Ani po odvireni NB nejde Facebook

[Januska25]

Tak tu to je..

ComboFix 11-11-17.03 - Janka 17.11.2011 17:48:52.1.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.421.1033.18.2039.1598 [GMT 1:00]
Running from: c:\documents and settings\Janka\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Application Data\18F
c:\documents and settings\All Users\Application Data\18F\{2C2E9D9D-EC15-44E5-B74A-D10376EE7848}.swf
c:\documents and settings\All Users\Application Data\TEMP
c:\documents and settings\Janka\Application Data\Desktopicon
c:\documents and settings\Janka\Application Data\Desktopicon\config.ini
c:\documents and settings\Janka\WINDOWS
c:\windows\$NtUninstallKB16995$
c:\windows\$NtUninstallKB16995$\786010949\@
c:\windows\$NtUninstallKB16995$\786010949\L\acummful
c:\windows\$NtUninstallKB16995$\786010949\loader.tlb
c:\windows\$NtUninstallKB16995$\786010949\U\@00000001
c:\windows\$NtUninstallKB16995$\786010949\U\@000000c0
c:\windows\$NtUninstallKB16995$\786010949\U\@000000cb
c:\windows\$NtUninstallKB16995$\786010949\U\@000000cf
c:\windows\$NtUninstallKB16995$\786010949\U\@80000000
c:\windows\$NtUninstallKB16995$\786010949\U\@800000c0
c:\windows\$NtUninstallKB16995$\786010949\U\@800000cb
c:\windows\$NtUninstallKB16995$\786010949\U\@800000cf
c:\windows\$NtUninstallKB16995$\887770884
c:\windows\av_ico
c:\windows\av_ico\ico_avira_start.ico
c:\windows\av_ico\ico_mcafee_start.ico
c:\windows\btc_client_iplist.txt
c:\windows\front_ip_list.txt
c:\windows\geoiplist
c:\windows\geoiplist.rar
c:\windows\iecheck_iplist.txt
c:\windows\info1
c:\windows\iplist.txt
c:\windows\loader2.exe_ok
c:\windows\phoenix
c:\windows\phoenix.rar
c:\windows\phoenix\kernels\phatk\__init__.py
c:\windows\phoenix\kernels\phatk\__init__.pyc
c:\windows\phoenix\kernels\phatk\BFIPatcher.py
c:\windows\phoenix\kernels\phatk\kernel.cl
c:\windows\phoenix\kernels\poclbm\__init__.py
c:\windows\phoenix\kernels\poclbm\__init__.pyc
c:\windows\phoenix\kernels\poclbm\BFIPatcher.py
c:\windows\phoenix\kernels\poclbm\kernel.cl
c:\windows\phoenix\phoenix.exe
c:\windows\rpcminer.rar
c:\windows\system32\
c:\windows\system32\drivers\etc\HSTS~1
c:\windows\ufa.rar
c:\windows\update.1
c:\windows\update.2
c:\windows\update.5.0
c:\windows\update.tray-8-0-lnk
c:\windows\update.tray-8-0
c:\windows\winlog-dirs.txt
c:\windows\winlog-ids.txt
.
.
((((((((((((((((((((((((( Files Created from 2011-10-17 to 2011-11-17 )))))))))))))))))))))))))))))))
.
.
2011-11-17 10:28 . 2011-11-17 10:30 111872 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2011-11-17 10:27 . 2011-11-17 10:27 -------- d-----w- C:\RK_Quarantine
2011-11-15 14:55 . 2011-11-15 14:55 -------- d-----w- c:\documents and settings\Janka\Application Data\Malwarebytes
2011-11-15 14:55 . 2011-11-15 14:55 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2011-11-15 14:55 . 2011-11-15 14:56 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-11-15 14:55 . 2011-08-31 16:00 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-11-14 19:55 . 2011-11-16 09:17 -------- d-----w- c:\program files\trend micro
2011-11-14 19:55 . 2011-11-14 19:55 -------- d-----w- C:\rsit
2011-11-13 10:42 . 2011-11-13 10:44 134104 ----a-w- c:\program files\Mozilla Firefox\components\browsercomps.dll
2011-11-13 10:42 . 2011-11-13 10:44 89048 ----a-w- c:\program files\Mozilla Firefox\libEGL.dll
2011-11-13 10:42 . 2011-11-13 10:44 801752 ----a-w- c:\program files\Mozilla Firefox\mozsqlite3.dll
2011-11-13 10:42 . 2011-11-13 10:44 478168 ----a-w- c:\program files\Mozilla Firefox\libGLESv2.dll
2011-11-13 10:42 . 2011-11-13 10:44 1989592 ----a-w- c:\program files\Mozilla Firefox\mozjs.dll
2011-11-13 10:42 . 2011-11-13 10:44 15832 ----a-w- c:\program files\Mozilla Firefox\mozalloc.dll
2011-11-13 10:42 . 2011-09-29 00:26 2106216 ----a-w- c:\program files\Mozilla Firefox\D3DCompiler_43.dll
2011-11-13 10:42 . 2011-09-29 00:26 1998168 ----a-w- c:\program files\Mozilla Firefox\d3dx9_43.dll
2011-11-13 10:16 . 2011-11-13 10:16 -------- d-----w- c:\program files\Yamicsoft
2011-11-13 10:14 . 2011-11-13 10:15 -------- d-----w- c:\program files\SpywareBlaster
2011-11-12 21:47 . 2011-11-12 21:47 -------- d-----w- c:\documents and settings\Janka\Application Data\IObit
2011-11-12 21:36 . 2011-11-12 21:36 -------- d-----w- c:\program files\EMCO
2011-11-12 21:32 . 2011-11-17 10:20 -------- d-----w- c:\program files\Spybot - Search & Destroy
2011-11-12 21:16 . 2011-11-12 21:16 -------- d-----w- c:\documents and settings\Janka\Application Data\Avira
2011-11-12 21:15 . 2011-09-18 07:39 134344 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-11-12 21:15 . 2011-09-15 22:55 36000 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2011-11-12 21:15 . 2011-09-15 22:55 74640 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-11-12 21:14 . 2011-11-12 21:14 -------- d-----w- c:\program files\Avira
2011-11-12 21:14 . 2011-11-12 21:14 -------- d-----w- c:\documents and settings\All Users\Application Data\Avira
2011-11-08 20:17 . 2011-11-12 15:21 -------- d-sh--w- c:\documents and settings\LocalService\Local Settings\Application Data\2ed99345
2011-11-03 10:15 . 2011-11-03 10:15 -------- d-----w- c:\documents and settings\Janka\Local Settings\Application Data\S2PC
2011-11-03 10:15 . 2009-09-18 16:40 523264 ------w- c:\windows\system32\dsmgr.cpl
2011-11-03 10:12 . 2009-12-23 06:30 484592 ----a-w- c:\windows\SSndii.exe
2011-11-03 10:12 . 2009-09-18 09:32 21776 ----a-w- c:\windows\system32\msxml2a.dll
2011-11-03 10:12 . 2011-11-03 10:12 -------- d-----w- c:\windows\Dell
2011-11-03 10:10 . 1997-05-26 13:55 23040 ----a-w- c:\windows\system32\irisco32.dll
2011-11-03 10:09 . 2011-11-03 10:10 -------- d-----w- c:\program files\Readiris10
2011-11-03 10:09 . 2011-11-03 10:11 -------- d-----w- c:\program files\SmarThru 4
2011-11-03 10:08 . 2009-12-23 05:06 115952 ----a-r- c:\windows\Wiainst.exe
2011-11-03 10:06 . 2009-09-17 01:38 26624 ----a-w- c:\windows\system32\sdo1ml3.dll
2011-11-03 10:06 . 2009-09-17 01:38 19968 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\sdo1mpc.dll
2011-11-03 10:06 . 2009-09-17 01:38 151552 ----a-w- c:\windows\system32\sdo1mci.exe
2011-11-03 10:06 . 2009-09-17 01:38 65536 ----a-w- c:\windows\system32\sdo1mci.dll
2011-11-03 10:05 . 2011-11-03 10:05 -------- d-----w- c:\program files\Dell
2011-10-31 13:40 . 2011-11-13 10:23 -------- d-----w- C:\reports
2011-10-31 13:40 . 2011-08-14 14:23 -------- d-----w- C:\lib
2011-10-31 13:40 . 2011-08-14 14:23 -------- d-----w- C:\ProductDB
2011-10-31 13:40 . 2009-06-03 13:39 825 ----a-w- C:\jr.cmd
2011-10-31 13:40 . 2009-05-05 20:13 147 ----a-w- C:\Projekcie.cmd
2011-10-31 09:58 . 2011-11-16 07:15 -------- d-----w- c:\windows\ufa
2011-10-30 20:24 . 2011-11-14 18:42 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-10-28 08:05 . 2011-10-31 09:58 246272 ----a-w- c:\windows\unrar.exe
2011-10-28 07:51 . 2011-11-12 16:15 -------- d--h--w- c:\windows\update.tray-9-0-lnk
2011-10-28 07:51 . 2011-11-12 16:15 -------- d--h--w- c:\windows\update.tray-9-0
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-13 10:35 . 2009-08-10 09:06 25992 ----a-w- c:\windows\system32\pgdfgsvc.exe
2011-09-26 09:41 . 2008-07-29 17:59 611328 ----a-w- c:\windows\system32\uiautomationcore.dll
2011-09-26 09:41 . 2007-07-27 12:00 220160 ----a-w- c:\windows\system32\oleacc.dll
2011-09-26 09:41 . 2007-07-27 12:00 20480 ----a-w- c:\windows\system32\oleaccrc.dll
2011-09-09 09:12 . 2007-07-27 12:00 599040 ----a-w- c:\windows\system32\crypt32.dll
2011-09-06 13:20 . 2007-07-27 12:00 1858944 ----a-w- c:\windows\system32\win32k.sys
2011-08-22 23:48 . 2007-07-27 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2011-08-22 23:48 . 2007-07-27 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-08-22 23:48 . 2007-07-27 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-08-22 11:56 . 2007-07-27 12:00 385024 ----a-w- c:\windows\system32\html.iec
2011-11-13 10:44 . 2011-11-13 10:42 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Lotus iNotes Sync Manager"="c:\notes\LOTUSI~1\nDOLMgr.exe" [2008-08-08 409600]
"1133 Scan2PC"="c:\windows\twain_32\Dell\DELL1133\Scan2Pc.exe" [2009-12-24 1978880]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-09-23 258512]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
"LXDBCATS"="c:\windows\System32\spool\DRIVERS\W32X86\3\LXDBtime.dll" [2006-03-02 73728]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-2-6 561213]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableSecureUIAPaths"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Authentication Packages REG_MULTI_SZ msv1_0 nwprovau
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"DisableThumbnailCache"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Common Files\\Ahead\\Nero Web\\SetupX.exe"=
"c:\\Program Files\\Deutscher Ring\\Calculator SK\\Deutscher Ring Calculator SK.exe"=
"c:\\Program Files\\Google\\Google Earth\\client\\googleearth.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\ICQ7.4\\ICQ.exe"=
"c:\\Program Files\\Deutscher Ring\\Accident Calculator SK\\Deutscher Ring Accident Calculator SK.exe"=
"c:\\Program Files\\Google\\Google Earth\\plugin\\geplugin.exe"=
"c:\\WINDOWS\\twain_32\\Dell\\DELL1133\\Scan2Pc.exe"=
"c:\\WINDOWS\\twain_32\\Dell\\DELL1133\\Sscan2io.exe"=
"c:\\WINDOWS\\twain_32\\Dell\\ScanMgr.exe"=
"c:\\Program Files\\Google\\Update\\GoogleUpdate.exe"=
"c:\\Program Files\\Ask.com\\UpdateTask.exe"=
"c:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe"=
"c:\\Documents and Settings\\Janka\\Desktop\\KALKULACKY OVB\\run.exe"=
"c:\\Program Files\\Common Files\\Microsoft Shared\\Source Engine\\OSE.EXE"=
"c:\\Program Files\\Mozilla Firefox\\plugin-container.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Program Files\\Windows Media Player\\wmplayer.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
.
R1 avkmgr;avkmgr;c:\windows\system32\drivers\avkmgr.sys [12.11.2011 22:15 36000]
R2 Angelnt;Angelnt;c:\windows\system32\drivers\ANGELNT.SYS [19.3.2010 16:40 51072]
R2 AntiVirSchedulerService;Avira Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [12.11.2011 22:15 86224]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [15.11.2011 15:55 366152]
R3 FlrnUSB;Leadtek USB Network Interface;c:\windows\system32\drivers\LtkUSB.sys [13.8.2009 19:36 41907]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [15.11.2011 15:55 22216]
S2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service; [x]
S2 FMMService;FMMService; [x]
S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [28.10.2009 19:49 133104]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; [x]
S2 ICQ Service;ICQ Service; [x]
S2 SSPORT;SSPORT;\??\c:\windows\system32\Drivers\SSPORT.sys --> c:\windows\system32\Drivers\SSPORT.sys [?]
S3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [9.8.2009 20:32 193840]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [28.10.2009 19:49 133104]
S3 lxdb_device;lxdb_device; [x]
S3 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys --> c:\windows\system32\drivers\mbamswissarmy.sys [?]
S3 McComponentHostService;McAfee Security Scan Component Host Service; [x]
S3 TrueSight;TrueSight;c:\windows\system32\drivers\TrueSight.sys [17.11.2011 11:28 111872]
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2007-06-20 10:47 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Contents of the 'Scheduled Tasks' folder
.
2011-11-17 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-10-28 18:49]
.
2011-11-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-10-28 18:49]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://gmail.com/
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Send to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: SmarThru4 Capture Selection - c:\program files\SmarThru 4\WebCapture.dll2.htm
IE: SmarThru4 Save as HTML - c:\program files\SmarThru 4\WebCapture.dll1.htm
IE: SmarThru4 Save Selected Text - c:\program files\SmarThru 4\WebCapture.dll.htm
IE: SmarThru4 Web Capture - c:\program files\SmarThru 4\WebCapture.dll
IE: {{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - c:\program files\ICQ7.4\ICQ.exe
TCP: DhcpNameServer = 195.91.0.17 194.154.227.17
FF - ProfilePath - c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.gmail.com
.
- - - - ORPHANS REMOVED - - - -
.
BHO-{28387537-e3f9-4ed7-860c-11e69af4a8a0} - (no file)
Toolbar-{28387537-e3f9-4ed7-860c-11e69af4a8a0} - (no file)
Toolbar-10 - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-17 18:00
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Lotus iNotes Sync Manager = c:\notes\LOTUSI~1\nDOLMgr.exe -minimize?????????????P7m?t?????B~????????????&?B~????P7m???T?P???T?????????D~0?B~????&?B~?xB~?????????xB~???????? ???????(???s??|????0???????????Q?stA?B~????????????T????a???????????????????Ep??Ip???????????C~?????Ep??Ip????
LXDBCATS = rundll32 c:\windows\System32\spool\DRIVERS\W32X86\3\LXDBtime.dll,_RunDLLEntry@16???????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'explorer.exe'(2968)
c:\windows\system32\WININET.dll
c:\windows\system32\btmmhook.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\btncopy.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\windows\system32\wscntfy.exe
c:\progra~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
.
**************************************************************************
.
Completion time: 2011-11-17 18:09:36 - machine was rebooted
ComboFix-quarantined-files.txt 2011-11-17 17:09
.
Pre-Run: 97 189 552 128 bytes free
Post-Run: 25 adresárov, 97 453 187 072 voľných bajtov
.
WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=AlwaysOff /fastdetect
.
- - End Of File - - FF9F71AA173EBC41F4CA84E56A9E2812

