Prosím o kontrolu logu - problém se zvukem, Win8

Eco · Příspěvekod **Eco** » 22 čer 2014 23:31

Dobrý den,
Nedávno jsem si do svého systému omylem stáhla nějaký speciální balíček malware, spyware a bůhvíčeho dalšího. Pomocí Advanced System Care a SAS se mi podařila většina odstranit, ale přetrvává problém se zvukem - občas hraje, ale pak se nevímco stane a najednou mi reproduktory v notebooku zvuk nepřehrávají a při pokusu o test zvuku v nastavení mi vyskakuje okno, které mi sděluje, že reproduktory používá jiná aplikace, přestože mám vše, co by mohlo zvuk přehrávat, vypnuté. Zabírá jedině 1-2x restart. Prosím vás tedy o kontrolu logu. Děkuji převelicekrát :))

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:26:33, on 22. 6. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16921)

Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 6\Monitor.exe
C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe
C:\Program Files (x86)\IObit\Smart Defrag 3\SmartDefrag.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\SqueakyChocolate\UpdateChecker\UpdateCheckerApp.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Users\Terka\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Terka\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT1750559
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.3\iobitappsToolbarIE.dll
R3 - URLSearchHook: BS Player ControlBar Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files (x86)\BS_Player_ControlBar\prxtbBS_P.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.3\iobitappsToolbarIE.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Ads Removal - {9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} - C:\Program Files (x86)\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.dll
O2 - BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\ADVANC~1\BROWER~1\ASCPlugin_Protection.dll
O2 - BHO: BS Player ControlBar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files (x86)\BS_Player_ControlBar\prxtbBS_P.dll
O3 - Toolbar: BS Player ControlBar Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files (x86)\BS_Player_ControlBar\prxtbBS_P.dll
O3 - Toolbar: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\9.3\iobitappsToolbarIE.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [IObit Malware Fighter] "C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe" /autostart
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SearchSettings] "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"
O4 - HKCU\..\Run: [Advanced SystemCare 6] "C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Terka\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Terka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [UpdateChecker] C:\Program Files (x86)\SqueakyChocolate\UpdateChecker\UpdateCheckerApp.exe
O4 - HKCU\..\Run: [BackgroundContainerV2] "C:\Windows\SysWOW64\Rundll32.exe" "C:\Users\Terka\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll",DllRun
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Global Startup: AsusVibeLauncher.lnk = C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service - Flexera Software LLC - C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: InstallShield Licensing Service - Macrovision - C:\Program Files (x86)\Common Files\InstallShield Shared\Service\InstallShield Licensing Service.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: NitroPDFReaderDriverCreatorReadSpool3 (NitroReaderDriverReadSpool3) - Nitro PDF Software - C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files (x86)\PANDORA.TV\PanService\KMPService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Toolbar Service (TBSrv) - ClientConnect Ltd. - C:\Program Files (x86)\Tbccint\ToolbarService\ToolbarService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

--
End of file - 12630 bytes

Reklama

Příspěvekod **jaro3** » 23 čer 2014 10:35

Advanced System Care bych odinstaloval , spíš škodí než pomáhá..

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.

Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner (by Xplode)
http://www.bleepingcomputer.com/download/adwcleaner/

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

Stáhni si Malwarebytes' Anti-Malware
- Při instalaci odeber zatržítko u „Povolit bezplatnou zkušební verzi Malwarebytes' Anti-Malware Premium“
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a klikni na Skenovat nyní a
- po proběhnutí programu se ti objeví hláška vpravo dole tak klikni na b] Kopírovat do schránky [/b]a a vlož sem celý log.

- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).

Pokud budou problémy , spusť v nouz. režimu.

Eco · Příspěvekod **Eco** » 23 čer 2014 21:13

Zdravím a děkuji za rychlou odezvu :)

Zde je log z AdwCleaneru

# AdwCleaner v3.213 - Report created 23/06/2014 at 20:39:34
# Updated 23/06/2014 by Xplode
# Operating System : Windows 8 (64 bits)
# Username :
# Running from : C:\Users\Terka\Desktop\adwcleaner_3.213.exe
# Option : Scan

***** [ Services ] *****

Service Found : Application Updater
Service Found : TBSrv

***** [ Files / Folders ] *****

File Found : C:\END
File Found : C:\Windows\System32\roboot64.exe
Folder Found : C:\Program Files (x86)\Application Updater
Folder Found : C:\Program Files (x86)\BS_Player_ControlBar
Folder Found : C:\Program Files (x86)\Common Files\Spigot
Folder Found : C:\Program Files (x86)\Conduit
Folder Found : C:\Program Files (x86)\IObit Apps Toolbar
Folder Found : C:\Program Files (x86)\SmartTweak
Folder Found : C:\Program Files (x86)\Tbccint
Folder Found : C:\ProgramData\Conduit
Folder Found : C:\ProgramData\RegClean
Folder Found : C:\Users\Terka\AppData\Local\Conduit
Folder Found : C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj
Folder Found : C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Folder Found : C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp
Folder Found : C:\Users\Terka\AppData\LocalLow\BS_Player_ControlBar
Folder Found : C:\Users\Terka\AppData\LocalLow\Conduit
Folder Found : C:\Users\Terka\AppData\LocalLow\Search Settings
Folder Found : C:\Users\Terka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software
Folder Found : C:\Users\Terka\AppData\Roaming\OpenCandy
Folder Found : C:\Users\Terka\AppData\Roaming\pdfforge

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Found : HKCU\Software\APN PIP
Key Found : HKCU\Software\AppDataLow\Software\BackgroundContainer
Key Found : HKCU\Software\AppDataLow\Software\BS_Player_ControlBar
Key Found : HKCU\Software\AppDataLow\Software\Conduit
Key Found : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Found : HKCU\Software\AppDataLow\Software\Search Settings
Key Found : HKCU\Software\AppDataLow\Software\SmartBar
Key Found : HKCU\Software\AppDataLow\Toolbar
Key Found : HKCU\Software\BI
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}
Key Found : HKCU\Software\Popajar
Key Found : HKCU\Software\Search Settings
Key Found : HKCU\Software\smarttweak
Key Found : HKCU\Software\Softonic
Key Found : HKCU\Software\Tbccint_HKLM
Key Found : [x64] HKCU\Software\APN PIP
Key Found : [x64] HKCU\Software\BI
Key Found : [x64] HKCU\Software\Conduit
Key Found : [x64] HKCU\Software\Popajar
Key Found : [x64] HKCU\Software\Search Settings
Key Found : [x64] HKCU\Software\smarttweak
Key Found : [x64] HKCU\Software\Softonic
Key Found : [x64] HKCU\Software\Tbccint_HKLM
Key Found : HKLM\Software\Application Updater
Key Found : HKLM\Software\BS_Player_ControlBar
Key Found : HKLM\SOFTWARE\Classes\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{055DD326-956C-4827-9467-A172509E81B3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{69A018B2-3C57-450D-B960-EC392BC6D1C0}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A1B07FEC-B597-4850-9988-C2AE41EF85B4}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{055DD326-956C-4827-9467-A172509E81B3}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IECT1750559
Key Found : HKLM\Software\PIP
Key Found : HKLM\Software\Search Settings
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{03EB0E9C-7A91-4381-A220-9B52B641CDB1}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}]
Value Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [BackgroundContainerV2]
Value Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [UpdateChecker]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{03EB0E9C-7A91-4381-A220-9B52B641CDB1}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SearchSettings]
Value Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{03EB0E9C-7A91-4381-A220-9B52B641CDB1}]

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16921

Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://search.conduit.com?SearchSource= ... =CT1750559

-\\ Google Chrome v35.0.1916.153

[ File : C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Found [Extension] : gkcefkcdkepgkpbgncjchhbjgoanleod
Found [Extension] : hbcennhacfaagdopikcegfcobcadeocj
Found [Extension] : icdlfehblmklkikfigmjhbmmpmkmpooj
Found [Extension] : mhkaekfpcppmmioggniknbnbdbcigpkk
Found [Extension] : pfndaklgolladniicklehhancnlgocpp

*************************

AdwCleaner[R0].txt - [6670 octets] - [23/06/2014 20:39:34]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [6730 octets] ##########

Eco · Příspěvekod **Eco** » 23 čer 2014 21:15

A zde posílám log z Malwarebytes' Anti-Malware

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 23. 6. 2014
Scan Time: 21:00:07
Logfile: Malware výsledek.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.06.23.12
Rootkit Database: v2014.06.20.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 8
CPU: x64
File System: NTFS
User: Terka

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 313401
Time Elapsed: 10 min, 56 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 4
PUP.Optional.Spigot.A, C:\Program Files (x86)\Application Updater\APPLICATIONUPDATER.EXE, 2236, , [a34581faa9d267cff934e2a47d8407f9]
PUP.Optional.SqueakyChocolate.A, C:\Program Files (x86)\SqueakyChocolate\UpdateChecker\UPDATECHECKERAPP.EXE, 3456, , [10d83546bbc0be786fee8167b74cc53b]
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\SEARCHSETTINGS.EXE, 3920, , [20c80873c0bbdf57e7cc6c2e0af8926e]
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\SEARCHSETTINGS64.EXE, 3172, , [20c80873c0bbdf57e7cc6c2e0af8926e]

Modules: 9
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth183.dll, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth183.dll, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth183.dll, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth183.dll, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth183.dll, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth183.dll, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth183.dll, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth183.dll, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth183.dll, , [20c80873c0bbdf57e7cc6c2e0af8926e],

Registry Keys: 8
PUP.Optional.Spigot.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Application Updater, , [a34581faa9d267cff934e2a47d8407f9],
PUP.Optional.Spigot.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\hbcennhacfaagdopikcegfcobcadeocj, , [28c09dde5922181e91d114a0e022758b],
PUP.Optional.Spigot.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\icdlfehblmklkikfigmjhbmmpmkmpooj, , [45a3b6c5324953e342217c38fb07f40c],
PUP.Optional.Spigot.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\mhkaekfpcppmmioggniknbnbdbcigpkk, , [af390d6e9cdf6acc1e462b8900024eb2],
PUP.Optional.Spigot.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\pfndaklgolladniicklehhancnlgocpp, , [d6126516e89362d4afb602b20200ee12],
PUP.Optional.Softonic.A, HKU\S-1-5-21-3152794667-1888837929-3469490325-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SOFTONIC\Universal Downloader, , [27c1f784007bdd5962fa704a1ee431cf],
PUP.Optional.Conduit.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IECT1750559, , [8662f388512a65d136334c44b54dfc04],
PUP.Optional.SqueakyChocolate.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\SqueakyChocolate, LLC UpdateChecker, , [5296413a6b105adc1167088841c107f9],

Registry Values: 4
PUP.Optional.Spigot.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\SHAREDDLLS|C:\PROGRAM FILES (X86)\APPLICATION UPDATER\APPLICATIONUPDATER.EXE, 1, , [a34581faa9d267cff934e2a47d8407f9]
PUP.Optional.SqueakyChocolate.A, HKU\S-1-5-21-3152794667-1888837929-3469490325-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|UpdateChecker, C:\Program Files (x86)\SqueakyChocolate\UpdateChecker\UpdateCheckerApp.exe, , [10d83546bbc0be786fee8167b74cc53b]
PUP.Optional.Spigot.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\SHAREDDLLS|C:\PROGRAM FILES (X86)\COMMON FILES\SPIGOT\SEARCH SETTINGS\SEARCHSETTINGS.EXE, 1, , [20c80873c0bbdf57e7cc6c2e0af8926e]
PUP.Optional.Spigot.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|SearchSettings, "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe", , [20c80873c0bbdf57e7cc6c2e0af8926e]

Registry Data: 1
PUP.Optional.Conduit, HKU\S-1-5-21-3152794667-1888837929-3469490325-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://search.conduit.com?SearchSource= ... =CT1750559, Good: (http://www.google.com), Bad: (http://search.conduit.com?SearchSource= ... =CT1750559),,[2bbd0774daa13501b89b8102e91b9a66]

Folders: 20
PUP.Optional.OpenCandy, C:\Users\Terka\AppData\Roaming\OPENCANDY, , [1acebdbeec8fd660a638ade246bc55ab],
PUP.Optional.OpenCandy, C:\Users\Terka\AppData\Roaming\OPENCANDY\5928AD9A6D0B4ADBA4B59FB5A4E7D85B, , [1acebdbeec8fd660a638ade246bc55ab],
PUP.Optional.OpenCandy, C:\Users\Terka\AppData\Roaming\OPENCANDY\6BB76E49F0DA4ADB937763D2EB945D61, , [1acebdbeec8fd660a638ade246bc55ab],
PUP.Optional.OpenCandy, C:\Users\Terka\AppData\Roaming\OPENCANDY\8625536932CA45EFB5E448E99DB7042A, , [1acebdbeec8fd660a638ade246bc55ab],
PUP.Optional.OpenCandy, C:\Users\Terka\AppData\Roaming\OPENCANDY\OpenCandy_8625536932CA45EFB5E448E99DB7042A, , [1acebdbeec8fd660a638ade246bc55ab],
PUP.Optional.Conduit.A, C:\ProgramData\Conduit\IE, , [8662f388512a65d136334c44b54dfc04],
PUP.Optional.Conduit.A, C:\ProgramData\Conduit\IE\CT1750559, , [8662f388512a65d136334c44b54dfc04],
PUP.Optional.SqueakyChocolate.A, C:\Program Files (x86)\SQUEAKYCHOCOLATE\UPDATECHECKER, , [5296413a6b105adc1167088841c107f9],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\USER DATA\Default\EXTENSIONS\ICDLFEHBLMKLKIKFIGMJHBMMPMKMPOOJ, , [a7417704ff7cfb3b2a6a157f6e94c63a],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\USER DATA\Default\EXTENSIONS\ICDLFEHBLMKLKIKFIGMJHBMMPMKMPOOJ\1.3_1, , [a7417704ff7cfb3b2a6a157f6e94c63a],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\USER DATA\Default\EXTENSIONS\ICDLFEHBLMKLKIKFIGMJHBMMPMKMPOOJ\1.3_1\css, , [a7417704ff7cfb3b2a6a157f6e94c63a],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\USER DATA\Default\EXTENSIONS\ICDLFEHBLMKLKIKFIGMJHBMMPMKMPOOJ\1.3_1\Img, , [a7417704ff7cfb3b2a6a157f6e94c63a],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\USER DATA\Default\EXTENSIONS\PFNDAKLGOLLADNIICKLEHHANCNLGOCPP, , [1bcde09bb0cb22149105eea6b84a9e62],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\USER DATA\Default\EXTENSIONS\PFNDAKLGOLLADNIICKLEHHANCNLGOCPP\1.0_1, , [1bcde09bb0cb22149105eea6b84a9e62],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\SEARCH SETTINGS, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\SEARCH SETTINGS\Lang, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\SEARCH SETTINGS\Res, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Users\Terka\AppData\Local\Google\Chrome\USER DATA\Default\EXTENSIONS\HBCENNHACFAAGDOPIKCEGFCOBCADEOCJ, , [e107daa11c5fbc7af80b67378f73ca36],
PUP.Optional.Spigot.A, C:\Users\Terka\AppData\Local\Google\Chrome\USER DATA\Default\EXTENSIONS\HBCENNHACFAAGDOPIKCEGFCOBCADEOCJ\1.1_0, , [e107daa11c5fbc7af80b67378f73ca36],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\GC, , [17d1ea9164176bcb5000f8abe2208e72],

