsdrv - ok
13:12:01.0361 3012 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys
13:12:01.0392 3012 cdrom - ok
13:12:01.0439 3012 CertPropSvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll
13:12:01.0502 3012 CertPropSvc - ok
13:12:01.0533 3012 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
13:12:01.0564 3012 circlass - ok
13:12:01.0611 3012 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
13:12:01.0658 3012 CLFS - ok
13:12:01.0720 3012 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:12:01.0751 3012 clr_optimization_v2.0.50727_32 - ok
13:12:01.0767 3012 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
13:12:01.0814 3012 CmBatt - ok
13:12:01.0814 3012 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys
13:12:01.0845 3012 cmdide - ok
13:12:01.0876 3012 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys
13:12:01.0954 3012 CNG - ok
13:12:02.0016 3012 CnxtHdAudService (e786008346afa5ea2109d5e8ad44a9dd) C:\Windows\system32\drivers\CHDRT32.sys
13:12:02.0063 3012 CnxtHdAudService - ok
13:12:02.0094 3012 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
13:12:02.0126 3012 Compbatt - ok
13:12:02.0157 3012 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys
13:12:02.0188 3012 CompositeBus - ok
13:12:02.0204 3012 COMSysApp - ok
13:12:02.0219 3012 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
13:12:02.0250 3012 crcdisk - ok
13:12:02.0297 3012 CryptSvc (9c231178ce4fb385f4b54b0a9080b8a4) C:\Windows\system32\cryptsvc.dll
13:12:02.0406 3012 CryptSvc - ok
13:12:02.0453 3012 CSC (27c9490bdd0ae48911ab8cf1932591ed) C:\Windows\system32\drivers\csc.sys
13:12:02.0516 3012 CSC - ok
13:12:02.0578 3012 CscService (56fb5f222ea30d3d3fc459879772cb73) C:\Windows\System32\cscsvc.dll
13:12:02.0625 3012 CscService - ok
13:12:02.0687 3012 DcomLaunch (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll
13:12:02.0781 3012 DcomLaunch - ok
13:12:02.0828 3012 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
13:12:02.0921 3012 defragsvc - ok
13:12:02.0968 3012 DfsC (8e09e52ee2e3ceb199ef3dd99cf9e3fb) C:\Windows\system32\Drivers\dfsc.sys
13:12:03.0030 3012 DfsC - ok
13:12:03.0311 3012 DfSdkS (92ae26f2caf4a67e24a0ba6ddf32cc3c) C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe
13:12:03.0342 3012 DfSdkS ( UnsignedFile.Multi.Generic ) - warning
13:12:03.0342 3012 DfSdkS - detected UnsignedFile.Multi.Generic (1)
13:12:03.0436 3012 Dhcp (c56495fbd770712367cad35e5de72da6) C:\Windows\system32\dhcpcore.dll
13:12:03.0483 3012 Dhcp - ok
13:12:03.0623 3012 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
13:12:03.0717 3012 discache - ok
13:12:03.0764 3012 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
13:12:03.0779 3012 Disk - ok
13:12:03.0826 3012 Dnscache (d0722e963d3c6145446874241401b209) C:\Windows\System32\dnsrslvr.dll
13:12:03.0920 3012 Dnscache - ok
13:12:03.0951 3012 dot3svc (4408c85c21eea48eb0ce486baeef0502) C:\Windows\System32\dot3svc.dll
13:12:04.0044 3012 dot3svc - ok
13:12:04.0122 3012 DPS (7fa81c6e11caa594adb52084da73a1e5) C:\Windows\system32\dps.dll
13:12:04.0200 3012 DPS - ok
13:12:04.0247 3012 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
13:12:04.0278 3012 drmkaud - ok
13:12:04.0403 3012 DXGKrnl (8b6c3464d7fac176500061dbfff42ad4) C:\Windows\System32\drivers\dxgkrnl.sys
13:12:04.0450 3012 DXGKrnl - ok
13:12:04.0544 3012 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
13:12:04.0637 3012 EapHost - ok
13:12:05.0292 3012 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
13:12:05.0464 3012 ebdrv - ok
13:12:06.0213 3012 EFS (f42309c4191c506b71db5d1126d26318) C:\Windows\System32\lsass.exe
13:12:06.0260 3012 EFS - ok
13:12:06.0338 3012 ehRecvr (3a74a6e33685662b125a3269b1f2114f) C:\Windows\ehome\ehRecvr.exe
13:12:06.0416 3012 ehRecvr - ok
13:12:06.0447 3012 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
13:12:06.0494 3012 ehSched - ok
13:12:06.0587 3012 ElbyCDIO (d71233d7ccc2e64f8715a20428d5a33b) C:\Windows\system32\Drivers\ElbyCDIO.sys
13:12:06.0603 3012 ElbyCDIO - ok
13:12:06.0650 3012 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
13:12:06.0712 3012 elxstor - ok
13:12:06.0728 3012 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys
13:12:06.0759 3012 ErrDev - ok
13:12:06.0806 3012 ETD (c49c486405f131eefc2556ede9b9ce8e) C:\Windows\system32\DRIVERS\ETD.sys
13:12:06.0837 3012 ETD - ok
13:12:06.0884 3012 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
13:12:06.0977 3012 EventSystem - ok
13:12:07.0024 3012 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
13:12:07.0102 3012 exfat - ok
13:12:07.0133 3012 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
13:12:07.0227 3012 fastfat - ok
13:12:07.0305 3012 Fax (f7ea23cc5e6bf2181f3f399d54f6efc1) C:\Windows\system32\fxssvc.exe
13:12:07.0352 3012 Fax - ok
13:12:07.0367 3012 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
13:12:07.0414 3012 fdc - ok
13:12:07.0430 3012 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
13:12:07.0508 3012 fdPHost - ok
13:12:07.0539 3012 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
13:12:07.0617 3012 FDResPub - ok
13:12:07.0648 3012 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
13:12:07.0679 3012 FileInfo - ok
13:12:07.0773 3012 FileObjInfo (3b172367379fa5cd6388f93657a7e9a4) C:\ProgramData\Spyware Terminator\FileObjInfo.sys
13:12:07.0788 3012 FileObjInfo ( UnsignedFile.Multi.Generic ) - warning
13:12:07.0788 3012 FileObjInfo - detected UnsignedFile.Multi.Generic (1)
13:12:07.0804 3012 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
13:12:07.0866 3012 Filetrace - ok
13:12:07.0882 3012 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
13:12:07.0929 3012 flpydisk - ok
13:12:07.0976 3012 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
13:12:08.0007 3012 FltMgr - ok
13:12:08.0085 3012 FontCache (b6512a85815fdc3d560c3705f5bdb93d) C:\Windows\system32\FntCache.dll
13:12:08.0210 3012 FontCache - ok
13:12:08.0272 3012 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
13:12:08.0288 3012 FontCache3.0.0.0 - ok
13:12:08.0303 3012 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
13:12:08.0319 3012 FsDepends - ok
13:12:08.0334 3012 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
13:12:08.0366 3012 Fs_Rec - ok
13:12:08.0412 3012 fvevol (dafbd9fe39197495aed6d51f3b85b5d2) C:\Windows\system32\DRIVERS\fvevol.sys
13:12:08.0459 3012 fvevol - ok
13:12:08.0475 3012 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
13:12:08.0506 3012 gagp30kx - ok
13:12:08.0584 3012 ghaio (31b40f40e09513addc460f6a297ad474) C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys
13:12:08.0600 3012 ghaio - ok
13:12:08.0662 3012 giveio (77ebf3e9386daa51551af429052d88d0) C:\Windows\system32\giveio.sys
13:12:08.0678 3012 giveio ( UnsignedFile.Multi.Generic ) - warning
13:12:08.0678 3012 giveio - detected UnsignedFile.Multi.Generic (1)
13:12:08.0771 3012 gpsvc (8ba3c04702bf8f927ab36ae8313ca4ee) C:\Windows\System32\gpsvc.dll
13:12:08.0880 3012 gpsvc - ok
13:12:09.0021 3012 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
13:12:09.0052 3012 gupdate - ok
13:12:09.0052 3012 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
13:12:09.0068 3012 gupdatem - ok
13:12:09.0114 3012 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
13:12:09.0146 3012 hcw85cir - ok
13:12:09.0224 3012 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys
13:12:09.0286 3012 HdAudAddService - ok
13:12:09.0317 3012 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys
13:12:09.0364 3012 HDAudBus - ok
13:12:09.0411 3012 HECI (a88485dc6a7136c10d9a6c7e38fdfe3c) C:\Windows\system32\DRIVERS\HECI.sys
13:12:09.0426 3012 HECI - ok
13:12:09.0442 3012 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
13:12:09.0473 3012 HidBatt - ok
13:12:09.0536 3012 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
13:12:09.0582 3012 HidBth - ok
13:12:09.0598 3012 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
13:12:09.0629 3012 HidIr - ok
13:12:09.0660 3012 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
13:12:09.0738 3012 hidserv - ok
13:12:09.0770 3012 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys
13:12:09.0801 3012 HidUsb - ok
13:12:09.0816 3012 hkmsvc (741c2a45ca8407e374aaba3e330b7872) C:\Windows\system32\kmsvc.dll
13:12:09.0910 3012 hkmsvc - ok
13:12:09.0941 3012 HomeGroupListener (a768ca158bb06782a2835b907f4873c3) C:\Windows\system32\ListSvc.dll
13:12:10.0004 3012 HomeGroupListener - ok
13:12:10.0035 3012 HomeGroupProvider (fb08dec5ef43d0c66d83b8e9694e7549) C:\Windows\system32\provsvc.dll
13:12:10.0082 3012 HomeGroupProvider - ok
13:12:10.0097 3012 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys
13:12:10.0128 3012 HpSAMD - ok
13:12:10.0191 3012 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys
13:12:10.0284 3012 HTTP - ok
13:12:10.0316 3012 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys
13:12:10.0331 3012 hwpolicy - ok
13:12:10.0362 3012 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
13:12:10.0409 3012 i8042prt - ok
13:12:10.0472 3012 iaStor (01446278d4563b3013c92830ae6cbb26) C:\Windows\system32\DRIVERS\iaStor.sys
13:12:10.0503 3012 iaStor - ok
13:12:10.0581 3012 iaStorV (934af4d7c5f457b9f0743f4299b77b67) C:\Windows\system32\DRIVERS\iaStorV.sys
13:12:10.0612 3012 iaStorV - ok
13:12:10.0721 3012 idsvc (5af815eb5bc9802e5a064e2ba62bfc0c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
13:12:10.0784 3012 idsvc - ok
13:12:11.0454 3012 igfx (b3a313080b0f73f4c8292290606fc15d) C:\Windows\system32\DRIVERS\igdkmd32.sys
13:12:11.0829 3012 igfx - ok
13:12:11.0938 3012 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
13:12:11.0969 3012 iirsp - ok
13:12:12.0032 3012 IKEEXT (fac0ee6562b121b1399d6e855583f7a5) C:\Windows\System32\ikeext.dll
13:12:12.0156 3012 IKEEXT - ok
13:12:12.0188 3012 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys
13:12:12.0203 3012 intelide - ok
13:12:12.0219 3012 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
13:12:12.0250 3012 intelppm - ok
13:12:12.0281 3012 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
13:12:12.0359 3012 IPBusEnum - ok
13:12:12.0375 3012 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:12:12.0437 3012 IpFilterDriver - ok
13:12:12.0500 3012 iphlpsvc (477397b432a256a50ee7e4339eb9ea14) C:\Windows\System32\iphlpsvc.dll
13:12:12.0593 3012 iphlpsvc - ok
13:12:12.0609 3012 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys
13:12:12.0640 3012 IPMIDRV - ok
13:12:12.0656 3012 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
13:12:12.0734 3012 IPNAT - ok
13:12:12.0749 3012 ipswuio - ok
13:12:12.0796 3012 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
13:12:12.0858 3012 IRENUM - ok
13:12:12.0890 3012 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys
13:12:12.0921 3012 isapnp - ok
13:12:12.0952 3012 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys
13:12:12.0983 3012 iScsiPrt - ok
13:12:13.0030 3012 JMCR (2254a5e78c55fd8f68f9676590468531) C:\Windows\system32\DRIVERS\jmcr.sys
13:12:13.0061 3012 JMCR - ok
13:12:13.0092 3012 JME (8a06c7a0e701be6d618571095032dcb9) C:\Windows\system32\DRIVERS\JME.sys
13:12:13.0108 3012 JME - ok
13:12:13.0124 3012 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
13:12:13.0139 3012 kbdclass - ok
13:12:13.0155 3012 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys
13:12:13.0217 3012 kbdhid - ok
13:12:13.0248 3012 kbfiltr (3eb803312987ff44265c87cb960df6ab) C:\Windows\system32\DRIVERS\kbfiltr.sys
13:12:13.0264 3012 kbfiltr - ok
13:12:13.0295 3012 KeyIso (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
13:12:13.0326 3012 KeyIso - ok
13:12:13.0342 3012 KSecDD (e36a061ec11b373826905b21be10948f) C:\Windows\system32\Drivers\ksecdd.sys
13:12:13.0373 3012 KSecDD - ok
13:12:13.0404 3012 KSecPkg (365c6154bbbc5377173f1ca7bfb6cc59) C:\Windows\system32\Drivers\ksecpkg.sys
13:12:13.0451 3012 KSecPkg - ok
13:12:13.0482 3012 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
13:12:13.0638 3012 KtmRm - ok
13:12:13.0701 3012 LanmanServer (8f6bf790d3168224c16f2af68a84438c) C:\Windows\system32\srvsvc.dll
13:12:13.0748 3012 LanmanServer - ok
