VIRY.CZ

Tak tu to je..

ComboFix 11-11-17.03 - Janka 17.11.2011 17:48:52.1.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.421.1033.18.2039.1598 [GMT 1:00]
Running from: c:\documents and settings\Janka\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Application Data\18F
c:\documents and settings\All Users\Application Data\18F\{2C2E9D9D-EC15-44E5-B74A-D10376EE7848}.swf
c:\documents and settings\All Users\Application Data\TEMP
c:\documents and settings\Janka\Application Data\Desktopicon
c:\documents and settings\Janka\Application Data\Desktopicon\config.ini
c:\documents and settings\Janka\WINDOWS
c:\windows\$NtUninstallKB16995$
c:\windows\$NtUninstallKB16995$\786010949\@
c:\windows\$NtUninstallKB16995$\786010949\L\acummful
c:\windows\$NtUninstallKB16995$\786010949\loader.tlb
c:\windows\$NtUninstallKB16995$\786010949\U\@00000001
c:\windows\$NtUninstallKB16995$\786010949\U\@000000c0
c:\windows\$NtUninstallKB16995$\786010949\U\@000000cb
c:\windows\$NtUninstallKB16995$\786010949\U\@000000cf
c:\windows\$NtUninstallKB16995$\786010949\U\@80000000
c:\windows\$NtUninstallKB16995$\786010949\U\@800000c0
c:\windows\$NtUninstallKB16995$\786010949\U\@800000cb
c:\windows\$NtUninstallKB16995$\786010949\U\@800000cf
c:\windows\$NtUninstallKB16995$\887770884
c:\windows\av_ico
c:\windows\av_ico\ico_avira_start.ico
c:\windows\av_ico\ico_mcafee_start.ico
c:\windows\btc_client_iplist.txt
c:\windows\front_ip_list.txt
c:\windows\geoiplist
c:\windows\geoiplist.rar
c:\windows\iecheck_iplist.txt
c:\windows\info1
c:\windows\iplist.txt
c:\windows\loader2.exe_ok
c:\windows\phoenix
c:\windows\phoenix.rar
c:\windows\phoenix\kernels\phatk\__init__.py
c:\windows\phoenix\kernels\phatk\__init__.pyc
c:\windows\phoenix\kernels\phatk\BFIPatcher.py
c:\windows\phoenix\kernels\phatk\kernel.cl
c:\windows\phoenix\kernels\poclbm\__init__.py
c:\windows\phoenix\kernels\poclbm\__init__.pyc
c:\windows\phoenix\kernels\poclbm\BFIPatcher.py
c:\windows\phoenix\kernels\poclbm\kernel.cl
c:\windows\phoenix\phoenix.exe
c:\windows\rpcminer.rar
c:\windows\system32\
c:\windows\system32\drivers\etc\HSTS~1
c:\windows\ufa.rar
c:\windows\update.1
c:\windows\update.2
c:\windows\update.5.0
c:\windows\update.tray-8-0-lnk
c:\windows\update.tray-8-0
c:\windows\winlog-dirs.txt
c:\windows\winlog-ids.txt
.
.
((((((((((((((((((((((((( Files Created from 2011-10-17 to 2011-11-17 )))))))))))))))))))))))))))))))
.
.