Files: 75
PUP.Optional.Spigot.A, C:\Program Files (x86)\Application Updater\APPLICATIONUPDATER.EXE, , [a34581faa9d267cff934e2a47d8407f9],
Trojan.Agent.CK, C:\Users\Terka\Documents\Downloads\photoshop_cs4_keygen.zip, , [22c6027933488fa72b3c4790b150d52b],
PUP.Optional.Spigot.A, C:\Users\Terka\Documents\Downloads\YTDSetup.exe, , [78705f1cbac18caa039130f645bb748c],
PUP.Optional.OpenCandy, C:\Users\Terka\Downloads\mumble-1.2.4.exe, , [5f894338e39880b60243b3f58e76946c],
PUP.Optional.BundleInstaller.A, C:\Users\Terka\Downloads\Stream in HD.exe, , [f9efc7b45a215fd771b01e2c946da060],
PUP.Optional.Conduit, C:\Users\Terka\Downloads\bsplayer266.1075.exe, , [b43496e54635af878c669b12be4607f9],
PUP.Optional.Conduit.A, C:\Users\Terka\AppData\Local\Conduit\CT1750559\BS_Player_ControlBarAutoUpdateHelper.exe, , [28c004778bf0023450b1093717e927d9],
PUP.Optional.Conduit.A, C:\Users\Terka\AppData\Local\Conduit\CT1750559\BS_Player_ControlBarToolbarHelper.exe, , [de0af586b3c8142254ad08381ee20ff1],
PUP.Optional.Spigot.A, C:\Windows\Installer\59ec5cfd.msi, , [40a8bfbcb0cbd56168c6f690857c07f9],
PUP.Optional.PCPerformer.A, C:\Windows\System32\roboot64.exe, , [2eba84f76318ea4ce7b1289d2ad837c9],
PUP.Optional.SqueakyChocolate.A, C:\Program Files (x86)\SqueakyChocolate\UpdateChecker\UPDATECHECKERAPP.EXE, , [10d83546bbc0be786fee8167b74cc53b],
PUP.Optional.OpenCandy, C:\Users\Terka\AppData\Roaming\OpenCandy\5928AD9A6D0B4ADBA4B59FB5A4E7D85B\SmileysWeLove_SetupS_cdn.exe, , [1acebdbeec8fd660a638ade246bc55ab],
PUP.Optional.OpenCandy, C:\Users\Terka\AppData\Roaming\OpenCandy\6BB76E49F0DA4ADB937763D2EB945D61\avg_tuht_stf_cs_2014_206_CZ.exe, , [1acebdbeec8fd660a638ade246bc55ab],
PUP.Optional.Conduit.A, C:\ProgramData\Conduit\IE\CT1750559\configutaion.json, , [8662f388512a65d136334c44b54dfc04],
PUP.Optional.Conduit.A, C:\ProgramData\Conduit\IE\CT1750559\SetupIcon.ico, , [8662f388512a65d136334c44b54dfc04],
PUP.Optional.Conduit.A, C:\ProgramData\Conduit\IE\CT1750559\UninstallerUI.exe, , [8662f388512a65d136334c44b54dfc04],
PUP.Optional.SqueakyChocolate.A, C:\Program Files (x86)\SqueakyChocolate\UpdateChecker\System.Net.Json.dll, , [5296413a6b105adc1167088841c107f9],
PUP.Optional.SqueakyChocolate.A, C:\Program Files (x86)\SqueakyChocolate\UpdateChecker\uninstall.exe, , [5296413a6b105adc1167088841c107f9],
PUP.Optional.SqueakyChocolate.A, C:\Program Files (x86)\SqueakyChocolate\UpdateChecker\UpdateCheckerApp.exe.config, , [5296413a6b105adc1167088841c107f9],
PUP.Optional.SqueakyChocolate.A, C:\Program Files (x86)\SqueakyChocolate\UpdateChecker\UpdateNotifier.exe, , [5296413a6b105adc1167088841c107f9],
PUP.Optional.SqueakyChocolate.A, C:\Program Files (x86)\SqueakyChocolate\UpdateChecker\UpdateNotifier.exe.config, , [5296413a6b105adc1167088841c107f9],
PUP.Optional.SqueakyChocolate.A, C:\Program Files (x86)\SqueakyChocolate\UpdateChecker\UpdaterLibrary.dll, , [5296413a6b105adc1167088841c107f9],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\background.html, , [a7417704ff7cfb3b2a6a157f6e94c63a],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\background.js, , [a7417704ff7cfb3b2a6a157f6e94c63a],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\config.json, , [a7417704ff7cfb3b2a6a157f6e94c63a],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\dea-128.png, , [a7417704ff7cfb3b2a6a157f6e94c63a],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\dea-48.png, , [a7417704ff7cfb3b2a6a157f6e94c63a],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\empty-favicon.ico, , [a7417704ff7cfb3b2a6a157f6e94c63a],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\jquery.js, , [a7417704ff7cfb3b2a6a157f6e94c63a],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\manifest.json, , [a7417704ff7cfb3b2a6a157f6e94c63a],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\newtab.html, , [a7417704ff7cfb3b2a6a157f6e94c63a],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\newtab.js, , [a7417704ff7cfb3b2a6a157f6e94c63a],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\redirect.html, , [a7417704ff7cfb3b2a6a157f6e94c63a],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\redirect.js, , [a7417704ff7cfb3b2a6a157f6e94c63a],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\util.js, , [a7417704ff7cfb3b2a6a157f6e94c63a],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\css\newtab.css, , [a7417704ff7cfb3b2a6a157f6e94c63a],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\Img\no_thumb.png, , [a7417704ff7cfb3b2a6a157f6e94c63a],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\Img\search-icon.png, , [a7417704ff7cfb3b2a6a157f6e94c63a],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp\1.0_1\amazon-128.png, , [1bcde09bb0cb22149105eea6b84a9e62],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp\1.0_1\amazon-19.png, , [1bcde09bb0cb22149105eea6b84a9e62],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp\1.0_1\amazon-48.png, , [1bcde09bb0cb22149105eea6b84a9e62],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp\1.0_1\background.js, , [1bcde09bb0cb22149105eea6b84a9e62],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp\1.0_1\manifest.json, , [1bcde09bb0cb22149105eea6b84a9e62],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\baidu_ff.xml, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\baidu_ie.xml, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\config.ini, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\searchcom_ff.xml, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\searchcom_ie.xml, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings64.exe, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth183.dll, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\wthx183.dll, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\yahoo_ff.xml, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\yahoo_ie.xml, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\yandextr_ff.xml, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\yandextr_ie.xml, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\yandex_ff.xml, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\yandex_ie.xml, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\Lang\res1031.ini, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\Lang\res1033.ini, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\Lang\res1034.ini, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\Lang\res1036.ini, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\Lang\res1040.ini, , [20c80873c0bbdf57e7cc6c2e0af8926e],
PUP.Optional.Spigot.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj\1.1_0\background.js, , [e107daa11c5fbc7af80b67378f73ca36],
PUP.Optional.Spigot.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj\1.1_0\ebay-128.png, , [e107daa11c5fbc7af80b67378f73ca36],
PUP.Optional.Spigot.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj\1.1_0\ebay-19.png, , [e107daa11c5fbc7af80b67378f73ca36],
PUP.Optional.Spigot.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj\1.1_0\ebay-48.png, , [e107daa11c5fbc7af80b67378f73ca36],
PUP.Optional.Spigot.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj\1.1_0\manifest.json, , [e107daa11c5fbc7af80b67378f73ca36],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\GC\coupons_2.4.crx, , [17d1ea9164176bcb5000f8abe2208e72],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\GC\errorassistant_1.1.crx, , [17d1ea9164176bcb5000f8abe2208e72],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\GC\ErrorAssistant_1.2.crx, , [17d1ea9164176bcb5000f8abe2208e72],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\GC\ErrorAssistant_1.3.crx, , [17d1ea9164176bcb5000f8abe2208e72],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\GC\saamazon_1.0.crx, , [17d1ea9164176bcb5000f8abe2208e72],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\GC\saebay_1.0.crx, , [17d1ea9164176bcb5000f8abe2208e72],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\GC\saebay_1.1.crx, , [17d1ea9164176bcb5000f8abe2208e72],

Physical Sectors: 0
(No malicious items detected)

(end)

Příspěvekod **Orcus** » 24 čer 2014 09:44

- Znovu spusť MbAM a dej Skenovat nyní
- Po proběhnutí programu se ti objeví hláška, tak klikni na „Vše do karantény“ -> „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a ulož na Plochu.
- Zkopíruj sem celý obsah toho logu.

====================================================

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Smazat“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

====================================================

Stáhni si Junkware Removal Tool

na svojí plochu.
Deaktivuj si svůj antivirový program.
Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

====================================================

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

Eco · Příspěvekod **Eco** » 24 čer 2014 21:41

Log z MbAM:

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 24. 6. 2014
Scan Time: 10:48:22
Logfile: výpis z logu MbAM.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.06.24.03
Rootkit Database: v2014.06.23.02
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 8
CPU: x64
File System: NTFS
User: Terka

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 313599
Time Elapsed: 9 min, 2 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 4
PUP.Optional.Spigot.A, C:\Program Files (x86)\Application Updater\APPLICATIONUPDATER.EXE, 2236, Delete-on-Reboot, [1b28611b91ea66d0f04fb9cd7091d030]
PUP.Optional.SqueakyChocolate.A, C:\Program Files (x86)\SqueakyChocolate\UpdateChecker\UPDATECHECKERAPP.EXE, 4812, Delete-on-Reboot, [c77cbebe8fecba7c0b96e008bf44eb15]
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\SEARCHSETTINGS.EXE, 5528, Delete-on-Reboot, [8cb77b011863c96d9a4dedadeb17847c]
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\SEARCHSETTINGS64.EXE, 5956, Delete-on-Reboot, [8cb77b011863c96d9a4dedadeb17847c]

Modules: 9
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth183.dll, Delete-on-Reboot, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth183.dll, Delete-on-Reboot, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth183.dll, Delete-on-Reboot, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth183.dll, Delete-on-Reboot, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth183.dll, Delete-on-Reboot, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth183.dll, Delete-on-Reboot, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth183.dll, Delete-on-Reboot, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth183.dll, Delete-on-Reboot, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth183.dll, Delete-on-Reboot, [8cb77b011863c96d9a4dedadeb17847c],

Registry Keys: 8
PUP.Optional.Spigot.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Application Updater, Quarantined, [1b28611b91ea66d0f04fb9cd7091d030],
PUP.Optional.Spigot.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\hbcennhacfaagdopikcegfcobcadeocj, Quarantined, [172c83f9e39885b1cadc991b778b4fb1],
PUP.Optional.Spigot.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\icdlfehblmklkikfigmjhbmmpmkmpooj, Quarantined, [a49f502c5f1c51e5ccdb7a3a57ab16ea],
PUP.Optional.Spigot.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\mhkaekfpcppmmioggniknbnbdbcigpkk, Quarantined, [152eed8f94e7cb6b4c5c04b06e94ad53],
PUP.Optional.Spigot.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\pfndaklgolladniicklehhancnlgocpp, Quarantined, [1b288fed106ba690d2d7961eeb1755ab],
PUP.Optional.Softonic.A, HKU\S-1-5-21-3152794667-1888837929-3469490325-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SOFTONIC\Universal Downloader, Quarantined, [ea5968141c5f96a018886852b34f46ba],
PUP.Optional.Conduit.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IECT1750559, Quarantined, [c083c2ba1467db5bfe9f266aa65c9d63],
PUP.Optional.SqueakyChocolate.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\SqueakyChocolate, LLC UpdateChecker, Quarantined, [cf746b11c0bbc373b6f6810f8c7605fb],

Registry Values: 4
PUP.Optional.Spigot.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\SHAREDDLLS|C:\PROGRAM FILES (X86)\APPLICATION UPDATER\APPLICATIONUPDATER.EXE, 1, Quarantined, [1b28611b91ea66d0f04fb9cd7091d030]
PUP.Optional.SqueakyChocolate.A, HKU\S-1-5-21-3152794667-1888837929-3469490325-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|UpdateChecker, C:\Program Files (x86)\SqueakyChocolate\UpdateChecker\UpdateCheckerApp.exe, Quarantined, [c77cbebe8fecba7c0b96e008bf44eb15]
PUP.Optional.Spigot.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\SHAREDDLLS|C:\PROGRAM FILES (X86)\COMMON FILES\SPIGOT\SEARCH SETTINGS\SEARCHSETTINGS.EXE, 1, Quarantined, [8cb77b011863c96d9a4dedadeb17847c]
PUP.Optional.Spigot.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|SearchSettings, "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe", Quarantined, [8cb77b011863c96d9a4dedadeb17847c]

Registry Data: 1
PUP.Optional.Conduit, HKU\S-1-5-21-3152794667-1888837929-3469490325-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://search.conduit.com?SearchSource= ... =CT1750559, Good: (http://www.google.com), Bad: (http://search.conduit.com?SearchSource= ... =CT1750559),Replaced,[d271522aaad1f1456e50562d32d2a15f]

Folders: 20
PUP.Optional.OpenCandy, C:\Users\Terka\AppData\Roaming\OPENCANDY, Quarantined, [f94ac0bc6714d75f82902b6508fa59a7],
PUP.Optional.OpenCandy, C:\Users\Terka\AppData\Roaming\OPENCANDY\5928AD9A6D0B4ADBA4B59FB5A4E7D85B, Quarantined, [f94ac0bc6714d75f82902b6508fa59a7],
PUP.Optional.OpenCandy, C:\Users\Terka\AppData\Roaming\OPENCANDY\6BB76E49F0DA4ADB937763D2EB945D61, Quarantined, [f94ac0bc6714d75f82902b6508fa59a7],
PUP.Optional.OpenCandy, C:\Users\Terka\AppData\Roaming\OPENCANDY\8625536932CA45EFB5E448E99DB7042A, Quarantined, [f94ac0bc6714d75f82902b6508fa59a7],
PUP.Optional.OpenCandy, C:\Users\Terka\AppData\Roaming\OPENCANDY\OpenCandy_8625536932CA45EFB5E448E99DB7042A, Quarantined, [f94ac0bc6714d75f82902b6508fa59a7],
PUP.Optional.Conduit.A, C:\ProgramData\Conduit\IE, Quarantined, [c083c2ba1467db5bfe9f266aa65c9d63],
PUP.Optional.Conduit.A, C:\ProgramData\Conduit\IE\CT1750559, Quarantined, [c083c2ba1467db5bfe9f266aa65c9d63],
PUP.Optional.SqueakyChocolate.A, C:\Program Files (x86)\SQUEAKYCHOCOLATE\UPDATECHECKER, Delete-on-Reboot, [cf746b11c0bbc373b6f6810f8c7605fb],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\USER DATA\Default\EXTENSIONS\ICDLFEHBLMKLKIKFIGMJHBMMPMKMPOOJ, Quarantined, [6fd43d3f4c2f66d0e5e32c6861a116ea],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\USER DATA\Default\EXTENSIONS\ICDLFEHBLMKLKIKFIGMJHBMMPMKMPOOJ\1.3_1, Quarantined, [6fd43d3f4c2f66d0e5e32c6861a116ea],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\USER DATA\Default\EXTENSIONS\ICDLFEHBLMKLKIKFIGMJHBMMPMKMPOOJ\1.3_1\css, Quarantined, [6fd43d3f4c2f66d0e5e32c6861a116ea],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\USER DATA\Default\EXTENSIONS\ICDLFEHBLMKLKIKFIGMJHBMMPMKMPOOJ\1.3_1\Img, Quarantined, [6fd43d3f4c2f66d0e5e32c6861a116ea],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\USER DATA\Default\EXTENSIONS\PFNDAKLGOLLADNIICKLEHHANCNLGOCPP, Quarantined, [cf74acd0c1ba7fb7ab1f1381ee149967],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\USER DATA\Default\EXTENSIONS\PFNDAKLGOLLADNIICKLEHHANCNLGOCPP\1.0_1, Quarantined, [cf74acd0c1ba7fb7ab1f1381ee149967],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\SEARCH SETTINGS, Delete-on-Reboot, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\SEARCH SETTINGS\Lang, Quarantined, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\SEARCH SETTINGS\Res, Quarantined, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Users\Terka\AppData\Local\Google\Chrome\USER DATA\Default\EXTENSIONS\HBCENNHACFAAGDOPIKCEGFCOBCADEOCJ, Quarantined, [8ab9a2da0a7162d4be79a5f938ca956b],
PUP.Optional.Spigot.A, C:\Users\Terka\AppData\Local\Google\Chrome\USER DATA\Default\EXTENSIONS\HBCENNHACFAAGDOPIKCEGFCOBCADEOCJ\1.1_0, Quarantined, [8ab9a2da0a7162d4be79a5f938ca956b],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\GC, Quarantined, [48fbe19bbdbe9c9a087c584b1be7db25],