13:12:13.0779 3012 LanmanWorkstation (b9891f885dcf1f0513a51cb58493cb1f) C:\Windows\System32\wkssvc.dll
13:12:13.0888 3012 LanmanWorkstation - ok
13:12:13.0950 3012 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
13:12:14.0013 3012 lltdio - ok
13:12:14.0060 3012 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
13:12:14.0138 3012 lltdsvc - ok
13:12:14.0153 3012 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
13:12:14.0247 3012 lmhosts - ok
13:12:14.0372 3012 LMS (a1c148801b4af64847aeb9f3ad9594ef) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
13:12:14.0403 3012 LMS ( UnsignedFile.Multi.Generic ) - warning
13:12:14.0403 3012 LMS - detected UnsignedFile.Multi.Generic (1)
13:12:14.0465 3012 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
13:12:14.0481 3012 LSI_FC - ok
13:12:14.0528 3012 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
13:12:14.0543 3012 LSI_SAS - ok
13:12:14.0574 3012 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
13:12:14.0590 3012 LSI_SAS2 - ok
13:12:14.0621 3012 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
13:12:14.0637 3012 LSI_SCSI - ok
13:12:14.0668 3012 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
13:12:14.0746 3012 luafv - ok
13:12:14.0762 3012 Mcx2Svc (e2b0887816ed336685954e3d8fdaa51d) C:\Windows\system32\Mcx2Svc.dll
13:12:14.0808 3012 Mcx2Svc - ok
13:12:14.0824 3012 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
13:12:14.0840 3012 megasas - ok
13:12:14.0871 3012 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
13:12:14.0902 3012 MegaSR - ok
13:12:15.0011 3012 Microsoft Office Groove Audit Service (fafe367d032ed82e9332b4c741a20216) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
13:12:15.0027 3012 Microsoft Office Groove Audit Service - ok
13:12:15.0058 3012 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
13:12:15.0136 3012 MMCSS - ok
13:12:15.0136 3012 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
13:12:15.0230 3012 Modem - ok
13:12:15.0261 3012 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
13:12:15.0308 3012 monitor - ok
13:12:15.0339 3012 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
13:12:15.0354 3012 mouclass - ok
13:12:15.0386 3012 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
13:12:15.0417 3012 mouhid - ok
13:12:15.0432 3012 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys
13:12:15.0464 3012 mountmgr - ok
13:12:15.0495 3012 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys
13:12:15.0526 3012 mpio - ok
13:12:15.0542 3012 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
13:12:15.0620 3012 mpsdrv - ok
13:12:15.0682 3012 MpsSvc (5cd996cecf45cbc3e8d109c86b82d69e) C:\Windows\system32\mpssvc.dll
13:12:15.0791 3012 MpsSvc - ok
13:12:15.0807 3012 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys
13:12:15.0838 3012 MRxDAV - ok
13:12:15.0869 3012 mrxsmb (f1b6aa08497ea86ca6ef6f7a08b0bfb8) C:\Windows\system32\DRIVERS\mrxsmb.sys
13:12:15.0916 3012 mrxsmb - ok
13:12:15.0932 3012 mrxsmb10 (5613358b4050f46f5a9832da8050d6e4) C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:12:15.0978 3012 mrxsmb10 - ok
13:12:15.0994 3012 mrxsmb20 (25c9792778d80feb4c8201e62281bfdf) C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:12:16.0025 3012 mrxsmb20 - ok
13:12:16.0041 3012 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\DRIVERS\msahci.sys
13:12:16.0072 3012 msahci - ok
13:12:16.0088 3012 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys
13:12:16.0134 3012 msdsm - ok
13:12:16.0166 3012 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
13:12:16.0212 3012 MSDTC - ok
13:12:16.0244 3012 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
13:12:16.0322 3012 Msfs - ok
13:12:16.0322 3012 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
13:12:16.0400 3012 mshidkmdf - ok
13:12:16.0415 3012 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys
13:12:16.0446 3012 msisadrv - ok
13:12:16.0478 3012 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
13:12:16.0571 3012 MSiSCSI - ok
13:12:16.0571 3012 msiserver - ok
13:12:16.0602 3012 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
13:12:16.0680 3012 MSKSSRV - ok
13:12:16.0712 3012 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
13:12:16.0790 3012 MSPCLOCK - ok
13:12:16.0805 3012 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
13:12:16.0868 3012 MSPQM - ok
13:12:16.0914 3012 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
13:12:16.0961 3012 MsRPC - ok
13:12:16.0992 3012 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
13:12:17.0008 3012 mssmbios - ok
13:12:17.0024 3012 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
13:12:17.0086 3012 MSTEE - ok
13:12:17.0102 3012 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
13:12:17.0133 3012 MTConfig - ok
13:12:17.0180 3012 MTsensor (2e71504a74be4e3d4ea94568eff7556e) C:\Windows\system32\DRIVERS\ATKACPI.sys
13:12:17.0180 3012 MTsensor - ok
13:12:17.0195 3012 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
13:12:17.0226 3012 Mup - ok
13:12:17.0273 3012 napagent (80284f1985c70c86f0b5f86da2dfe1df) C:\Windows\system32\qagentRT.dll
13:12:17.0367 3012 napagent - ok
13:12:17.0429 3012 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
13:12:17.0492 3012 NativeWifiP - ok
13:12:17.0570 3012 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys
13:12:17.0616 3012 NDIS - ok
13:12:17.0710 3012 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
13:12:17.0772 3012 NdisCap - ok
13:12:17.0788 3012 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
13:12:17.0866 3012 NdisTapi - ok
13:12:17.0866 3012 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys
13:12:17.0944 3012 Ndisuio - ok
13:12:17.0960 3012 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys
13:12:18.0022 3012 NdisWan - ok
13:12:18.0038 3012 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys
13:12:18.0100 3012 NDProxy - ok
13:12:18.0116 3012 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
13:12:18.0194 3012 NetBIOS - ok
13:12:18.0225 3012 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys
13:12:18.0287 3012 NetBT - ok
13:12:18.0318 3012 Netlogon (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
13:12:18.0350 3012 Netlogon - ok
13:12:18.0396 3012 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
13:12:18.0490 3012 Netman - ok
13:12:18.0552 3012 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
13:12:18.0646 3012 netprofm - ok
13:12:18.0693 3012 NetTcpPortSharing (fe2aa5a684b0dd9b1fae57b7817c198b) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:12:18.0724 3012 NetTcpPortSharing - ok
13:12:18.0755 3012 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
13:12:18.0771 3012 nfrd960 - ok
13:12:18.0802 3012 NlaSvc (2226496e34bd40734946a054b1cd657f) C:\Windows\System32\nlasvc.dll
13:12:18.0896 3012 NlaSvc - ok
13:12:18.0958 3012 nmwcd (48fb907b069524f2dc7ba62a0762850c) C:\Windows\system32\drivers\ccdcmb.sys
13:12:19.0005 3012 nmwcd - ok
13:12:19.0036 3012 nmwcdc (2914ceb789964141ac6e22c6bc980c42) C:\Windows\system32\drivers\ccdcmbo.sys
13:12:19.0098 3012 nmwcdc - ok
13:12:19.0161 3012 nmwcdnsu (28d40797bcb050321fa6674b08a620c0) C:\Windows\system32\drivers\nmwcdnsu.sys
13:12:19.0239 3012 nmwcdnsu - ok
13:12:19.0254 3012 nmwcdnsuc (7804e9747bc27eddc6a8382bbf35cf25) C:\Windows\system32\drivers\nmwcdnsuc.sys
13:12:19.0317 3012 nmwcdnsuc - ok
13:12:19.0332 3012 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
13:12:19.0395 3012 Npfs - ok
13:12:19.0410 3012 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
13:12:19.0488 3012 nsi - ok
13:12:19.0504 3012 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
13:12:19.0582 3012 nsiproxy - ok
13:12:19.0707 3012 Ntfs (3795dcd21f740ee799fb7223234215af) C:\Windows\system32\drivers\Ntfs.sys
13:12:19.0785 3012 Ntfs - ok
13:12:19.0925 3012 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
13:12:19.0988 3012 Null - ok
13:12:20.0019 3012 nvraid (3f3d04b1d08d43c16ea7963954ec768d) C:\Windows\system32\DRIVERS\nvraid.sys
13:12:20.0050 3012 nvraid - ok
13:12:20.0066 3012 nvstor (c99f251a5de63c6f129cf71933aced0f) C:\Windows\system32\DRIVERS\nvstor.sys
13:12:20.0097 3012 nvstor - ok
13:12:20.0112 3012 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys
13:12:20.0144 3012 nv_agp - ok
13:12:20.0268 3012 odserv (84de1dd996b48b05ace31ad015fa108a) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
13:12:20.0315 3012 odserv - ok
13:12:20.0331 3012 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys
13:12:20.0378 3012 ohci1394 - ok
13:12:20.0440 3012 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:12:20.0471 3012 ose - ok
13:12:20.0534 3012 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
13:12:20.0580 3012 p2pimsvc - ok
13:12:20.0627 3012 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
13:12:20.0674 3012 p2psvc - ok
13:12:20.0736 3012 PARLDR2K (b129365892b2e7b5155e601a4924cd2f) C:\Windows\system32\drivers\parldr2k.sys
13:12:20.0752 3012 PARLDR2K ( UnsignedFile.Multi.Generic ) - warning
13:12:20.0752 3012 PARLDR2K - detected UnsignedFile.Multi.Generic (1)
13:12:20.0783 3012 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
13:12:20.0814 3012 Parport - ok
13:12:20.0830 3012 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys
13:12:20.0861 3012 partmgr - ok
13:12:20.0861 3012 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
13:12:20.0924 3012 Parvdm - ok
13:12:20.0955 3012 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
13:12:21.0002 3012 PcaSvc - ok
13:12:21.0080 3012 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\Windows\system32\DRIVERS\pccsmcfd.sys
13:12:21.0111 3012 pccsmcfd - ok
13:12:21.0126 3012 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys
13:12:21.0158 3012 pci - ok
13:12:21.0173 3012 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys
13:12:21.0189 3012 pciide - ok
13:12:21.0220 3012 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
13:12:21.0267 3012 pcmcia - ok
13:12:21.0267 3012 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
13:12:21.0298 3012 pcw - ok
13:12:21.0376 3012 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
13:12:21.0485 3012 PEAUTH - ok
13:12:21.0579 3012 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll
13:12:21.0657 3012 PeerDistSvc - ok
13:12:21.0813 3012 pla (9c1bff7910c89a1d12e57343475840cb) C:\Windows\system32\pla.dll
13:12:21.0953 3012 pla - ok
13:12:22.0109 3012 PlugPlay (2cc2008f1296968fba162ed9f9afe328) C:\Windows\system32\umpnpmgr.dll
13:12:22.0234 3012 PlugPlay - ok
13:12:22.0250 3012 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
13:12:22.0281 3012 PNRPAutoReg - ok
13:12:22.0312 3012 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
13:12:22.0359 3012 PNRPsvc - ok
13:12:22.0406 3012 PolicyAgent (48e1b75c6dc0232fd92baae4bd344721) C:\Windows\System32\ipsecsvc.dll
13:12:22.0499 3012 PolicyAgent - ok
13:12:22.0530 3012 Power (dbff83f709a91049621c1d35dd45c92c) C:\Windows\system32\umpo.dll
13:12:22.0624 3012 Power - ok
13:12:22.0671 3012 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
13:12:22.0749 3012 PptpMiniport - ok
13:12:22.0764 3012 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
13:12:22.0796 3012 Processor - ok
13:12:22.0827 3012 ProfSvc (630cf26f0227498b7d5a92b12548960f) C:\Windows\system32\profsvc.dll
13:12:22.0905 3012 ProfSvc - ok
13:12:22.0936 3012 ProtectedStorage (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
13:12:22.0967 3012 ProtectedStorage - ok
13:12:22.0998 3012 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
13:12:23.0076 3012 Psched - ok
13:12:23.0201 3012 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
13:12:23.0295 3012 ql2300 - ok
13:12:23.0404 3012 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
13:12:23.0435 3012 ql40xx - ok
13:12:23.0466 3012 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
13:12:23.0529 3012 QWAVE - ok
13:12:23.0544 3012 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
13:12:23.0591 3012 QWAVEdrv - ok
13:12:23.0591 3012 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
13:12:23.0654 3012 RasAcd - ok
13:12:23.0700 3012 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