[vyosek]

Stahnete si TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe

• Utilitu spustte a prikazte ji, at skenuje - klik na Start Scan
• Pokud utilita najde infikekci, bude ji chtit lecit (Cure), povolte leceni kliknutim na Continue
• Pokud utilita najde podezrely soubor (suspicious), bude jej chtit preskocit (Skip), povolte preskoceni kliknutim na Continue
• Po dokonceni skenu bude mozna nutny restart PC, povolte jej kliknutim na Reboot now
• Po restartu na Vas vyskoci log, pokud se tak nestane, najdete jej primo na disku, kde mate Windows (obvykle c:\) ve tvaru TDSSKiller.nejaka cisilka _log.txt - jeho obsah sem vlozte
• Pokud restart nebude vyzadovan, kliknete na Close a nasledne na Report - vytvori se log - jeho obsah sem vlozte

Nasledujici soubory otestujte na VirusTotalu (viz muj podpis)

• c:\windows\system32\pgdfgsvc.exe
• Kliknete na Prochazet
• Soubor nehledejte, jen vlozte cestu souboru, ktery chci otestovat
• Kliknete na Send File
• Pokud na Vas vyskoci obrazovka jako je nize, tak kliknete na ReAnalyse
  
• Vysledek analyzy sem vlozte (jako odkaz)

[Januska25]

No dufam som to dobre urobila:

18:24:10.0250 3696 TDSS rootkit removing tool 2.6.19.0 Nov 16 2011 12:18:50
18:24:10.0656 3696 ============================================================
18:24:10.0656 3696 Current date / time: 2011/11/17 18:24:10.0656
18:24:10.0656 3696 SystemInfo:
18:24:10.0656 3696
18:24:10.0656 3696 OS Version: 5.1.2600 ServicePack: 3.0
18:24:10.0656 3696 Product type: Workstation
18:24:10.0656 3696 ComputerName: NOTEBOOK
18:24:10.0656 3696 UserName: Janka
18:24:10.0656 3696 Windows directory: C:\WINDOWS
18:24:10.0656 3696 System windows directory: C:\WINDOWS
18:24:10.0656 3696 Processor architecture: Intel x86
18:24:10.0656 3696 Number of processors: 2
18:24:10.0656 3696 Page size: 0x1000
18:24:10.0656 3696 Boot type: Normal boot
18:24:10.0656 3696 ============================================================
18:24:10.0984 3696 Initialize success
18:24:13.0250 1732 ============================================================
18:24:13.0250 1732 Scan started
18:24:13.0250 1732 Mode: Manual;
18:24:13.0250 1732 ============================================================
18:24:14.0062 1732 Abiosdsk - ok
18:24:14.0078 1732 abp480n5 - ok
18:24:14.0140 1732 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:24:14.0156 1732 ACPI - ok
18:24:14.0187 1732 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
18:24:14.0187 1732 ACPIEC - ok
18:24:14.0250 1732 ADIHdAudAddService (4e12c97cbfe99be15d7680918f9899ec) C:\WINDOWS\system32\drivers\ADIHdAud.sys
18:24:14.0265 1732 ADIHdAudAddService - ok
18:24:14.0281 1732 adpu160m - ok
18:24:14.0296 1732 AEAudio (fff87a9b1ab36ee4b7bec98a4cb01b79) C:\WINDOWS\system32\drivers\AEAudio.sys
18:24:14.0296 1732 AEAudio - ok
18:24:14.0328 1732 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
18:24:14.0328 1732 aec - ok
18:24:14.0406 1732 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
18:24:14.0406 1732 AFD - ok
18:24:14.0515 1732 AgereSoftModem (3712986cc3abf0dc656b43525b9d1279) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
18:24:14.0578 1732 AgereSoftModem - ok
18:24:14.0765 1732 Aha154x - ok
18:24:14.0781 1732 aic78u2 - ok
18:24:14.0796 1732 aic78xx - ok
18:24:14.0828 1732 AliIde - ok
18:24:14.0843 1732 amsint - ok
18:24:14.0906 1732 Angelnt (4a8cb8fea9dcb6f93017f413e2646001) C:\WINDOWS\System32\Drivers\ANGELNT.SYS
18:24:14.0906 1732 Angelnt - ok
18:24:14.0937 1732 asc - ok
18:24:14.0953 1732 asc3350p - ok
18:24:14.0968 1732 asc3550 - ok
18:24:15.0046 1732 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:24:15.0046 1732 AsyncMac - ok
18:24:15.0078 1732 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
18:24:15.0078 1732 atapi - ok
18:24:15.0078 1732 Atdisk - ok
18:24:15.0125 1732 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:24:15.0140 1732 Atmarpc - ok
18:24:15.0171 1732 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
18:24:15.0171 1732 audstub - ok
18:24:15.0218 1732 avgntflt (7713e4eb0276702faa08e52a6e23f2a6) C:\WINDOWS\system32\DRIVERS\avgntflt.sys
18:24:15.0218 1732 avgntflt - ok
18:24:15.0281 1732 avipbb (912d23140cd05980f6cdae790ddafc8d) C:\WINDOWS\system32\DRIVERS\avipbb.sys
18:24:15.0281 1732 avipbb - ok
18:24:15.0296 1732 avkmgr (271cfd1a989209b1964e24d969552bf7) C:\WINDOWS\system32\DRIVERS\avkmgr.sys
18:24:15.0296 1732 avkmgr - ok
18:24:15.0515 1732 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
18:24:15.0515 1732 Beep - ok
18:24:15.0609 1732 btaudio (3aa4bf555c00c5b87fd48dd7bdbd4e97) C:\WINDOWS\system32\drivers\btaudio.sys
18:24:15.0625 1732 btaudio - ok
18:24:15.0687 1732 BTDriver (07f0a66cfa550b13ad0674ae09e3cba0) C:\WINDOWS\system32\DRIVERS\btport.sys
18:24:15.0687 1732 BTDriver - ok
18:24:15.0781 1732 BTKRNL (ba57f31eab93dc597d772f6f5b9ed54f) C:\WINDOWS\system32\DRIVERS\btkrnl.sys
18:24:15.0796 1732 BTKRNL - ok
18:24:15.0828 1732 BTWDNDIS (b1d350f3f13cf340fce93912d2ba1ebf) C:\WINDOWS\system32\DRIVERS\btwdndis.sys
18:24:15.0843 1732 BTWDNDIS - ok
18:24:15.0859 1732 BTWUSB (57e91e9925976bbc98984eebaaf1d84c) C:\WINDOWS\system32\Drivers\btwusb.sys
18:24:15.0859 1732 BTWUSB - ok
18:24:15.0875 1732 catchme - ok
18:24:15.0937 1732 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
18:24:15.0937 1732 cbidf2k - ok
18:24:16.0125 1732 cd20xrnt - ok
18:24:16.0156 1732 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
18:24:16.0156 1732 Cdaudio - ok
18:24:16.0218 1732 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
18:24:16.0234 1732 Cdfs - ok
18:24:16.0250 1732 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:24:16.0250 1732 Cdrom - ok
18:24:16.0265 1732 Changer - ok
18:24:16.0296 1732 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
18:24:16.0312 1732 CmBatt - ok
18:24:16.0312 1732 CmdIde - ok
18:24:16.0343 1732 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
18:24:16.0343 1732 Compbatt - ok
18:24:16.0375 1732 Cpqarray - ok
18:24:16.0390 1732 dac2w2k - ok
18:24:16.0406 1732 dac960nt - ok
18:24:16.0468 1732 DgiVecp (7f19dba1a467b838ccb23124a2c55568) C:\WINDOWS\system32\Drivers\DgiVecp.sys
18:24:16.0468 1732 DgiVecp - ok
18:24:16.0500 1732 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
18:24:16.0500 1732 Disk - ok
18:24:16.0562 1732 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
18:24:16.0609 1732 dmboot - ok
18:24:16.0625 1732 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
18:24:16.0656 1732 dmio - ok
18:24:16.0656 1732 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
18:24:16.0671 1732 dmload - ok
18:24:16.0703 1732 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
18:24:16.0718 1732 DMusic - ok
18:24:16.0734 1732 dpti2o - ok
18:24:16.0750 1732 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
18:24:16.0750 1732 drmkaud - ok
18:24:16.0890 1732 e1express (8942419786970adb32b05bb7950aee72) C:\WINDOWS\system32\DRIVERS\e1e5132.sys
18:24:16.0906 1732 e1express - ok
18:24:17.0093 1732 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
18:24:17.0109 1732 Fastfat - ok
18:24:17.0140 1732 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
18:24:17.0140 1732 Fdc - ok
18:24:17.0171 1732 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
18:24:17.0171 1732 Fips - ok
18:24:17.0187 1732 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
18:24:17.0187 1732 Flpydisk - ok
18:24:17.0234 1732 FlrnUSB (66d252e6bd9bc2d9ec961032b2246874) C:\WINDOWS\system32\DRIVERS\LtkUSB.sys
18:24:17.0234 1732 FlrnUSB - ok
18:24:17.0296 1732 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
18:24:17.0312 1732 FltMgr - ok
18:24:17.0343 1732 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:24:17.0343 1732 Fs_Rec - ok
18:24:17.0375 1732 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:24:17.0390 1732 Ftdisk - ok
18:24:17.0484 1732 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:24:17.0484 1732 Gpc - ok
18:24:17.0546 1732 hamachi (833051c6c6c42117191935f734cfbd97) C:\WINDOWS\system32\DRIVERS\hamachi.sys
18:24:17.0562 1732 hamachi - ok
18:24:17.0734 1732 HBtnKey (407e41ddb2bfece109132aec296e0d98) C:\WINDOWS\system32\DRIVERS\cpqbttn.sys
18:24:17.0734 1732 HBtnKey - ok
18:24:17.0781 1732 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:24:17.0781 1732 HDAudBus - ok
18:24:17.0843 1732 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:24:17.0843 1732 HidUsb - ok
18:24:17.0859 1732 hpn - ok
18:24:17.0875 1732 HpqKbFiltr (35956140e686d53bf676cf0c778880fc) C:\WINDOWS\system32\DRIVERS\HpqKbFiltr.sys
18:24:17.0890 1732 HpqKbFiltr - ok
18:24:17.0968 1732 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
18:24:17.0984 1732 HPZid412 - ok
18:24:18.0031 1732 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
18:24:18.0031 1732 HPZipr12 - ok
18:24:18.0125 1732 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
18:24:18.0140 1732 HPZius12 - ok
18:24:18.0203 1732 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
18:24:18.0203 1732 HTTP - ok
18:24:18.0343 1732 i2omgmt - ok
18:24:18.0359 1732 i2omp - ok
18:24:18.0421 1732 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:24:18.0421 1732 i8042prt - ok
18:24:18.0765 1732 ialm (42caa789a21014aa809a8ff59b3ccfd9) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
18:24:19.0062 1732 ialm - ok
18:24:19.0125 1732 iaStor (e5a0034847537eaee3c00349d5c34c5f) C:\WINDOWS\system32\drivers\iaStor.sys
18:24:19.0125 1732 iaStor - ok
18:24:19.0265 1732 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
18:24:19.0265 1732 Imapi - ok
18:24:19.0375 1732 ini910u - ok
18:24:19.0406 1732 IntelIde - ok
18:24:19.0453 1732 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
18:24:19.0453 1732 intelppm - ok
18:24:19.0484 1732 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
18:24:19.0500 1732 Ip6Fw - ok
18:24:19.0562 1732 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:24:19.0562 1732 IpFilterDriver - ok
18:24:19.0578 1732 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:24:19.0593 1732 IpInIp - ok
18:24:19.0625 1732 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:24:19.0625 1732 IpNat - ok
18:24:19.0656 1732 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:24:19.0656 1732 IPSec - ok
18:24:19.0687 1732 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
18:24:19.0703 1732 IRENUM - ok
18:24:19.0734 1732 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:24:19.0750 1732 isapnp - ok
18:24:19.0890 1732 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:24:19.0890 1732 Kbdclass - ok
18:24:20.0078 1732 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
18:24:20.0078 1732 kbdhid - ok
18:24:20.0140 1732 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
18:24:20.0140 1732 kmixer - ok
18:24:20.0187 1732 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
18:24:20.0187 1732 KSecDD - ok
18:24:20.0203 1732 lbrtfdc - ok
18:24:20.0250 1732 MBAMProtector (69a6268d7f81e53d568ab4e7e991caf3) C:\WINDOWS\system32\drivers\mbam.sys
18:24:20.0250 1732 MBAMProtector - ok
18:24:20.0312 1732 MBAMSwissArmy - ok
18:24:20.0375 1732 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
18:24:20.0375 1732 mnmdd - ok
18:24:20.0406 1732 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
18:24:20.0406 1732 Modem - ok
18:24:20.0546 1732 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:24:20.0546 1732 Mouclass - ok
18:24:20.0718 1732 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:24:20.0718 1732 mouhid - ok
18:24:20.0796 1732 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
18:24:20.0796 1732 MountMgr - ok
18:24:20.0812 1732 mraid35x - ok
18:24:20.0859 1732 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:24:20.0875 1732 MRxDAV - ok
18:24:20.0890 1732 MRxSmb - ok
18:24:20.0921 1732 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
18:24:20.0921 1732 Msfs - ok
18:24:20.0968 1732 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:24:20.0968 1732 MSKSSRV - ok
18:24:21.0000 1732 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:24:21.0000 1732 MSPCLOCK - ok
18:24:21.0031 1732 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
18:24:21.0031 1732 MSPQM - ok
18:24:21.0062 1732 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:24:21.0078 1732 mssmbios - ok
18:24:21.0171 1732 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
18:24:21.0171 1732 Mup - ok
18:24:21.0218 1732 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
18:24:21.0234 1732 NDIS - ok
18:24:21.0437 1732 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:24:21.0437 1732 NdisTapi - ok
18:24:21.0500 1732 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:24:21.0500 1732 Ndisuio - ok
18:24:21.0515 1732 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:24:21.0515 1732 NdisWan - ok
18:24:21.0593 1732 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
18:24:21.0593 1732 NDProxy - ok
18:24:21.0625 1732 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
18:24:21.0625 1732 NetBIOS - ok
18:24:21.0687 1732 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
18:24:21.0703 1732 NetBT - ok
18:24:21.0953 1732 NETw5x32 (05743fffc2bc88cc8e426321bc6a762e) C:\WINDOWS\system32\DRIVERS\NETw5x32.sys
18:24:22.0140 1732 NETw5x32 - ok
18:24:22.0328 1732 nmwcd (c82f4cc10ad315b6d6bcb14d0a7cad66) C:\WINDOWS\system32\drivers\ccdcmb.sys
18:24:22.0328 1732 nmwcd - ok
18:24:22.0437 1732 nmwcdc (60ef5f5621d7832f00a3f190a0c905e2) C:\WINDOWS\system32\drivers\ccdcmbo.sys
18:24:22.0453 1732 nmwcdc - ok
18:24:22.0500 1732 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
18:24:22.0500 1732 Npfs - ok
18:24:22.0546 1732 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
18:24:22.0546 1732 Ntfs - ok
18:24:22.0578 1732 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
18:24:22.0578 1732 Null - ok
18:24:22.0640 1732 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:24:22.0656 1732 NwlnkFlt - ok
18:24:22.0687 1732 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:24:22.0703 1732 NwlnkFwd - ok
18:24:22.0734 1732 NwlnkIpx (8b8b1be2dba4025da6786c645f77f123) C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
18:24:22.0734 1732 NwlnkIpx - ok
18:24:22.0921 1732 NwlnkNb (56d34a67c05e94e16377c60609741ff8) C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
18:24:22.0937 1732 NwlnkNb - ok
18:24:22.0968 1732 NwlnkSpx (c0bb7d1615e1acbdc99757f6ceaf8cf0) C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
18:24:22.0968 1732 NwlnkSpx - ok
18:24:23.0015 1732 NWRDR (36b9b950e3d2e100970a48d8bad86740) C:\WINDOWS\system32\DRIVERS\nwrdr.sys
18:24:23.0015 1732 NWRDR - ok
18:24:23.0078 1732 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys
18:24:23.0078 1732 Parport - ok
18:24:23.0093 1732 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
18:24:23.0109 1732 PartMgr - ok
18:24:23.0140 1732 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
18:24:23.0140 1732 ParVdm - ok
18:24:23.0156 1732 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
18:24:23.0171 1732 PCI - ok
18:24:23.0171 1732 PCIDump - ok
18:24:23.0218 1732 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
18:24:23.0234 1732 PCIIde - ok
18:24:23.0265 1732 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
18:24:23.0281 1732 Pcmcia - ok
18:24:23.0296 1732 PDCOMP - ok
18:24:23.0312 1732 PDFRAME - ok
18:24:23.0343 1732 PDRELI - ok
18:24:23.0359 1732 PDRFRAME - ok
18:24:23.0375 1732 perc2 - ok
18:24:23.0390 1732 perc2hib - ok
18:24:23.0468 1732 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:24:23.0468 1732 PptpMiniport - ok
18:24:23.0484 1732 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
18:24:23.0484 1732 PSched - ok
18:24:23.0500 1732 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:24:23.0500 1732 Ptilink - ok
18:24:23.0515 1732 ql1080 - ok
18:24:23.0515 1732 Ql10wnt - ok
18:24:23.0531 1732 ql12160 - ok
18:24:23.0546 1732 ql1240 - ok
18:24:23.0562 1732 ql1280 - ok
18:24:23.0578 1732 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:24:23.0578 1732 RasAcd - ok
18:24:23.0640 1732 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:24:23.0640 1732 Rasl2tp - ok
18:24:23.0796 1732 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:24:23.0796 1732 RasPppoe - ok
18:24:23.0812 1732 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
18:24:23.0812 1732 Raspti - ok
18:24:23.0828 1732 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:24:23.0828 1732 Rdbss - ok
18:24:23.0843 1732 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:24:23.0843 1732 RDPCDD - ok
18:24:23.0859 1732 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
18:24:23.0859 1732 rdpdr - ok
18:24:23.0921 1732 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
18:24:23.0921 1732 RDPWD - ok
18:24:23.0984 1732 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
18:24:23.0984 1732 redbook - ok
18:24:24.0062 1732 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:24:24.0062 1732 Secdrv - ok
18:24:24.0109 1732 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys
18:24:24.0109 1732 Serial - ok
18:24:24.0156 1732 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
18:24:24.0171 1732 Sfloppy - ok
18:24:24.0187 1732 Simbad - ok
18:24:24.0203 1732 Sparrow - ok
18:24:24.0265 1732 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
18:24:24.0265 1732 splitter - ok
18:24:24.0296 1732 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
18:24:24.0312 1732 sr - ok
18:24:24.0390 1732 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
18:24:24.0406 1732 Srv - ok
18:24:24.0484 1732 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
18:24:24.0484 1732 ssmdrv - ok
18:24:24.0625 1732 SSPORT - ok
18:24:24.0656 1732 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
18:24:24.0656 1732 swenum - ok
18:24:24.0687 1732 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
18:24:24.0703 1732 swmidi - ok
18:24:24.0718 1732 symc810 - ok
18:24:24.0734 1732 symc8xx - ok
18:24:24.0750 1732 sym_hi - ok
18:24:24.0765 1732 sym_u3 - ok
18:24:24.0843 1732 SynTP (926e0bb4cac05d9a0c3b59dc16fe2f1c) C:\WINDOWS\system32\DRIVERS\SynTP.sys
18:24:24.0843 1732 SynTP - ok
18:24:24.0875 1732 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
18:24:24.0875 1732 sysaudio - ok
18:24:24.0984 1732 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:24:24.0984 1732 Tcpip - ok
18:24:25.0031 1732 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
18:24:25.0031 1732 TDPIPE - ok
18:24:25.0078 1732 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
18:24:25.0078 1732 TDTCP - ok
18:24:25.0203 1732 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
18:24:25.0203 1732 TermDD - ok
18:24:25.0296 1732 TosIde - ok
18:24:25.0359 1732 TrueSight (f69641efdb19acb4753b0155f7fdeed5) c:\windows\system32\drivers\TrueSight.sys
18:24:25.0375 1732 TrueSight - ok
18:24:25.0406 1732 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
18:24:25.0421 1732 Udfs - ok
18:24:25.0437 1732 ultra - ok
18:24:25.0484 1732 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
18:24:25.0500 1732 Update - ok
18:24:25.0562 1732 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:24:25.0562 1732 usbccgp - ok
18:24:25.0593 1732 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:24:25.0609 1732 usbehci - ok
18:24:25.0671 1732 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:24:25.0671 1732 usbhub - ok
18:24:25.0734 1732 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
18:24:25.0734 1732 usbprint - ok
18:24:25.0937 1732 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
18:24:25.0937 1732 usbscan - ok
18:24:26.0031 1732 usbstor (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:24:26.0046 1732 usbstor - ok
18:24:26.0109 1732 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
18:24:26.0109 1732 usbuhci - ok
18:24:26.0187 1732 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
18:24:26.0187 1732 VgaSave - ok
18:24:26.0203 1732 ViaIde - ok
18:24:26.0234 1732 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
18:24:26.0234 1732 VolSnap - ok
18:24:26.0281 1732 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:24:26.0281 1732 Wanarp - ok
18:24:26.0359 1732 Wdf01000 (fd47474bd21794508af449d9d91af6e6) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
18:24:26.0375 1732 Wdf01000 - ok
18:24:26.0468 1732 WDICA - ok
18:24:26.0500 1732 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
18:24:26.0500 1732 wdmaud - ok
18:24:26.0656 1732 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
18:24:26.0656 1732 WmiAcpi - ok
18:24:26.0765 1732 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
18:24:26.0765 1732 WpdUsb - ok
18:24:26.0843 1732 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
18:24:26.0843 1732 WudfPf - ok
18:24:26.0906 1732 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
18:24:26.0921 1732 WudfRd - ok
18:24:27.0000 1732 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
18:24:27.0171 1732 \Device\Harddisk0\DR0 - ok