Files: 75
PUP.Optional.Spigot.A, C:\Program Files (x86)\Application Updater\APPLICATIONUPDATER.EXE, Delete-on-Reboot, [1b28611b91ea66d0f04fb9cd7091d030],
Trojan.Agent.CK, C:\Users\Terka\Documents\Downloads\photoshop_cs4_keygen.zip, Quarantined, [2122205cd8a34aec8311f4e3748d19e7],
PUP.Optional.Spigot.A, C:\Users\Terka\Documents\Downloads\YTDSetup.exe, Quarantined, [3e05dba1a8d3ce689ff5e14524dcf20e],
PUP.Optional.OpenCandy, C:\Users\Terka\Downloads\mumble-1.2.4.exe, Quarantined, [67dcde9e007b48eee5ccb0f88183e31d],
PUP.Optional.BundleInstaller.A, C:\Users\Terka\Downloads\Stream in HD.exe, Quarantined, [1b288af21f5c2e08161c3b0f56aba858],
PUP.Optional.Conduit, C:\Users\Terka\Downloads\bsplayer266.1075.exe, Quarantined, [87bc6b11ccaf999d9dc1802eef15e818],
PUP.Optional.Conduit.A, C:\Users\Terka\AppData\Local\Conduit\CT1750559\BS_Player_ControlBarAutoUpdateHelper.exe, Quarantined, [0e356814e69536001fe20c34be42ec14],
PUP.Optional.Conduit.A, C:\Users\Terka\AppData\Local\Conduit\CT1750559\BS_Player_ControlBarToolbarHelper.exe, Quarantined, [4ef5196312699f9715ec67d9df21cb35],
PUP.Optional.Spigot.A, C:\Windows\Installer\59ec5cfd.msi, Quarantined, [b093b4c89be0a591162a89fd827faf51],
PUP.Optional.PCPerformer.A, C:\Windows\System32\roboot64.exe, Quarantined, [0d36fa82255637ff8f4d11b40df528d8],
PUP.Optional.SqueakyChocolate.A, C:\Program Files (x86)\SqueakyChocolate\UpdateChecker\UPDATECHECKERAPP.EXE, Delete-on-Reboot, [c77cbebe8fecba7c0b96e008bf44eb15],
PUP.Optional.OpenCandy, C:\Users\Terka\AppData\Roaming\OpenCandy\5928AD9A6D0B4ADBA4B59FB5A4E7D85B\SmileysWeLove_SetupS_cdn.exe, Quarantined, [f94ac0bc6714d75f82902b6508fa59a7],
PUP.Optional.OpenCandy, C:\Users\Terka\AppData\Roaming\OpenCandy\6BB76E49F0DA4ADB937763D2EB945D61\avg_tuht_stf_cs_2014_206_CZ.exe, Quarantined, [f94ac0bc6714d75f82902b6508fa59a7],
PUP.Optional.Conduit.A, C:\ProgramData\Conduit\IE\CT1750559\configutaion.json, Quarantined, [c083c2ba1467db5bfe9f266aa65c9d63],
PUP.Optional.Conduit.A, C:\ProgramData\Conduit\IE\CT1750559\SetupIcon.ico, Quarantined, [c083c2ba1467db5bfe9f266aa65c9d63],
PUP.Optional.Conduit.A, C:\ProgramData\Conduit\IE\CT1750559\UninstallerUI.exe, Quarantined, [c083c2ba1467db5bfe9f266aa65c9d63],
PUP.Optional.SqueakyChocolate.A, C:\Program Files (x86)\SqueakyChocolate\UpdateChecker\System.Net.Json.dll, Quarantined, [cf746b11c0bbc373b6f6810f8c7605fb],
PUP.Optional.SqueakyChocolate.A, C:\Program Files (x86)\SqueakyChocolate\UpdateChecker\uninstall.exe, Quarantined, [cf746b11c0bbc373b6f6810f8c7605fb],
PUP.Optional.SqueakyChocolate.A, C:\Program Files (x86)\SqueakyChocolate\UpdateChecker\UpdateCheckerApp.exe.config, Quarantined, [cf746b11c0bbc373b6f6810f8c7605fb],
PUP.Optional.SqueakyChocolate.A, C:\Program Files (x86)\SqueakyChocolate\UpdateChecker\UpdateNotifier.exe, Quarantined, [cf746b11c0bbc373b6f6810f8c7605fb],
PUP.Optional.SqueakyChocolate.A, C:\Program Files (x86)\SqueakyChocolate\UpdateChecker\UpdateNotifier.exe.config, Quarantined, [cf746b11c0bbc373b6f6810f8c7605fb],
PUP.Optional.SqueakyChocolate.A, C:\Program Files (x86)\SqueakyChocolate\UpdateChecker\UpdaterLibrary.dll, Delete-on-Reboot, [cf746b11c0bbc373b6f6810f8c7605fb],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\background.html, Quarantined, [6fd43d3f4c2f66d0e5e32c6861a116ea],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\background.js, Quarantined, [6fd43d3f4c2f66d0e5e32c6861a116ea],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\config.json, Quarantined, [6fd43d3f4c2f66d0e5e32c6861a116ea],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\dea-128.png, Quarantined, [6fd43d3f4c2f66d0e5e32c6861a116ea],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\dea-48.png, Quarantined, [6fd43d3f4c2f66d0e5e32c6861a116ea],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\empty-favicon.ico, Quarantined, [6fd43d3f4c2f66d0e5e32c6861a116ea],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\jquery.js, Quarantined, [6fd43d3f4c2f66d0e5e32c6861a116ea],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\manifest.json, Quarantined, [6fd43d3f4c2f66d0e5e32c6861a116ea],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\newtab.html, Quarantined, [6fd43d3f4c2f66d0e5e32c6861a116ea],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\newtab.js, Quarantined, [6fd43d3f4c2f66d0e5e32c6861a116ea],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\redirect.html, Quarantined, [6fd43d3f4c2f66d0e5e32c6861a116ea],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\redirect.js, Quarantined, [6fd43d3f4c2f66d0e5e32c6861a116ea],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\util.js, Quarantined, [6fd43d3f4c2f66d0e5e32c6861a116ea],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\css\newtab.css, Quarantined, [6fd43d3f4c2f66d0e5e32c6861a116ea],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\Img\no_thumb.png, Quarantined, [6fd43d3f4c2f66d0e5e32c6861a116ea],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.3_1\Img\search-icon.png, Quarantined, [6fd43d3f4c2f66d0e5e32c6861a116ea],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp\1.0_1\amazon-128.png, Quarantined, [cf74acd0c1ba7fb7ab1f1381ee149967],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp\1.0_1\amazon-19.png, Quarantined, [cf74acd0c1ba7fb7ab1f1381ee149967],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp\1.0_1\amazon-48.png, Quarantined, [cf74acd0c1ba7fb7ab1f1381ee149967],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp\1.0_1\background.js, Quarantined, [cf74acd0c1ba7fb7ab1f1381ee149967],
PUP.Optional.SlickSavings.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp\1.0_1\manifest.json, Quarantined, [cf74acd0c1ba7fb7ab1f1381ee149967],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\baidu_ff.xml, Quarantined, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\baidu_ie.xml, Quarantined, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\config.ini, Quarantined, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\searchcom_ff.xml, Quarantined, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\searchcom_ie.xml, Quarantined, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe, Delete-on-Reboot, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings64.exe, Delete-on-Reboot, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth183.dll, Delete-on-Reboot, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\wthx183.dll, Delete-on-Reboot, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\yahoo_ff.xml, Quarantined, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\yahoo_ie.xml, Quarantined, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\yandextr_ff.xml, Quarantined, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\yandextr_ie.xml, Quarantined, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\yandex_ff.xml, Quarantined, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\yandex_ie.xml, Quarantined, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\Lang\res1031.ini, Quarantined, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\Lang\res1033.ini, Quarantined, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\Lang\res1034.ini, Quarantined, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\Lang\res1036.ini, Quarantined, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\Search Settings\Lang\res1040.ini, Quarantined, [8cb77b011863c96d9a4dedadeb17847c],
PUP.Optional.Spigot.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj\1.1_0\background.js, Quarantined, [8ab9a2da0a7162d4be79a5f938ca956b],
PUP.Optional.Spigot.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj\1.1_0\ebay-128.png, Quarantined, [8ab9a2da0a7162d4be79a5f938ca956b],
PUP.Optional.Spigot.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj\1.1_0\ebay-19.png, Quarantined, [8ab9a2da0a7162d4be79a5f938ca956b],
PUP.Optional.Spigot.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj\1.1_0\ebay-48.png, Quarantined, [8ab9a2da0a7162d4be79a5f938ca956b],
PUP.Optional.Spigot.A, C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj\1.1_0\manifest.json, Quarantined, [8ab9a2da0a7162d4be79a5f938ca956b],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\GC\coupons_2.4.crx, Quarantined, [48fbe19bbdbe9c9a087c584b1be7db25],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\GC\errorassistant_1.1.crx, Quarantined, [48fbe19bbdbe9c9a087c584b1be7db25],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\GC\ErrorAssistant_1.2.crx, Quarantined, [48fbe19bbdbe9c9a087c584b1be7db25],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\GC\ErrorAssistant_1.3.crx, Quarantined, [48fbe19bbdbe9c9a087c584b1be7db25],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\GC\saamazon_1.0.crx, Quarantined, [48fbe19bbdbe9c9a087c584b1be7db25],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\GC\saebay_1.0.crx, Quarantined, [48fbe19bbdbe9c9a087c584b1be7db25],
PUP.Optional.Spigot.A, C:\Program Files (x86)\Common Files\Spigot\GC\saebay_1.1.crx, Quarantined, [48fbe19bbdbe9c9a087c584b1be7db25],

Physical Sectors: 0
(No malicious items detected)

(end)

Eco · Příspěvekod **Eco** » 24 čer 2014 21:43

Log z AdwCleaneru:

# AdwCleaner v3.213 - Report created 24/06/2014 at 11:06:27
# Updated 23/06/2014 by Xplode
# Operating System : Windows 8 (64 bits)
# Username : Terka - NTB-TERKA
# Running from : C:\Users\Terka\Desktop\adwcleaner_3.213.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : TBSrv

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Conduit
Folder Deleted : C:\ProgramData\RegClean
Folder Deleted : C:\Program Files (x86)\Application Updater
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\IObit Apps Toolbar
Folder Deleted : C:\Program Files (x86)\SmartTweak
Folder Deleted : C:\Program Files (x86)\Tbccint
Folder Deleted : C:\Program Files (x86)\BS_Player_ControlBar
Folder Deleted : C:\Program Files (x86)\Common Files\Spigot
Folder Deleted : C:\Users\Terka\AppData\Local\Conduit
Folder Deleted : C:\Users\Terka\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Terka\AppData\LocalLow\Search Settings
Folder Deleted : C:\Users\Terka\AppData\LocalLow\BS_Player_ControlBar
Folder Deleted : C:\Users\Terka\AppData\Roaming\pdfforge
Folder Deleted : C:\Users\Terka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software
File Deleted : C:\END

***** [ Shortcuts ] *****

***** [ Registry ] *****

Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [BackgroundContainerV2]
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{055DD326-956C-4827-9467-A172509E81B3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{055DD326-956C-4827-9467-A172509E81B3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A1B07FEC-B597-4850-9988-C2AE41EF85B4}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{69A018B2-3C57-450D-B960-EC392BC6D1C0}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{03EB0E9C-7A91-4381-A220-9B52B641CDB1}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{03EB0E9C-7A91-4381-A220-9B52B641CDB1}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{03EB0E9C-7A91-4381-A220-9B52B641CDB1}]
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\BI
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Popajar
Key Deleted : HKCU\Software\Search Settings
Key Deleted : HKCU\Software\smarttweak
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\Tbccint_HKLM
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\AppDataLow\Software\BackgroundContainer
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\BS_Player_ControlBar
Key Deleted : HKLM\Software\Application Updater
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\Search Settings
Key Deleted : HKLM\Software\BS_Player_ControlBar

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16921

-\\ Google Chrome v35.0.1916.153

[ File : C:\Users\Terka\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [6850 octets] - [23/06/2014 20:51:30]
AdwCleaner[R1].txt - [5384 octets] - [24/06/2014 11:03:45]
AdwCleaner[S0].txt - [5077 octets] - [24/06/2014 11:06:27]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [5137 octets] ##########

Eco · Příspěvekod **Eco** » 24 čer 2014 21:44

Log z JRT:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 8 x64
Ran by Terka on Łt 24. 06. 2014 at 21:18:08,85
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT1750559
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{8DC28D31-7827-4BDD-ADA3-63F112A625B0}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{D9DFB963-4E6C-43F4-BDF9-598484A55D6D}

~~~ Files

~~~ Folders

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Łt 24. 06. 2014 at 21:26:46,52
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Eco · Příspěvekod **Eco** » 24 čer 2014 21:45

Log z RK:

RogueKiller V9.1.0.0 (x64) [Jun 23 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 8 (6.2.9200 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : Terka [Práva správce]
Mód : Kontrola -- Datum : 06/24/2014 21:35:05

¤¤¤ Škodlivé procesy: : 2 ¤¤¤
[Suspicious.Path] szndesktop.exe -- C:\Users\Terka\AppData\Roaming\Seznam.cz\bin\szndesktop.exe[7] -> SMAZÁNO [TermProc]
[Suspicious.Path] listicka-x64.exe -- C:\Users\Terka\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe[7] -> SMAZÁNO [TermThr]

¤¤¤ ¤¤¤ Záznamy Registrů: : 12 ¤¤¤
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-3152794667-1888837929-3469490325-1002\Software\Microsoft\Windows\CurrentVersion\Run | cz.seznam.software.autoupdate : "C:\Users\Terka\AppData\Roaming\Seznam.cz\szninstall.exe" -c -> NALEZENO
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-3152794667-1888837929-3469490325-1002\Software\Microsoft\Windows\CurrentVersion\Run | cz.seznam.software.szndesktop : "C:\Users\Terka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q -> NALEZENO
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-3152794667-1888837929-3469490325-1002\Software\Microsoft\Windows\CurrentVersion\Run | cz.seznam.software.autoupdate : "C:\Users\Terka\AppData\Roaming\Seznam.cz\szninstall.exe" -c -> NALEZENO
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-3152794667-1888837929-3469490325-1002\Software\Microsoft\Windows\CurrentVersion\Run | cz.seznam.software.szndesktop : "C:\Users\Terka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q -> NALEZENO
[PUM.Policies] (X64) HKEY_USERS\S-1-5-21-3152794667-1888837929-3469490325-1002\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableRegistryTools : 0 -> NALEZENO
[PUM.Policies] (X64) HKEY_USERS\S-1-5-21-3152794667-1888837929-3469490325-1002\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0 -> NALEZENO
[PUM.Policies] (X86) HKEY_USERS\S-1-5-21-3152794667-1888837929-3469490325-1002\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableRegistryTools : 0 -> NALEZENO
[PUM.Policies] (X86) HKEY_USERS\S-1-5-21-3152794667-1888837929-3469490325-1002\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0 -> NALEZENO
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NALEZENO
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NALEZENO
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NALEZENO
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ Soubory : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 0 ¤¤¤

¤¤¤ Antirootkit : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: ST750LM022 HN-M750MBB +++++
--- User ---
[MBR] e698a087d64f61e8eb158319660e2c1c
[BSP] 3d77d578609671081be50e6494934fd7 : Unknown MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x0) [VISIBLE] Offset (sectors): 1 | Size: 2097152 MB
User = LL1 ... OK
User = LL2 ... OK

Příspěvekod **Orcus** » 24 čer 2014 23:03

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva" a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

====================================================

Stáhni si TDSSKiller

Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Pokud se log nevejde do jedné zprávy, rozděl jej na více částí.