13:12:23.0778 3012 RasAgileVpn - ok
13:12:23.0810 3012 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
13:12:23.0888 3012 RasAuto - ok
13:12:23.0919 3012 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
13:12:23.0981 3012 Rasl2tp - ok
13:12:24.0028 3012 RasMan (0ce66ec736b7fc526d78f7624c7d2a94) C:\Windows\System32\rasmans.dll
13:12:24.0106 3012 RasMan - ok
13:12:24.0122 3012 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
13:12:24.0200 3012 RasPppoe - ok
13:12:24.0215 3012 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
13:12:24.0293 3012 RasSstp - ok
13:12:24.0324 3012 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys
13:12:24.0402 3012 rdbss - ok
13:12:24.0418 3012 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
13:12:24.0449 3012 rdpbus - ok
13:12:24.0449 3012 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys
13:12:24.0527 3012 RDPCDD - ok
13:12:24.0558 3012 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\Windows\system32\drivers\rdpdr.sys
13:12:24.0605 3012 RDPDR - ok
13:12:24.0621 3012 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
13:12:24.0699 3012 RDPENCDD - ok
13:12:24.0699 3012 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
13:12:24.0777 3012 RDPREFMP - ok
13:12:24.0792 3012 RDPWD (801371ba9782282892d00aadb08ee367) C:\Windows\system32\drivers\RDPWD.sys
13:12:24.0886 3012 RDPWD - ok
13:12:24.0917 3012 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys
13:12:24.0933 3012 rdyboost - ok
13:12:24.0980 3012 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
13:12:25.0073 3012 RemoteAccess - ok
13:12:25.0105 3012 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
13:12:25.0183 3012 RemoteRegistry - ok
13:12:25.0229 3012 RFCOMM (cb928d9e6daf51879dd6ba8d02f01321) C:\Windows\system32\DRIVERS\rfcomm.sys
13:12:25.0292 3012 RFCOMM - ok
13:12:25.0307 3012 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
13:12:25.0401 3012 RpcEptMapper - ok
13:12:25.0417 3012 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
13:12:25.0463 3012 RpcLocator - ok
13:12:25.0510 3012 RpcSs (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll
13:12:25.0588 3012 RpcSs - ok
13:12:25.0619 3012 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
13:12:25.0713 3012 rspndr - ok
13:12:25.0729 3012 s3cap (5423d8437051e89dd34749f242c98648) C:\Windows\system32\DRIVERS\vms3cap.sys
13:12:25.0760 3012 s3cap - ok
13:12:25.0775 3012 SamSs (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
13:12:25.0807 3012 SamSs - ok
13:12:25.0838 3012 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys
13:12:25.0869 3012 sbp2port - ok
13:12:25.0885 3012 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
13:12:25.0978 3012 SCardSvr - ok
13:12:25.0994 3012 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys
13:12:26.0072 3012 scfilter - ok
13:12:26.0165 3012 Schedule (df1e5c82e4d09cf8105cc644980c4803) C:\Windows\system32\schedsvc.dll
13:12:26.0228 3012 Schedule - ok
13:12:26.0259 3012 SCPolicySvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll
13:12:26.0321 3012 SCPolicySvc - ok
13:12:26.0368 3012 sdbus (7b48cff3a475fe849dea65ec4d35c425) C:\Windows\system32\DRIVERS\sdbus.sys
13:12:26.0415 3012 sdbus - ok
13:12:26.0431 3012 SDRSVC (5fd90abdbfaee85986802622cbb03446) C:\Windows\System32\SDRSVC.dll
13:12:26.0493 3012 SDRSVC - ok
13:12:26.0509 3012 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
13:12:26.0587 3012 secdrv - ok
13:12:26.0602 3012 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
13:12:26.0696 3012 seclogon - ok
13:12:26.0711 3012 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
13:12:26.0805 3012 SENS - ok
13:12:26.0836 3012 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
13:12:26.0883 3012 SensrSvc - ok
13:12:26.0899 3012 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
13:12:26.0930 3012 Serenum - ok
13:12:26.0945 3012 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
13:12:26.0977 3012 Serial - ok
13:12:26.0992 3012 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
13:12:27.0023 3012 sermouse - ok
13:12:27.0164 3012 ServiceLayer (7d3903af48e6c1dc2704eafcb608d031) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
13:12:27.0242 3012 ServiceLayer ( UnsignedFile.Multi.Generic ) - warning
13:12:27.0242 3012 ServiceLayer - detected UnsignedFile.Multi.Generic (1)
13:12:27.0289 3012 SessionEnv (8f55ce568c543d5adf45c409d16718fc) C:\Windows\system32\sessenv.dll
13:12:27.0382 3012 SessionEnv - ok
13:12:27.0398 3012 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys
13:12:27.0445 3012 sffdisk - ok
13:12:27.0460 3012 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys
13:12:27.0507 3012 sffp_mmc - ok
13:12:27.0507 3012 sffp_sd (4f1e5b0fe7c8050668dbfade8999aefb) C:\Windows\system32\DRIVERS\sffp_sd.sys
13:12:27.0538 3012 sffp_sd - ok
13:12:27.0554 3012 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
13:12:27.0601 3012 sfloppy - ok
13:12:27.0647 3012 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
13:12:27.0741 3012 SharedAccess - ok
13:12:27.0772 3012 ShellHWDetection (cd2e48fa5b29ee2b3b5858056d246ef2) C:\Windows\System32\shsvcs.dll
13:12:27.0850 3012 ShellHWDetection - ok
13:12:27.0866 3012 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys
13:12:27.0897 3012 sisagp - ok
13:12:27.0913 3012 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
13:12:27.0944 3012 SiSRaid2 - ok
13:12:27.0959 3012 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
13:12:27.0975 3012 SiSRaid4 - ok
13:12:27.0991 3012 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
13:12:28.0069 3012 Smb - ok
13:12:28.0100 3012 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
13:12:28.0131 3012 SNMPTRAP - ok
13:12:28.0303 3012 SNP2UVC (03210c439d0c1224eb36865c8010dab6) C:\Windows\system32\DRIVERS\snp2uvc.sys
13:12:28.0396 3012 SNP2UVC - ok
13:12:28.0568 3012 speedfan (3fa2e254bfbce52b3c6f1bf23aab6911) C:\Windows\system32\speedfan.sys
13:12:28.0599 3012 speedfan - ok
13:12:28.0630 3012 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
13:12:28.0661 3012 spldr - ok
13:12:28.0724 3012 spmgr (739db668dbd812285ecc553e64a5e212) C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
13:12:28.0739 3012 spmgr - ok
13:12:28.0817 3012 Spooler (d1bb750eb51694de183e08b9c33be5b2) C:\Windows\System32\spoolsv.exe
13:12:28.0880 3012 Spooler - ok
13:12:29.0129 3012 sppsvc (4c287f9069fedbd791178876ee9de536) C:\Windows\system32\sppsvc.exe
13:12:29.0317 3012 sppsvc - ok
13:12:29.0426 3012 sppuinotify (d8e3e19eebdab49dd4a8d3062ead4ec7) C:\Windows\system32\sppuinotify.dll
13:12:29.0519 3012 sppuinotify - ok
13:12:29.0629 3012 sptd (d15da1ba189770d93eea2d7e18f95af9) C:\Windows\system32\Drivers\sptd.sys
13:12:29.0644 3012 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: d15da1ba189770d93eea2d7e18f95af9
13:12:29.0644 3012 sptd ( LockedFile.Multi.Generic ) - warning
13:12:29.0644 3012 sptd - detected LockedFile.Multi.Generic (1)
13:12:29.0707 3012 sp_rsdrv2 (8831252bcf05fcfb5abd116a22e552d8) C:\Windows\system32\drivers\sp_rsdrv2.sys
13:12:29.0738 3012 sp_rsdrv2 ( UnsignedFile.Multi.Generic ) - warning
13:12:29.0738 3012 sp_rsdrv2 - detected UnsignedFile.Multi.Generic (1)
13:12:29.0847 3012 sp_rssrv (642180b8f50e7fc1fbaf87c718e259d6) C:\Program Files\Spyware Terminator\sp_rsser.exe
13:12:29.0894 3012 sp_rssrv ( UnsignedFile.Multi.Generic ) - warning
13:12:29.0894 3012 sp_rssrv - detected UnsignedFile.Multi.Generic (1)
13:12:29.0972 3012 srv (2dbedfb1853f06110ec2aa7f3213c89f) C:\Windows\system32\DRIVERS\srv.sys
13:12:30.0019 3012 srv - ok
13:12:30.0081 3012 srv2 (db37131d1027c50ea7ee21c8bb4536aa) C:\Windows\system32\DRIVERS\srv2.sys
13:12:30.0128 3012 srv2 - ok
13:12:30.0159 3012 srvnet (f5980b74124db9233b33f86fc5ebbb4f) C:\Windows\system32\DRIVERS\srvnet.sys
13:12:30.0206 3012 srvnet - ok
13:12:30.0237 3012 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
13:12:30.0331 3012 SSDPSRV - ok
13:12:30.0362 3012 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
13:12:30.0440 3012 SstpSvc - ok
13:12:30.0471 3012 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
13:12:30.0487 3012 stexstor - ok
13:12:30.0533 3012 StiSvc (a22825e7bb7018e8af3e229a5af17221) C:\Windows\System32\wiaservc.dll
13:12:30.0611 3012 StiSvc - ok
13:12:30.0643 3012 storflt (957e346ca948668f2496a6ccf6ff82cc) C:\Windows\system32\DRIVERS\vmstorfl.sys
13:12:30.0674 3012 storflt - ok
13:12:30.0689 3012 storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\Windows\system32\DRIVERS\storvsc.sys
13:12:30.0721 3012 storvsc - ok
13:12:30.0721 3012 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
13:12:30.0736 3012 swenum - ok
13:12:30.0783 3012 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
13:12:30.0892 3012 swprv - ok
13:12:30.0986 3012 SysMain (04105c8da62353589c29bdaeb8d88bd8) C:\Windows\system32\sysmain.dll
13:12:31.0095 3012 SysMain - ok
13:12:31.0126 3012 TabletInputService (fcfb6c552fbc0da299799cbd50ad9fd4) C:\Windows\System32\TabSvc.dll
13:12:31.0173 3012 TabletInputService - ok
13:12:31.0204 3012 TapiSrv (2f46b0c70a4adc8c90cf825da3b4feaf) C:\Windows\System32\tapisrv.dll
13:12:31.0298 3012 TapiSrv - ok
13:12:31.0313 3012 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
13:12:31.0407 3012 TBS - ok
13:12:31.0563 3012 Tcpip (bb7f39c31c4a4417fd318e7cd184e225) C:\Windows\system32\drivers\tcpip.sys
13:12:31.0657 3012 Tcpip - ok
13:12:31.0875 3012 TCPIP6 (bb7f39c31c4a4417fd318e7cd184e225) C:\Windows\system32\DRIVERS\tcpip.sys
13:12:31.0937 3012 TCPIP6 - ok
13:12:32.0047 3012 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys
13:12:32.0125 3012 tcpipreg - ok
13:12:32.0125 3012 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys
13:12:32.0203 3012 TDPIPE - ok
13:12:32.0203 3012 TDTCP (7551e91ea999ee9a8e9c331d5a9c31f3) C:\Windows\system32\drivers\tdtcp.sys
13:12:32.0281 3012 TDTCP - ok
13:12:32.0296 3012 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys
13:12:32.0359 3012 tdx - ok
13:12:32.0655 3012 TeamViewer6 (fe559178000347d2ca1b7847f0379749) C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
13:12:32.0764 3012 TeamViewer6 - ok
13:12:33.0248 3012 TeamViewer7 (a4d2ce94b028ef1e437cf4ac3d8ff26c) C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
13:12:33.0373 3012 TeamViewer7 - ok
13:12:33.0529 3012 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys
13:12:33.0544 3012 TermDD - ok
13:12:33.0622 3012 TermService (a01e50a04d7b1960b33e92b9080e6a94) C:\Windows\System32\termsrv.dll
13:12:33.0716 3012 TermService - ok
13:12:33.0747 3012 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
13:12:33.0809 3012 Themes - ok
13:12:33.0841 3012 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
13:12:33.0903 3012 THREADORDER - ok
13:12:33.0934 3012 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
13:12:34.0028 3012 TrkWks - ok
13:12:34.0059 3012 TrustedInstaller (41a4c781d2286208d397d72099304133) C:\Windows\servicing\TrustedInstaller.exe
13:12:34.0106 3012 TrustedInstaller - ok
13:12:34.0121 3012 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys
13:12:34.0184 3012 tssecsrv - ok
13:12:34.0231 3012 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys
13:12:34.0309 3012 tunnel - ok
13:12:34.0324 3012 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
13:12:34.0355 3012 uagp35 - ok
13:12:34.0387 3012 udfs (09cc3e16f8e5ee7168e01cf8fcbe061a) C:\Windows\system32\DRIVERS\udfs.sys
13:12:34.0465 3012 udfs - ok
13:12:34.0511 3012 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
13:12:34.0558 3012 UI0Detect - ok
13:12:34.0589 3012 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys
13:12:34.0621 3012 uliagpkx - ok
13:12:34.0636 3012 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys
13:12:34.0683 3012 umbus - ok
13:12:34.0683 3012 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
13:12:34.0714 3012 UmPass - ok
13:12:34.0777 3012 UmRdpService (8ecaca5454844f66386f7be4ae0d7cd1) C:\Windows\System32\umrdp.dll
13:12:34.0823 3012 UmRdpService - ok
13:12:35.0744 3012 UNS (41118d920b2b268c0adc36421248cdcf) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