18:24:27.0171 1732 Boot (0x1200) (ef6b90e7f0d6f458b7822b878bd5de69) \Device\Harddisk0\DR0\Partition0
18:24:27.0171 1732 \Device\Harddisk0\DR0\Partition0 - ok
18:24:27.0171 1732 ============================================================
18:24:27.0171 1732 Scan finished
18:24:27.0171 1732 ============================================================
18:24:27.0203 1720 Detected object count: 0
18:24:27.0203 1720 Actual detected object count: 0
18:24:43.0531 3280 ============================================================
18:24:43.0531 3280 Scan started
18:24:43.0531 3280 Mode: Manual;
18:24:43.0531 3280 ============================================================
18:24:43.0906 3280 Abiosdsk - ok
18:24:43.0937 3280 abp480n5 - ok
18:24:44.0031 3280 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:24:44.0031 3280 ACPI - ok
18:24:44.0062 3280 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
18:24:44.0062 3280 ACPIEC - ok
18:24:44.0125 3280 ADIHdAudAddService (4e12c97cbfe99be15d7680918f9899ec) C:\WINDOWS\system32\drivers\ADIHdAud.sys
18:24:44.0125 3280 ADIHdAudAddService - ok
18:24:44.0140 3280 adpu160m - ok
18:24:44.0156 3280 AEAudio (fff87a9b1ab36ee4b7bec98a4cb01b79) C:\WINDOWS\system32\drivers\AEAudio.sys
18:24:44.0156 3280 AEAudio - ok
18:24:44.0187 3280 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
18:24:44.0187 3280 aec - ok
18:24:44.0250 3280 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
18:24:44.0250 3280 AFD - ok
18:24:44.0500 3280 AgereSoftModem (3712986cc3abf0dc656b43525b9d1279) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
18:24:44.0515 3280 AgereSoftModem - ok
18:24:44.0546 3280 Aha154x - ok
18:24:44.0593 3280 aic78u2 - ok
18:24:44.0625 3280 aic78xx - ok
18:24:44.0671 3280 AliIde - ok
18:24:44.0703 3280 amsint - ok
18:24:44.0796 3280 Angelnt (4a8cb8fea9dcb6f93017f413e2646001) C:\WINDOWS\System32\Drivers\ANGELNT.SYS
18:24:44.0796 3280 Angelnt - ok
18:24:44.0921 3280 asc - ok
18:24:44.0937 3280 asc3350p - ok
18:24:44.0953 3280 asc3550 - ok
18:24:45.0031 3280 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:24:45.0031 3280 AsyncMac - ok
18:24:45.0078 3280 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
18:24:45.0078 3280 atapi - ok
18:24:45.0093 3280 Atdisk - ok
18:24:45.0125 3280 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:24:45.0125 3280 Atmarpc - ok
18:24:45.0187 3280 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
18:24:45.0187 3280 audstub - ok
18:24:45.0203 3280 avgntflt (7713e4eb0276702faa08e52a6e23f2a6) C:\WINDOWS\system32\DRIVERS\avgntflt.sys
18:24:45.0203 3280 avgntflt - ok
18:24:45.0281 3280 avipbb (912d23140cd05980f6cdae790ddafc8d) C:\WINDOWS\system32\DRIVERS\avipbb.sys
18:24:45.0281 3280 avipbb - ok
18:24:45.0312 3280 avkmgr (271cfd1a989209b1964e24d969552bf7) C:\WINDOWS\system32\DRIVERS\avkmgr.sys
18:24:45.0312 3280 avkmgr - ok
18:24:45.0390 3280 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
18:24:45.0390 3280 Beep - ok
18:24:45.0578 3280 btaudio (3aa4bf555c00c5b87fd48dd7bdbd4e97) C:\WINDOWS\system32\drivers\btaudio.sys
18:24:45.0578 3280 btaudio - ok
18:24:45.0656 3280 BTDriver (07f0a66cfa550b13ad0674ae09e3cba0) C:\WINDOWS\system32\DRIVERS\btport.sys
18:24:45.0671 3280 BTDriver - ok
18:24:45.0718 3280 BTKRNL (ba57f31eab93dc597d772f6f5b9ed54f) C:\WINDOWS\system32\DRIVERS\btkrnl.sys
18:24:45.0734 3280 BTKRNL - ok
18:24:45.0765 3280 BTWDNDIS (b1d350f3f13cf340fce93912d2ba1ebf) C:\WINDOWS\system32\DRIVERS\btwdndis.sys
18:24:45.0781 3280 BTWDNDIS - ok
18:24:45.0796 3280 BTWUSB (57e91e9925976bbc98984eebaaf1d84c) C:\WINDOWS\system32\Drivers\btwusb.sys
18:24:45.0796 3280 BTWUSB - ok
18:24:45.0812 3280 catchme - ok
18:24:45.0859 3280 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
18:24:45.0859 3280 cbidf2k - ok
18:24:45.0875 3280 cd20xrnt - ok
18:24:45.0890 3280 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
18:24:45.0890 3280 Cdaudio - ok
18:24:45.0953 3280 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
18:24:45.0953 3280 Cdfs - ok
18:24:46.0031 3280 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:24:46.0031 3280 Cdrom - ok
18:24:46.0171 3280 Changer - ok
18:24:46.0234 3280 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
18:24:46.0234 3280 CmBatt - ok
18:24:46.0250 3280 CmdIde - ok
18:24:46.0265 3280 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
18:24:46.0265 3280 Compbatt - ok
18:24:46.0296 3280 Cpqarray - ok
18:24:46.0312 3280 dac2w2k - ok
18:24:46.0328 3280 dac960nt - ok
18:24:46.0390 3280 DgiVecp (7f19dba1a467b838ccb23124a2c55568) C:\WINDOWS\system32\Drivers\DgiVecp.sys
18:24:46.0390 3280 DgiVecp - ok
18:24:46.0406 3280 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
18:24:46.0406 3280 Disk - ok
18:24:46.0468 3280 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
18:24:46.0484 3280 dmboot - ok
18:24:46.0531 3280 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
18:24:46.0531 3280 dmio - ok
18:24:46.0546 3280 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
18:24:46.0546 3280 dmload - ok
18:24:46.0578 3280 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
18:24:46.0578 3280 DMusic - ok
18:24:46.0609 3280 dpti2o - ok
18:24:46.0671 3280 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
18:24:46.0671 3280 drmkaud - ok
18:24:46.0750 3280 e1express (8942419786970adb32b05bb7950aee72) C:\WINDOWS\system32\DRIVERS\e1e5132.sys
18:24:46.0765 3280 e1express - ok
18:24:46.0953 3280 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
18:24:46.0953 3280 Fastfat - ok
18:24:46.0984 3280 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
18:24:47.0000 3280 Fdc - ok
18:24:47.0015 3280 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
18:24:47.0015 3280 Fips - ok
18:24:47.0031 3280 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
18:24:47.0031 3280 Flpydisk - ok
18:24:47.0078 3280 FlrnUSB (66d252e6bd9bc2d9ec961032b2246874) C:\WINDOWS\system32\DRIVERS\LtkUSB.sys
18:24:47.0078 3280 FlrnUSB - ok
18:24:47.0125 3280 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
18:24:47.0125 3280 FltMgr - ok
18:24:47.0156 3280 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:24:47.0156 3280 Fs_Rec - ok
18:24:47.0171 3280 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:24:47.0171 3280 Ftdisk - ok
18:24:47.0250 3280 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:24:47.0250 3280 Gpc - ok
18:24:47.0312 3280 hamachi (833051c6c6c42117191935f734cfbd97) C:\WINDOWS\system32\DRIVERS\hamachi.sys
18:24:47.0312 3280 hamachi - ok
18:24:47.0375 3280 HBtnKey (407e41ddb2bfece109132aec296e0d98) C:\WINDOWS\system32\DRIVERS\cpqbttn.sys
18:24:47.0375 3280 HBtnKey - ok
18:24:47.0531 3280 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:24:47.0531 3280 HDAudBus - ok
18:24:47.0593 3280 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:24:47.0609 3280 HidUsb - ok
18:24:47.0625 3280 hpn - ok
18:24:47.0640 3280 HpqKbFiltr (35956140e686d53bf676cf0c778880fc) C:\WINDOWS\system32\DRIVERS\HpqKbFiltr.sys
18:24:47.0640 3280 HpqKbFiltr - ok
18:24:47.0703 3280 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
18:24:47.0703 3280 HPZid412 - ok
18:24:47.0750 3280 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
18:24:47.0750 3280 HPZipr12 - ok
18:24:47.0765 3280 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
18:24:47.0781 3280 HPZius12 - ok
18:24:47.0859 3280 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
18:24:47.0875 3280 HTTP - ok
18:24:47.0890 3280 i2omgmt - ok
18:24:47.0906 3280 i2omp - ok
18:24:47.0937 3280 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:24:47.0937 3280 i8042prt - ok
18:24:48.0437 3280 ialm (42caa789a21014aa809a8ff59b3ccfd9) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
18:24:48.0515 3280 ialm - ok
18:24:48.0562 3280 iaStor (e5a0034847537eaee3c00349d5c34c5f) C:\WINDOWS\system32\drivers\iaStor.sys
18:24:48.0562 3280 iaStor - ok
18:24:48.0640 3280 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
18:24:48.0640 3280 Imapi - ok
18:24:48.0656 3280 ini910u - ok
18:24:48.0671 3280 IntelIde - ok
18:24:48.0703 3280 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
18:24:48.0703 3280 intelppm - ok
18:24:48.0750 3280 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
18:24:48.0750 3280 Ip6Fw - ok
18:24:48.0812 3280 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:24:48.0812 3280 IpFilterDriver - ok
18:24:48.0968 3280 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:24:48.0968 3280 IpInIp - ok
18:24:48.0984 3280 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:24:48.0984 3280 IpNat - ok
18:24:49.0015 3280 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:24:49.0015 3280 IPSec - ok
18:24:49.0046 3280 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
18:24:49.0046 3280 IRENUM - ok
18:24:49.0093 3280 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:24:49.0093 3280 isapnp - ok
18:24:49.0171 3280 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:24:49.0171 3280 Kbdclass - ok
18:24:49.0234 3280 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
18:24:49.0250 3280 kbdhid - ok
18:24:49.0312 3280 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
18:24:49.0312 3280 kmixer - ok
18:24:49.0359 3280 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
18:24:49.0359 3280 KSecDD - ok
18:24:49.0546 3280 lbrtfdc - ok
18:24:49.0609 3280 MBAMProtector (69a6268d7f81e53d568ab4e7e991caf3) C:\WINDOWS\system32\drivers\mbam.sys
18:24:49.0609 3280 MBAMProtector - ok
18:24:49.0625 3280 MBAMSwissArmy - ok
18:24:49.0687 3280 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
18:24:49.0687 3280 mnmdd - ok
18:24:49.0750 3280 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
18:24:49.0750 3280 Modem - ok
18:24:49.0812 3280 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:24:49.0812 3280 Mouclass - ok
18:24:49.0875 3280 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:24:49.0875 3280 mouhid - ok
18:24:49.0937 3280 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
18:24:49.0937 3280 MountMgr - ok
18:24:49.0953 3280 mraid35x - ok
18:24:49.0984 3280 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:24:50.0000 3280 MRxDAV - ok
18:24:50.0031 3280 MRxSmb - ok
18:24:50.0062 3280 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
18:24:50.0062 3280 Msfs - ok
18:24:50.0093 3280 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:24:50.0093 3280 MSKSSRV - ok
18:24:50.0281 3280 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:24:50.0281 3280 MSPCLOCK - ok
18:24:50.0296 3280 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
18:24:50.0296 3280 MSPQM - ok
18:24:50.0343 3280 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:24:50.0343 3280 mssmbios - ok
18:24:50.0375 3280 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
18:24:50.0375 3280 Mup - ok
18:24:50.0421 3280 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
18:24:50.0437 3280 NDIS - ok
18:24:50.0500 3280 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:24:50.0500 3280 NdisTapi - ok
18:24:50.0531 3280 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:24:50.0531 3280 Ndisuio - ok
18:24:50.0562 3280 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:24:50.0562 3280 NdisWan - ok
18:24:50.0625 3280 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
18:24:50.0625 3280 NDProxy - ok
18:24:50.0671 3280 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
18:24:50.0671 3280 NetBIOS - ok
18:24:50.0718 3280 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
18:24:50.0718 3280 NetBT - ok
18:24:51.0109 3280 NETw5x32 (05743fffc2bc88cc8e426321bc6a762e) C:\WINDOWS\system32\DRIVERS\NETw5x32.sys
18:24:51.0171 3280 NETw5x32 - ok
18:24:51.0250 3280 nmwcd (c82f4cc10ad315b6d6bcb14d0a7cad66) C:\WINDOWS\system32\drivers\ccdcmb.sys
18:24:51.0250 3280 nmwcd - ok
18:24:51.0296 3280 nmwcdc (60ef5f5621d7832f00a3f190a0c905e2) C:\WINDOWS\system32\drivers\ccdcmbo.sys
18:24:51.0296 3280 nmwcdc - ok
18:24:51.0359 3280 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
18:24:51.0359 3280 Npfs - ok
18:24:51.0406 3280 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
18:24:51.0406 3280 Ntfs - ok
18:24:51.0437 3280 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
18:24:51.0437 3280 Null - ok
18:24:51.0500 3280 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:24:51.0500 3280 NwlnkFlt - ok
18:24:51.0562 3280 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:24:51.0562 3280 NwlnkFwd - ok
18:24:51.0718 3280 NwlnkIpx (8b8b1be2dba4025da6786c645f77f123) C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
18:24:51.0718 3280 NwlnkIpx - ok
18:24:51.0734 3280 NwlnkNb (56d34a67c05e94e16377c60609741ff8) C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
18:24:51.0734 3280 NwlnkNb - ok
18:24:51.0765 3280 NwlnkSpx (c0bb7d1615e1acbdc99757f6ceaf8cf0) C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
18:24:51.0765 3280 NwlnkSpx - ok
18:24:51.0812 3280 NWRDR (36b9b950e3d2e100970a48d8bad86740) C:\WINDOWS\system32\DRIVERS\nwrdr.sys
18:24:51.0812 3280 NWRDR - ok
18:24:51.0859 3280 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys
18:24:51.0875 3280 Parport - ok
18:24:51.0875 3280 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
18:24:51.0890 3280 PartMgr - ok
18:24:51.0921 3280 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
18:24:51.0921 3280 ParVdm - ok
18:24:51.0937 3280 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
18:24:51.0937 3280 PCI - ok
18:24:51.0953 3280 PCIDump - ok
18:24:51.0984 3280 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
18:24:52.0000 3280 PCIIde - ok
18:24:52.0046 3280 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
18:24:52.0046 3280 Pcmcia - ok
18:24:52.0062 3280 PDCOMP - ok
18:24:52.0078 3280 PDFRAME - ok
18:24:52.0093 3280 PDRELI - ok
18:24:52.0109 3280 PDRFRAME - ok
18:24:52.0140 3280 perc2 - ok
18:24:52.0156 3280 perc2hib - ok
18:24:52.0218 3280 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:24:52.0234 3280 PptpMiniport - ok
18:24:52.0250 3280 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
18:24:52.0250 3280 PSched - ok
18:24:52.0265 3280 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:24:52.0265 3280 Ptilink - ok
18:24:52.0281 3280 ql1080 - ok
18:24:52.0296 3280 Ql10wnt - ok
18:24:52.0312 3280 ql12160 - ok
18:24:52.0328 3280 ql1240 - ok
18:24:52.0343 3280 ql1280 - ok
18:24:52.0359 3280 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:24:52.0359 3280 RasAcd - ok
18:24:52.0437 3280 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:24:52.0437 3280 Rasl2tp - ok
18:24:52.0593 3280 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:24:52.0593 3280 RasPppoe - ok
18:24:52.0609 3280 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
18:24:52.0609 3280 Raspti - ok
18:24:52.0640 3280 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:24:52.0640 3280 Rdbss - ok
18:24:52.0656 3280 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:24:52.0656 3280 RDPCDD - ok
18:24:52.0687 3280 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
18:24:52.0687 3280 rdpdr - ok
18:24:52.0750 3280 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
18:24:52.0750 3280 RDPWD - ok
18:24:52.0781 3280 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
18:24:52.0796 3280 redbook - ok
18:24:52.0875 3280 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:24:52.0875 3280 Secdrv - ok
18:24:52.0921 3280 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys
18:24:52.0921 3280 Serial - ok
18:24:52.0968 3280 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
18:24:52.0984 3280 Sfloppy - ok
18:24:53.0000 3280 Simbad - ok
18:24:53.0015 3280 Sparrow - ok
18:24:53.0078 3280 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
18:24:53.0078 3280 splitter - ok
18:24:53.0281 3280 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
18:24:53.0296 3280 sr - ok
18:24:53.0375 3280 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
18:24:53.0375 3280 Srv - ok
18:24:53.0468 3280 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
18:24:53.0468 3280 ssmdrv - ok
18:24:53.0484 3280 SSPORT - ok
18:24:53.0500 3280 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
18:24:53.0500 3280 swenum - ok
18:24:53.0515 3280 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
18:24:53.0515 3280 swmidi - ok
18:24:53.0546 3280 symc810 - ok
18:24:53.0562 3280 symc8xx - ok
18:24:53.0578 3280 sym_hi - ok
18:24:53.0593 3280 sym_u3 - ok
18:24:53.0671 3280 SynTP (926e0bb4cac05d9a0c3b59dc16fe2f1c) C:\WINDOWS\system32\DRIVERS\SynTP.sys
18:24:53.0671 3280 SynTP - ok
18:24:53.0703 3280 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
18:24:53.0718 3280 sysaudio - ok
18:24:53.0796 3280 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:24:53.0796 3280 Tcpip - ok
18:24:54.0000 3280 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
18:24:54.0000 3280 TDPIPE - ok
18:24:54.0031 3280 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
18:24:54.0031 3280 TDTCP - ok
18:24:54.0078 3280 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
18:24:54.0078 3280 TermDD - ok
18:24:54.0093 3280 TosIde - ok
18:24:54.0156 3280 TrueSight (f69641efdb19acb4753b0155f7fdeed5) c:\windows\system32\drivers\TrueSight.sys
18:24:54.0156 3280 TrueSight - ok
18:24:54.0187 3280 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
18:24:54.0187 3280 Udfs - ok
18:24:54.0203 3280 ultra - ok
18:24:54.0250 3280 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
18:24:54.0265 3280 Update - ok
18:24:54.0328 3280 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:24:54.0328 3280 usbccgp - ok
18:24:54.0359 3280 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:24:54.0359 3280 usbehci - ok
18:24:54.0421 3280 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:24:54.0421 3280 usbhub - ok
18:24:54.0671 3280 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
18:24:54.0671 3280 usbprint - ok
18:24:54.0718 3280 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
18:24:54.0718 3280 usbscan - ok
18:24:54.0765 3280 usbstor (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:24:54.0765 3280 usbstor - ok
18:24:54.0796 3280 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
18:24:54.0796 3280 usbuhci - ok
18:24:54.0828 3280 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
18:24:54.0828 3280 VgaSave - ok
18:24:54.0843 3280 ViaIde - ok
18:24:54.0875 3280 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
18:24:54.0875 3280 VolSnap - ok
18:24:54.0906 3280 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:24:54.0921 3280 Wanarp - ok
18:24:55.0000 3280 Wdf01000 (fd47474bd21794508af449d9d91af6e6) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
18:24:55.0000 3280 Wdf01000 - ok
18:24:55.0203 3280 WDICA - ok
18:24:55.0218 3280 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
18:24:55.0234 3280 wdmaud - ok
18:24:55.0281 3280 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
18:24:55.0281 3280 WmiAcpi - ok
18:24:55.0359 3280 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
18:24:55.0359 3280 WpdUsb - ok
18:24:55.0421 3280 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
18:24:55.0421 3280 WudfPf - ok
18:24:55.0453 3280 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
18:24:55.0468 3280 WudfRd - ok
18:24:55.0515 3280 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
18:24:55.0734 3280 \Device\Harddisk0\DR0 - ok
18:24:55.0734 3280 Boot (0x1200) (ef6b90e7f0d6f458b7822b878bd5de69) \Device\Harddisk0\DR0\Partition0
18:24:55.0734 3280 \Device\Harddisk0\DR0\Partition0 - ok
18:24:55.0734 3280 ============================================================
18:24:55.0734 3280 Scan finished
18:24:55.0734 3280 ============================================================
18:24:55.0750 2208 Detected object count: 0
18:24:55.0750 2208 Actual detected object count: 0
18:25:22.0828 1348 Deinitialize success