Eco · Příspěvekod **Eco** » 25 čer 2014 12:09

RogueKiller V9.1.0.0 (x64) [Jun 23 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 8 (6.2.9200 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : Terka [Práva správce]
Mód : Odebrat -- Datum : 06/25/2014 11:47:56

¤¤¤ Škodlivé procesy: : 3 ¤¤¤
[Suspicious.Path] szndesktop.exe -- C:\Users\Terka\AppData\Roaming\Seznam.cz\bin\szndesktop.exe[7] -> SMAZÁNO [TermProc]
[Suspicious.Path] listicka-x64.exe -- C:\Users\Terka\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe[7] -> SMAZÁNO [TermThr]
[Suspicious.Path] explorer.exe -- C:\Users\Terka\AppData\Roaming\Seznam.cz\bin\16156libfoxloader-x64.dll[-] -> ODEBRÁNO

¤¤¤ ¤¤¤ Záznamy Registrů: : 12 ¤¤¤
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-3152794667-1888837929-3469490325-1002\Software\Microsoft\Windows\CurrentVersion\Run | cz.seznam.software.autoupdate : "C:\Users\Terka\AppData\Roaming\Seznam.cz\szninstall.exe" -c [x] -> VYMAZÁNO
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-3152794667-1888837929-3469490325-1002\Software\Microsoft\Windows\CurrentVersion\Run | cz.seznam.software.szndesktop : "C:\Users\Terka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q [x] -> VYMAZÁNO
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-3152794667-1888837929-3469490325-1002\Software\Microsoft\Windows\CurrentVersion\Run | cz.seznam.software.autoupdate : "C:\Users\Terka\AppData\Roaming\Seznam.cz\szninstall.exe" -c -> ERROR [2]
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-3152794667-1888837929-3469490325-1002\Software\Microsoft\Windows\CurrentVersion\Run | cz.seznam.software.szndesktop : "C:\Users\Terka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q -> ERROR [2]
[PUM.Policies] (X64) HKEY_USERS\S-1-5-21-3152794667-1888837929-3469490325-1002\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableRegistryTools : 0 -> VYMAZÁNO
[PUM.Policies] (X64) HKEY_USERS\S-1-5-21-3152794667-1888837929-3469490325-1002\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0 -> VYMAZÁNO
[PUM.Policies] (X86) HKEY_USERS\S-1-5-21-3152794667-1888837929-3469490325-1002\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableRegistryTools : 0 -> ERROR [2]
[PUM.Policies] (X86) HKEY_USERS\S-1-5-21-3152794667-1888837929-3469490325-1002\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0 -> ERROR [2]
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NAHRAZENO (0)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NAHRAZENO (0)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NAHRAZENO (0)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NAHRAZENO (0)

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ Soubory : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 0 ¤¤¤

¤¤¤ Antirootkit : 38 ¤¤¤
[EAT:Addr] (explorer.exe) dxp.dll - BiChangeApplicationStateForPackageName : C:\Windows\System32\twinapi.dll @ 0x7fdb3b0ab80
[EAT:Addr] (explorer.exe) dxp.dll - BiChangeSessionState : C:\Windows\System32\twinapi.dll @ 0x7fdb3b253d8
[EAT:Addr] (explorer.exe) dxp.dll - BiNotifyNewSession : C:\Windows\System32\twinapi.dll @ 0x7fdb3b26f0c
[EAT:Addr] (explorer.exe) dxp.dll - BiPtActivateWorkItem : C:\Windows\System32\twinapi.dll @ 0x7fdb3b7bce0
[EAT:Addr] (explorer.exe) dxp.dll - BiPtAssociateActivationProxy : C:\Windows\System32\twinapi.dll @ 0x7fdb3b2a7ec
[EAT:Addr] (explorer.exe) dxp.dll - BiPtAssociateApplicationExtensionClass : C:\Windows\System32\twinapi.dll @ 0x7fdb3b7bbd0
[EAT:Addr] (explorer.exe) dxp.dll - BiPtCreateEventForPackageName : C:\Windows\System32\twinapi.dll @ 0x7fdb3b7bac0
[EAT:Addr] (explorer.exe) dxp.dll - BiPtDeleteEvent : C:\Windows\System32\twinapi.dll @ 0x7fdb3b7ba50
[EAT:Addr] (explorer.exe) dxp.dll - BiPtDisassociateWorkItem : C:\Windows\System32\twinapi.dll @ 0x7fdb3b7b9b0
[EAT:Addr] (explorer.exe) dxp.dll - BiPtEnumerateBrokeredEvents : C:\Windows\System32\twinapi.dll @ 0x7fdb3b26a70
[EAT:Addr] (explorer.exe) dxp.dll - BiPtEnumerateWorkItemsForPackageName : C:\Windows\System32\twinapi.dll @ 0x7fdb3b7b8c0
[EAT:Addr] (explorer.exe) dxp.dll - BiPtFreeMemory : C:\Windows\System32\twinapi.dll @ 0x7fdb3b05fe0
[EAT:Addr] (explorer.exe) dxp.dll - BiPtQueryBrokeredEvent : C:\Windows\System32\twinapi.dll @ 0x7fdb3b05df0
[EAT:Addr] (explorer.exe) dxp.dll - BiPtQuerySystemStateBroadcastChannels : C:\Windows\System32\twinapi.dll @ 0x7fdb3b26a0c
[EAT:Addr] (explorer.exe) dxp.dll - BiPtQueryWorkItem : C:\Windows\System32\twinapi.dll @ 0x7fdb3b7b804
[EAT:Addr] (explorer.exe) dxp.dll - BiPtSignalEvent : C:\Windows\System32\twinapi.dll @ 0x7fdb3b7b738
[EAT:Addr] (explorer.exe) dxp.dll - BiPtSignalMultipleEvents : C:\Windows\System32\twinapi.dll @ 0x7fdb3b7b660
[EAT:Addr] (explorer.exe) dxp.dll - BiResetActiveSessionForPackage : C:\Windows\System32\twinapi.dll @ 0x7fdb3b7b57c
[EAT:Addr] (explorer.exe) dxp.dll - BiSetActiveSessionForPackage : C:\Windows\System32\twinapi.dll @ 0x7fdb3b7b4e0
[EAT:Addr] (explorer.exe) dxp.dll - BiUpdateLockScreenApplications : C:\Windows\System32\twinapi.dll @ 0x7fdb3b7b430
[EAT:Addr] (explorer.exe) dxp.dll - DllCanUnloadNow : C:\Windows\System32\twinapi.dll @ 0x7fdb3b01340
[EAT:Addr] (explorer.exe) dxp.dll - DllGetActivationFactory : C:\Windows\System32\twinapi.dll @ 0x7fdb3b02f60
[EAT:Addr] (explorer.exe) dxp.dll - DllGetClassObject : C:\Windows\System32\twinapi.dll @ 0x7fdb3b02110
[EAT:Addr] (explorer.exe) dxp.dll - PsmBlockAppStateChangeCompletion : C:\Windows\System32\twinapi.dll @ 0x7fdb3b7bdd4
[EAT:Addr] (explorer.exe) dxp.dll - PsmIsProcessInApplication : C:\Windows\System32\twinapi.dll @ 0x7fdb3b17d60
[EAT:Addr] (explorer.exe) dxp.dll - PsmQueryApplicationInformation : C:\Windows\System32\twinapi.dll @ 0x7fdb3b073f0
[EAT:Addr] (explorer.exe) dxp.dll - PsmQueryApplicationList : C:\Windows\System32\twinapi.dll @ 0x7fdb3b02770
[EAT:Addr] (explorer.exe) dxp.dll - PsmQueryCurrentAppState : C:\Windows\System32\twinapi.dll @ 0x7fdb3b7bd70
[EAT:Addr] (explorer.exe) dxp.dll - PsmQueryProcessList : C:\Windows\System32\twinapi.dll @ 0x7fdb3b024f0
[EAT:Addr] (explorer.exe) dxp.dll - PsmRegisterAppStateChangeNotification : C:\Windows\System32\twinapi.dll @ 0x7fdb3b0cf00
[EAT:Addr] (explorer.exe) dxp.dll - PsmRegisterApplicationNotification : C:\Windows\System32\twinapi.dll @ 0x7fdb3b071e0
[EAT:Addr] (explorer.exe) dxp.dll - PsmSetApplicationState : C:\Windows\System32\twinapi.dll @ 0x7fdb3b0a870
[EAT:Addr] (explorer.exe) dxp.dll - PsmShutdownApplication : C:\Windows\System32\twinapi.dll @ 0x7fdb3b7bec0
[EAT:Addr] (explorer.exe) dxp.dll - PsmUnblockAppStateChangeCompletion : C:\Windows\System32\twinapi.dll @ 0x7fdb3b7be0c
[EAT:Addr] (explorer.exe) dxp.dll - PsmUnregisterAppStateChangeNotification : C:\Windows\System32\twinapi.dll @ 0x7fdb3b10a68
[EAT:Addr] (explorer.exe) dxp.dll - PsmWaitForAppResume : C:\Windows\System32\twinapi.dll @ 0x7fdb3b7be5c
[EAT:Addr] (explorer.exe) dhcpcsvc.DLL - DllCanUnloadNow : C:\Windows\System32\DeviceSetupManagerAPI.dll @ 0x7fdb6f7aeb8
[EAT:Addr] (explorer.exe) dhcpcsvc.DLL - DllGetClassObject : C:\Windows\System32\DeviceSetupManagerAPI.dll @ 0x7fdb6f7aef8

¤¤¤ Webové prohlížeče : 3 ¤¤¤
[IE:Addon] System : avast! Online Security [{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}] -> VYMAZÁNO
[CHROME:Addon] Default : Google Voice Search Hotword (Beta) [bepbmhgboaologfdajaanbcjmnhjmhfn] -> VYMAZÁNO
[CHROME:Addon] Default : Google Wallet [nmmhkkegccagdldgiimedpiccmgmieda] -> ERROR [2]

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: ST750LM022 HN-M750MBB +++++
--- User ---
[MBR] e698a087d64f61e8eb158319660e2c1c
[BSP] 3d77d578609671081be50e6494934fd7 : Unknown MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x0) [VISIBLE] Offset (sectors): 1 | Size: 2097152 MB
User = LL1 ... OK
User = LL2 ... OK

============================================
RKreport_SCN_06242014_213505.log - RKreport_SCN_06252014_114610.log