13:12:35.0869 3012 UNS ( UnsignedFile.Multi.Generic ) - warning
13:12:35.0869 3012 UNS - detected UnsignedFile.Multi.Generic (1)
13:12:36.0040 3012 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
13:12:36.0149 3012 upnphost - ok
13:12:36.0227 3012 upperdev (e526a166e6acafd0a9b3841d3941669e) C:\Windows\system32\DRIVERS\usbser_lowerflt.sys
13:12:36.0290 3012 upperdev - ok
13:12:36.0321 3012 usbccgp (8455c4ed038efd09e99327f9d2d48ffa) C:\Windows\system32\DRIVERS\usbccgp.sys
13:12:36.0368 3012 usbccgp - ok
13:12:36.0383 3012 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys
13:12:36.0430 3012 usbcir - ok
13:12:36.0446 3012 usbehci (1c333bfd60f2fed2c7ad5daf533cb742) C:\Windows\system32\DRIVERS\usbehci.sys
13:12:36.0477 3012 usbehci - ok
13:12:36.0524 3012 usbhub (ee6ef93ccfa94fae8c6ab298273d8ae2) C:\Windows\system32\DRIVERS\usbhub.sys
13:12:36.0555 3012 usbhub - ok
13:12:36.0571 3012 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\DRIVERS\usbohci.sys
13:12:36.0602 3012 usbohci - ok
13:12:36.0617 3012 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
13:12:36.0649 3012 usbprint - ok
13:12:36.0711 3012 usbser (88701eca76145e2c011c0eeff0f7b70e) C:\Windows\system32\drivers\usbser.sys
13:12:36.0758 3012 usbser - ok
13:12:36.0820 3012 UsbserFilt (6f3e3c6811b930d2414552a2e4a40f36) C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys
13:12:36.0883 3012 UsbserFilt - ok
13:12:36.0914 3012 USBSTOR (d8889d56e0d27e57ed4591837fe71d27) C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:12:36.0945 3012 USBSTOR - ok
13:12:36.0976 3012 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\DRIVERS\usbuhci.sys
13:12:37.0007 3012 usbuhci - ok
13:12:37.0039 3012 usbvideo (f642a7e4bf78cfa359cca0a3557c28d7) C:\Windows\system32\Drivers\usbvideo.sys
13:12:37.0085 3012 usbvideo - ok
13:12:37.0117 3012 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
13:12:37.0210 3012 UxSms - ok
13:12:37.0241 3012 VaultSvc (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
13:12:37.0273 3012 VaultSvc - ok
13:12:37.0288 3012 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys
13:12:37.0304 3012 vdrvroot - ok
13:12:37.0366 3012 vds (8c4e7c49d3641bc9e299e466a7f8867d) C:\Windows\System32\vds.exe
13:12:37.0429 3012 vds - ok
13:12:37.0444 3012 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
13:12:37.0491 3012 vga - ok
13:12:37.0491 3012 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
13:12:37.0553 3012 VgaSave - ok
13:12:37.0585 3012 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys
13:12:37.0631 3012 vhdmp - ok
13:12:37.0647 3012 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys
13:12:37.0678 3012 viaagp - ok
13:12:37.0678 3012 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
13:12:37.0725 3012 ViaC7 - ok
13:12:37.0741 3012 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys
13:12:37.0756 3012 viaide - ok
13:12:37.0803 3012 vmbus (379b349f65f453d2a6e75ea6b7448e49) C:\Windows\system32\DRIVERS\vmbus.sys
13:12:37.0834 3012 vmbus - ok
13:12:37.0850 3012 VMBusHID (ec2bbab4b84d0738c6c83d2234dc36fe) C:\Windows\system32\DRIVERS\VMBusHID.sys
13:12:37.0881 3012 VMBusHID - ok
13:12:37.0897 3012 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys
13:12:37.0928 3012 volmgr - ok
13:12:37.0975 3012 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
13:12:38.0006 3012 volmgrx - ok
13:12:38.0037 3012 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys
13:12:38.0068 3012 volsnap - ok
13:12:38.0099 3012 vsbus (1c8a783e90c34d205596f1ab4a97e261) C:\Windows\system32\DRIVERS\vsb.sys
13:12:38.0115 3012 vsbus ( UnsignedFile.Multi.Generic ) - warning
13:12:38.0115 3012 vsbus - detected UnsignedFile.Multi.Generic (1)
13:12:38.0146 3012 vserial (3377daa1cb8cac46a538c236f5f3d58f) C:\Windows\system32\DRIVERS\vserial.sys
13:12:38.0162 3012 vserial ( UnsignedFile.Multi.Generic ) - warning
13:12:38.0162 3012 vserial - detected UnsignedFile.Multi.Generic (1)
13:12:38.0193 3012 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
13:12:38.0224 3012 vsmraid - ok
13:12:38.0318 3012 VSS (7ea2bcd94d9cfaf4c556f5cc94532a6c) C:\Windows\system32\vssvc.exe
13:12:38.0411 3012 VSS - ok
13:12:38.0427 3012 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
13:12:38.0474 3012 vwifibus - ok
13:12:38.0489 3012 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
13:12:38.0521 3012 vwififlt - ok
13:12:38.0552 3012 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\Windows\system32\DRIVERS\vwifimp.sys
13:12:38.0583 3012 vwifimp - ok
13:12:38.0630 3012 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
13:12:38.0723 3012 W32Time - ok
13:12:38.0739 3012 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
13:12:38.0770 3012 WacomPen - ok
13:12:38.0786 3012 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
13:12:38.0864 3012 WANARP - ok
13:12:38.0879 3012 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
13:12:38.0942 3012 Wanarpv6 - ok
13:12:39.0098 3012 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
13:12:39.0191 3012 WatAdminSvc - ok
13:12:39.0363 3012 wbengine (7790b77fe1e5ee47dcc66247095bb4c9) C:\Windows\system32\wbengine.exe
13:12:39.0457 3012 wbengine - ok
13:12:39.0488 3012 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
13:12:39.0535 3012 WbioSrvc - ok
13:12:39.0581 3012 wcncsvc (d0f88aa11ee1a62bcc6d6a8a7783ca11) C:\Windows\System32\wcncsvc.dll
13:12:39.0644 3012 wcncsvc - ok
13:12:39.0659 3012 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
13:12:39.0722 3012 WcsPlugInService - ok
13:12:39.0753 3012 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
13:12:39.0769 3012 Wd - ok
13:12:39.0815 3012 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
13:12:39.0862 3012 Wdf01000 - ok
13:12:39.0893 3012 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
13:12:39.0956 3012 WdiServiceHost - ok
13:12:39.0956 3012 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
13:12:40.0003 3012 WdiSystemHost - ok
13:12:40.0034 3012 WebClient (d87c7d2c517f82a5ab7a73e203063d9e) C:\Windows\System32\webclnt.dll
13:12:40.0081 3012 WebClient - ok
13:12:40.0112 3012 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
13:12:40.0190 3012 Wecsvc - ok
13:12:40.0221 3012 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
13:12:40.0315 3012 wercplsupport - ok
13:12:40.0346 3012 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
13:12:40.0439 3012 WerSvc - ok
13:12:40.0455 3012 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
13:12:40.0533 3012 WfpLwf - ok
13:12:40.0564 3012 WimFltr (090a2b8f055343815556a01f725f6c35) C:\Windows\system32\DRIVERS\wimfltr.sys
13:12:40.0611 3012 WimFltr - ok
13:12:40.0627 3012 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
13:12:40.0642 3012 WIMMount - ok
13:12:40.0736 3012 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
13:12:40.0798 3012 WinDefend - ok
13:12:40.0814 3012 WinHttpAutoProxySvc - ok
13:12:40.0876 3012 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
13:12:40.0970 3012 Winmgmt - ok
13:12:41.0079 3012 WinRM (c4f5d3901d1b41d602ddc196e0b95b51) C:\Windows\system32\WsmSvc.dll
13:12:41.0204 3012 WinRM - ok
13:12:41.0282 3012 WinUsb (30fc6e5448d0cbaaa95280eeef7fedae) C:\Windows\system32\DRIVERS\WinUsb.sys
13:12:41.0313 3012 WinUsb - ok
13:12:41.0407 3012 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
13:12:41.0485 3012 Wlansvc - ok
13:12:41.0500 3012 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys
13:12:41.0531 3012 WmiAcpi - ok
13:12:41.0594 3012 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
13:12:41.0641 3012 wmiApSrv - ok
13:12:41.0781 3012 WMPNetworkSvc (77fbd400984cf72ba0fc4b3489d65f74) C:\Program Files\Windows Media Player\wmpnetwk.exe
13:12:41.0875 3012 WMPNetworkSvc - ok
13:12:41.0999 3012 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
13:12:42.0046 3012 WPCSvc - ok
13:12:42.0077 3012 WPDBusEnum (b7f658a2ebc07129538ad9ab35212637) C:\Windows\system32\wpdbusenum.dll
13:12:42.0124 3012 WPDBusEnum - ok
13:12:42.0155 3012 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
13:12:42.0233 3012 ws2ifsl - ok
13:12:42.0249 3012 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\System32\wscsvc.dll
13:12:42.0311 3012 wscsvc - ok
13:12:42.0311 3012 WSearch - ok
13:12:42.0483 3012 wuauserv (a33408cc036f9c08142b11be5e93f0a1) C:\Windows\system32\wuaueng.dll
13:12:42.0655 3012 wuauserv - ok
13:12:42.0764 3012 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
13:12:42.0826 3012 WudfPf - ok
13:12:42.0857 3012 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
13:12:42.0920 3012 WUDFRd - ok
13:12:42.0951 3012 wudfsvc (ddee3682fe97037c45f4d7ab467cb8b6) C:\Windows\System32\WUDFSvc.dll
13:12:43.0029 3012 wudfsvc - ok
13:12:43.0060 3012 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
13:12:43.0123 3012 WwanSvc - ok
13:12:43.0185 3012 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
13:12:43.0372 3012 \Device\Harddisk0\DR0 - ok
13:12:43.0372 3012 MBR (0x1B8) (ddae9d649db12f6aff24483f2c298989) \Device\Harddisk1\DR1
13:12:50.0189 3012 \Device\Harddisk1\DR1 - ok
13:12:50.0205 3012 Boot (0x1200) (f22c16bb92fa481671a5fc0533929d9f) \Device\Harddisk0\DR0\Partition0
13:12:50.0205 3012 \Device\Harddisk0\DR0\Partition0 - ok
13:12:50.0252 3012 Boot (0x1200) (a3263095a97f61fe51bfdaa506674620) \Device\Harddisk0\DR0\Partition1
13:12:50.0252 3012 \Device\Harddisk0\DR0\Partition1 - ok
13:12:50.0267 3012 Boot (0x1200) (1d40693330f01a15fb4f92e1662407d5) \Device\Harddisk0\DR0\Partition2
13:12:50.0267 3012 \Device\Harddisk0\DR0\Partition2 - ok
13:12:50.0283 3012 Boot (0x1200) (151824e114e9cc6d573e941aa6f16886) \Device\Harddisk1\DR1\Partition0
13:12:50.0283 3012 \Device\Harddisk1\DR1\Partition0 - ok
13:12:50.0283 3012 ============================================================
13:12:50.0283 3012 Scan finished
13:12:50.0283 3012 ============================================================
13:12:50.0330 3160 Detected object count: 14
13:12:50.0330 3160 Actual detected object count: 14
13:12:59.0206 3160 ASPI32 ( UnsignedFile.Multi.Generic ) - skipped by user
13:12:59.0206 3160 ASPI32 ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:12:59.0206 3160 bgsvcgen ( UnsignedFile.Multi.Generic ) - skipped by user
13:12:59.0206 3160 bgsvcgen ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:12:59.0206 3160 DfSdkS ( UnsignedFile.Multi.Generic ) - skipped by user
13:12:59.0206 3160 DfSdkS ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:12:59.0206 3160 FileObjInfo ( UnsignedFile.Multi.Generic ) - skipped by user
13:12:59.0206 3160 FileObjInfo ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:12:59.0222 3160 giveio ( UnsignedFile.Multi.Generic ) - skipped by user
13:12:59.0222 3160 giveio ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:12:59.0222 3160 LMS ( UnsignedFile.Multi.Generic ) - skipped by user
13:12:59.0222 3160 LMS ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:12:59.0222 3160 PARLDR2K ( UnsignedFile.Multi.Generic ) - skipped by user
13:12:59.0222 3160 PARLDR2K ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:12:59.0222 3160 ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user
13:12:59.0222 3160 ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:12:59.0222 3160 sptd ( LockedFile.Multi.Generic ) - skipped by user
13:12:59.0222 3160 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
13:12:59.0222 3160 sp_rsdrv2 ( UnsignedFile.Multi.Generic ) - skipped by user
13:12:59.0222 3160 sp_rsdrv2 ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:12:59.0222 3160 sp_rssrv ( UnsignedFile.Multi.Generic ) - skipped by user
13:12:59.0222 3160 sp_rssrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:12:59.0237 3160 UNS ( UnsignedFile.Multi.Generic ) - skipped by user
13:12:59.0237 3160 UNS ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:12:59.0237 3160 vsbus ( UnsignedFile.Multi.Generic ) - skipped by user
13:12:59.0237 3160 vsbus ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:12:59.0237 3160 vserial ( UnsignedFile.Multi.Generic ) - skipped by user
13:12:59.0237 3160 vserial ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:13:01.0515 0492 Deinitialize success