A to druhe:

http://www.virustotal.com/file-scan/rep ... 1321550962

[vyosek]

Pokud nemate, tak presunte Combofix na plochu

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  KillAll::
  
  Folder::
  c:\program files\Yamicsoft
  c:\program files\SpywareBlaster
  c:\documents and settings\Janka\Application Data\IObit
  c:\documents and settings\LocalService\Local Settings\Application Data\2ed99345
  c:\documents and settings\Janka\Local Settings\Application Data\S2PC
  c:\windows\update.tray-9-0-lnk
  c:\windows\update.tray-9-0
  C:\Program Files\IObit
  C:\Program Files\ICQ6Toolbar
  C:\Program Files\Ask.com
  C:\Documents and Settings\All Users\Application Data\IObit
  
  File::
  c:\windows\unrar.exe
  c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
  c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
  C:\WINDOWS\tasks\ASC4_AutoCare.job
  C:\WINDOWS\tasks\ASC4_AutoConverter.job
  C:\WINDOWS\tasks\ASC4_AutoSweep.job
  C:\WINDOWS\tasks\ASC4_AutoUpdate.job
  C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
  C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\askcom.xml
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-1.xml
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-10.xml
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-11.xml
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-12.xml
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-13.xml
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-14.xml
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-15.xml
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-16.xml
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-17.xml
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-18.xml
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-19.xml
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-2.xml
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-20.xml
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-21.xml
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-22.xml
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-23.xml
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-3.xml
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-4.xml
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-5.xml
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-6.xml
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-7.xml
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-8.xml
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-9.xml
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin.xml
  C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\iMeshWebSearch.xml
  
  Registry::
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  "Adobe ARM"=-
  "Malwarebytes' Anti-Malware"=-
  [HKEY_LOCAL_MACHINE\software\microsoft\security center]
  "DisableThumbnailCache"=dword:00000000
  
  Driver::
  AdvancedSystemCareService
  FMMService
  ICQ Service
  gupdate
  gupdatem
  lxdb_device
  McComponentHostService
  NBService
  NMIndexingService
  
  AtJob::
  
  ClearJavaCache::
  
  FixCSet::
  
  Reboot::

• Ulozte vytvoreny TXT jako CFScript.txt
• Pretahnete vytvoreny CFScript.txt nad Combofix a pustte (viz obrazek nize)
  
• Po aplikaci skriptu (a pripadnem restartu) na Vas vypadne log, jeho obsah sem vlozte

Muze se stat, ze po aplikaci skriptu nenabehnou windows, v tomto pripade restartuje PC a mackejte F8 a zvolte Posledni znamou konfiguraci

[Januska25]