Eco · Příspěvekod **Eco** » 25 čer 2014 12:12

11:52:58.0507 0x12f8 TDSS rootkit removing tool 3.0.0.39 Jun 5 2014 20:35:54
11:52:58.0507 0x12f8 UEFI system
11:53:06.0238 0x12f8 ============================================================
11:53:06.0238 0x12f8 Current date / time: 2014/06/25 11:53:06.0238
11:53:06.0238 0x12f8 SystemInfo:
11:53:06.0238 0x12f8
11:53:06.0238 0x12f8 OS Version: 6.2.9200 ServicePack: 0.0
11:53:06.0238 0x12f8 Product type: Workstation
11:53:06.0238 0x12f8 ComputerName: NTB-TERKA
11:53:06.0239 0x12f8 UserName: Terka
11:53:06.0239 0x12f8 Windows directory: C:\Windows
11:53:06.0239 0x12f8 System windows directory: C:\Windows
11:53:06.0239 0x12f8 Running under WOW64
11:53:06.0239 0x12f8 Processor architecture: Intel x64
11:53:06.0239 0x12f8 Number of processors: 2
11:53:06.0239 0x12f8 Page size: 0x1000
11:53:06.0239 0x12f8 Boot type: Normal boot
11:53:06.0239 0x12f8 ============================================================
11:53:06.0899 0x12f8 KLMD registered as C:\Windows\system32\drivers\34272998.sys
11:53:07.0235 0x12f8 System UUID: {E07D6434-23C3-C7DC-738F-D620109F892F}
11:53:07.0634 0x12f8 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 ( 698.64 Gb ), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:53:07.0637 0x12f8 ============================================================
11:53:07.0637 0x12f8 \Device\Harddisk0\DR0:
11:53:07.0637 0x12f8 GPT partitions:
11:53:07.0637 0x12f8 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {BC1F04E1-4057-4CE6-A405-A6EAAE42514E}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0x96000
11:53:07.0637 0x12f8 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {E4B83BAA-E94A-4005-B445-BD236A6B02F1}, Name: Basic data partition, StartLBA 0x96800, BlocksNum 0x12C000
11:53:07.0637 0x12f8 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {064AAC31-2536-4B85-8E41-52B9F46754CE}, Name: Microsoft reserved partition, StartLBA 0x1C2800, BlocksNum 0x40000
11:53:07.0637 0x12f8 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {A81B02A8-627D-4F8D-A5AD-AFD13FD35E26}, Name: Basic data partition, StartLBA 0x202800, BlocksNum 0x22EE8800
11:53:07.0637 0x12f8 \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {64888BD2-A095-4D43-85A9-DA7600512A32}, Name: Basic data partition, StartLBA 0x230EB000, BlocksNum 0x31C56000
11:53:07.0638 0x12f8 \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {DFD8C661-CDE1-4DE4-B3EB-A9FB91744228}, Name: Basic data partition, StartLBA 0x54D41000, BlocksNum 0x2805000
11:53:07.0638 0x12f8 MBR partitions:
11:53:07.0638 0x12f8 ============================================================
11:53:07.0672 0x12f8 C: <-> \Device\Harddisk0\DR0\Partition4
11:53:07.0715 0x12f8 D: <-> \Device\Harddisk0\DR0\Partition5
11:53:07.0716 0x12f8 ============================================================
11:53:07.0716 0x12f8 Initialize success
11:53:07.0716 0x12f8 ============================================================
11:53:11.0543 0x0444 ============================================================
11:53:11.0543 0x0444 Scan started
11:53:11.0543 0x0444 Mode: Manual;
11:53:11.0543 0x0444 ============================================================
11:53:11.0543 0x0444 KSN ping started
11:53:13.0887 0x0444 KSN ping finished: true
11:53:14.0904 0x0444 ================ Scan system memory ========================
11:53:14.0904 0x0444 System memory - ok
11:53:14.0905 0x0444 ================ Scan services =============================
11:53:15.0033 0x0444 [ 620C92D6EEFA9853A3EAD41B5EB9B5FD, 72DD7297179AC6629B816DD9656D5EC3F02BE677EA01A05A5EB808180F0D775F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
11:53:15.0037 0x0444 !SASCORE - ok
11:53:15.0168 0x0444 [ E890C46E4754F0DF51BAFCC8D2E07498, E620D03030F3B65442E0A5CB8B59016A6E8DB3BCA52741977B8897B34438E902 ] 1394ohci C:\Windows\System32\drivers\1394ohci.sys
11:53:15.0173 0x0444 1394ohci - ok
11:53:15.0192 0x0444 [ 4F18D4C7EA14F11A7211F60D553C03DB, 09AB6D2D8E9B7B6D6A97708551C0E4B34538947A15EA2A69C11764D7BC0BB7F6 ] 3ware C:\Windows\system32\drivers\3ware.sys
11:53:15.0195 0x0444 3ware - ok
11:53:15.0239 0x0444 [ 975AABEB243B800C23626D6B652C5A9C, FB02336F26AF10BA2A0D1B97C33CB1D78BB90CA51EF008A613A0274779798FAD ] ACPI C:\Windows\system32\drivers\ACPI.sys
11:53:15.0248 0x0444 ACPI - ok
11:53:15.0302 0x0444 [ DC968C37822117E576B933F34A2D130C, 4C94E00ADC242296D7CBBFC7346D5F9AE5FE1B0C616ECA3BDE10A7B34FD2040B ] acpiex C:\Windows\system32\Drivers\acpiex.sys
11:53:15.0304 0x0444 acpiex - ok
11:53:15.0321 0x0444 [ 0CA9F7C3A78227C21A0A7854E245CFB2, D54147C9C1EE2F0098B863B0852E027DB89D6FA67F6B7FD54F609D9715A11442 ] acpipagr C:\Windows\System32\drivers\acpipagr.sys
11:53:15.0321 0x0444 acpipagr - ok
11:53:15.0336 0x0444 [ 8EB8DA03B142D3DD1EB9ED8107A76C43, 24B9B24F9A5BDF3AAD13C4EE0638497D9CA4A100096C6EAE403E0215EA89C439 ] AcpiPmi C:\Windows\System32\drivers\acpipmi.sys
11:53:15.0337 0x0444 AcpiPmi - ok
11:53:15.0344 0x0444 [ CBCE725C5D86ABA7D2604E22951AA9B8, DE0440F0E943F057EBCD01DB4B1E12DBC241FBF03C42021306D322AB88FF8F21 ] acpitime C:\Windows\System32\drivers\acpitime.sys
11:53:15.0345 0x0444 acpitime - ok
11:53:15.0436 0x0444 [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:53:15.0438 0x0444 AdobeARMservice - ok
11:53:15.0504 0x0444 [ 93C6388592B99925C1D1576E465BC80F, 4C48BE5471DA4788357D71E90DFEA20FE320C7AAE1F4C55AFBE2E46FEA5CF8FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
11:53:15.0515 0x0444 adp94xx - ok
11:53:15.0537 0x0444 [ D27763E0247292654E7F7D16444C7C72, 0314C713D31E2B34F215B52F804F014D876E6ED92DC656CC3E27920CCD36CF0E ] adpahci C:\Windows\system32\drivers\adpahci.sys
11:53:15.0544 0x0444 adpahci - ok
11:53:15.0569 0x0444 [ 67B90070FF48F794AF19F9FCF0080D75, 5D0D352606D58D2CA0814F38EF7B1774C030BE44353DF5910CBFAAF4FDE64ED6 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
11:53:15.0574 0x0444 adpu320 - ok
11:53:15.0623 0x0444 [ 974AE60BF5B90E31412D93596C968E5B, 092B59C2B67C4618E7B1800615D1DF7199482F60D0D27BD91763F7F8D7FC883F ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:53:15.0628 0x0444 AeLookupSvc - ok
11:53:15.0710 0x0444 [ 7C0E0EDF18D6CC565D7BFBB451709FA5, 47C21CD9D87B5C1B5EB14F6166B5E3349B1A6F10501E63CCED8D52A9FE22765D ] AFD C:\Windows\system32\drivers\afd.sys
11:53:15.0722 0x0444 AFD - ok
11:53:15.0774 0x0444 [ 98022774D9930ECBB292E70DB7601DF6, BE64A40B9BE997D73C0FC14D97E204C9D886EDA07EC4C9391A70CE477084E5F1 ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
11:53:15.0797 0x0444 AgereSoftModem - ok
11:53:15.0812 0x0444 [ 01590377A5AB19E792528C628A2A68F9, F3A4B6CA4E8D4436E44E36D7F7EEF3DC861D1EE50D41F4273226C4ED95674B84 ] agp440 C:\Windows\system32\drivers\agp440.sys
11:53:15.0814 0x0444 agp440 - ok
11:53:15.0848 0x0444 [ 16F6F6B7903B913AB41AB848C8BB5658, 7304257048CB42E5274B3F6400F4A053A38E3B70A157662FE9D2B7C5979DE851 ] AiCharger C:\Windows\system32\DRIVERS\AiCharger.sys
11:53:15.0849 0x0444 AiCharger - ok
11:53:15.0877 0x0444 [ D1BE8E6E5B3AF23A4393AF1BF867977A, B3AE97D35A9304198715D76F6C3F0545AA176FDEBA6C2055782558B11DFA14EB ] ALG C:\Windows\System32\alg.exe
11:53:15.0880 0x0444 ALG - ok
11:53:15.0945 0x0444 [ 025E8C755BE293E50854D26D1BBE5133, 4373639689306A3D8FE0F862072711BAD5DBAA45E105CD3129586439A90EE070 ] AllUserInstallAgent C:\Windows\system32\AUInstallAgent.dll
11:53:15.0948 0x0444 AllUserInstallAgent - ok
11:53:15.0979 0x0444 [ 5A81054B824004B1ECC04F0034A1CDF9, 73A1986A4B346C425157216EBF16CC90EFFC642EDF6109E6364CF0552E3388FD ] AmdK8 C:\Windows\System32\drivers\amdk8.sys
11:53:15.0981 0x0444 AmdK8 - ok
11:53:16.0000 0x0444 [ B849D453E644FAB9BC8EF6DC8CA9C4C6, B803CDA478D3385937C44CBB05A0E65ABACEFEBA682975787C44E2904FB89D2D ] AmdPPM C:\Windows\System32\drivers\amdppm.sys
11:53:16.0002 0x0444 AmdPPM - ok
11:53:16.0029 0x0444 [ 35A0EB5AECB0FA3C41A2FB514A562304, 737783ABF348288471AC7051D4DC6CB336D686C94EC7B8938DCA74AFE9BECB1C ] amdsata C:\Windows\system32\drivers\amdsata.sys
11:53:16.0032 0x0444 amdsata - ok
11:53:16.0089 0x0444 [ 00452671904F5EE94B50BF0219C97164, 99F9B86D3DB3E10B014120A63CD43CBAAB22C8E38851090ABE37D89ABD61F7B6 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
11:53:16.0094 0x0444 amdsbs - ok
11:53:16.0114 0x0444 [ EA3FFE53E92E59C87E3ECA9BEB20D9B7, DC0B8B798720F5F75F8AFD3383CF69194282AEEE84DCACB97382F4C86E1D3E49 ] amdxata C:\Windows\system32\drivers\amdxata.sys
11:53:16.0115 0x0444 amdxata - ok
11:53:16.0126 0x0444 [ 83B3682CE922FB0F415734B26D9D6233, 9102E8B410BB1AE426770896B6AB584D1F02830337FBB2DEC182F3F19832F35F ] AppID C:\Windows\system32\drivers\appid.sys
11:53:16.0128 0x0444 AppID - ok
11:53:16.0151 0x0444 [ CE2BEAD7F31816FF0AC490D048C969F9, 7D24C5A9E8F7C21CC6D8BF2CA29A8B79DDE7EEDE2F37D36B9071ECE1CF61371F ] AppIDSvc C:\Windows\System32\appidsvc.dll
11:53:16.0153 0x0444 AppIDSvc - ok
11:53:16.0181 0x0444 [ 4F750B7EFCB6520AE01E01D082D7D476, AD2A67D727A1D4DD0BBACC6B4BB432FA9A14D50D8BA292B95A4747CEC9F85728 ] Appinfo C:\Windows\System32\appinfo.dll
11:53:16.0184 0x0444 Appinfo - ok
11:53:16.0204 0x0444 [ E933401B392387F4BE34DE8BAF1722A7, 57CC6DE31E2C82D2B12509F0A5EC9EC70DD2EF6A1F31A66ADF62DC6AE0A67323 ] arc C:\Windows\system32\drivers\arc.sys
11:53:16.0207 0x0444 arc - ok
11:53:16.0230 0x0444 [ 07CA323EF2E8247A568AB0F3662AD644, 1224B41193F0E9B164732BA5BF707A13427C82C1D8C3EDC2AAE5C5C75454B9F6 ] arcsas C:\Windows\system32\drivers\arcsas.sys
11:53:16.0232 0x0444 arcsas - ok
11:53:16.0320 0x0444 [ FA713019412C061385F09BD373BF747A, 83ED108FEE95BA7CBE87C845154F97FCB4597F9D9BEC1F802B92D8994BD5931D ] ASLDRService C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
11:53:16.0322 0x0444 ASLDRService - ok
11:53:16.0393 0x0444 [ 4C016FD76ED5C05E84CA8CAB77993961, 025E7BE9FCEFD6A83F4471BBA0C11F1C11BD5047047D26626DA24EE9A419CDC4 ] ASMMAP64 C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
11:53:16.0394 0x0444 ASMMAP64 - ok
11:53:16.0453 0x0444 [ 6A122B4F0E5293CACFA8A5F2CBA9B356, 9D69076B697BEE8742E32EBEF1802D829DEA6B1D93AF485D11CC89A08CA4D809 ] ASUS InstantOn C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
11:53:16.0459 0x0444 ASUS InstantOn - ok
11:53:16.0494 0x0444 [ 340B0467E98A8C92697D73034DB4BCB7, 342572B566747A05DA5391CFC027A6703AECCE29C3D288428884D8641A35D0F5 ] aswHwid C:\Windows\system32\drivers\aswHwid.sys
11:53:16.0496 0x0444 aswHwid - ok
11:53:16.0564 0x0444 [ ED5B09937D559FFA53FC988D20031E98, EC9E50C9BC2184AE93944EA3115A25BADF5FFB91D11776498EBC9A0D60029A84 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
11:53:16.0566 0x0444 aswMonFlt - ok
11:53:16.0578 0x0444 [ 33C77DCB0AEC76E26BD6352A1A5281BB, CEA7BB3407C1F900DE5CB09F42AF7734811F86B7DE0085FADC7AAE8178D59665 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys
11:53:16.0581 0x0444 aswRdr - ok
11:53:16.0586 0x0444 [ BF5B9E9E97CED45208E498D9FA73688F, BCB2CC516EAD040573D80599C2306ECB26FCCB16A97B940327CD3A3CE9077877 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
11:53:16.0588 0x0444 aswRvrt - ok
11:53:16.0649 0x0444 [ F88CE00A7736C349ED1414D7ECDC9BED, 8C0783CE32968874065C2F46088B34F9C872F26C98AB8E8BA895D84CCB25E534 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
11:53:16.0670 0x0444 aswSnx - ok
11:53:16.0698 0x0444 [ 3AE912B08E2A1ABB2B63F3C56BED95C2, BE99BA3A74427444FEE5D47D70BDBA631DBBF50D80B0483C0675F87119926765 ] aswSP C:\Windows\system32\drivers\aswSP.sys
11:53:16.0707 0x0444 aswSP - ok
11:53:16.0752 0x0444 [ A7115ED31675BB823CFA9FE571C25676, DEEBB3920934DCDDD488DCFCB1E6F4C7EFDD3C79F31E41D59E292C3CF9400E95 ] aswStm C:\Windows\system32\drivers\aswStm.sys
11:53:16.0754 0x0444 aswStm - ok
11:53:16.0835 0x0444 [ 47CBD3F64E412FFAFD93404580A3C7B9, F9B02E232416BAFC21BCBCDC0A3D9E5E855BFAF11F29ED2C4C469692E6688278 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
11:53:16.0840 0x0444 aswVmm - ok
11:53:16.0872 0x0444 [ 74DBAEC35366C4EE7670428808715A6A, 3B3A7A81CD8038C4750560B94A9247C4409410780B312BA71EDF2E393DCA7474 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:53:16.0873 0x0444 AsyncMac - ok
11:53:16.0885 0x0444 [ A721FF570C2387E383BDDEA9632863C9, 45DD7787F44A2C742560FEB03AB66910C2F0002D95BB02C55EEDE973AA92AD24 ] atapi C:\Windows\system32\drivers\atapi.sys
11:53:16.0887 0x0444 atapi - ok
11:53:16.0912 0x0444 [ 4885C14A6AB6969B5773A42DA0BA3DA4, E317E1E299543FBD9853C71E1CF8019343B6234B9AAF56ABF48C41BB7743490B ] AthBTPort C:\Windows\system32\DRIVERS\btath_flt.sys
11:53:16.0915 0x0444 AthBTPort - ok
11:53:16.0962 0x0444 [ 7CA5397A47843B0BD36898F32F2D403B, 40BACD955FDF2E469AA20910203CEB97B7C7D94C04E15723D99ED2C577AD14CF ] AtherosSvc C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
11:53:16.0967 0x0444 AtherosSvc - ok
11:53:17.0104 0x0444 [ A34167BD20D771B8E68F2C41CC85168C, 33E5ACA0D853918E1DE2B9544A6B0B616C09CA92013B1D99C7F48655B1DDB4A9 ] athr C:\Windows\system32\DRIVERS\athw8x.sys