#6 Příspěvek od **vyosek** » 24 dub 2012 13:06

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
Zaskrtnete okenko Pro vsechny uzivatele
Zaskrtnete okenko Kontrola na havet "LOP"
Zaskrtnete okenko Kontrola na havet "Purity"
Stari souboru zmente z 30 dnu na 7 dnu
Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5

%SystemDrive%\PhysicalMBR.bin /md5 

*crack* /s
*keygen* /s
*loader* /s

Kliknete na tlacitko Prohledat
Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte

jack68 · #7 Příspěvek od **jack68** » 24 dub 2012 14:28

Zdravim Dekuji za rychle reakce.

OTL Extras logfile created on: 24.4.2012 14:56:30 - Run 1
OTL by OldTimer - Version 3.2.41.0 Folder = H:\
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,92 Gb Total Physical Memory | 2,13 Gb Available Physical Memory | 72,97% Memory free
5,84 Gb Paging File | 4,96 Gb Available in Paging File | 84,96% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 228,55 Gb Total Space | 209,61 Gb Free Space | 91,72% Space Free | Partition Type: NTFS
Drive D: | 227,45 Gb Total Space | 187,29 Gb Free Space | 82,34% Space Free | Partition Type: NTFS
Drive H: | 14,89 Gb Total Space | 14,89 Gb Free Space | 99,97% Space Free | Partition Type: FAT32

Computer Name: JANCA-PC | User Name: Janca | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)

[HKEY_USERS\S-1-5-21-4118144972-2894952025-776315543-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{06585B02-F20D-4AB2-9A64-86EF2AE0F8F0}" = ASUS AI Recovery
"{07BE4679-4318-4413-9701-B3D92354F11D}" = Heroes of Might and Magic V - Tribes of the East
"{08600005-5228-4BF6-845E-E9A957AFDCB4}" = OviMPlatform
"{0969AF05-4FF6-4C00-9406-43599238DE0D}" = ASUS Splendid Video Enhancement Technology
"{13F4A7F3-EABC-4261-AF6B-1317777F0755}" = Fast Boot
"{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}" = ASUS LifeFrame3
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}" = Wireless Console 3
"{26604C7E-A313-4D12-867F-7C6E7820BE4C}" = JMicron Flash Media Controller Driver
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 23
"{2B81872B-A054-48DA-BE3B-FA5C164C303A}" = ASUS FancyStart
"{3553E875-F00E-4031-BDEC-75FB1DFEB093}" = Nokia Ovi Suite Software Updater
"{36ABE32F-D7D4-4A5E-AADD-589F506B1B50}" = Nokia Ovi Suite
"{3DAD83B9-4C8B-4AC6-BF5E-B9FB181CCBE8}" = Nokia Service Tool Drivers
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{4216D328-0FE8-48B8-85B8-BD300E6F080F}" = Nokia Connectivity Cable Driver
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{5335DADB-34BA-4AE8-A519-648D78498846}" = Skype™ 5.3
"{5B65EF64-1DFA-414A-8C94-7BB726158E21}" = ControlDeck
"{6324A1EF-CEF4-43E3-8BCD-9EF3F67317FD}" = NB Probe
"{64452561-169F-4A36-A2FF-B5E118EC65F5}" = ASUS SmartLogon
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{69916AD2-3710-4C86-895E-8F475290AA64}" = Ovi Desktop Sync Engine
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{888F53F2-0F13-4CA2-AE1B-211425A59D46}" = Phoenix Service Software
"{8F21291E-0444-4B1D-B9F9-4370A73E346D}" = WinFlash
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{96DCEE2F-98EE-4F80-8C0F-7C04D1FB9D7F}" = JMicron Ethernet Adapter NDIS Driver
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}" = ASUS Power4Gear Hybrid
"{9D48531D-2135-49FC-BC29-ACCDA5396A76}" = ASUS MultiFrame
"{9D6D7811-43B3-463C-BC79-5D1755269989}" = Net4Switch
"{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}" = Software Bluetooth WIDCOMM
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}" = ATK Package
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}" = Microsoft Primary Interoperability Assemblies 2005
"{D4AEC53C-1720-41D9-B6D7-6A60DE62D444}" = PC Connectivity Solution
"{D7D38949-8251-4F07-BC2C-AA767308010B}" = TMPGEnc Authoring Works 4
"{Dárek k Valentýnu}_is1" = Dárek k Valentýnu 1.0
"{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}" = ASUS Virtual Camera
"504244733D18C8F63FF584AEB290E3904E791693" = Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"abgx360" = abgx360 v1.0.5
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"AnyDVD" = AnyDVD
"Ashampoo WinOptimizer 6_is1" = Ashampoo WinOptimizer 6.60
"avast" = avast! Free Antivirus
"CCleaner" = CCleaner
"CloneDVD2" = CloneDVD2
"CNXT_AUDIO_HDA" = Conexant HD Audio
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"Elantech" = ETDWare PS/2-x86 7.0.5.9_WHQL
"Emergency 2012" = Emergency 2012
"ENTERPRISE" = Microsoft Office Enterprise 2007
"Foxit Reader" = Foxit Reader
"Google Chrome" = Google Chrome
"HijackThis" = HijackThis 2.0.2
"ImgBurn" = ImgBurn
"IP Camera Viewer_is1" = IP Camera Viewer 1.0
"JAFSetup" = JAF Setup
"KProbe" = KProbe 2.5.2
"Mozilla Firefox 11.0 (x86 cs)" = Mozilla Firefox 11.0 (x86 cs)
"Nokia Ovi Suite" = Nokia Ovi Suite
"ParadisePoker" = ParadisePoker
"Phoenix Service Software 2009.34.7.40015_is1" = Phoenix Service Software 2009.34.7.40015
"PokerStars" = PokerStars
"PSPad editor_is1" = PSPad editor
"SpeedFan" = SpeedFan (remove only)
"Spyware Terminator_is1" = Spyware Terminator
"TeamViewer 6" = TeamViewer 6
"TeamViewer 7" = TeamViewer 7
"The KMPlayer" = The KMPlayer (remove only)
"Totalcmd" = Total Commander (Remove or Repair)
"USB 2.0 1.3M UVC WebCam" = USB 2.0 1.3M UVC WebCam
"VLC media player" = VLC media player 1.1.5
"WinRAR archiver" = WinRAR
"ZonerPhotoStudio12_CZ_is1" = Zoner Photo Studio 12

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 23.4.2012 13:58:44 | Computer Name = Janca-PC | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces
Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu
obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota
DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error - 23.4.2012 13:58:44 | Computer Name = Janca-PC | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces
Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu
obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota
DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error - 23.4.2012 13:58:44 | Computer Name = Janca-PC | Source = Microsoft-Windows-LoadPerf | ID = 3011
Description = Uvolnění řetězců čítačů výkonu pro službu WmiApRpl (WmiApRpl) se nezdařilo.
První hodnota DWORD v datové oblasti obsahuje kód chyby.

Error - 24.4.2012 6:59:47 | Computer Name = Janca-PC | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces
Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu
obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota
DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error - 24.4.2012 6:59:47 | Computer Name = Janca-PC | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces
Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu
obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota
DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error - 24.4.2012 6:59:47 | Computer Name = Janca-PC | Source = Microsoft-Windows-LoadPerf | ID = 3011
Description = Uvolnění řetězců čítačů výkonu pro službu WmiApRpl (WmiApRpl) se nezdařilo.
První hodnota DWORD v datové oblasti obsahuje kód chyby.

Error - 24.4.2012 8:56:05 | Computer Name = Janca-PC | Source = Application Hang | ID = 1002
Description = Program OTL.exe verze 3.2.41.0 přestal spolupracovat se systémem Windows
a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému,
vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu: c24 Čas
spuštění: 01cd22194d2a2fec Čas ukončení: 0 Cesta k aplikaci: C:\Users\Janca\Desktop\OTL.exe

ID
hlášení: d8787b9d-8e0c-11e1-8c24-485b39266163

Error - 24.4.2012 8:59:49 | Computer Name = Janca-PC | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces
Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu
obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota
DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error - 24.4.2012 8:59:49 | Computer Name = Janca-PC | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces
Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu
obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota
DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error - 24.4.2012 8:59:49 | Computer Name = Janca-PC | Source = Microsoft-Windows-LoadPerf | ID = 3011
Description = Uvolnění řetězců čítačů výkonu pro službu WmiApRpl (WmiApRpl) se nezdařilo.
První hodnota DWORD v datové oblasti obsahuje kód chyby.

[ OSession Events ]
Error - 1.2.2011 13:55:16 | Computer Name = Janca-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 14
seconds with 0 seconds of active time. This session ended with a crash.

[ System Events ]
Error - 24.4.2012 7:00:03 | Computer Name = Janca-PC | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk0\DR0.

Error - 24.4.2012 7:00:03 | Computer Name = Janca-PC | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk0\DR0.

Error - 24.4.2012 7:00:03 | Computer Name = Janca-PC | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk0\DR0.

Error - 24.4.2012 7:00:03 | Computer Name = Janca-PC | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk0\DR0.

Error - 24.4.2012 7:00:03 | Computer Name = Janca-PC | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk0\DR0.

Error - 24.4.2012 7:00:03 | Computer Name = Janca-PC | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk0\DR0.

Error - 24.4.2012 7:00:03 | Computer Name = Janca-PC | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk0\DR0.

Error - 24.4.2012 7:00:03 | Computer Name = Janca-PC | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk0\DR0.

Error - 24.4.2012 7:00:03 | Computer Name = Janca-PC | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk0\DR0.

Error - 24.4.2012 7:10:51 | Computer Name = Janca-PC | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (13:04:20, ?24.?4.?2012) bylo neočekávané.

< End of report >

OTL logfile created on: 24.4.2012 14:56:30 - Run 1
OTL by OldTimer - Version 3.2.41.0 Folder = H:\
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,92 Gb Total Physical Memory | 2,13 Gb Available Physical Memory | 72,97% Memory free
5,84 Gb Paging File | 4,96 Gb Available in Paging File | 84,96% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 228,55 Gb Total Space | 209,61 Gb Free Space | 91,72% Space Free | Partition Type: NTFS
Drive D: | 227,45 Gb Total Space | 187,29 Gb Free Space | 82,34% Space Free | Partition Type: NTFS
Drive H: | 14,89 Gb Total Space | 14,89 Gb Free Space | 99,97% Space Free | Partition Type: FAT32

Computer Name: JANCA-PC | User Name: Janca | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2012.04.24 14:51:52 | 000,594,944 | ---- | M] (OldTimer Tools) -- H:\OTL.exe
PRC - [2012.03.19 13:38:46 | 002,666,880 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
PRC - [2012.03.07 01:15:17 | 004,241,512 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2012.03.07 01:15:14 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2011.02.03 22:54:02 | 000,496,128 | ---- | M] (Crawler.com) -- C:\Program Files\Spyware Terminator\sp_rsser.exe
PRC - [2011.01.27 17:51:05 | 002,253,688 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
PRC - [2010.11.24 20:42:15 | 000,139,264 | ---- | M] (SOURCENEXT) -- C:\Windows\System32\bgsvcgen.exe
PRC - [2010.08.17 14:55:42 | 005,732,992 | ---- | M] (ASUS) -- C:\Program Files\ASUS\ATK Packag\ATKOSD2\ATKOSD2.exe
PRC - [2010.05.03 14:45:50 | 000,182,912 | ---- | M] (ASUS) -- C:\Program Files\ASUS\ATK Packag\ATK Hotkey\HControl.exe
PRC - [2010.05.03 14:41:46 | 000,170,624 | ---- | M] (ASUS) -- C:\Program Files\ASUS\ATK Packag\ATK Media\DMedia.exe
PRC - [2010.01.12 17:34:50 | 000,264,832 | ---- | M] (ATK) -- C:\Program Files\P4G\BatteryLife.exe
PRC - [2010.01.04 17:43:36 | 001,597,440 | ---- | M] () -- C:\Program Files\ASUS\Wireless Console 3\wcourier.exe
PRC - [2009.12.15 10:39:38 | 000,096,896 | ---- | M] (ASUS) -- C:\Program Files\ASUS\ATK Packag\ATKGFNEX\GFNEXSrv.exe
PRC - [2009.12.07 16:37:06 | 000,303,744 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Windows\System32\FBAgent.exe
PRC - [2009.11.24 13:45:36 | 000,053,888 | ---- | M] () -- C:\Program Files\ASUS\ControlDeck\ControlDeckStartUp.exe
PRC - [2009.10.31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009.09.30 19:34:22 | 002,314,240 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2009.09.30 19:33:08 | 000,262,144 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2009.09.23 11:11:54 | 001,160,320 | ---- | M] (ASUS) -- C:\Program Files\ASUS\Net4Switch\Net4Switch.exe
PRC - [2009.07.31 10:38:24 | 000,305,720 | ---- | M] (ASUS) -- C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
PRC - [2009.07.23 10:30:06 | 000,544,768 | ---- | M] (ATK) -- C:\Program Files\ASUS\Splendid\ACMON.exe
PRC - [2009.07.14 03:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009.07.01 19:03:12 | 000,795,936 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
PRC - [2009.07.01 19:03:12 | 000,582,944 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
PRC - [2009.06.19 10:29:42 | 000,105,016 | ---- | M] (ASUS) -- C:\Program Files\ASUS\ATK Packag\ATK Hotkey\HControlUser.exe
PRC - [2009.06.19 10:29:26 | 002,488,888 | ---- | M] (ASUS) -- C:\Program Files\ASUS\ATK Packag\ATK Hotkey\ATKOSD.exe
PRC - [2009.06.15 17:30:42 | 000,084,536 | ---- | M] (ASUS) -- C:\Program Files\ASUS\ATK Packag\ATK Hotkey\AsLdrSrv.exe
PRC - [2008.12.22 17:15:34 | 000,174,648 | ---- | M] (ASUS) -- C:\Program Files\ASUS\ATK Packag\ATK Hotkey\WDC.exe
PRC - [2008.04.22 07:03:00 | 001,083,848 | ---- | M] (C. Ghisler & Co.) -- C:\programy\totalcmd\TOTALCMD.EXE
PRC - [2007.08.03 12:24:54 | 000,125,496 | ---- | M] () -- C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
PRC - [2005.07.06 15:43:42 | 000,155,648 | ---- | M] (ASUSTeK) -- C:\Windows\System32\ACEngSvr.exe