ComboFix 11-11-17.03 - Janka 17.11.2011 19:16:04.2.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.421.1033.18.2039.1370 [GMT 1:00]
Running from: c:\documents and settings\Janka\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\Janka\Desktop\CFScript.txt
AV: Avira Desktop *Enabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
FILE ::
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\askcom.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-1.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-10.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-11.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-12.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-13.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-14.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-15.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-16.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-17.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-18.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-19.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-2.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-20.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-21.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-22.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-23.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-3.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-4.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-5.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-6.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-7.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-8.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-9.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\iMeshWebSearch.xml"
"c:\windows\tasks\ASC4_AutoCare.job"
"c:\windows\tasks\ASC4_AutoConverter.job"
"c:\windows\tasks\ASC4_AutoSweep.job"
"c:\windows\tasks\ASC4_AutoUpdate.job"
"c:\windows\tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\tasks\GoogleUpdateTaskMachineUA.job"
"c:\windows\unrar.exe"
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Janka\Application Data\IObit
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\AutoSweep.ini
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Backup\ASCBackup-2011-11-13(01-47-48).reg
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Backup\ASCBackup-2011-11-14(20-11-36).reg
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Backup\ASCBackup-2011-11-15(20-34-34).reg
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Ignore.ini
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-13(01-47-48).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-13(11-10-11).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-13(11-37-25).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-13(12-07-15).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-13(15-59-51).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-13(16-14-15).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-14(08-38-03).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-14(18-43-03).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-14(19-19-51).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-14(19-48-34).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-14(20-11-36).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-15(08-19-39).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-15(16-57-55).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-15(19-46-39).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-15(20-34-34).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-15(20-47-26).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-15(21-14-35).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-16(08-17-55).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-16(09-53-53).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-16(14-34-02).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-16(21-23-08).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-17(11-01-27).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Main.ini
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\PMonitor\Config.ini
c:\documents and settings\Janka\Application Data\IObit\Uninstall Programs.lnk
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\askcom.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-1.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-10.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-11.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-12.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-13.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-14.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-15.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-16.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-17.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-18.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-19.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-2.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-20.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-21.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-22.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-23.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-3.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-4.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-5.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-6.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-7.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-8.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-9.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\iMeshWebSearch.xml
c:\documents and settings\Janka\Local Settings\Application Data\S2PC
c:\documents and settings\Janka\Local Settings\Application Data\S2PC\1133\pname.ini
c:\documents and settings\Janka\Local Settings\Application Data\S2PC\1133\s2mail.dat
c:\documents and settings\Janka\Local Settings\Application Data\S2PC\1133\scanopt.ini
c:\documents and settings\LocalService\Local Settings\Application Data\2ed99345
c:\documents and settings\LocalService\Local Settings\Application Data\2ed99345\@
c:\program files\Ask.com
c:\program files\Ask.com\cobrand.ico
c:\program files\Ask.com\config.xml
c:\program files\Ask.com\favicon.ico
c:\program files\Ask.com\fv_1e.ico
c:\program files\Ask.com\GenericAskToolbar.dll
c:\program files\Ask.com\mupcfg.xml
c:\program files\Ask.com\SaUpdate.exe
c:\program files\Ask.com\UpdateTask.exe
c:\program files\ICQ6Toolbar
c:\program files\ICQ6Toolbar\config.xml
c:\program files\ICQ6Toolbar\Icons.bmp
c:\program files\ICQ6Toolbar\icq6Toolbar.ico
c:\program files\ICQ6Toolbar\ICQToolBar.dll
c:\program files\ICQ6Toolbar\ICQUnToolbar.exe
c:\program files\ICQ6Toolbar\logo_small.gif
c:\program files\ICQ6Toolbar\ServiceStarter.exe
c:\program files\ICQ6Toolbar\short.wav
c:\program files\ICQ6Toolbar\Version.txt
c:\program files\ICQ6Toolbar\voucher.bmp
c:\program files\ICQ6Toolbar\voucher2.bmp
c:\program files\SpywareBlaster
c:\program files\SpywareBlaster\ckdatabase.dtb
c:\program files\SpywareBlaster\license.txt
c:\program files\SpywareBlaster\MSCOMCTL.OCX
c:\program files\SpywareBlaster\readme.txt
c:\program files\SpywareBlaster\rsdatabase.dtb
c:\program files\SpywareBlaster\sbautoupdate.exe
c:\program files\SpywareBlaster\sbdatabase.dtb
c:\program files\SpywareBlaster\sbdatabase2.dtb
c:\program files\SpywareBlaster\sbdatabaseinf.dtb
c:\program files\SpywareBlaster\sbdatabaseinf2.dtb
c:\program files\SpywareBlaster\sbhelp.chm
c:\program files\SpywareBlaster\sbinfo.dtb
c:\program files\SpywareBlaster\sburlhelper.exe
c:\program files\SpywareBlaster\sbversion5.txt
c:\program files\SpywareBlaster\spywareblaster.exe
c:\program files\SpywareBlaster\SQLite3SB.dll
c:\program files\SpywareBlaster\unins000.dat
c:\program files\SpywareBlaster\unins000.exe
c:\program files\Yamicsoft
c:\program files\Yamicsoft\WinXP Manager\1-ClickCleaner.exe
c:\program files\Yamicsoft\WinXP Manager\Addons.xml
c:\program files\Yamicsoft\WinXP Manager\advancedwizard.dll
c:\program files\Yamicsoft\WinXP Manager\AppletEngie.dll
c:\program files\Yamicsoft\WinXP Manager\AppletProxy.dll
c:\program files\Yamicsoft\WinXP Manager\AppShutdown.exe
c:\program files\Yamicsoft\WinXP Manager\ClearMem.exe
c:\program files\Yamicsoft\WinXP Manager\clsShortcut.dll
c:\program files\Yamicsoft\WinXP Manager\Config.ini
c:\program files\Yamicsoft\WinXP Manager\ContextMenuManager.exe
c:\program files\Yamicsoft\WinXP Manager\DesktopCleaner.exe
c:\program files\Yamicsoft\WinXP Manager\DevComponents.DotNetBar.dll
c:\program files\Yamicsoft\WinXP Manager\DevExpress.Data3.dll
c:\program files\Yamicsoft\WinXP Manager\DevExpress.Utils3.dll
c:\program files\Yamicsoft\WinXP Manager\DevExpress.XtraEditors3.dll
c:\program files\Yamicsoft\WinXP Manager\DevExpress.XtraTreeList3.dll
c:\program files\Yamicsoft\WinXP Manager\DiskAnalyzer.exe
c:\program files\Yamicsoft\WinXP Manager\DuplicateFilesFinder.exe
c:\program files\Yamicsoft\WinXP Manager\exptreelib.dll
c:\program files\Yamicsoft\WinXP Manager\FileSecurity.exe
c:\program files\Yamicsoft\WinXP Manager\FileSplitter.exe
c:\program files\Yamicsoft\WinXP Manager\FolderIcon.dll
c:\program files\Yamicsoft\WinXP Manager\FreeMem.exe
c:\program files\Yamicsoft\WinXP Manager\Help.chm
c:\program files\Yamicsoft\WinXP Manager\IconManager.exe
c:\program files\Yamicsoft\WinXP Manager\idll.exe
c:\program files\Yamicsoft\WinXP Manager\IE Logo\1-large.bmp
c:\program files\Yamicsoft\WinXP Manager\IEManager.exe
c:\program files\Yamicsoft\WinXP Manager\Interop.IWshRuntimeLibrary.dll
c:\program files\Yamicsoft\WinXP Manager\Interop.RadCtxMenu.dll
c:\program files\Yamicsoft\WinXP Manager\Interop.VBProgressDialog.dll
c:\program files\Yamicsoft\WinXP Manager\Interop.VBShellLib.dll
c:\program files\Yamicsoft\WinXP Manager\IPSwitcher.exe
c:\program files\Yamicsoft\WinXP Manager\JunkFileCleaner.exe
c:\program files\Yamicsoft\WinXP Manager\LiveUpdate.exe
c:\program files\Yamicsoft\WinXP Manager\LiveUpdateCopy.exe
c:\program files\Yamicsoft\WinXP Manager\OptimizationWizard.exe
c:\program files\Yamicsoft\WinXP Manager\PCL.dll
c:\program files\Yamicsoft\WinXP Manager\PieChart.dll
c:\program files\Yamicsoft\WinXP Manager\PrivacyProtector.exe
c:\program files\Yamicsoft\WinXP Manager\ProcessManager.exe
c:\program files\Yamicsoft\WinXP Manager\RegistryCleaner.exe
c:\program files\Yamicsoft\WinXP Manager\RegistryDefrag.exe
c:\program files\Yamicsoft\WinXP Manager\RepairCenter.exe
c:\program files\Yamicsoft\WinXP Manager\RunShortcutCreator.exe
c:\program files\Yamicsoft\WinXP Manager\ServiceControllerEx.dll
c:\program files\Yamicsoft\WinXP Manager\ServiceManager.exe
c:\program files\Yamicsoft\WinXP Manager\Shutdown.exe
c:\program files\Yamicsoft\WinXP Manager\ShutDownCommand.exe
c:\program files\Yamicsoft\WinXP Manager\sigcheck.exe
c:\program files\Yamicsoft\WinXP Manager\signtool.exe
c:\program files\Yamicsoft\WinXP Manager\StartupManager.exe
c:\program files\Yamicsoft\WinXP Manager\SystemInfo.exe
c:\program files\Yamicsoft\WinXP Manager\TaskScheduler.dll
c:\program files\Yamicsoft\WinXP Manager\ToolBarPic\1.bmp
c:\program files\Yamicsoft\WinXP Manager\ToolBarPic\2.bmp
c:\program files\Yamicsoft\WinXP Manager\ToolBarPic\3.bmp
c:\program files\Yamicsoft\WinXP Manager\tracker.dll
c:\program files\Yamicsoft\WinXP Manager\Uninstaller.exe
c:\program files\Yamicsoft\WinXP Manager\WallpaperChanger.exe
c:\program files\Yamicsoft\WinXP Manager\WinControls.ListView.dll
c:\program files\Yamicsoft\WinXP Manager\WinUtilities.exe
c:\program files\Yamicsoft\WinXP Manager\WinXP Manager.exe
c:\program files\Yamicsoft\WinXP Manager\XPCtxMenu.dll
c:\windows\tasks\GoogleUpdateTaskMachineCore.job
c:\windows\tasks\GoogleUpdateTaskMachineUA.job
c:\windows\unrar.exe
c:\windows\update.tray-9-0-lnk
c:\windows\update.tray-9-0
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_FMMSERVICE
-------\Legacy_GUPDATE
-------\Legacy_ICQ_SERVICE
-------\Legacy_LXDB_DEVICE
-------\Legacy_NMINDEXINGSERVICE
-------\Service_FMMService
-------\Service_gupdate
-------\Service_gupdatem
-------\Service_ICQ Service
-------\Service_lxdb_device
-------\Service_McComponentHostService
-------\Service_NBService
-------\Service_NMIndexingService
.
.
((((((((((((((((((((((((( Files Created from 2011-10-17 to 2011-11-17 )))))))))))))))))))))))))))))))
.
.
2011-11-17 18:24 . 2011-11-17 18:24 -------- d-----w- c:\documents and settings\Janka\Local Settings\Application Data\S2PC
2011-11-17 10:28 . 2011-11-17 10:30 111872 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2011-11-17 10:27 . 2011-11-17 10:27 -------- d-----w- C:\RK_Quarantine
2011-11-15 14:55 . 2011-11-15 14:55 -------- d-----w- c:\documents and settings\Janka\Application Data\Malwarebytes
2011-11-15 14:55 . 2011-11-15 14:55 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2011-11-15 14:55 . 2011-11-15 14:56 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-11-15 14:55 . 2011-08-31 16:00 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-11-14 19:55 . 2011-11-16 09:17 -------- d-----w- c:\program files\trend micro
2011-11-14 19:55 . 2011-11-14 19:55 -------- d-----w- C:\rsit
2011-11-13 10:42 . 2011-11-13 10:44 134104 ----a-w- c:\program files\Mozilla Firefox\components\browsercomps.dll
2011-11-13 10:42 . 2011-11-13 10:44 89048 ----a-w- c:\program files\Mozilla Firefox\libEGL.dll
2011-11-13 10:42 . 2011-11-13 10:44 801752 ----a-w- c:\program files\Mozilla Firefox\mozsqlite3.dll
2011-11-13 10:42 . 2011-11-13 10:44 478168 ----a-w- c:\program files\Mozilla Firefox\libGLESv2.dll
2011-11-13 10:42 . 2011-11-13 10:44 1989592 ----a-w- c:\program files\Mozilla Firefox\mozjs.dll
2011-11-13 10:42 . 2011-11-13 10:44 15832 ----a-w- c:\program files\Mozilla Firefox\mozalloc.dll
2011-11-13 10:42 . 2011-09-29 00:26 2106216 ----a-w- c:\program files\Mozilla Firefox\D3DCompiler_43.dll
2011-11-13 10:42 . 2011-09-29 00:26 1998168 ----a-w- c:\program files\Mozilla Firefox\d3dx9_43.dll
2011-11-12 21:36 . 2011-11-12 21:36 -------- d-----w- c:\program files\EMCO
2011-11-12 21:32 . 2011-11-17 10:20 -------- d-----w- c:\program files\Spybot - Search & Destroy
2011-11-12 21:16 . 2011-11-12 21:16 -------- d-----w- c:\documents and settings\Janka\Application Data\Avira
2011-11-12 21:15 . 2011-09-18 07:39 134344 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-11-12 21:15 . 2011-09-15 22:55 36000 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2011-11-12 21:15 . 2011-09-15 22:55 74640 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-11-12 21:14 . 2011-11-12 21:14 -------- d-----w- c:\program files\Avira
2011-11-12 21:14 . 2011-11-12 21:14 -------- d-----w- c:\documents and settings\All Users\Application Data\Avira
2011-11-03 10:15 . 2009-09-18 16:40 523264 ------w- c:\windows\system32\dsmgr.cpl
2011-11-03 10:12 . 2009-12-23 06:30 484592 ----a-w- c:\windows\SSndii.exe
2011-11-03 10:12 . 2009-09-18 09:32 21776 ----a-w- c:\windows\system32\msxml2a.dll
2011-11-03 10:12 . 2011-11-03 10:12 -------- d-----w- c:\windows\Dell
2011-11-03 10:10 . 1997-05-26 13:55 23040 ----a-w- c:\windows\system32\irisco32.dll
2011-11-03 10:09 . 2011-11-03 10:10 -------- d-----w- c:\program files\Readiris10
2011-11-03 10:09 . 2011-11-03 10:11 -------- d-----w- c:\program files\SmarThru 4
2011-11-03 10:08 . 2009-12-23 05:06 115952 ----a-r- c:\windows\Wiainst.exe
2011-11-03 10:06 . 2009-09-17 01:38 26624 ----a-w- c:\windows\system32\sdo1ml3.dll
2011-11-03 10:06 . 2009-09-17 01:38 19968 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\sdo1mpc.dll
2011-11-03 10:06 . 2009-09-17 01:38 151552 ----a-w- c:\windows\system32\sdo1mci.exe
2011-11-03 10:06 . 2009-09-17 01:38 65536 ----a-w- c:\windows\system32\sdo1mci.dll
2011-11-03 10:05 . 2011-11-03 10:05 -------- d-----w- c:\program files\Dell
2011-10-31 13:40 . 2011-11-13 10:23 -------- d-----w- C:\reports
2011-10-31 13:40 . 2011-08-14 14:23 -------- d-----w- C:\lib
2011-10-31 13:40 . 2011-08-14 14:23 -------- d-----w- C:\ProductDB
2011-10-31 13:40 . 2009-06-03 13:39 825 ----a-w- C:\jr.cmd
2011-10-31 13:40 . 2009-05-05 20:13 147 ----a-w- C:\Projekcie.cmd
2011-10-31 09:58 . 2011-11-16 07:15 -------- d-----w- c:\windows\ufa
2011-10-30 20:24 . 2011-11-14 18:42 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-13 10:35 . 2009-08-10 09:06 25992 ----a-w- c:\windows\system32\pgdfgsvc.exe
2011-09-26 09:41 . 2008-07-29 17:59 611328 ----a-w- c:\windows\system32\uiautomationcore.dll
2011-09-26 09:41 . 2007-07-27 12:00 220160 ----a-w- c:\windows\system32\oleacc.dll
2011-09-26 09:41 . 2007-07-27 12:00 20480 ----a-w- c:\windows\system32\oleaccrc.dll
2011-09-09 09:12 . 2007-07-27 12:00 599040 ----a-w- c:\windows\system32\crypt32.dll
2011-09-06 13:20 . 2007-07-27 12:00 1858944 ----a-w- c:\windows\system32\win32k.sys
2011-08-22 23:48 . 2007-07-27 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2011-08-22 23:48 . 2007-07-27 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-08-22 23:48 . 2007-07-27 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-08-22 11:56 . 2007-07-27 12:00 385024 ----a-w- c:\windows\system32\html.iec
2011-11-13 10:44 . 2011-11-13 10:42 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Lotus iNotes Sync Manager"="c:\notes\LOTUSI~1\nDOLMgr.exe" [2008-08-08 409600]
"1133 Scan2PC"="c:\windows\twain_32\Dell\DELL1133\Scan2Pc.exe" [2009-12-24 1978880]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-09-23 258512]
"LXDBCATS"="c:\windows\System32\spool\DRIVERS\W32X86\3\LXDBtime.dll" [2006-03-02 73728]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-2-6 561213]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableSecureUIAPaths"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Authentication Packages REG_MULTI_SZ msv1_0 nwprovau
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Common Files\\Ahead\\Nero Web\\SetupX.exe"=
"c:\\Program Files\\Deutscher Ring\\Calculator SK\\Deutscher Ring Calculator SK.exe"=
"c:\\Program Files\\Google\\Google Earth\\client\\googleearth.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\ICQ7.4\\ICQ.exe"=
"c:\\Program Files\\Deutscher Ring\\Accident Calculator SK\\Deutscher Ring Accident Calculator SK.exe"=
"c:\\Program Files\\Google\\Google Earth\\plugin\\geplugin.exe"=
"c:\\WINDOWS\\twain_32\\Dell\\DELL1133\\Scan2Pc.exe"=
"c:\\WINDOWS\\twain_32\\Dell\\DELL1133\\Sscan2io.exe"=
"c:\\WINDOWS\\twain_32\\Dell\\ScanMgr.exe"=
"c:\\Program Files\\Google\\Update\\GoogleUpdate.exe"=
"c:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe"=
"c:\\Documents and Settings\\Janka\\Desktop\\KALKULACKY OVB\\run.exe"=
"c:\\Program Files\\Common Files\\Microsoft Shared\\Source Engine\\OSE.EXE"=
"c:\\Program Files\\Mozilla Firefox\\plugin-container.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Program Files\\Windows Media Player\\wmplayer.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
.
R1 avkmgr;avkmgr;c:\windows\system32\drivers\avkmgr.sys [12.11.2011 22:15 36000]
R2 Angelnt;Angelnt;c:\windows\system32\drivers\ANGELNT.SYS [19.3.2010 16:40 51072]
R2 AntiVirSchedulerService;Avira Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [12.11.2011 22:15 86224]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [15.11.2011 15:55 366152]
R3 FlrnUSB;Leadtek USB Network Interface;c:\windows\system32\drivers\LtkUSB.sys [13.8.2009 19:36 41907]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [15.11.2011 15:55 22216]
S2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service; [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; [x]
S2 SSPORT;SSPORT;\??\c:\windows\system32\Drivers\SSPORT.sys --> c:\windows\system32\Drivers\SSPORT.sys [?]
S3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [9.8.2009 20:32 193840]
S3 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys --> c:\windows\system32\drivers\mbamswissarmy.sys [?]
S3 TrueSight;TrueSight;c:\windows\system32\drivers\TrueSight.sys [17.11.2011 11:28 111872]
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2007-06-20 10:47 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://gmail.com/
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Send to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: SmarThru4 Capture Selection - c:\program files\SmarThru 4\WebCapture.dll2.htm
IE: SmarThru4 Save as HTML - c:\program files\SmarThru 4\WebCapture.dll1.htm
IE: SmarThru4 Save Selected Text - c:\program files\SmarThru 4\WebCapture.dll.htm
IE: SmarThru4 Web Capture - c:\program files\SmarThru 4\WebCapture.dll
IE: {{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - c:\program files\ICQ7.4\ICQ.exe
TCP: DhcpNameServer = 195.91.0.17 194.154.227.17
FF - ProfilePath - c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.gmail.com
.
- - - - ORPHANS REMOVED - - - -
.
AddRemove-ICQToolbar - c:\program files\ICQ6Toolbar\ICQUnToolbar.exe
AddRemove-SpywareBlaster_is1 - c:\program files\SpywareBlaster\unins000.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-17 19:23
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Lotus iNotes Sync Manager = c:\notes\LOTUSI~1\nDOLMgr.exe -minimize?????????????P7m?t?????B~????????????&?B~????P7m???T?P???T?????????D~0?B~????&?B~?xB~?????????xB~???????? ???????(???s??|????0???????????Q?stA?B~????????????T????a???????????????????Ep??Ip???????????C~?????Ep??Ip????
LXDBCATS = rundll32 c:\windows\System32\spool\DRIVERS\W32X86\3\LXDBtime.dll,_RunDLLEntry@16???????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'explorer.exe'(1136)
c:\windows\system32\WININET.dll
c:\windows\system32\btmmhook.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\btncopy.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\progra~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
.
**************************************************************************
.
Completion time: 2011-11-17 19:30:15 - machine was rebooted
ComboFix-quarantined-files.txt 2011-11-17 18:30
ComboFix2.txt 2011-11-17 17:09
.
Pre-Run: 97 453 948 928 bytes free
Post-Run: 25 adresárov, 97 291 460 608 voľných bajtov
.
- - End Of File - - 1C25E9009CA884DB04B4F42F55670A95