11:53:17.0180 0x0444 athr - ok
11:53:17.0211 0x0444 [ DBC598E47E7A382E60E2A4745D41FEF9, A810AC197CA456B0285E2CAE6986D38B31F4ADA32BEB47EC7A48A2B2196BA639 ] ATKGFNEXSrv C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
11:53:17.0214 0x0444 ATKGFNEXSrv - ok
11:53:17.0228 0x0444 [ 41CEAFFCF3550785E59E3EC9BEE8D97A, 89FE604088B65B82AA794E1DA8429033CD2F05FFB2D7EFAAC7B967C7A83D1B1E ] ATKWMIACPIIO C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
11:53:17.0229 0x0444 ATKWMIACPIIO - ok
11:53:17.0254 0x0444 [ 437EB91CB20144375DDE145149778405, 5E76CDE2B3C852755F6E54AF774E9BECDF472103D83B815899333DE268536B98 ] ATP C:\Windows\System32\drivers\AsusTP.sys
11:53:17.0256 0x0444 ATP - ok
11:53:17.0295 0x0444 [ BCD7A47EF587DC00DD61D12D9C2D1E44, 95BC9AC8BA8A86DB5C7A6317002BD9872F193B401A0C58DF252DCF3D4A7541E2 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
11:53:17.0299 0x0444 AudioEndpointBuilder - ok
11:53:17.0340 0x0444 [ 599B3F685A263A114FFAF3BE29C49C75, 579E9561BA8537888E061E303F3F89E2E6F8B8DED74369C3767DB10B35CD45E8 ] Audiosrv C:\Windows\System32\Audiosrv.dll
11:53:17.0356 0x0444 Audiosrv - ok
11:53:17.0423 0x0444 [ 37D17AE2936867F88EB3C4CBCBC6B8A1, E1F4D288CE1E5482A5594C8F9EEDE1E8134466F5E0C7DA32D88985497CD8588B ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
11:53:17.0424 0x0444 avast! Antivirus - ok
11:53:17.0457 0x0444 [ 89491EF71D5EA011127832C588002853, 05620E4235956D8446FB9604F930738C8AA97E3A74C907E37F7CC08B8EDA0461 ] AxInstSV C:\Windows\System32\AxInstSV.dll
11:53:17.0461 0x0444 AxInstSV - ok
11:53:17.0498 0x0444 [ 87AB5BB072A3F128541D5B815F82FFDD, 186AF33D3DE90638C3E165CAC3DA17295E8A80CDB523F9BE4AF7D38CA6954905 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
11:53:17.0509 0x0444 b06bdrv - ok
11:53:17.0561 0x0444 [ 81703BC5D68DEDBB086C2368FBE7B334, CFD4A55C8045C482F8D410514F3211AEFA00097AB395F5A04BFE983ED6254F6B ] BasicDisplay C:\Windows\System32\drivers\BasicDisplay.sys
11:53:17.0563 0x0444 BasicDisplay - ok
11:53:17.0576 0x0444 [ 5EC68164E14D25675C98BBB5F09E8606, 1D7EDB21C87039FC5F39F46460AD852BC4EC6B179B1C205D189DD3C397343435 ] BasicRender C:\Windows\System32\drivers\BasicRender.sys
11:53:17.0577 0x0444 BasicRender - ok
11:53:17.0629 0x0444 [ 89143A7BA7850F5C7E61B43BB44B6418, 00BB781DF87D4FF1BAFD318AFE237296B4F5925023BA4486405EC0A384C88D8F ] BDESVC C:\Windows\System32\bdesvc.dll
11:53:17.0635 0x0444 BDESVC - ok
11:53:17.0650 0x0444 [ 9E7AEA59776D904607985AFFE7E5E183, C3DB745A9F4DA7CB9628A7913DD52B2444B14FEB9D588FF6558CF52CEB8955EB ] Beep C:\Windows\system32\drivers\Beep.sys
11:53:17.0650 0x0444 Beep - ok
11:53:17.0713 0x0444 [ 53AA55632B94622F2DC3695E86EF9363, 9B5BB8EDA48A37AE97BCD42D83B25A6D10AA6231EABE745DCCE6D60E19094A6F ] BFE C:\Windows\System32\bfe.dll
11:53:17.0729 0x0444 BFE - ok
11:53:17.0790 0x0444 [ D598C44A7072D3108D8D8102EC5E07F7, D7472E9BAAB7B6E1D30F4E153412E2A16EE5C08DE2BF8BFF4D65089825226FE0 ] BITS C:\Windows\System32\qmgr.dll
11:53:17.0810 0x0444 BITS - ok
11:53:17.0823 0x0444 [ B17AC10B47C7FCB44D22A1F06415840E, 990D6F629D93F4F913D218ACE5187A26DCB762BAFB2BB279CCE8CAF2755D85A5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:53:17.0826 0x0444 bowser - ok
11:53:17.0848 0x0444 [ 038FA1B55531E7020DB705B42FCCE373, 023E87E3204D64890D6FEA78E762E5BC5BD0A59325EBC264834727779EEEDBC5 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
11:53:17.0853 0x0444 BrokerInfrastructure - ok
11:53:17.0880 0x0444 [ 310068BDA80B1D55C36580FD8A873FAF, A75412FF1F483461F526E9A359DCEECA5E683441514464D5ED82D1A9740D583E ] Browser C:\Windows\System32\browser.dll
11:53:17.0884 0x0444 Browser - ok
11:53:17.0925 0x0444 [ 942F3F6286056D6BBB5B02ED2B7088BD, 9F187C480BD40815ECFFC208BD1B00ACDFAD16899B4C8BE79C803FE48E322EA0 ] BTATH_A2DP C:\Windows\system32\drivers\btath_a2dp.sys
11:53:17.0932 0x0444 BTATH_A2DP - ok
11:53:17.0954 0x0444 [ 43C965027229D9FF6E52E4C71C03B09E, AF0E39EAD8B17A65F885272BEF12BF91578289C183FB39BB803183BE0E5547D1 ] btath_avdt C:\Windows\system32\drivers\btath_avdt.sys
11:53:17.0957 0x0444 btath_avdt - ok
11:53:17.0971 0x0444 [ 23CEDCD7527A26B222732A158F76EB24, 5A45D7FC8DFB96A938EEB8604B79413A10C0C16A17D3139B712263211D8215E9 ] BTATH_BUS C:\Windows\System32\drivers\btath_bus.sys
11:53:17.0972 0x0444 BTATH_BUS - ok
11:53:17.0995 0x0444 [ 3DD64966A764BCAFF07C9DC064BD410E, 456252339BCA224549E4CBCD5A0501AF10340211CFD567C577067ABF5DABB21F ] BTATH_HCRP C:\Windows\System32\drivers\btath_hcrp.sys
11:53:17.0999 0x0444 BTATH_HCRP - ok
11:53:18.0010 0x0444 [ B68EE0721EAC305AB1C9C989CDF1AEFF, 3F7CE8E244836E23456E519E48E53E4B9331C9AD9BAF13C208C922404575638A ] BTATH_LWFLT C:\Windows\system32\DRIVERS\btath_lwflt.sys
11:53:18.0012 0x0444 BTATH_LWFLT - ok
11:53:18.0027 0x0444 [ EC7BB341229E9E6B04349580F55218B2, 4227CE6787DD1432EB054B1EE85C399188A61B23E2E8B0B615DA101C4AABD6C0 ] BTATH_RCP C:\Windows\System32\drivers\btath_rcp.sys
11:53:18.0030 0x0444 BTATH_RCP - ok
11:53:18.0079 0x0444 [ 0D70E980F91FDBF3DB55922CECCE4616, 8800CBFB91CFDE6980D689F928E259298330DF91357F0DDD9D6E51D4462AD144 ] BtFilter C:\Windows\system32\DRIVERS\btfilter.sys
11:53:18.0091 0x0444 BtFilter - ok
11:53:18.0136 0x0444 [ 6695200F455E251F0BCC9CE4D0978D59, 4DB2F967E449581A9330EF43E794B45B93581564B20C5B991FC1EC665A640D69 ] BthAvrcpTg C:\Windows\System32\drivers\BthAvrcpTg.sys
11:53:18.0138 0x0444 BthAvrcpTg - ok
11:53:18.0165 0x0444 [ A8B20D852B07AE19A13B5D47EC4E4C3B, 86571C9E2BA15BB169CAB2D24C4D0598154C02FD173638CAFC685A7F6B09472D ] BthEnum C:\Windows\System32\drivers\BthEnum.sys
11:53:18.0167 0x0444 BthEnum - ok
11:53:18.0196 0x0444 [ 616EB8748C988AEE98D93DA141C3D3B4, 15A055B0496BDB29CBCF6EEBF112D4BA1C7A2FF39124728830D0FD1FD7A404CB ] BthHFEnum C:\Windows\System32\drivers\bthhfenum.sys
11:53:18.0198 0x0444 BthHFEnum - ok
11:53:18.0213 0x0444 [ DCB4EBD928A6FB368BE6CAE522412DE1, 9E1345F29467054689B9F48B5CCB567760D36610A4EA9AF41B829EAD60347269 ] bthhfhid C:\Windows\System32\drivers\BthHFHid.sys
11:53:18.0215 0x0444 bthhfhid - ok
11:53:18.0244 0x0444 [ 42201C346F0B8C458E1E9CDE04D68A2C, 6168FD0D10CD06B00B5C79D5D2B5C353AAC22FD99CE8D417DDBA33ED63CFB8BF ] BthLEEnum C:\Windows\system32\DRIVERS\BthLEEnum.sys
11:53:18.0248 0x0444 BthLEEnum - ok
11:53:18.0312 0x0444 [ EB4CBCB3288233CD964716D0A5E1CFC5, 0CE67B2D7855117B924ACC3A2979CE12F8DE45227B37AF95F9ABCC7406AD1EC3 ] BTHMODEM C:\Windows\System32\drivers\bthmodem.sys
11:53:18.0314 0x0444 BTHMODEM - ok
11:53:18.0327 0x0444 [ AD6FBCFB955D92C7274FEF2A79B99E60, 73253D4DEE9CA64AF82195E9C472BBA64A13423CD77EC74CA4C9F77D934258AF ] BthMtpEnum C:\Windows\system32\DRIVERS\BthMtpEnum.sys
11:53:18.0329 0x0444 BthMtpEnum - ok
11:53:18.0351 0x0444 [ 091BB978E9504D0AD14586929431A957, ACED02B879026A228E35F40847C210BC30A5AFC948FFE922DB21663E4A8DFF1D ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
11:53:18.0355 0x0444 BthPan - ok
11:53:18.0423 0x0444 [ 13795CAA34239D97A7211E7F9D96E012, C4F3402B063A7CFCE386D1AE9255975A199164BA9E7DCDB6129725213A0642B1 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
11:53:18.0446 0x0444 BTHPORT - ok
11:53:18.0491 0x0444 [ A4387C3D271959313E2577DB7BE8BA7A, C71474802102102EBE04DF036EEB2F5FB3380BE288E3842F19F234EFAE977D70 ] bthserv C:\Windows\system32\bthserv.dll
11:53:18.0494 0x0444 bthserv - ok
11:53:18.0513 0x0444 [ 1F715957F5236D30B6020A19A4271F6A, C06B637C2C6919E2DE1055AE249AE3EAF7B4890799F22BF5757CC10CEF145043 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
11:53:18.0516 0x0444 BTHUSB - ok
11:53:18.0586 0x0444 [ 990B1BABE6E81FB18E65A87EBEFB1772, 1820D4AC57E1D4B7FB5AA89C277B16910ED73712878D2B43FE542CE16DFE16C3 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:53:18.0589 0x0444 cdfs - ok
11:53:18.0609 0x0444 [ 339BFF85D788268752DA8C9644B188EE, C2279F1A39AED39865A5027D2FD087F8E82F3ED8C94BA4D922855B98E792AFC5 ] cdrom C:\Windows\System32\drivers\cdrom.sys
11:53:18.0613 0x0444 cdrom - ok
11:53:18.0642 0x0444 [ BAF8F0F55BC300E5F882E521F054E345, FB228DB18F2FA55D8BA35A7E6778EE5D2EB0C29D384F1A0A868F90AE706188D7 ] CertPropSvc C:\Windows\System32\certprop.dll
11:53:18.0647 0x0444 CertPropSvc - ok
11:53:18.0662 0x0444 [ F64B7D1A37CC1D5F421D5359EEC81E2E, 2B4879DD32B2C20B94847755E22B1BCBE2B567B3989C57A9BA2DD783307EFFDB ] circlass C:\Windows\System32\drivers\circlass.sys
11:53:18.0664 0x0444 circlass - ok
11:53:18.0676 0x0444 [ 9905168708DB68849B879B5548F68AB3, B7A495E57B9398704988DC472126CBC5B8D76761A34F51732FBF6CC88E3AB79A ] CLFS C:\Windows\system32\drivers\CLFS.sys
11:53:18.0684 0x0444 CLFS - ok
11:53:18.0707 0x0444 [ 2DC8538A2260647484A6C921CA837313, 094059DD66B0C50A1CAE288F920107B0B6AD1AA5758284E35B92C131EDEA30EA ] CmBatt C:\Windows\System32\drivers\CmBatt.sys
11:53:18.0708 0x0444 CmBatt - ok
11:53:18.0796 0x0444 [ DBF9E5346431557BF56F41E7F8EC0DC1, D5FA34C873DA9BE40301D53198355556506AB5145B78B14D0AA88570A0058589 ] CNG C:\Windows\system32\Drivers\cng.sys
11:53:18.0807 0x0444 CNG - ok
11:53:18.0829 0x0444 [ 0E5B1E9E7122EDAAF1F6CE047965CA92, 803E585B92D1E2E5B6BF67BE511E88DC2629A12407C3E30F7AEFB544D390A9B8 ] CompositeBus C:\Windows\System32\drivers\CompositeBus.sys
11:53:18.0830 0x0444 CompositeBus - ok
11:53:18.0834 0x0444 COMSysApp - ok
11:53:18.0847 0x0444 [ D9CB0782AF819548072AA45B70F8B22D, 04796F39ABB88759A534DE3D0C51F684BF2A8DE1F4028B657CCFDBDD39A6618C ] condrv C:\Windows\system32\drivers\condrv.sys
11:53:18.0848 0x0444 condrv - ok
11:53:18.0932 0x0444 [ EB726E02074FDC44EBE97E01A2660AA6, D4C64BF00D71BB7A3DB429EF8B648056067A3FE857F72DD9CE4944A1359BE05D ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe
11:53:18.0939 0x0444 cphs - ok
11:53:19.0001 0x0444 [ 5CE2742F063731EC10C1B2EE386A2C08, 309919BDDD4649AFB95A99DCF8AFC3BAE10F9BC1E2819C0794CFD0F80682C223 ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:53:19.0004 0x0444 CryptSvc - ok
11:53:19.0039 0x0444 [ FAEF4C245BE832DB41B15DAAC336AFB7, 1F8C98AB0DF4327FCB01FE0356025488E19B48A45FFFA50576B49A8587FAC42B ] dam C:\Windows\system32\drivers\dam.sys
11:53:19.0041 0x0444 dam - ok
11:53:19.0100 0x0444 [ 1EC6E533C954BDDF2A37E7851A7E58FD, C25936A7465B6A2B3D05D2FCB09D91ACC07CFE038A5E968C99CFA9D9F2967DD4 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:53:19.0119 0x0444 DcomLaunch - ok
11:53:19.0145 0x0444 [ C8650D1F61149AA546BDBC99172EBBC1, D9592ED1B6F23B6EC76A0B93635B6E38702311B0A6982F0F9DEC37FCDAF1288B ] defragsvc C:\Windows\System32\defragsvc.dll
11:53:19.0155 0x0444 defragsvc - ok
11:53:19.0178 0x0444 [ 5EAEF67AE2AF4D2DC664B649DB7B2E16, ADAC7FD6AC12B50F4998C5EB0BD770DD4B80A94C4CC1B9376AD77648E48D012D ] DeviceAssociationService C:\Windows\system32\das.dll
11:53:19.0186 0x0444 DeviceAssociationService - ok
11:53:19.0230 0x0444 [ 799BE46D45D486704CE0F37CA5385262, BB78DEE83B9DB613B1C083D55FAA458BE3E394AED80EB91B599185A7272F33B3 ] DeviceInstall C:\Windows\system32\umpnpmgr.dll
11:53:19.0236 0x0444 DeviceInstall - ok
11:53:19.0274 0x0444 [ 431141C6859990824D17F71C30A78728, 448B3DC20C8FDD5B66217E0E01DBCC4904F94BDA0826F109D139DDD2C2D7FBF2 ] Dfsc C:\Windows\system32\Drivers\dfsc.sys
11:53:19.0277 0x0444 Dfsc - ok
11:53:19.0320 0x0444 [ 9E0E72222264745ADEB0E5AC680B0ED6, 576AFC8741695396A3B8E9DBDD3703E9D70370437D09D162262E47A140D101B4 ] Dhcp C:\Windows\system32\dhcpcore.dll
11:53:19.0328 0x0444 Dhcp - ok
11:53:19.0386 0x0444 [ 3C736FAE17BA6F91BA37594AAB139CD0, 34304A194105B19E7ADD80108DC85C3B7AA9E942C84A7EF93C475CE1D9AE4615 ] discache C:\Windows\system32\drivers\discache.sys
11:53:19.0388 0x0444 discache - ok
11:53:19.0428 0x0444 [ AE3786294CC246A5403783E1B86A0168, 29A7B4B490CBB16DAEF5D67D0A58A2577CF3FEE8F889484DB867F6913D9D2A28 ] disk C:\Windows\system32\drivers\disk.sys
11:53:19.0430 0x0444 disk - ok
11:53:19.0440 0x0444 [ 82A7C72593793FE1EADA7A305BD1567A, 75F432E4C75AE9EFF553BD860B3B250853BDDA85C17DBD9B7242D74593506A86 ] dmvsc C:\Windows\System32\drivers\dmvsc.sys
11:53:19.0441 0x0444 dmvsc - ok
11:53:19.0481 0x0444 [ 066B9710B36AB550E01EEFCA52155968, DCA9F3F4856A6866D3F5A2EEE34E96A83F40198DB0B5AC6381A7568DE1F56FAB ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:53:19.0487 0x0444 Dnscache - ok
11:53:19.0562 0x0444 [ 9949AD2ABA168A618D46C799D6CC898C, DFAC86A0AEE83C9EFE1BEE9EC15C8CAF1D619D55AF3ACC3986057A5AC985D06A ] dot3svc C:\Windows\System32\dot3svc.dll
11:53:19.0569 0x0444 dot3svc - ok
11:53:19.0595 0x0444 [ 109FC3F80BF4F4DC5A071058074F13C1, F30736F45BA1811D59E9CB1C172D8D1EA9F5A7D36DCFFBFC9E7E02448C1CF851 ] DPS C:\Windows\system32\dps.dll
11:53:19.0601 0x0444 DPS - ok
11:53:19.0623 0x0444 [ 9C7C183F937951AE17C5B8B3259CF3FF, 8ED607139F15D08B4835ACF864421BA4C08C88FE90B9AAF707F5D8514D7731B1 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:53:19.0624 0x0444 drmkaud - ok
11:53:19.0661 0x0444 [ F87F4AAAF6664906248D11D5E579A53B, F283932F68ED93891EEF00C18724359AB7057E922A3CDC8BC6F33F84D2B0BEE5 ] DsmSvc C:\Windows\System32\DeviceSetupManager.dll