========== Modules (No Company Name) ==========

MOD - [2010.03.15 12:28:24 | 000,141,824 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2010.02.12 09:37:50 | 000,633,696 | ---- | M] () -- C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\ContextHandler.dll
MOD - [2010.01.11 10:27:36 | 000,012,800 | ---- | M] () -- C:\Program Files\P4G\DevMng.dll
MOD - [2010.01.04 17:43:36 | 001,597,440 | ---- | M] () -- C:\Program Files\ASUS\Wireless Console 3\wcourier.exe
MOD - [2009.12.18 11:45:28 | 000,026,624 | ---- | M] () -- C:\Program Files\P4G\OvrClk.dll
MOD - [2009.11.24 13:45:36 | 000,053,888 | ---- | M] () -- C:\Program Files\ASUS\ControlDeck\ControlDeckStartUp.exe
MOD - [2009.09.15 11:47:10 | 000,049,152 | ---- | M] () -- C:\Program Files\ASUS\Net4Switch\ResItf.dll
MOD - [2009.09.11 17:40:20 | 000,084,992 | ---- | M] () -- C:\Program Files\ASUS\Net4Switch\cxcmrt.dll
MOD - [2009.07.01 19:03:24 | 000,132,384 | ---- | M] () -- C:\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll
MOD - [2008.09.30 23:02:44 | 000,009,216 | ---- | M] () -- C:\Program Files\ASUS\Splendid\GLCDdll.dll
MOD - [2008.03.30 16:22:42 | 000,070,144 | ---- | M] () -- C:\Program Files\PSPad editor\PSPadShell.dll

========== Win32 Services (SafeList) ==========

SRV - [2012.03.19 13:38:46 | 002,666,880 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe -- (TeamViewer7)
SRV - [2012.03.07 01:15:14 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011.02.03 22:54:02 | 000,496,128 | ---- | M] (Crawler.com) [Auto | Running] -- C:\Program Files\Spyware Terminator\sp_rsser.exe -- (sp_rssrv)
SRV - [2011.01.27 17:51:05 | 002,253,688 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe -- (TeamViewer6)
SRV - [2010.12.08 15:31:06 | 000,628,736 | ---- | M] (Nokia) [Disabled | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010.11.24 20:42:15 | 000,139,264 | ---- | M] (SOURCENEXT) [Auto | Running] -- C:\Windows\System32\bgsvcgen.exe -- (bgsvcgen)
SRV - [2010.06.07 06:42:11 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2009.12.15 10:39:38 | 000,096,896 | ---- | M] (ASUS) [Auto | Running] -- C:\Program Files\ASUS\ATK Packag\ATKGFNEX\GFNEXSrv.exe -- (ATKGFNEXSrv)
SRV - [2009.12.07 16:37:06 | 000,303,744 | ---- | M] (ASUSTeK Computer Inc.) [Auto | Running] -- C:\Windows\System32\FBAgent.exe -- (AFBAgent)
SRV - [2009.09.30 19:34:22 | 002,314,240 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) Intel(R)
SRV - [2009.09.30 19:33:08 | 000,262,144 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) Intel(R)
SRV - [2009.08.24 21:16:36 | 000,406,016 | ---- | M] (mst software GmbH, Germany) [On_Demand | Stopped] -- C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\DfSdkS.exe -- (DfSdkS)
SRV - [2009.07.14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009.07.14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009.07.01 19:03:12 | 000,582,944 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins)
SRV - [2009.06.15 17:30:42 | 000,084,536 | ---- | M] (ASUS) [Auto | Running] -- C:\Program Files\ASUS\ATK Packag\ATK Hotkey\AsLdrSrv.exe -- (ASLDRService)
SRV - [2007.08.03 12:24:54 | 000,125,496 | ---- | M] () [On_Demand | Running] -- C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe -- (spmgr)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- System32\DRIVERS\ipswuio.sys -- (ipswuio)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (arr7764w)
DRV - [2012.03.07 01:03:51 | 000,612,184 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2012.03.07 01:03:38 | 000,337,880 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2012.03.07 01:02:14 | 000,044,376 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr2.sys -- (aswRdr)
DRV - [2012.03.07 01:01:53 | 000,053,848 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2012.03.07 01:01:48 | 000,057,688 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2012.03.07 01:01:30 | 000,020,696 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011.08.19 17:01:27 | 000,121,464 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AnyDVD.sys -- (AnyDVD)
DRV - [2011.03.18 18:08:54 | 000,025,240 | ---- | M] (Almico Software) [Kernel | Boot | Running] -- C:\Windows\System32\speedfan.sys -- (speedfan)
DRV - [2011.02.03 22:54:02 | 000,142,592 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\sp_rsdrv2.sys -- (sp_rsdrv2)
DRV - [2011.02.03 22:54:02 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\ProgramData\Spyware Terminator\fileobjinfo.sys -- (FileObjInfo)
DRV - [2011.01.30 11:32:41 | 000,010,454 | ---- | M] (Data Encryption Systems Limited) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\parldr2k.sys -- (PARLDR2K)
DRV - [2010.11.24 20:42:15 | 000,038,944 | ---- | M] (B.H.A Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\cdrbsdrv.sys -- (cdrbsdrv)
DRV - [2010.07.30 15:16:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2010.07.30 15:16:44 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2010.07.30 15:16:42 | 000,023,040 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2010.07.30 15:16:38 | 000,018,048 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2010.07.26 13:24:46 | 000,137,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdnsu.sys -- (nmwcdnsu)
DRV - [2010.07.26 13:24:42 | 000,008,576 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc)
DRV - [2010.06.07 08:08:40 | 000,721,904 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2009.12.04 04:17:40 | 000,092,272 | ---- | M] (JMicron Technology Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\JME.sys -- (JME)
DRV - [2009.10.30 04:48:50 | 000,502,272 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CHDRT32.sys -- (CnxtHdAudService)
DRV - [2009.10.05 16:31:50 | 001,221,632 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2009.09.17 12:54:14 | 000,041,088 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HECI.sys -- (HECI) Intel(R)
DRV - [2009.08.18 10:23:28 | 000,119,408 | ---- | M] (JMicron Technology Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\jmcr.sys -- (JMCR)
DRV - [2009.07.20 11:29:40 | 000,013,880 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\kbfiltr.sys -- (kbfiltr)
DRV - [2009.07.14 03:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2009.07.14 03:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2009.07.14 03:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2009.07.14 01:52:10 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp)
DRV - [2009.07.14 01:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009.07.14 01:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009.07.14 01:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2009.07.02 17:36:10 | 000,013,880 | ---- | M] (ASUS) [Kernel | Auto | Running] -- C:\Program Files\ASUS\ATK Packag\ATKGFNEX\ASMMAP.sys -- (ASMMAP)
DRV - [2009.06.05 12:14:40 | 001,766,592 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC)
DRV - [2009.05.13 09:06:48 | 000,014,392 | ---- | M] (ASUS) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ATKACPI.sys -- (MTsensor)
DRV - [2008.08.26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008.07.24 00:29:16 | 000,047,744 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vserial.sys -- (vserial)
DRV - [2008.07.24 00:29:16 | 000,015,264 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vsb.sys -- (vsbus)
DRV - [2008.05.23 17:25:42 | 000,131,000 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\WimFltr.sys -- (WimFltr)
DRV - [2007.08.03 06:26:22 | 000,020,936 | ---- | M] () [Kernel | Auto | Running] -- C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys -- (ghaio)
DRV - [2002.07.17 02:53:02 | 000,016,877 | ---- | M] (Adaptec) [Kernel | System | Running] -- C:\Windows\System32\drivers\ASPI32.SYS -- (ASPI32)
DRV - [1996.04.03 21:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\giveio.sys -- (giveio)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-4118144972-2894952025-776315543-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 40 1D 08 3F 6A 3F CB 01 [binary data]
IE - HKU\S-1-5-21-4118144972-2894952025-776315543-1000\..\SearchScopes,DefaultScope = {AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}
IE - HKU\S-1-5-21-4118144972-2894952025-776315543-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-4118144972-2894952025-776315543-1000\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = http://www.daemon-search.com/search/web?q={searchTerms}
IE - HKU\S-1-5-21-4118144972-2894952025-776315543-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.1.2.0185
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.4.48
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=1.1.5: C:\Program Files\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\ [2011.01.30 11:32:14 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2012.03.28 19:14:03 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.03.29 07:41:37 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.08.19 22:15:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2011.01.30 11:32:14 | 000,000,000 | ---D | M]

[2010.06.07 07:54:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Janca\AppData\Roaming\Mozilla\Extensions
[2012.03.07 13:21:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Janca\AppData\Roaming\Mozilla\Firefox\Profiles\xcc1byj4.default\extensions
[2012.03.07 13:21:09 | 000,000,000 | ---D | M] ("DAEMON Tools Toolbar") -- C:\Users\Janca\AppData\Roaming\Mozilla\Firefox\Profiles\xcc1byj4.default\extensions\DTToolbar@toolbarnet.com
[2010.06.07 08:17:52 | 000,002,059 | ---- | M] () -- C:\Users\Janca\AppData\Roaming\Mozilla\Firefox\Profiles\xcc1byj4.default\searchplugins\daemon-search.xml
[2011.11.28 16:51:31 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012.03.29 07:41:36 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2010.11.12 19:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2010.06.07 09:36:05 | 000,075,208 | ---- | M] (Foxit Software Company) -- C:\Program Files\mozilla firefox\plugins\npFoxitReaderPlugin.dll
[2012.03.04 20:44:10 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2012.03.04 20:44:10 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2011.03.18 20:08:52 | 000,001,687 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\mall-cz.xml
[2012.03.04 20:44:10 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2012.03.04 20:44:10 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2012.03.04 20:44:10 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - Extension: YouTube = C:\Users\Janca\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2_0\
CHR - Extension: Gmail = C:\Users\Janca\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\6.1.3_0\

O1 HOSTS File: ([2009.06.10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (PandoraTV Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll File not found
O3 - HKU\S-1-5-21-4118144972-2894952025-776315543-1000\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKU\S-1-5-21-4118144972-2894952025-776315543-1000\..\Toolbar\WebBrowser: (PandoraTV Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll File not found
O4 - HKLM..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Packag\ATK Media\DMedia.exe (ASUS)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [HControlUser] C:\Program Files\ASUS\ATK Packag\ATK Hotkey\HControlUser.exe (ASUS)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\S-1-5-21-4118144972-2894952025-776315543-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{677DF890-4B12-4A41-8CEE-A0EA4DAB73F5}: DhcpNameServer = 85.132.180.62
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E9FB8A92-8D0C-4485-8820-77C54D4784B9}: NameServer = 85.132.180.62
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{29bd6779-71fc-11df-9f99-0025d3ae8530}\Shell - "" = AutoRun
O33 - MountPoints2\{29bd6779-71fc-11df-9f99-0025d3ae8530}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{86e239d2-7282-11df-85f9-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{86e239d2-7282-11df-85f9-806e6f6e6963}\Shell\AutoRun\command - "" = E:\InstAll.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2012.04.24 14:53:42 | 000,594,944 | ---- | C] (OldTimer Tools) -- C:\Users\Janca\Desktop\OTL.exe
[2012.04.23 19:46:23 | 000,000,000 | ---D | C] -- C:\Users\Janca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zařízení Bluetooth
[2012.04.23 16:20:18 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2012.04.23 13:49:03 | 000,000,000 | ---D | C] -- C:\Windows\Minidump

========== Files - Modified Within 7 Days ==========

[2012.04.24 15:00:51 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.04.24 15:00:03 | 000,015,856 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012.04.24 15:00:03 | 000,015,856 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012.04.24 14:59:53 | 006,632,834 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2012.04.24 14:59:53 | 002,726,346 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012.04.24 14:59:53 | 002,210,938 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2012.04.24 14:59:53 | 002,131,332 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012.04.24 14:52:47 | 000,000,934 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012.04.24 14:52:46 | 000,000,286 | -H-- | M] () -- C:\Windows\tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job
[2012.04.24 14:52:43 | 000,000,302 | -HS- | M] () -- C:\Windows\tasks\Rxosxo.job
[2012.04.24 14:52:39 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.04.24 14:52:32 | 2350,297,088 | -HS- | M] () -- C:\hiberfil.sys
[2012.04.24 14:51:52 | 000,594,944 | ---- | M] (OldTimer Tools) -- C:\Users\Janca\Desktop\OTL.exe
[2012.04.24 13:11:05 | 000,045,056 | ---- | M] () -- C:\Windows\System32\acovcnt.exe
[2012.04.24 12:52:55 | 000,001,350 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2012.04.23 20:09:04 | 000,000,938 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012.04.23 16:10:22 | 000,049,750 | ---- | M] () -- C:\Users\Janca\Documents\zaloha_reg.reg
[2012.04.18 07:17:11 | 000,001,152 | ---- | M] () -- C:\Windows\System32\ServiceFilter.ini

========== Files Created - No Company Name ==========

[2012.04.24 15:00:51 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.04.23 16:10:21 | 000,049,750 | ---- | C] () -- C:\Users\Janca\Documents\zaloha_reg.reg
[2012.04.17 19:49:08 | 000,001,060 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 7.lnk
[2011.05.18 17:54:28 | 000,001,350 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2011.02.03 22:54:02 | 000,142,592 | ---- | C] () -- C:\Windows\System32\drivers\sp_rsdrv2.sys
[2010.12.20 20:40:10 | 000,000,085 | -HS- | C] () -- C:\ProgramData\.zreglib
[2010.12.06 15:58:56 | 002,496,715 | ---- | C] () -- C:\Windows\System32\abgx360.exe
[2010.10.17 19:46:13 | 000,045,056 | ---- | C] () -- C:\Windows\System32\acovcnt.exe
[2010.08.29 08:19:14 | 000,000,001 | ---- | C] () -- C:\Windows\System32\SI.bin
[2010.06.07 09:01:45 | 000,000,000 | ---- | C] () -- C:\Windows\Net4Switch.INI
[2010.06.07 07:33:18 | 000,000,024 | ---- | C] () -- C:\Windows\ATKPF.ini
[2010.06.07 07:06:03 | 000,053,248 | ---- | C] () -- C:\Windows\System32\LogonStart.dll
[2010.06.07 07:05:25 | 000,001,432 | ---- | C] () -- C:\Windows\System32\AutoRunFilter.ini
[2010.06.07 07:05:25 | 000,001,152 | ---- | C] () -- C:\Windows\System32\ServiceFilter.ini
[2010.06.07 07:05:25 | 000,000,105 | ---- | C] () -- C:\Windows\System32\FastBoot.ini
[2010.06.07 07:05:25 | 000,000,080 | ---- | C] () -- C:\Windows\System32\Defrag.ini
[2010.06.07 07:05:25 | 000,000,052 | ---- | C] () -- C:\Windows\System32\RemoveFont.ini
[2010.06.07 07:05:25 | 000,000,015 | ---- | C] () -- C:\Windows\System32\BootTime.ini
[2010.06.07 07:02:43 | 000,013,880 | ---- | C] ( ) -- C:\Windows\System32\drivers\kbfiltr.sys
[2010.06.07 07:02:36 | 001,766,592 | ---- | C] () -- C:\Windows\System32\drivers\snp2uvc.sys
[2010.06.07 07:02:36 | 000,035,264 | ---- | C] () -- C:\Windows\System32\drivers\sncduvc.sys