[vyosek]

Jak se chova nas pacient

[Januska25]

No facebook stale nejde, tak neviem...

[vyosek]

Stahnete OTM (viz muj podpis)

• Pokud pouzivate Win Vista ci W7, kliknete na OTM pravym a dejte Run As Administrator ci Spustit jako spravce
• Do leveho okna Paste Instructions for Items to be Moved (pod zlutou caru) vlozte obsah, ktery mate nize

• Kód: Vybrat vše

  :files
  %windir%\system32\*.tmp.dll /s
  %windir%\system32\SET*.tmp /s
  %windir%\*.tmp
  
  :commands
  [RESETHOSTS]
  [EMPTYTEMP]
  [EMPTYFLASH]

• Kliknete na cervene tlacitko MoveIt!
• Budete vyzvani na restart, dejte Yes, log pote najdete C:\_OTM\MovedFiles, obsah sem vlozte

[Januska25]

Files moved on Reboot...
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.

Registry entries deleted on Reboot...


Aaaa Facebook uz ide po tomto kroku. Je to v poriadku?

[vyosek]

Odinstalujte Combofix

• Prejmenujte ComboFix na Uninstall
• Spustte jej
• Tohle smaze Combofix a jeho slozky

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

• Stahnete a spustte
• Pro potvrzeni volby mackejte A, Enter
• Po pouziti utilitu smazte
• Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

• Stahnete a spustte
• Kliknete na CleanUp a potvrdte YES
• Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte

Stahnete Ccleaner (viz muj podpis)
Panel čistič

• Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

• dejte Hledej problémy
• nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
• postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

• Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

Poprosim o novy log z RSIT a napiste jak se chova PC

[Januska25]

Logfile of random's system information tool 1.09 (written by random/random)
Run by Janka at 2011-11-20 15:15:29
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 96 GB (63%) free of 153 GB
Total RAM: 2039 MB (69% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:15:52, on 20.11.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Notes\LOTUSI~1\nDOLMgr.exe
C:\WINDOWS\twain_32\Dell\DELL1133\Scan2Pc.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\Janka\Desktop\RSIT.exe
C:\Program Files\trend micro\Janka.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://gmail.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Google Gears Helper - {E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file)
O4 - HKLM\..\Run: [Lotus iNotes Sync Manager] C:\Notes\LOTUSI~1\nDOLMgr.exe -minimize
O4 - HKLM\..\Run: [1133 Scan2PC] "C:\WINDOWS\twain_32\Dell\DELL1133\Scan2Pc.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [LXDBCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXDBtime.dll,_RunDLLEntry@16
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: SmarThru4 Capture Selection - C:\Program Files\SmarThru 4\WebCapture.dll2.htm
O8 - Extra context menu item: SmarThru4 Save as HTML - C:\Program Files\SmarThru 4\WebCapture.dll1.htm
O8 - Extra context menu item: SmarThru4 Save Selected Text - C:\Program Files\SmarThru 4\WebCapture.dll.htm
O8 - Extra context menu item: SmarThru4 Web Capture - C:\Program Files\SmarThru 4\WebCapture.dll
O9 - Extra button: (no name) - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll
O9 - Extra 'Tools' menuitem: Nastavenia rozšírenia &Gears - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: SmarThru4 Web Capture - {5941A0E4-56C1-4a49-9B18-05762CAC5F9B} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra 'Tools' menuitem: SmarThru4 Web Capture - {5941A0E4-56C1-4a49-9B18-05762CAC5F9B} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra button: SmarThru4 Capture Selection - {A07BFEF7-DD11-4937-B23B-E70C11D2EDF4} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra 'Tools' menuitem: SmarThru4 Capture Selection - {A07BFEF7-DD11-4937-B23B-E70C11D2EDF4} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra button: SmarThru4 Save as HTML - {E753A93F-2367-4978-BFA0-83048C1E61CB} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra 'Tools' menuitem: SmarThru4 Save as HTML - {E753A93F-2367-4978-BFA0-83048C1E61CB} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra button: SmarThru4 Save Selected Text - {F1F53366-3E11-47ab-BF84-580C94F9C9AD} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra 'Tools' menuitem: SmarThru4 Save Selected Text - {F1F53366-3E11-47ab-BF84-580C94F9C9AD} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 9844419765
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 9844491625
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/s ... wflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ABBYY FineReader 9.0 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.9.0) - - (no file)
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Realtime Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - (no file)
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn, Inc. - (no file)
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - (no file)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

--
End of file - 8704 bytes

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default

prefs.js - "browser.startup.homepage" - "http://www.gmail.com"

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"{000a9d1c-beef-4f90-9363-039d445309b8}"=C:\Program Files\Google\Google Gears\Firefox\


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
xmlfiller@software602.cz
{800b5000-a755-47e1-992b-48a1c1357f07}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{B13721C7-F507-4982-B2E5-502A71474FED}

C:\Program Files\Mozilla Firefox\components\
AskHPRFF.js
binary.manifest
browsercomps.dll
nsIFillerPlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeploytk.dll
npfiller.dll
NPOFF12.DLL
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
iMeshWebSearch.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml

C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\extensions\
{20a82645-c095-46ed-80e3-08825760534b}
{800b5000-a755-47e1-992b-48a1c1357f07}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-08-23 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53}]
Google Gears Helper - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll [2010-02-23 2121728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-08-23 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{855F3B16-6D32-4fe6-8A56-BBB695989046}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Lotus iNotes Sync Manager"=C:\Notes\LOTUSI~1\nDOLMgr.exe [2008-08-08 409600]
"1133 Scan2PC"=C:\WINDOWS\twain_32\Dell\DELL1133\Scan2Pc.exe [2009-12-24 1978880]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2011-09-23 258512]
"LXDBCATS"=rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXDBtime.dll,_RunDLLEntry@16 []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2007-09-18 208896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 239496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
nwprovau

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableSecureUIAPaths"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe"="C:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe:*:Enabled:Nero ProductSetup"
"C:\Program Files\Deutscher Ring\Calculator SK\Deutscher Ring Calculator SK.exe"="C:\Program Files\Deutscher Ring\Calculator SK\Deutscher Ring Calculator SK.exe:*:Enabled:Deutscher Ring Calculator SK"
"C:\Program Files\Google\Google Earth\client\googleearth.exe"="C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth"
"C:\Program Files\Deutscher Ring\Accident Calculator SK\Deutscher Ring Accident Calculator SK.exe"="C:\Program Files\Deutscher Ring\Accident Calculator SK\Deutscher Ring Accident Calculator SK.exe:*:Enabled:Deutscher Ring Accident Calculator SK"
"C:\Program Files\Google\Google Earth\plugin\geplugin.exe"="C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Disabled:Google Earth"
"C:\WINDOWS\twain_32\Dell\DELL1133\Scan2Pc.exe"="C:\WINDOWS\twain_32\Dell\DELL1133\Scan2Pc.exe:*:Enabled:Scan2PC.exe"
"C:\WINDOWS\twain_32\Dell\DELL1133\Sscan2io.exe"="C:\WINDOWS\twain_32\Dell\DELL1133\Sscan2io.exe:*:Enabled:Sscan2io.exe"
"C:\WINDOWS\twain_32\Dell\ScanMgr.exe"="C:\WINDOWS\twain_32\Dell\ScanMgr.exe:*:Enabled:ScanMgr.exe"
"C:\Program Files\Google\Update\GoogleUpdate.exe"="C:\Program Files\Google\Update\GoogleUpdate.exe:*:Enabled:Inštalačný program Google"
"C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe:*:Enabled:Adobe Reader and Acrobat Manager"
"C:\Documents and Settings\Janka\Desktop\KALKULACKY OVB\run.exe"="C:\Documents and Settings\Janka\Desktop\KALKULACKY OVB\run.exe:*:Enabled:Einstein"
"C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE"="C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE:*:Enabled:Office Source Engine"
"C:\Program Files\Mozilla Firefox\plugin-container.exe"="C:\Program Files\Mozilla Firefox\plugin-container.exe:*:Enabled:Plugin Container for Firefox"
"C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Windows Media Player\wmplayer.exe"="C:\Program Files\Windows Media Player\wmplayer.exe:*:Enabled:Windows Media Player"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\iMesh Applications\iMesh\iMesh.exe"="C:\Program Files\iMesh Applications\iMesh\iMesh.exe:*:Enabled:iMesh"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.DIVX"=DivX.dll
"vidc.yv12"=yv12vfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll
"vidc.dvsd"=pdvcodec.dll
"msacm.l3fhg"=mp3fhg.acm
"msacm.ac3acm"=ac3acm.acm
"VIDC.FFDS"=ff_vfw.dll