11:53:19.0717 0x0444 DsmSvc - ok
11:53:19.0793 0x0444 [ E6AF4DF1817953D73C519B17CF849756, 26A90EB368A3F572086F223ABED87B8FC6F998AE401C9E52BEB5EE76AB052702 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:53:19.0822 0x0444 DXGKrnl - ok
11:53:19.0851 0x0444 [ 651FBD69A9713D623D456A240F96179C, 22A1F306B454EF9C84D25EF266F3ED0E1D896B1F5BE60170E79F37F2DBCA59F4 ] e1iexpress C:\Windows\system32\DRIVERS\e1i63x64.sys
11:53:19.0859 0x0444 e1iexpress - ok
11:53:19.0887 0x0444 [ 58BA473DD88F5FC1932282BA683AA03E, B8A4407D3006D91BE88F9C5389AC1CACC73BEBF6F66433A1E5EB8E58E8836C12 ] Eaphost C:\Windows\System32\eapsvc.dll
11:53:19.0891 0x0444 Eaphost - ok
11:53:20.0002 0x0444 [ 5AB97B3282D7D6114949D1EB5C8598E4, FB9449CC1CDC12C12AA0469BB6ACC770CB011250EDFD86E9600E754610608EFD ] ebdrv C:\Windows\system32\drivers\evbda.sys
11:53:20.0068 0x0444 ebdrv - ok
11:53:20.0110 0x0444 [ F1DA34D64F2BA200D28A7451804E2FEE, 8BDF328F18F1EB58AC0E383ABA7985BA69EA9622B262CD524E3390FDE824DEEB ] EFS C:\Windows\System32\lsass.exe
11:53:20.0113 0x0444 EFS - ok
11:53:20.0137 0x0444 [ 66D60BD9A4C05616ABECA2A901475098, 8111550DB03FFD72F1822F47B16F075DA92874B64F19342D7CF60B0EE648AFEF ] EhStorClass C:\Windows\system32\drivers\EhStorClass.sys
11:53:20.0139 0x0444 EhStorClass - ok
11:53:20.0156 0x0444 [ A61D0F543024E458C0FE32352E1978E2, BDE6BC140300EAF790F16466C28897CE0BD7D94DCED13FDE20AA4AACA0F6A4FD ] EhStorTcgDrv C:\Windows\system32\drivers\EhStorTcgDrv.sys
11:53:20.0159 0x0444 EhStorTcgDrv - ok
11:53:20.0171 0x0444 [ D790D058D67582DB9C84C2D33695FE6B, A5763D7F6D191EA4B290B3E92D842AC36FD46DF598472E70B46E45D8CCD2F912 ] ErrDev C:\Windows\System32\drivers\errdev.sys
11:53:20.0172 0x0444 ErrDev - ok
11:53:20.0217 0x0444 [ F9E01C2D9F8BC049E04CF5DC24A5F638, CB6CCB59C77D4A59DDA846608AABEF1DFEC24C8422712AB8D59E27C13D731D2E ] EventSystem C:\Windows\system32\es.dll
11:53:20.0228 0x0444 EventSystem - ok
11:53:20.0248 0x0444 [ 7A4D6FEB8C52B3FE855E4DCDF9107E03, 6B0146A4C9AD32DCDC2DEE8E8C5A29F687665458486449E0D37B151ED63B8ADC ] exfat C:\Windows\system32\drivers\exfat.sys
11:53:20.0252 0x0444 exfat - ok
11:53:20.0272 0x0444 [ 60996602A7111FD2D086E803F33E4282, E62A91C90F8542990BEA4E6A5D9DD3D070F4EB23B4C13414C5DA2B0219509749 ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:53:20.0277 0x0444 fastfat - ok
11:53:20.0320 0x0444 [ F0E7F8382ED5E138B0DFA4CB5058BCFE, 6247C7B75F975F5AB080FFB9881EF58A6F360219F7AF2DE871F38E80CAF3B62C ] Fax C:\Windows\system32\fxssvc.exe
11:53:20.0335 0x0444 Fax - ok
11:53:20.0355 0x0444 [ 73B2D11DF0B6E03A0CB0323218ACB3E4, BA9256919BAA2E0760F6A658B557FDC389ACE8F9820D1A41FD995FC5613F5AA6 ] fdc C:\Windows\System32\drivers\fdc.sys
11:53:20.0356 0x0444 fdc - ok
11:53:20.0366 0x0444 [ 0828E3E7BD77C89149EAD3232BFD38DB, A6A296647A4EDBFF59124E3A9C0AB48759AA1738615ACFA5A454FF6BD3C31BA2 ] fdPHost C:\Windows\system32\fdPHost.dll
11:53:20.0368 0x0444 fdPHost - ok
11:53:20.0383 0x0444 [ 872506AAB591E8908DF4461475AF92DF, 772F2D08CB95775E438822B9EA005CBA92ED4071ADAB2C0101156A7D037D4704 ] FDResPub C:\Windows\system32\fdrespub.dll
11:53:20.0386 0x0444 FDResPub - ok
11:53:20.0421 0x0444 [ 0588950D93A426F97C7AAADB1A9B0458, ABCB3619BD58CAC438FC032495AE45A7B6FFDD4BD33C1B3D1BC7F9F13FCB727A ] fhsvc C:\Windows\system32\fhsvc.dll
11:53:20.0425 0x0444 fhsvc - ok
11:53:20.0444 0x0444 [ 88A9EBACD1058ABB237A6B4E96E7F397, 263D25D33B679EB01D97763701347C31B2F72E28CE2C7EC8013EA77756D98BE1 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:53:20.0446 0x0444 FileInfo - ok
11:53:20.0620 0x0444 [ D409D4A4517865131999FAC96D366CBF, 512A80C4B180D5D6DECBAFB831A56C0DC8C5D1CC7E749465C47D29EC4DA45719 ] FileMonitor C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys
11:53:20.0621 0x0444 FileMonitor - ok
11:53:20.0639 0x0444 [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02, 1D7BFB00D74A28AC13ECBA1E0036D50EE79266AC02CEDB2632466BF9DD46F211 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:53:20.0640 0x0444 Filetrace - ok
11:53:20.0732 0x0444 [ DFADECE1B66095F3F247ACC0EBDC5F8D, 65D8CCCE382554A4DD197AFC323D591B3D0B1C4BF13134ED6A09C9CB843E061F ] FlexNet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
11:53:20.0753 0x0444 FlexNet Licensing Service - ok
11:53:20.0778 0x0444 [ B1D4C168FF7B8579E3745888658FFB1D, 1A5C13E902A0C788A8B995ADD2FBC3303005911C0AA3F3F4497D3016AA0EF583 ] flpydisk C:\Windows\System32\drivers\flpydisk.sys
11:53:20.0779 0x0444 flpydisk - ok
11:53:20.0813 0x0444 [ B33EC133AE4E6C1881D2302D93D2467D, 77E3A16257EA3698B3FCD947D004144E8D1EEE48EF5C82DF49B1B9B2B3C61DB2 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:53:20.0821 0x0444 FltMgr - ok
11:53:20.0890 0x0444 [ 0BCDC0FF11B984162B0CF0FF6E9E0146, D44A3CECBA36B7A64854E244FA6B5E65047896BF9983D20B431410FBBA36697A ] FontCache C:\Windows\system32\FntCache.dll
11:53:20.0917 0x0444 FontCache - ok
11:53:21.0011 0x0444 [ 0B56259F5611787222A04A8F254E51D4, F77AEC0ACBFAF9154E32223B84B613229DACCD953AEBC3E96C27570F9AB10FD0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:53:21.0012 0x0444 FontCache3.0.0.0 - ok
11:53:21.0087 0x0444 [ A5F7873A39E4E9FAAAE59B7E9E36B705, 32036109F5A50E9F3BEF97C5B28AE8179B3A5E22517868A83CADE4671FF90DEC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
11:53:21.0088 0x0444 FsDepends - ok
11:53:21.0102 0x0444 [ A6DD7D491F587F4BC13FB972977DC8E8, B86F97F17F6F443EC16DEF67CCA4EF78AFE56078D2877838A982FECB19557C87 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:53:21.0103 0x0444 Fs_Rec - ok
11:53:21.0153 0x0444 [ C1646A95EAC515F60CDB2A7A8A013C1E, F559B83C02B17265EDE95DD497C1A94E402F07EC251FC47449F789907AFFED14 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
11:53:21.0163 0x0444 fvevol - ok
11:53:21.0193 0x0444 [ A969D92973DFA895E7776B4BFE36DBB2, 7528E6983ECC59291A7A386E4E459B19D1593ABDDFFD276E2F01B0EA21693E20 ] FxPPM C:\Windows\System32\drivers\fxppm.sys
11:53:21.0194 0x0444 FxPPM - ok
11:53:21.0258 0x0444 [ 52BC441E07A827EBAB70CDC7EAEDB28D, 8DECBD8E12EA52039742599CFBBF0D3B6610B57EF8D9DAEEEA33D202A478D286 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
11:53:21.0260 0x0444 gagp30kx - ok
11:53:21.0285 0x0444 [ 721F8EEF5E9747F32670DEFF7FB92541, E0A8EF70753E260C2C7D93D316B5EF9589DB086FDF829BDA2958C6A09CE471A6 ] gencounter C:\Windows\System32\drivers\vmgencounter.sys
11:53:21.0286 0x0444 gencounter - ok
11:53:21.0320 0x0444 [ FC2B8B06BDBD3B6457F5A3DA9AD2410E, 4BF196E1CAC94E9265EBEB68F41C3E29F0C709ECFF9420B5B1C9C82680D5D6A8 ] GPIOClx0101 C:\Windows\system32\Drivers\msgpioclx.sys
11:53:21.0323 0x0444 GPIOClx0101 - ok
11:53:21.0389 0x0444 [ 5358678C6370F2ADC5291849F6503262, 841633D7A936C3889690C67E189BAD4C6B294C196FFFE5B564FCECDFE46A9E52 ] gpsvc C:\Windows\System32\gpsvc.dll
11:53:21.0418 0x0444 gpsvc - ok
11:53:21.0482 0x0444 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:53:21.0485 0x0444 gupdate - ok
11:53:21.0491 0x0444 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:53:21.0494 0x0444 gupdatem - ok
11:53:21.0557 0x0444 [ 630555943E5A3FE21010CE91EC7FC84F, 20D7247A4363EE9E851501D89A466564ADCAEC304DE42280E4E09AD8499436A9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:53:21.0564 0x0444 HdAudAddService - ok
11:53:21.0591 0x0444 [ 3865C4E388B31940C8BB9F73D9738E93, F078BD558291D54BDB2B26E158C68845E8DA76C5DB773449E92677517F9A120B ] HDAudBus C:\Windows\System32\drivers\HDAudBus.sys
11:53:21.0593 0x0444 HDAudBus - ok
11:53:21.0620 0x0444 [ 3F76BBA53D65E85A7F53E7A71082082C, D1E18815BB19CD11007C4A66162C76F55D4FE6B09B34ED45969C7ECC29D394AD ] HidBatt C:\Windows\System32\drivers\HidBatt.sys
11:53:21.0622 0x0444 HidBatt - ok
11:53:21.0654 0x0444 [ 085F150D002B7F0153D3C06DDF33A143, 41847FD02608ECFE3A6B4B38CBDE8416B0EF17491868511FD704B0BCC280338E ] HidBth C:\Windows\System32\drivers\hidbth.sys
11:53:21.0657 0x0444 HidBth - ok
11:53:21.0730 0x0444 [ CC4A07E51D89575CAB6F4EB590D87CD4, DFB4EAF0923EF9FF6C42EDD1EA5E4025F243C9BE2D03D5423FE8A897DC01D657 ] hidi2c C:\Windows\System32\drivers\hidi2c.sys
11:53:21.0731 0x0444 hidi2c - ok
11:53:21.0796 0x0444 [ DC96F7DACB777CDEAEF9958A50BFDA06, 7CE79F32D5EE65C0178CFF56523825D3EE01095B2CE8C67634A6604A821A9086 ] HidIr C:\Windows\System32\drivers\hidir.sys
11:53:21.0798 0x0444 HidIr - ok
11:53:21.0817 0x0444 [ FAC37D7B3D6354A5A5E19A45B50B4008, 2962B552A1DA545DFDEF0886582E82596FE8A3A19AAF989B025AFDA84D16D4EC ] hidserv C:\Windows\system32\hidserv.dll
11:53:21.0820 0x0444 hidserv - ok
11:53:21.0883 0x0444 [ 894D982CEAB8CD45A56AE2C9988E86C0, AA2DEB62CB69FF1AEF772989342F2CF77CA48F212C9489A92A4FF97FD46D3866 ] HIDSwitch C:\Windows\System32\drivers\AsHIDSwitch64.sys
11:53:21.0884 0x0444 HIDSwitch - ok
11:53:21.0915 0x0444 [ 012C354B4AB48E9A7A657DF39E3A2073, B15D0089CE509FF1CF73DFE095425C1C99FC3971622DCAAD9CAEB989A12A4FDB ] HidUsb C:\Windows\System32\drivers\hidusb.sys
11:53:21.0916 0x0444 HidUsb - ok
11:53:21.0939 0x0444 [ 43F884B61A24377567CD0FEB35236334, B3BA36B527C8D6D83DE2FBCD8D503B87FD2611BF15B07A7BC138DC8BAE6A50C1 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:53:21.0945 0x0444 hkmsvc - ok
11:53:21.0980 0x0444 [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF, E6967F3F465C6E903221BC0FCBAE7D05FD18C0BF110D929335F5935364B3C1BC ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:53:22.0035 0x0444 HomeGroupListener - ok
11:53:22.0076 0x0444 [ E0D9F6FE18FA7F53ADD29AF719CE2B7E, B965DCC72625188F3B896CB447B7696F22687266EAFC5AA270E2AD53DD9F324D ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:53:22.0088 0x0444 HomeGroupProvider - ok
11:53:22.0109 0x0444 [ 64DB7A8D97CA53DCCF93D0A1E08342CF, 02CAB7F28D3830C482683425C60044239C6F1562556688A274CA2C237C846E76 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
11:53:22.0111 0x0444 HpSAMD - ok
11:53:22.0156 0x0444 [ F4A91D985EB9D1D2717D538F3424603C, 454AD2FF3A7963B9835AEF300F6672F92D0CCF59593BA2CCC83F0EC1446BB659 ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:53:22.0175 0x0444 HTTP - ok
11:53:22.0215 0x0444 [ 2A98301068801700906C06649860FE94, 664394A52326289DCA0828B0041A105653F4FEF3E3DCCC3787AAE0F6FDC73A14 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
11:53:22.0216 0x0444 hwpolicy - ok
11:53:22.0226 0x0444 [ DC76901D82097C9E297F20C287CB9A27, 01A412D0D8A65050BE4250A7C4B9F98A4C43FD891827761E0C830369A5F9F09C ] hyperkbd C:\Windows\System32\drivers\hyperkbd.sys
11:53:22.0227 0x0444 hyperkbd - ok
11:53:22.0241 0x0444 [ 716413AB3CA12DE0A7222D28C1C9352C, B82B586BD9DBD70DDA19A02504E8CB00DA53677703AB848B53387601C5BAD3D3 ] HyperVideo C:\Windows\system32\DRIVERS\HyperVideo.sys
11:53:22.0243 0x0444 HyperVideo - ok
11:53:22.0261 0x0444 [ C9E9CBF73AFFBFE3E801EFB516787BA3, 1A850D614BDA6AA4195CC657702BC6242BA51B90131717743182AA160F65E72C ] i8042prt C:\Windows\System32\drivers\i8042prt.sys
11:53:22.0264 0x0444 i8042prt - ok
11:53:22.0314 0x0444 [ 0FE66A51D81A25AACEAAE4C26308121D, C5553F7ABA74A8EB71A4ED0E8F2A6AA2892F871D164F2D4FADB035BE7D1A8C44 ] iaStorA C:\Windows\system32\drivers\iaStorA.sys
11:53:22.0327 0x0444 iaStorA - ok
11:53:22.0355 0x0444 [ 5E394EBD26FD68AA9300332C46BEDD62, 56A5DA7CE08C07B519E55D0A46AA9D10B640349808EFE02B3278267B75B5F603 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
11:53:22.0364 0x0444 iaStorV - ok
11:53:22.0657 0x0444 [ B9857625DF8B539ABCB90E15B5716568, 99393C74D6C5BB1D3B7399C628DEF47641563A3A1118988597091B0735805F06 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
11:53:22.0832 0x0444 igfx - ok
11:53:22.0909 0x0444 [ 24847A06B84339FEEDE5CABF3D27D320, 7727B1DAD0D4A1D474FBBEFCEBDF36A1F07D1AA300869AE57A24ED91BF84B6B4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
11:53:22.0911 0x0444 iirsp - ok
11:53:22.0980 0x0444 [ E455C83E029121270BED73CDAC381F37, 433D525C19DBF26FAC28853C606C872D973104842B0EF1B2BF2EAC85457E2953 ] IKEEXT C:\Windows\System32\ikeext.dll
11:53:23.0005 0x0444 IKEEXT - ok
11:53:23.0042 0x0444 [ EAEA4B0005869A4ABE6070BD364143B7, BD439C15EFBBAFAF88ADD4C988CC7AA04128EF689B1C9CF49FEE9B57417C08B7 ] IMFservice C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
11:53:23.0049 0x0444 IMFservice - ok
11:53:23.0091 0x0444 [ 3FF52353F30AFC313DA1D2E2FB75F892, 3D383485CA998CB6E77B3C0AA80B11E061D3277ECC29B5D7CD282614FC6F7830 ] InstallShield Licensing Service C:\Program Files (x86)\Common Files\InstallShield Shared\Service\InstallShield Licensing Service.exe
11:53:23.0093 0x0444 InstallShield Licensing Service - ok
11:53:23.0275 0x0444 [ 9CC645EB9697AA4F2D5A39835C80A0A2, 39861B19E9BF17F5250D571996167A178606150B62C876529D3699817FDDC42A ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
11:53:23.0355 0x0444 IntcAzAudAddService - ok
11:53:23.0392 0x0444 [ F5495B38BFB9149925F54F65AB40EFBF, 7CBB72C41E2343DACBFB967A39CA04788561EDECB289C41BC2D6A06B80882AC4 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