========== LOP Check ==========

[2011.02.27 09:58:44 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\abgx360
[2012.01.03 19:09:22 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\DAEMON Tools Lite
[2010.12.14 10:51:41 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\FormEdik
[2010.12.14 10:51:41 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\GHISLER
[2011.02.27 10:06:06 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\ImgBurn
[2010.10.06 18:54:47 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\Mikrotik
[2011.01.30 11:37:43 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\PC Suite
[2010.11.24 20:45:46 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\Pegasys Inc
[2012.04.23 16:08:49 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\Spyware Terminator
[2012.04.17 19:49:15 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\TeamViewer
[2010.06.07 08:12:28 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\Zoner
[2012.04.24 14:52:43 | 000,000,302 | -HS- | M] () -- C:\Windows\Tasks\Rxosxo.job
[2012.04.04 06:40:29 | 000,032,578 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2012.04.24 14:52:46 | 000,000,286 | -H-- | M] () -- C:\Windows\Tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job

========== Purity Check ==========

========== Custom Scans ==========

< >

< >

< MD5 for: ATAPI.SYS >
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_f64b9c35a3a5be81\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2009.07.14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\System32\autochk.exe
[2009.07.14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe

< MD5 for: CDROM.SYS >
[2009.07.14 01:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\System32\drivers\cdrom.sys
[2009.07.14 01:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_db87d184bc84f910\cdrom.sys
[2009.07.14 01:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_5f7fb206051affbb\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2009.07.14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe
[2009.10.31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\explorer.exe
[2009.10.31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_51a66d6ddafc2ed1\explorer.exe
[2009.08.03 07:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_526619d4f3f142e6\explorer.exe
[2009.08.03 07:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_51e07e31dad00878\explorer.exe
[2009.10.31 08:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_52283b2af41f3691\explorer.exe

< MD5 for: HAL.DLL >
[2009.07.14 03:20:28 | 000,194,640 | ---- | M] (Microsoft Corporation) MD5=9A557EAE64ABAB3BA67A9BB035D24CB9 -- C:\Windows\System32\hal.dll
[2009.07.14 03:20:28 | 000,194,640 | ---- | M] (Microsoft Corporation) MD5=9A557EAE64ABAB3BA67A9BB035D24CB9 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_aaff48c7bafdccc6\hal.dll

< MD5 for: SCECLI.DLL >
[2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\System32\scecli.dll
[2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_37e4387f3a6f0483\scecli.dll

< MD5 for: SVCHOST.EXE >
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe

< MD5 for: TCPIP.SYS >
[2009.07.14 03:19:10 | 001,285,712 | ---- | M] (Microsoft Corporation) MD5=2CC3D75488ABD3EC628BBB9A4FC84EFC -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_b2f46875c7b9d667\tcpip.sys
[2010.06.14 08:06:58 | 001,288,576 | ---- | M] (Microsoft Corporation) MD5=A39EA325C081AD27461F630C8E3E56E0 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20733_none_b3b219fae0b0af43\tcpip.sys
[2010.06.14 08:12:30 | 001,286,016 | ---- | M] (Microsoft Corporation) MD5=BB7F39C31C4A4417FD318E7CD184E225 -- C:\Windows\System32\drivers\tcpip.sys
[2010.06.14 08:12:30 | 001,286,016 | ---- | M] (Microsoft Corporation) MD5=BB7F39C31C4A4417FD318E7CD184E225 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16610_none_b33b1c29c7858b92\tcpip.sys

< MD5 for: USERINIT.EXE >
[2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\System32\userinit.exe
[2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2009.10.28 08:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\System32\winlogon.exe
[2009.10.28 08:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_6fc699643622d177\winlogon.exe
[2009.10.28 07:52:08 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=3BABE6767C78FBF5FB8435FEED187F30 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_703394514f56f7c2\winlogon.exe
[2009.07.14 03:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe

< >

< %systemroot%*.* /U /s >
[2 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[5 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2011.02.27 09:58:44 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\abgx360
[2010.06.07 07:56:33 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\Adobe
[2012.01.03 19:09:22 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\DAEMON Tools Lite
[2012.01.03 19:15:31 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\Download Manager
[2011.11.27 17:52:19 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\dvdcss
[2010.12.14 10:51:41 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\FormEdik
[2010.12.14 10:51:41 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\GHISLER
[2010.06.07 06:30:08 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\Identities
[2011.02.27 10:06:06 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\ImgBurn
[2010.06.07 06:57:24 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\InstallShield
[2010.06.07 07:56:33 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\Macromedia
[2009.07.14 11:20:06 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\Media Center Programs
[2012.02.20 13:02:04 | 000,000,000 | --SD | M] -- C:\Users\Janca\AppData\Roaming\Microsoft
[2010.10.06 18:54:47 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\Mikrotik
[2010.06.07 07:54:14 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\Mozilla
[2010.06.07 08:50:32 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\Nero
[2011.01.30 11:37:43 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\PC Suite
[2010.11.24 20:45:46 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\Pegasys Inc
[2011.06.07 21:58:10 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\Skype
[2012.04.23 16:08:49 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\Spyware Terminator
[2012.04.17 19:49:15 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\TeamViewer
[2010.12.20 22:37:48 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\vlc
[2010.11.27 09:20:40 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\WinRAR
[2010.06.07 08:12:28 | 000,000,000 | ---D | M] -- C:\Users\Janca\AppData\Roaming\Zoner

< %APPDATA%\*.exe /s >
[2010.06.09 17:30:33 | 007,377,592 | ---- | M] (ZONER software ) -- C:\Users\Janca\AppData\Roaming\Zoner\NLMDB\product.0032\autoupdate.cz\ZPS12_Update_Build09.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job >
[2012.04.24 14:52:47 | 000,000,934 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2012.04.24 15:07:11 | 000,000,938 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2012.04.24 14:52:43 | 000,000,302 | -HS- | M] () -- C:\Windows\Tasks\Rxosxo.job
[2012.04.24 15:10:05 | 000,000,286 | -H-- | M] () -- C:\Windows\Tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2010.06.07 08:08:40 | 000,721,904 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sptd.sys

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2012.04.24 15:06:33 | 000,015,856 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012.04.24 15:06:33 | 000,015,856 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012.04.24 13:11:05 | 000,045,056 | ---- | M] () -- C:\Windows\system32\acovcnt.exe
[2012.04.24 14:52:43 | 000,000,018 | ---- | M] () -- C:\Windows\system32\log.txt
[2012.04.24 14:59:53 | 002,210,938 | ---- | M] () -- C:\Windows\system32\perfc005.dat
[2012.04.24 14:59:53 | 002,131,332 | ---- | M] () -- C:\Windows\system32\perfc009.dat
[2012.04.24 14:59:53 | 006,632,834 | ---- | M] () -- C:\Windows\system32\perfh005.dat
[2012.04.24 14:59:53 | 002,726,346 | ---- | M] () -- C:\Windows\system32\perfh009.dat
[2012.04.24 14:59:53 | 000,004,568 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\not active]

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
[2012.03.29 07:41:36 | 000,924,600 | ---- | M] (Mozilla Corporation) MD5=637F2BDC0E53704D121DDD27A1F62090 -- C:\Program Files\Mozilla Firefox\firefox.exe

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2010.11.04 07:54:54 | 000,673,040 | ---- | M] (Microsoft Corporation) MD5=58CF468D3FF4CF830339FE5E45356355 -- C:\Program Files\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >

< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
[2012.04.12 09:37:36 | 001,224,176 | ---- | M] (Google Inc.) MD5=073CA785104033CF4DE508AF52D97271 -- C:\Program Files\Google\Chrome\Application\chrome.exe

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.04.24 15:00:51 | 000,000,512 | ---- | M] () MD5=9D2F0492F4F6F7CB3BA5641A0B50C0F1 -- C:\PhysicalMBR.bin

< >

< *crack* /s >

< *keygen* /s >

< *loader* /s >

========== Alternate Data Streams ==========

@Alternate Data Stream - 48 bytes -> C:\Windows:9B3B0D0C4AF3F96F

< End of report >

#8 Příspěvek od **vyosek** » 24 dub 2012 14:39

Spustte znovu OTL

Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

Kód: Vybrat vše

:otl
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\DRIVERS\ipswuio.sys -- (ipswuio)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (arr7764w)

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-4118144972-2894952025-776315543-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 40 1D 08 3F 6A 3F CB 01 [binary data]
IE - HKU\S-1-5-21-4118144972-2894952025-776315543-1000\..\SearchScopes,DefaultScope = {AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}
IE - HKU\S-1-5-21-4118144972-2894952025-776315543-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-4118144972-2894952025-776315543-1000\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = http://www.daemon-search.com/search/web?q={searchTerms}
FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.1.2.0185
[2012.03.07 13:21:09 | 000,000,000 | ---D | M] ("DAEMON Tools Toolbar") -- C:\Users\Janca\AppData\Roaming\Mozilla\Firefox\Profiles\xcc1byj4.default\extensions\DTToolbar@toolbarnet.com
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKU\S-1-5-21-4118144972-2894952025-776315543-1000\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKU\S-1-5-21-4118144972-2894952025-776315543-1000\..\Toolbar\WebBrowser: (PandoraTV Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll File not found
O13 - gopher Prefix: missing
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O33 - MountPoints2\{29bd6779-71fc-11df-9f99-0025d3ae8530}\Shell - "" = AutoRun
O33 - MountPoints2\{86e239d2-7282-11df-85f9-806e6f6e6963}\Shell - "" = AutoRun
[2 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[5 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
[2012.04.24 14:52:47 | 000,000,934 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2012.04.24 15:07:11 | 000,000,938 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2012.04.24 14:52:43 | 000,000,302 | -HS- | M] () -- C:\Windows\Tasks\Rxosxo.job
[2012.04.24 15:10:05 | 000,000,286 | -H-- | M] () -- C:\Windows\Tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job
@Alternate Data Stream - 48 bytes -> C:\Windows:9B3B0D0C4AF3F96F

:services
gupdate
gupdatem

:files
C:\Program Files\Ask.com
C:\Program Files\DAEMON Tools Toolbar
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]

Nasledne kliknete na Opravit
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

jack68 · #9 Příspěvek od **jack68** » 24 dub 2012 15:27

dekuji. Po uspesnem doladeni rad prispeji. Profesionalni pristup

All processes killed
========== OTL ==========
Service ipswuio stopped successfully!
Service ipswuio deleted successfully!
File System32\DRIVERS\ipswuio.sys not found.
Error: No service named arr7764w was found to stop!
Service\Driver key arr7764w not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKU\S-1-5-21-4118144972-2894952025-776315543-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache_TIMESTAMP| /E : value set successfully!
HKEY_USERS\S-1-5-21-4118144972-2894952025-776315543-1000\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-4118144972-2894952025-776315543-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-4118144972-2894952025-776315543-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}\ not found.
Prefs.js: DTToolbar@toolbarnet.com:1.1.2.0185 removed from extensions.enabledItems
C:\Users\Janca\AppData\Roaming\Mozilla\Firefox\Profiles\xcc1byj4.default\extensions\DTToolbar@toolbarnet.com\components\Resources folder moved successfully.
C:\Users\Janca\AppData\Roaming\Mozilla\Firefox\Profiles\xcc1byj4.default\extensions\DTToolbar@toolbarnet.com\components folder moved successfully.
C:\Users\Janca\AppData\Roaming\Mozilla\Firefox\Profiles\xcc1byj4.default\extensions\DTToolbar@toolbarnet.com\chrome\content folder moved successfully.
C:\Users\Janca\AppData\Roaming\Mozilla\Firefox\Profiles\xcc1byj4.default\extensions\DTToolbar@toolbarnet.com\chrome folder moved successfully.
C:\Users\Janca\AppData\Roaming\Mozilla\Firefox\Profiles\xcc1byj4.default\extensions\DTToolbar@toolbarnet.com folder moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ deleted successfully.
C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll moved successfully.
Registry value HKEY_USERS\S-1-5-21-4118144972-2894952025-776315543-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
File C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll not found.
Registry value HKEY_USERS\S-1-5-21-4118144972-2894952025-776315543-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet:/pagefile deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{29bd6779-71fc-11df-9f99-0025d3ae8530}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{29bd6779-71fc-11df-9f99-0025d3ae8530}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{86e239d2-7282-11df-85f9-806e6f6e6963}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{86e239d2-7282-11df-85f9-806e6f6e6963}\ not found.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5E64.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP8545.tmp folder deleted successfully.
C:\Windows\Installer\MSI7E6F.tmp deleted successfully.
C:\Windows\Temp\SF1A0B2.tmp deleted successfully.
C:\Windows\Temp\SF1A47A.tmp deleted successfully.
C:\Windows\Temp\SF1A833.tmp deleted successfully.
C:\Windows\Temp\SF1AB9D.tmp deleted successfully.
C:\Windows\Temp\SF1AE9B.tmp deleted successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\Windows\Tasks\Rxosxo.job moved successfully.
C:\Windows\Tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job moved successfully.
ADS C:\Windows:9B3B0D0C4AF3F96F deleted successfully.
========== SERVICES/DRIVERS ==========
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
========== FILES ==========
File\Folder C:\Program Files\Ask.com not found.
C:\Program Files\DAEMON Tools Toolbar\Resources folder moved successfully.
C:\Program Files\DAEMON Tools Toolbar folder moved successfully.
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Janca
->Temp folder emptied: 11893841 bytes
->Temporary Internet Files folder emptied: 3690401 bytes
->Java cache emptied: 17848102 bytes
->FireFox cache emptied: 754464224 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 715 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 829132 bytes
RecycleBin emptied: 36413 bytes