======List of files/folders created in the last 1 month======

2011-11-20 15:15:29 ----D---- C:\rsit
2011-11-20 15:07:09 ----D---- C:\Program Files\CCleaner
2011-11-20 14:51:59 ----SHD---- C:\RECYCLER
2011-11-18 13:02:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2544893-v2$
2011-11-18 13:00:05 ----D---- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2011-11-18 12:59:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2641690$
2011-11-17 19:30:18 ----D---- C:\WINDOWS\temp
2011-11-17 17:41:32 ----A---- C:\Boot.bak
2011-11-17 17:41:28 ----RASHD---- C:\cmdcons
2011-11-17 11:28:28 ----A---- C:\WINDOWS\system32\drivers\TrueSight.sys
2011-11-15 15:55:14 ----D---- C:\Documents and Settings\Janka\Application Data\Malwarebytes
2011-11-15 15:55:08 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2011-11-15 15:55:04 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-11-15 15:55:04 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2011-11-14 20:55:09 ----D---- C:\Program Files\trend micro
2011-11-12 22:36:40 ----D---- C:\Program Files\EMCO
2011-11-12 22:32:41 ----D---- C:\Program Files\Spybot - Search & Destroy
2011-11-12 22:16:53 ----D---- C:\Documents and Settings\Janka\Application Data\Avira
2011-11-12 22:15:03 ----A---- C:\WINDOWS\system32\drivers\ssmdrv.sys
2011-11-12 22:15:01 ----A---- C:\WINDOWS\system32\drivers\avkmgr.sys
2011-11-12 22:15:01 ----A---- C:\WINDOWS\system32\drivers\avipbb.sys
2011-11-12 22:15:01 ----A---- C:\WINDOWS\system32\drivers\avgntflt.sys
2011-11-12 22:14:54 ----D---- C:\Program Files\Avira
2011-11-12 22:14:54 ----D---- C:\Documents and Settings\All Users\Application Data\Avira
2011-11-03 11:15:36 ----A---- C:\WINDOWS\Dell1133.txt
2011-11-03 11:12:18 ----A---- C:\WINDOWS\system32\msxml2a.dll
2011-11-03 11:12:18 ----A---- C:\WINDOWS\SSndii.exe
2011-11-03 11:12:16 ----D---- C:\WINDOWS\Dell
2011-11-03 11:11:36 ----D---- C:\Documents and Settings\Janka\Application Data\SmarThru4
2011-11-03 11:11:20 ----N---- C:\WINDOWS\system32\drivers\DgivEcp.sys
2011-11-03 11:11:06 ----N---- C:\WINDOWS\system32\SecSNMP.dll
2011-11-03 11:11:05 ----A---- C:\WINDOWS\system32\LTRPR13n.DLL
2011-11-03 11:11:05 ----A---- C:\WINDOWS\system32\LTRIO13N.DLL
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lttwn13n.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\LTR13N.DLL
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lftif13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfpsd13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\LFPNM13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\Lfpng13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfpcx13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfpcd13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfmsp13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfjbg13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\LFJ2K13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfitg13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfitg13n.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfimg13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfimg13n.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfiff13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfiff13n.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lffax13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lffax13n.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfeps13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\LFCMP13s.DLL
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfclp13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfbmp13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfavi13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfani13s.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\PCDLIB32.DLL
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\lttmb13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\LTTLB13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\Ltpnt13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\ltpdg13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\LTOCR13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\ltkrn13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\ltimg13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\ltefx13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\LTDIS13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\LTCLR13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\ltbar13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\lftif13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\lfpsd13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\LFPNM13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\Lfpng13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\lfpcx13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\lfpcd13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\lfmsp13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\lfjbg13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\LFJ2K13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\lfeps13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\LFCMP13n.DLL
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\lfclp13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\lfbmp13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\lfavi13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\lfani13n.dll
2011-11-03 11:11:02 ----A---- C:\WINDOWS\system32\Mfcoleui.dll
2011-11-03 11:11:02 ----A---- C:\WINDOWS\system32\Ltwvc13n.dll
2011-11-03 11:11:02 ----A---- C:\WINDOWS\system32\ltlst13n.dll
2011-11-03 11:11:02 ----A---- C:\WINDOWS\system32\ltfil13n.DLL
2011-11-03 11:11:02 ----A---- C:\WINDOWS\system32\ltdlg13n.dll
2011-11-03 11:11:01 ----D---- C:\Program Files\Common Files\SRC Shared
2011-11-03 11:10:59 ----A---- C:\WINDOWS\Readiris.ini
2011-11-03 11:10:50 ----A---- C:\WINDOWS\system32\irisco32.dll
2011-11-03 11:09:38 ----D---- C:\Program Files\Readiris10
2011-11-03 11:09:26 ----D---- C:\Program Files\SmarThru 4
2011-11-03 11:08:37 ----RA---- C:\WINDOWS\Wiainst.exe
2011-11-03 11:06:34 ----A---- C:\WINDOWS\system32\sdo1ml3.dll
2011-11-03 11:06:23 ----A---- C:\WINDOWS\system32\sdo1mci.exe
2011-11-03 11:06:23 ----A---- C:\WINDOWS\system32\sdo1mci.dll
2011-11-03 11:05:42 ----D---- C:\Program Files\Dell
2011-10-31 14:40:13 ----D---- C:\reports
2011-10-31 14:40:13 ----D---- C:\ProductDB
2011-10-31 14:40:13 ----D---- C:\lib
2011-10-31 14:40:13 ----A---- C:\Projekcie.lnk
2011-10-31 14:40:13 ----A---- C:\Projekcie.cmd
2011-10-31 14:40:13 ----A---- C:\MetLife Amslico.lnk
2011-10-31 14:40:13 ----A---- C:\jr.cmd
2011-10-31 10:58:47 ----D---- C:\WINDOWS\ufa

======List of files/folders modified in the last 1 month======

2011-11-20 15:15:40 ----D---- C:\WINDOWS\Prefetch
2011-11-20 15:12:20 ----SHD---- C:\WINDOWS\Installer
2011-11-20 15:12:16 ----RD---- C:\Program Files\Skype
2011-11-20 15:10:49 ----RD---- C:\Program Files
2011-11-20 15:09:42 ----D---- C:\WINDOWS
2011-11-20 15:09:37 ----D---- C:\Program Files\Flexibil
2011-11-20 15:07:44 ----D---- C:\WINDOWS\Debug
2011-11-20 15:01:04 ----N---- C:\WINDOWS\SchedLgU.Txt
2011-11-20 14:55:26 ----SHD---- C:\System Volume Information
2011-11-20 14:55:26 ----D---- C:\WINDOWS\system32\Restore
2011-11-20 14:50:24 ----D---- C:\Program Files\Mozilla Firefox
2011-11-20 14:47:03 ----D---- C:\WINDOWS\system32\drivers
2011-11-20 14:40:26 ----D---- C:\WINDOWS\system32
2011-11-18 13:02:20 ----HD---- C:\WINDOWS\inf
2011-11-18 13:02:18 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-11-18 13:00:11 ----A---- C:\WINDOWS\system32\MRT.exe
2011-11-18 12:54:31 ----HD---- C:\WINDOWS\$hf_mig$
2011-11-18 12:53:28 ----D---- C:\WINDOWS\system32\CatRoot2
2011-11-17 20:08:10 ----D---- C:\WINDOWS\network diagnostic
2011-11-17 19:24:25 ----A---- C:\WINDOWS\system.ini
2011-11-17 19:21:56 ----D---- C:\WINDOWS\system32\config
2011-11-17 19:21:13 ----SD---- C:\WINDOWS\Tasks
2011-11-17 19:18:55 ----D---- C:\WINDOWS\AppPatch
2011-11-17 19:18:53 ----D---- C:\Program Files\Common Files
2011-11-17 17:56:51 ----D---- C:\WINDOWS\system32\drivers\etc
2011-11-17 17:41:32 ----RASH---- C:\boot.ini
2011-11-17 10:57:08 ----D---- C:\Program Files\Lx_cats
2011-11-16 23:24:53 ----D---- C:\Projection
2011-11-16 15:36:55 ----D---- C:\Program Files\Common Files\LightScribe
2011-11-16 08:16:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2279986$
2011-11-15 22:02:49 ----D---- C:\WINDOWS\system32\NtmsData
2011-11-15 21:29:47 ----D---- C:\Program Files\Mozilla Thunderbird
2011-11-15 21:19:37 ----D---- C:\WINDOWS\Registration
2011-11-15 16:55:12 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2011-11-14 20:47:19 ----AC---- C:\WINDOWS\WINCMD.INI
2011-11-14 19:42:38 ----SD---- C:\WINDOWS\Downloaded Program Files
2011-11-13 12:01:44 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2011-11-13 12:00:49 ----SD---- C:\Documents and Settings\Janka\Application Data\Microsoft
2011-11-13 12:00:49 ----D---- C:\Documents and Settings\Janka\Application Data\Adobe
2011-11-13 11:58:22 ----D---- C:\Program Files\Common Files\Adobe
2011-11-13 11:57:55 ----D---- C:\Program Files\Adobe
2011-11-13 11:45:13 ----D---- C:\Documents and Settings\Janka\Application Data\Thunderbird
2011-11-13 11:40:31 ----D---- C:\ALFA
2011-11-13 11:35:39 ----A---- C:\WINDOWS\system32\pgdfgsvc.exe
2011-11-13 11:23:15 ----D---- C:\Program Files\WinRAR
2011-11-13 11:23:15 ----D---- C:\Program Files\Winmail Opener
2011-11-12 23:25:00 ----D---- C:\Documents and Settings\Janka\Application Data\Media Player Classic
2011-11-12 22:49:11 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2011-11-12 16:48:00 ----D---- C:\Program Files\Mobility Manager
2011-11-12 16:46:55 ----D---- C:\Program Files\LogMeIn Hamachi
2011-11-12 15:56:57 ----D---- C:\Temp
2011-11-06 20:58:33 ----D---- C:\logs
2011-11-03 11:15:44 ----HD---- C:\Program Files\InstallShield Installation Information
2011-11-03 11:08:35 ----D---- C:\WINDOWS\twain_32
2011-11-01 20:35:45 ----A---- C:\WINDOWS\NeroDigital.ini
2011-10-31 14:42:28 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-10-28 08:49:16 ----D---- C:\WINDOWS\Minidump
2011-10-25 09:45:40 ----D---- C:\Program Files\Whitestein Technologies
2011-10-24 09:55:41 ----D---- C:\Program Files\ERGO

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\WINDOWS\system32\drivers\iaStor.sys [2007-09-29 308248]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2011-09-18 134344]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2011-09-15 36000]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 36352]
R1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14592]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2010-06-17 28520]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R2 Angelnt;Angelnt; C:\WINDOWS\System32\Drivers\ANGELNT.SYS [2010-03-19 51072]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2011-09-15 74640]
R2 NwlnkIpx;NWLink IPX/SPX/NetBIOS Compatible Transport Protocol; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2008-04-13 88320]
R2 NwlnkNb;NWLink NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2007-07-27 63232]
R2 NwlnkSpx;NWLink SPX/SPXII Protocol; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2007-07-27 55936]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2008-02-05 281600]
R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2007-07-13 94976]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2008-11-21 1204128]
R3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2007-02-14 530861]
R3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2007-02-14 30459]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2007-02-14 868298]
R3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2007-02-14 149123]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2007-02-14 67960]
R3 e1express;Intel(R) PRO/1000 PCI Express Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e1e5132.sys [2008-12-05 241296]
R3 FlrnUSB;Leadtek USB Network Interface; C:\WINDOWS\system32\DRIVERS\LtkUSB.sys [2008-05-14 41907]
R3 HBtnKey;HBtnKey; C:\WINDOWS\system32\DRIVERS\cpqbttn.sys [2008-04-28 9344]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\WINDOWS\system32\DRIVERS\HpqKbFiltr.sys [2007-06-18 16768]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2007-09-18 5779296]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys []
R3 NETw5x32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw5x32.sys [2008-11-17 3636864]
R3 NWRDR;NetWare Rdr; C:\WINDOWS\system32\DRIVERS\nwrdr.sys [2008-04-13 163584]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2008-03-28 224672]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S2 DgiVecp;DgiVecp; \??\C:\WINDOWS\system32\Drivers\DgiVecp.sys []
S2 SSPORT;SSPORT; \??\C:\WINDOWS\system32\Drivers\SSPORT.sys []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
S3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2009-08-26 49920]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2009-08-26 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2009-08-26 21568]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys []
S3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys [2008-05-02 17536]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2008-05-02 20864]
S3 TrueSight;TrueSight; \??\c:\windows\system32\drivers\TrueSight.sys []
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbstor;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirService;Avira Realtime Protection; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2011-09-23 110032]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2011-09-23 86224]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-06-28 79136]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]
R2 NWCWorkstation;Client Service for NetWare; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2009-08-10 72704]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-04-03 193840]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------


Zda sa, ze vsetko funguje ako ma.

[vyosek]

MBAM muzete odinstalovat

Otevrete si poznamkovy blok

• Start->spustit->notepad
• Vlozte text nize

• Kód: Vybrat vše

  @ECHO OFF
  sc stop ABBYY.Licensing.FineReader.Professional.9.0
  sc delete ABBYY.Licensing.FineReader.Professional.9.0
  sc stop btwdins
  sc delete btwdins
  sc stop Hamachi2Svc
  sc delete Hamachi2Svc
  sc stop hpqwmiex
  sc delete hpqwmiex
  reg delete "[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]" /v "{855F3B16-6D32-4fe6-8A56-BBB695989046}" /f
  rmdir "C:\Program Files\Spybot - Search & Destroy" /s /q

• Soubor ulozte jako del.bat
• Pri ukladani dejte ulozit jako typ Vsechny soubory (nastevni je uvedeno na obrazku nize)
• 
• Zavrit notepad a spustit dvojklikem del.bat
• Okno jen problikne a provede mazani - soubor muzete smazat

A melo by to byt vse

[Januska25]

Hlasim vsetko vykonane podla pokynov

Dakujem hrozne moc

[vyosek]

Nemate zac, rad jsem pomohl Zase nekdy


A na rozloucenou vam zahraje nase kapela

[Januska25]

Ale mam zaco, kludne by som vam poslala aj tych 20 eur co som dala pankovi

Este raz vdaka a pekny den