11:53:23.0399 0x0444 IntcDAud - ok
11:53:23.0472 0x0444 [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC, F791EE101EEF8B9F48102B6C63A89B78F7C0041C750C4F4C0D16D54B583B7B5C ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
11:53:23.0485 0x0444 Intel(R) Capability Licensing Service Interface - ok
11:53:23.0593 0x0444 [ 30E9FAC23E2537D82F2836CB81AEE186, 03E5072D43ECED70EF004D2E6E654B4CCCE059825CC3C641C0534E4C0BC0C7E8 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
11:53:23.0596 0x0444 Intel(R) ME Service - ok
11:53:23.0609 0x0444 [ 4F37726CF764CA18A8A84F85EF3A7F24, 6212B23917526E127CE641A11A58DA93651FFE70829C4079FE465DBDC81CF470 ] intelide C:\Windows\system32\drivers\intelide.sys
11:53:23.0610 0x0444 intelide - ok
11:53:23.0643 0x0444 [ E15CDF68DD73423F15D4AC404793AF0D, E2D0136AF68D1A73EB3A63C83284B4661222CB0A4AFACCF276CB57CBD4850287 ] intelppm C:\Windows\System32\drivers\intelppm.sys
11:53:23.0646 0x0444 intelppm - ok
11:53:23.0725 0x0444 [ 8FCA66234A0933D796BB780B7953BAB9, 7DD677F5EE09A8D7A75C9E475B5E6B3DCA49D1E846C7D160B839D7029B1C5B6D ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:53:23.0728 0x0444 IpFilterDriver - ok
11:53:23.0784 0x0444 [ C217B8D2E58C57A319B16125C3D4B69C, 905BB858E1782BD08FF080A4A604CE662440A15601B178FBD30269C306C04CCF ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:53:23.0821 0x0444 iphlpsvc - ok
11:53:23.0861 0x0444 [ A4071DA3AE419F9694BFCB267C7DB8D7, 392DEE1DA51606C29418A98D2861F115E9F67C688B4281C53E87BA73A98809FB ] IPMIDRV C:\Windows\System32\drivers\IPMIDrv.sys
11:53:23.0864 0x0444 IPMIDRV - ok
11:53:23.0883 0x0444 [ 3969B9C218DD3FAA9F4ED2FFC3651C02, 93447F124CC55FB17055126432194153E1BB8F0FD95A47608494B6834A5F7089 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
11:53:23.0886 0x0444 IPNAT - ok
11:53:23.0899 0x0444 [ 25CD7C4BB2863FFC2B0B311F0AEBF77C, 4099BAA2DB4ADB93B878D71E241B7D9EB7E0EE7ED0FE2450CCB9E4718B3726EB ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:53:23.0901 0x0444 IRENUM - ok
11:53:23.0912 0x0444 [ D940C5BB9DC92E588533C19ABCC3D2C2, D1442854CEDE86F2C187A35851E74C873D34B772C60BC118FA1577F79C03364D ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:53:23.0913 0x0444 isapnp - ok
11:53:23.0947 0x0444 [ E6530FD4F61B40F338BF4355A21B9A09, FE9BF039B9901BEC260A69F7C49ACFA9881AD470DCCBA70C7EC36F518DA71702 ] iScsiPrt C:\Windows\System32\drivers\msiscsi.sys
11:53:23.0954 0x0444 iScsiPrt - ok
11:53:23.0992 0x0444 [ 3C4002D339491AF73D663FFC7F6E5ECB, 0B53047989BDB781572253BC3AA757912FE54366870C1955E687972CE210C285 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
11:53:23.0996 0x0444 jhi_service - ok
11:53:24.0015 0x0444 [ 8FBD94B69D6423E20ABCD59D86368B21, 218EF992095E365EC917413749856A64D55D8129D77098E24D670843233377F4 ] kbdclass C:\Windows\System32\drivers\kbdclass.sys
11:53:24.0017 0x0444 kbdclass - ok
11:53:24.0086 0x0444 [ E88C932ABDF8185A62C8F2FC7B051FB6, 67F9AF58237A11F0BF3D15AA5B32E5CE66B7AA039B999D938F7F6E63DCEA7A6E ] kbdhid C:\Windows\System32\drivers\kbdhid.sys
11:53:24.0087 0x0444 kbdhid - ok
11:53:24.0109 0x0444 [ A8080BEBCDB7A16495CE1205921DCAC5, D4B0EF97B75BF75934A0BEEE48CACD20E8F505600C3A07243DF7627680EE8552 ] kbfiltr C:\Windows\System32\drivers\kbfiltr.sys
11:53:24.0111 0x0444 kbfiltr - ok
11:53:24.0124 0x0444 [ FB6C185092E18011EF49989425C2AA87, 043524409E0A764201DD221C48B7DEEA0D161945EB37D4B88313BAB2299949DF ] kdnic C:\Windows\system32\DRIVERS\kdnic.sys
11:53:24.0126 0x0444 kdnic - ok
11:53:24.0137 0x0444 [ F1DA34D64F2BA200D28A7451804E2FEE, 8BDF328F18F1EB58AC0E383ABA7985BA69EA9622B262CD524E3390FDE824DEEB ] KeyIso C:\Windows\system32\lsass.exe
11:53:24.0140 0x0444 KeyIso - ok
11:53:24.0177 0x0444 [ 8B3EB6372436195B8EA8AE09A184BCE2, 9AFB7A9D6AEEBF5994C85B355155024768116E2D537C9FA169BC3F4594ECD35C ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:53:24.0180 0x0444 KSecDD - ok
11:53:24.0199 0x0444 [ 3DD9C86EA88E8B5A51904AD87E1F2E78, F9EC9A571212117C01934CD29057EB1B3FA095F670294244AF7D9387D3F6E555 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
11:53:24.0203 0x0444 KSecPkg - ok
11:53:24.0269 0x0444 [ 81492FEEBF2F26455B00EE8DBAE8A1B0, E33AA2DFB2D3BB30B02CDADA2EC290F86329DA3198327A653F39A843D86390B9 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
11:53:24.0270 0x0444 ksthunk - ok
11:53:24.0303 0x0444 [ 5825DBACEDC3812B5CF8D40B997BF210, 1C2997BCC707C1029B21876E093038CE3BBF6E6694B4CCF7EEDD47172ED9A541 ] KtmRm C:\Windows\system32\msdtckrm.dll
11:53:24.0314 0x0444 KtmRm - ok
11:53:24.0355 0x0444 [ 256EE31588257E8A555DBFAA13F1908E, B6817F632EDEA483E35BF26846DCDD4E95E860620959179B2A5D8AD7EEDDB126 ] LanmanServer C:\Windows\system32\srvsvc.dll
11:53:24.0366 0x0444 LanmanServer - ok
11:53:24.0398 0x0444 [ 16650912BE5A94B40E0B3B4C39652B56, 908C2C9367AE0AC9AECB5D91514BB33ACD746D99F19C1A8DD6A9550E9CAD9E00 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:53:24.0406 0x0444 LanmanWorkstation - ok
11:53:24.0413 0x0444 [ CEEFD29FC551F289810B0B9381B321DC, 900F206B487B2190D9363F28AA4BA0CD7DCFE1D005BE05A48AF74B1B81194691 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:53:24.0415 0x0444 lltdio - ok
11:53:24.0455 0x0444 [ BCF53485E0A94722CDE3C4A93CD8EB8C, D24E1066EB102245A89A5D17D608DB9DF6B71C99F1C77E070B95EFD17D268141 ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:53:24.0463 0x0444 lltdsvc - ok
11:53:24.0480 0x0444 [ 5A2F7F1CBC2E631A497DAD16164E06D2, 35274FC6C386380B01B5E8F467E71A2C4E2FB2AD701554F9B1A9B036B0340142 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:53:24.0483 0x0444 lmhosts - ok
11:53:24.0516 0x0444 [ 4269D44BB47A6DA5D80B11F4C8536458, 7A8FFC8F851DD9E5C43986BE0888831CB71D188138DF3CF7F787DADDA70915B0 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
11:53:24.0522 0x0444 LMS - ok
11:53:24.0538 0x0444 [ 022CDD12161B063D7852B1075BF3FFF2, E21267243AF2FC208D27E67827B1264A762C99AECEDB7AD2C48A04F421A6B2F0 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
11:53:24.0541 0x0444 LSI_SAS - ok
11:53:24.0575 0x0444 [ 07AD59D669B996F29F91817F0ECFA34F, 026F332F862D142BFFC9D169CCD17A35BFB6B301EEC72AA13E16369B3520919C ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
11:53:24.0577 0x0444 LSI_SAS2 - ok
11:53:24.0636 0x0444 [ 216FB796AA4E252ACCE93B1BCB80B5EC, 5B1E49B5F7B9C7A778198D27F8EE500FE35DC32D40B22A3D6ED67560BEB04212 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
11:53:24.0639 0x0444 LSI_SCSI - ok
11:53:24.0658 0x0444 [ 5E80530AF37102488EE980B4A92AF99F, 364E18EAD9AC22F8A306B24C6C43E58224F6BE2744EFEAA2484696B8D9880851 ] LSI_SSS C:\Windows\system32\drivers\lsi_sss.sys
11:53:24.0661 0x0444 LSI_SSS - ok
11:53:24.0690 0x0444 [ D85E906ACB458BE4BF5F3C9B35404A74, BE054A5521F6D2E88BC4A4A9A7DD74A73CFAD80EDDD0C86491A6F4629BE3DAB5 ] LSM C:\Windows\System32\lsm.dll
11:53:24.0701 0x0444 LSM - ok
11:53:24.0714 0x0444 [ 2BDC5D711FA61307CE6190D47C956368, 6BCDC6CBB9783F1ABE8957BDA94AF977DFB2A310BB6D19085EFC8609C97FD180 ] luafv C:\Windows\system32\drivers\luafv.sys
11:53:24.0718 0x0444 luafv - ok
11:53:24.0735 0x0444 [ 9B0D829C3BE4E7472DB9DD2B79908E3C, ACED5806FFF39E84007B5A3DCB16315329DC53007F46B1BEEDC391CC659F7DD3 ] megasas C:\Windows\system32\drivers\megasas.sys
11:53:24.0737 0x0444 megasas - ok
11:53:24.0804 0x0444 [ ECC3F54C7AFC318271C4F0B4606D8DB0, FD1ACB18B8C912C7A57DABCD5460800DD0721A82E09C8D79C47B3392D61CBEA6 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
11:53:24.0812 0x0444 MegaSR - ok
11:53:24.0836 0x0444 [ E0EF6C1399A9B1AAA0B28590411BED04, 10C193D1ED434A6DC2AD8C450012B9AF1C848A0A0B3B775F13495648FB77E009 ] MEIx64 C:\Windows\system32\DRIVERS\TeeDriverx64.sys
11:53:24.0839 0x0444 MEIx64 - ok
11:53:24.0878 0x0444 [ EEE908BE7143FCA48CF0CB87214E2AB8, 4F9BD299F559DD36DBD93489CFAA753F236FBB70946E034D2E2260059AE20962 ] MMCSS C:\Windows\system32\mmcss.dll
11:53:24.0883 0x0444 MMCSS - ok
11:53:24.0890 0x0444 [ 780098AD5DA8A4822E2563984C85EF7B, 29312970774E944B5ED388316CF3D350DCABF721F9695737B0AC56BE878B0446 ] Modem C:\Windows\system32\drivers\modem.sys
11:53:24.0892 0x0444 Modem - ok
11:53:24.0929 0x0444 [ EA8EAD3F5B762F889CC7F3966625B48B, B701A42E5E08B7BC6601560446146803182E5DC631AB73E9408F19CB6432F121 ] monitor C:\Windows\System32\drivers\monitor.sys
11:53:24.0931 0x0444 monitor - ok
11:53:24.0986 0x0444 [ 618446B98C79776654340CE27C73485E, EFE7169FDD545933B5949DA2D09266971C0C3E6894E7BD8AFE29E41567C72B16 ] mouclass C:\Windows\System32\drivers\mouclass.sys
11:53:24.0988 0x0444 mouclass - ok
11:53:24.0999 0x0444 [ C0ADEBED913295803B579ED288936CBB, 58F71541166D1DA07C18FBD27458D55E3F8AD7291CB7496B3A2F01372A5B0CAE ] mouhid C:\Windows\System32\drivers\mouhid.sys
11:53:25.0000 0x0444 mouhid - ok
11:53:25.0013 0x0444 [ 89D263DBF08119CE16273991C120D6DD, 9771EDAD266F0E234E71DFB6792F396710E051F2ADCA5CDADEBBD2790D0E6054 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
11:53:25.0016 0x0444 mountmgr - ok
11:53:25.0056 0x0444 [ 4CCBBD4944777CA100B9A6C2F149A46F, 7FC172FAF8266BFBBBBAD94FD67EA3C1872F5927DC3900A9A54DB2DFE34E7415 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:53:25.0058 0x0444 mpsdrv - ok
11:53:25.0097 0x0444 [ 9DE3341BD4E14BC5FADFCAD3019F2D0D, 37E0531EADABC6D4BCC496826651D4D14CF0D10156FF13C11BDE466084B44FF4 ] MpsSvc C:\Windows\system32\mpssvc.dll
11:53:25.0118 0x0444 MpsSvc - ok
11:53:25.0142 0x0444 [ 3D70147F55F1EC84EB9139ED7FFE48BC, 12429C2FDDDA13815F0E18F9009011AA5360955759A23A38175543F480CB92EF ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:53:25.0146 0x0444 MRxDAV - ok
11:53:25.0188 0x0444 [ 7A761AEE58658378BBA45D360F874CB0, 31972E63D93E07D92EF69571B7ED1E69B1358DCA5BEED62A9372F6411B4DFDB3 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:53:25.0196 0x0444 mrxsmb - ok
11:53:25.0237 0x0444 [ 06D5F2FA3C61E8EA91648EA8E9F99FD3, C665B7896501D42C73955F4EAF4FA3C6B2C9286957D6023C235AFBF9BFB761C6 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:53:25.0243 0x0444 mrxsmb10 - ok
11:53:25.0258 0x0444 [ 697B78CE3925E4FBFC544232A5E9E2EB, 2D03425513572F6098BAAF82C0EDB49EBAB88438971D349CA1917DA0BDB76334 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:53:25.0263 0x0444 mrxsmb20 - ok
11:53:25.0296 0x0444 [ 98487487D6B3797CA927E9D7B030AE13, 05840AF0DD2E3CB596DA768DBD0728B52210EC05B55AB5921E697AD8956938DD ] MsBridge C:\Windows\system32\DRIVERS\bridge.sys
11:53:25.0299 0x0444 MsBridge - ok
11:53:25.0361 0x0444 [ 4A07458EB4F17573BD39F22029A991C1, 74D7A1882EA4D19B8F090C2813489E5D3F759BF4AF2D88AE852EC6510C405B5E ] MSDTC C:\Windows\System32\msdtc.exe
11:53:25.0367 0x0444 MSDTC - ok
11:53:25.0381 0x0444 [ 3886F1F2A4D2900ABAA7E4486BEEE6A2, ECCA22985838A914EDC866C491DEB64B9FF5110EFA9BEE541F634AC5EC3081F9 ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:53:25.0382 0x0444 Msfs - ok
11:53:25.0410 0x0444 [ C32A7A39B960A42BA9D4FBE47213CA03, 4DA48587138972DA5E95AEDBBBE73BA8CCADC8172C6654427ABEAC8047B27E95 ] msgpiowin32 C:\Windows\System32\drivers\msgpiowin32.sys
11:53:25.0412 0x0444 msgpiowin32 - ok
11:53:25.0432 0x0444 [ D3857A767B91A061B408CCAB02DA4F40, A4D780772086AD8717EE6DC2B6189F796939FB5E5AA08FD9D1984101998FBECF ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
11:53:25.0433 0x0444 mshidkmdf - ok
11:53:25.0437 0x0444 [ 839B48910FB1E887635C48F3EC11A05E, F8CFD99911500CC1B6A90C8E2A1697BD5A6E5776A62A62FE5B342FE204C936B1 ] mshidumdf C:\Windows\System32\drivers\mshidumdf.sys
11:53:25.0438 0x0444 mshidumdf - ok
11:53:25.0451 0x0444 [ 55C0DB741E3AB7463242B185B1C2997C, D2E2A5B48A64EA0EC2A6566C08E65A38D11CEA64BCA7B57793BA0D009E4D974A ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:53:25.0453 0x0444 msisadrv - ok
11:53:25.0490 0x0444 [ 216C6B035A4BA5560E1255BD8E5BB89F, A14E038604B9A5506DB145A4D9F51E2751AC825240D2744924F39C332B5DE00B ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:53:25.0498 0x0444 MSiSCSI - ok
11:53:25.0501 0x0444 msiserver - ok
11:53:25.0558 0x0444 [ 509809566E49F4411055864EA8D437CD, 70F37BF9C759E8BCA1C6AC8FB9805950925E1C648ED37E8561A0F7A407DFDC28 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:53:25.0560 0x0444 MSKSSRV - ok

Prosím o kontrolu logu - problém se zvukem, Win8

Prosím o kontrolu logu - problém se zvukem, Win8

Re: Prosím o kontrolu logu - problém se zvukem, Win8

Re: Prosím o kontrolu logu - problém se zvukem, Win8

Re: Prosím o kontrolu logu - problém se zvukem, Win8

Re: Prosím o kontrolu logu - problém se zvukem, Win8

Re: Prosím o kontrolu logu - problém se zvukem, Win8

Re: Prosím o kontrolu logu - problém se zvukem, Win8

Re: Prosím o kontrolu logu - problém se zvukem, Win8

Re: Prosím o kontrolu logu - problém se zvukem, Win8

Re: Prosím o kontrolu logu - problém se zvukem, Win8

Re: Prosím o kontrolu logu - problém se zvukem, Win8

Re: Prosím o kontrolu logu - problém se zvukem, Win8

Kdo je online