Total Files Cleaned = 752,00 mb

[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Janca
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb

OTL by OldTimer - Version 3.2.41.0 log created on 04242012_161906

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

#10 Příspěvek od **vyosek** » 24 dub 2012 15:36

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

Doporucuji provest defragmentaci disku

Nejjednodussi (ale nejmene ucinny) zpusob je pomoci utility ve windowsech
- Kliknete na Tento pocitac, dale na disk kliknete pravym tlacitkem, vyberte Vlastnosti
- prepnete se do zalozky Nastroje
- Nyni vidite pomucky Defragmentace - spustte ji kliknutim na Defragmentovat
- Toto provedte se vsemi disky
Dalsi moznosti (a mnou doporucenou) je pres programek Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
- Program stahnete, nainstalujte (dejte fajfku pryc u yahoo toolbaru) a spustte
- Kliknete na Analyzovat
- Pokud je ve sloupci Fragmentováno vice jak 5%, doporucuji provest defragmentaci (klik na Defragmentovat)
- Postup provedte se vsemi disky
Posledni moznost je pres jednoduchy programek JKDefrag http://www.stahuj.centrum.cz/utility_a_ ... /jkdefrag/
- Vyhodou programku je, ze se neinstaluje
- Staci tedy jen stahnout dle verze vaseho OS a rozbalit
- Nasledne spustit pomoci souboru JKDefrag pripadne JKDefrag64
- Probehne analyza disku a nasledne i defragmentace

Napiste co PC

jack68 · #11 Příspěvek od **jack68** » 24 dub 2012 15:55

asi bude nutny reinstal. Pocitac je stale zabrzdeny.Kliknu napr. na avast a otevira se cca 3minuty
Vase kroky jsem prosel krome defrag. ta stale bezi

Doplneni
Prikladam obr, ktery se mi zobrazil potreti za hodinu
http://leteckaposta.cz/476168623

#12 Příspěvek od **vyosek** » 24 dub 2012 16:10

Prozkoumame co nam to dela

Navod dle kolegy

Mc_Murphy píše: Stáhni CrystalDisk Info: http://www.studna.cz/crystaldiskinfo-p-11601.html
Nainstaluj ho, spusť a přes Úpravy >> Kopírovat sem vlož log.

Pouzijte WhoCrash dle kolegy

Roli píše:použij WhoCrashed

po spuštění klikni na Analyze,

aplikace po chvilce vytvoří zprávu o příčině pádu, kterou mi sem nakopíruj.

jack68 · #13 Příspěvek od **jack68** » 24 dub 2012 16:31

diky za snahu

--------------------------------------------------------------------------------
Welcome to WhoCrashed (HOME EDITION) v 3.04
--------------------------------------------------------------------------------

This program checks for drivers which have been crashing your computer. If your computer has displayed a blue screen of death, suddenly rebooted or shut down then this program will help you find the root cause and possibly a solution.

Whenever a computer suddenly reboots without displaying any notice or blue screen of death, the first thing that is often thought about is a hardware failure. In reality, on Windows most crashes are caused by malfunctioning device drivers and kernel modules. In case of a kernel error, many computers do not show a blue screen unless they are configured for this. Instead these systems suddenly reboot without any notice.

This program will analyze your crash dumps with the single click of a button. It will tell you what drivers are likely to be responsible for crashing your computer. If will report a conclusion which offers suggestions on how to proceed in any situation while the analysis report will display internet links which will help you further troubleshoot any detected problems.

To obtain technical support visit www.resplendence.com/support

Click here to check if you have the latest version or if an update is available.

Just click the Analyze button for a comprehensible report ...

--------------------------------------------------------------------------------
Home Edition Notice
--------------------------------------------------------------------------------

This version of WhoCrashed is free for use at home only. If you would like to use this software at work or in a commercial environment you should get the professional edition of WhoCrashed which also allows analysis of crashdumps on remote drives and computers on the network and offers a range of additional features.

Click here for more information on the professional edition.
Click here to buy the the professional edition of WhoCrashed.

--------------------------------------------------------------------------------
System Information (local)
--------------------------------------------------------------------------------

computer name: JANCA-PC
windows version: Windows 7 , 6.1, build: 7600
windows dir: C:\Windows
CPU: GenuineIntel Intel(R) Core(TM) i3 CPU M 350 @ 2.27GHz Intel586, level: 6
4 logical processors, active mask: 15
RAM: 3133730816 total
VM: 2147352576, free: 1967718400

--------------------------------------------------------------------------------
Crash Dump Analysis
--------------------------------------------------------------------------------

Crash dump directory: C:\Windows\Minidump

Crash dumps are enabled on your computer.

On Tue 24.4.2012 14:56:30 GMT your computer crashed
crash dump file: C:\Windows\Minidump\042412-24741-01.dmp
This was probably caused by the following module: iastor.sys (iaStor+0x3D1FB)
Bugcheck code: 0xD1 (0x34, 0x2, 0x0, 0xFFFFFFFF8B0C31FB)
Error: DRIVER_IRQL_NOT_LESS_OR_EQUAL
file path: C:\Windows\system32\drivers\iastor.sys
product: Intel Matrix Storage Manager driver
company: Intel Corporation
description: Intel Matrix Storage Manager driver - ia32
Bug check description: This indicates that a kernel-mode driver attempted to access pageable memory at a process IRQL that was too high.
This appears to be a typical software driver bug and is not likely to be caused by a hardware problem.
A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: iastor.sys (Intel Matrix Storage Manager driver - ia32, Intel Corporation).
Google query: iastor.sys Intel Corporation DRIVER_IRQL_NOT_LESS_OR_EQUAL

On Tue 24.4.2012 14:56:30 GMT your computer crashed
crash dump file: C:\Windows\memory.dmp
This was probably caused by the following module: iastor.sys (iaStor+0x3D1FB)
Bugcheck code: 0xD1 (0x34, 0x2, 0x0, 0xFFFFFFFF8B0C31FB)
Error: DRIVER_IRQL_NOT_LESS_OR_EQUAL
file path: C:\Windows\system32\drivers\iastor.sys
product: Intel Matrix Storage Manager driver
company: Intel Corporation
description: Intel Matrix Storage Manager driver - ia32
Bug check description: This indicates that a kernel-mode driver attempted to access pageable memory at a process IRQL that was too high.
This appears to be a typical software driver bug and is not likely to be caused by a hardware problem.
A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: iastor.sys (Intel Matrix Storage Manager driver - ia32, Intel Corporation).
Google query: iastor.sys Intel Corporation DRIVER_IRQL_NOT_LESS_OR_EQUAL

--------------------------------------------------------------------------------
Conclusion
--------------------------------------------------------------------------------

2 crash dumps have been found and analyzed. A third party driver has been identified to be causing system crashes on your computer. It is strongly suggested that you check for updates for these drivers on their company websites. Click on the links below to search with Google for updates for these drivers:

iastor.sys (Intel Matrix Storage Manager driver - ia32, Intel Corporation)

If no updates for these drivers are available, try searching with Google on the names of these drivers in combination the errors that have been reported for these drivers and include the brand and model name of your computer as well in the query. This often yields interesting results from discussions from users who have been experiencing similar problems.

Read the topic general suggestions for troubleshooting system crashes for more information.

Note that it's not always possible to state with certainty whether a reported driver is actually responsible for crashing your system or that the root cause is in another module. Nonetheless it's suggested you look for updates for the products that these drivers belong to and regularly visit Windows update or enable automatic updates for Windows. In case a piece of malfunctioning hardware is causing trouble, a search with Google on the bug check errors together with the model name and brand of your computer may help you investigate this further.

----------------------------------------------------------------------------
CrystalDiskInfo 4.6.1 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Ultimate Edition [6.1 Build 7600] (x86)
Date : 2012/04/24 17:29:08

-- Controller Map ----------------------------------------------------------
+ Intel(R) PCHM SATA AHCI Controller 4 Port [ATA]
- ST9500420AS
- Optiarc DVD RW AD-7580S
+ AVCC4GOL IDE Controller [SCSI]
- ZCJ TUB8T2V8TEF SCSI CdRom Device

-- Disk List ---------------------------------------------------------------
(1) ST9500420AS : 500.1 GB [0/0/0, pd1]

----------------------------------------------------------------------------
(1) ST9500420AS
----------------------------------------------------------------------------
Model : ST9500420AS
Firmware : 0002SDM1
Serial Number : 5VJ3ZKC9
Disk Size : 500.1 GB (8.4/137.4/500.1)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : SATA/300
Power On Hours : 80 hod.
Power On Count : 1537 krát
Temparature : 38 C (100 F)
Health Status : Pozor
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 8080h [ON]
AAM Level : D000h [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 _89 _87 __6 000001C88801 Počet chyb čtení
03 _97 _97 _85 000000000000 Čas na roztočení ploten
04 _99 _99 _20 000000000637 Počet spuštění/zastavení
05 100 100 _36 000000000000 Počet přemapovaných sektorů
07 _72 _60 _30 0001011ACACD Počet chybných hledání
09 100 100 __0 000000000050 Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _99 _37 _20 000000000601 Počet cyklů zapnutí zařízení
B8 100 100 _99 000000000000 Ukončovacích chyb
BB __1 __1 __0 000000000500 Ohlášeno neopravitelných chyb
BC 100 _99 __0 00000000000B Časový limit příkazu
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _62 _38 _45 004326240026 Teplota toku vzduchu
BF 100 100 __0 000000000038 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000000018 Počet vypnutí disku
C1 _91 _91 __0 000000004B75 Počet cyklů načítání/vymazání
C2 _38 _62 __0 001100000026 Teplota
C3 _50 _40 __0 000001C88801 Počet oprav chybného čtení
C5 100 100 __0 000000000002 Počet podezřelých sektorů
C6 100 100 __0 000000000002 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
F0 100 253 __0 4207000002D2 Čas nastavování hlaviček - v hodinách
F1 100 253 __0 0000658072CE Total LBAs Written
F2 100 253 __0 0000C87837B5 Total LBAs Read
FE 100 100 __0 000000000000 Ochrana proti pádu

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 3556 3556 4A33 5A4B 4339
020: 0000 8000 0004 3030 3032 4D31 4D31 5354 3935 3030
030: 3432 3041 5320 2020 2020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 0706 0706 0000 0048 0048
080: 01F0 0029 746B 7F09 61E3 BC09 BC09 61E3 407F 0033
090: 0033 8080 FFFE 0000 D000 0000 0000 0000 0000 0000
100: 6030 3A38 0000 0000 0000 0000 0000 0000 5000 C500
110: 217A 7073 0000 0000 0000 0000 0000 0000 0000 401E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 6030
130: 3A38 6030 3A38 2020 0002 0100 0100 5000 3C06 3C0A
140: 0000 0078 0000 0008 0000 001F 001F 0280 0000 0000
150: 0008 0000 0000 0000 0000 0000 0000 0000 3E00 8000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 103F 103F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 1010 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 BEA5

#14 Příspěvek od **vyosek** » 24 dub 2012 16:45

Heh, no tak problem je v disku, uz odesel do kremikoveho nebe...

Bohuzel nezbyde nez zazalohovat data a koupit novy a provest instalaci windows

jack68 · #15 Příspěvek od **jack68** » 24 dub 2012 18:19

dekuji i tak si bonus zaslouzite.napiste mi prosim do PM kolik se posila.

Dale jsem se chtel zeptat nemuze to delat WIFI nebo BT???
Kdyz jsem vypl wifi i BT tak jsem krasne a rychle zalohoval disk na externi.Ani jednou se nesekl a mohl jsem otvirat libovolny pocet oken.
Jak jsem soucasne zapl pres fn a f2 bt wifi tak se pocitac kousl.Mozna jen souhra nahod.Ja jen abych vedel co reklamovat

)

VIRY.CZ

Problem s pc-prosim o kontrolu

Problem s pc-prosim o kontrolu

Re: Problem s pc-prosim o kontrolu

Re: Problem s pc-prosim o kontrolu

Re: Problem s pc-prosim o kontrolu

Re: Problem s pc-prosim o kontrolu

Re: Problem s pc-prosim o kontrolu

Re: Problem s pc-prosim o kontrolu

Re: Problem s pc-prosim o kontrolu

Re: Problem s pc-prosim o kontrolu

Re: Problem s pc-prosim o kontrolu

Re: Problem s pc-prosim o kontrolu

Re: Problem s pc-prosim o kontrolu

Re: Problem s pc-prosim o kontrolu

Re: Problem s pc-prosim o kontrolu

Re: Problem s pc-prosim o kontrolu