2011-11-17 10:28 . 2011-11-17 10:30 111872 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2011-11-17 10:27 . 2011-11-17 10:27 -------- d-----w- C:\RK_Quarantine
2011-11-15 14:55 . 2011-11-15 14:55 -------- d-----w- c:\documents and settings\Janka\Application Data\Malwarebytes
2011-11-15 14:55 . 2011-11-15 14:55 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2011-11-15 14:55 . 2011-11-15 14:56 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-11-15 14:55 . 2011-08-31 16:00 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-11-14 19:55 . 2011-11-16 09:17 -------- d-----w- c:\program files\trend micro
2011-11-14 19:55 . 2011-11-14 19:55 -------- d-----w- C:\rsit
2011-11-13 10:42 . 2011-11-13 10:44 134104 ----a-w- c:\program files\Mozilla Firefox\components\browsercomps.dll
2011-11-13 10:42 . 2011-11-13 10:44 89048 ----a-w- c:\program files\Mozilla Firefox\libEGL.dll
2011-11-13 10:42 . 2011-11-13 10:44 801752 ----a-w- c:\program files\Mozilla Firefox\mozsqlite3.dll
2011-11-13 10:42 . 2011-11-13 10:44 478168 ----a-w- c:\program files\Mozilla Firefox\libGLESv2.dll
2011-11-13 10:42 . 2011-11-13 10:44 1989592 ----a-w- c:\program files\Mozilla Firefox\mozjs.dll
2011-11-13 10:42 . 2011-11-13 10:44 15832 ----a-w- c:\program files\Mozilla Firefox\mozalloc.dll
2011-11-13 10:42 . 2011-09-29 00:26 2106216 ----a-w- c:\program files\Mozilla Firefox\D3DCompiler_43.dll
2011-11-13 10:42 . 2011-09-29 00:26 1998168 ----a-w- c:\program files\Mozilla Firefox\d3dx9_43.dll
2011-11-13 10:16 . 2011-11-13 10:16 -------- d-----w- c:\program files\Yamicsoft
2011-11-13 10:14 . 2011-11-13 10:15 -------- d-----w- c:\program files\SpywareBlaster
2011-11-12 21:47 . 2011-11-12 21:47 -------- d-----w- c:\documents and settings\Janka\Application Data\IObit
2011-11-12 21:36 . 2011-11-12 21:36 -------- d-----w- c:\program files\EMCO
2011-11-12 21:32 . 2011-11-17 10:20 -------- d-----w- c:\program files\Spybot - Search & Destroy
2011-11-12 21:16 . 2011-11-12 21:16 -------- d-----w- c:\documents and settings\Janka\Application Data\Avira
2011-11-12 21:15 . 2011-09-18 07:39 134344 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-11-12 21:15 . 2011-09-15 22:55 36000 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2011-11-12 21:15 . 2011-09-15 22:55 74640 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-11-12 21:14 . 2011-11-12 21:14 -------- d-----w- c:\program files\Avira
2011-11-12 21:14 . 2011-11-12 21:14 -------- d-----w- c:\documents and settings\All Users\Application Data\Avira
2011-11-08 20:17 . 2011-11-12 15:21 -------- d-sh--w- c:\documents and settings\LocalService\Local Settings\Application Data\2ed99345
2011-11-03 10:15 . 2011-11-03 10:15 -------- d-----w- c:\documents and settings\Janka\Local Settings\Application Data\S2PC
2011-11-03 10:15 . 2009-09-18 16:40 523264 ------w- c:\windows\system32\dsmgr.cpl
2011-11-03 10:12 . 2009-12-23 06:30 484592 ----a-w- c:\windows\SSndii.exe
2011-11-03 10:12 . 2009-09-18 09:32 21776 ----a-w- c:\windows\system32\msxml2a.dll
2011-11-03 10:12 . 2011-11-03 10:12 -------- d-----w- c:\windows\Dell
2011-11-03 10:10 . 1997-05-26 13:55 23040 ----a-w- c:\windows\system32\irisco32.dll
2011-11-03 10:09 . 2011-11-03 10:10 -------- d-----w- c:\program files\Readiris10
2011-11-03 10:09 . 2011-11-03 10:11 -------- d-----w- c:\program files\SmarThru 4
2011-11-03 10:08 . 2009-12-23 05:06 115952 ----a-r- c:\windows\Wiainst.exe
2011-11-03 10:06 . 2009-09-17 01:38 26624 ----a-w- c:\windows\system32\sdo1ml3.dll
2011-11-03 10:06 . 2009-09-17 01:38 19968 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\sdo1mpc.dll
2011-11-03 10:06 . 2009-09-17 01:38 151552 ----a-w- c:\windows\system32\sdo1mci.exe
2011-11-03 10:06 . 2009-09-17 01:38 65536 ----a-w- c:\windows\system32\sdo1mci.dll
2011-11-03 10:05 . 2011-11-03 10:05 -------- d-----w- c:\program files\Dell
2011-10-31 13:40 . 2011-11-13 10:23 -------- d-----w- C:\reports
2011-10-31 13:40 . 2011-08-14 14:23 -------- d-----w- C:\lib
2011-10-31 13:40 . 2011-08-14 14:23 -------- d-----w- C:\ProductDB
2011-10-31 13:40 . 2009-06-03 13:39 825 ----a-w- C:\jr.cmd
2011-10-31 13:40 . 2009-05-05 20:13 147 ----a-w- C:\Projekcie.cmd
2011-10-31 09:58 . 2011-11-16 07:15 -------- d-----w- c:\windows\ufa
2011-10-30 20:24 . 2011-11-14 18:42 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-10-28 08:05 . 2011-10-31 09:58 246272 ----a-w- c:\windows\unrar.exe
2011-10-28 07:51 . 2011-11-12 16:15 -------- d--h--w- c:\windows\update.tray-9-0-lnk
2011-10-28 07:51 . 2011-11-12 16:15 -------- d--h--w- c:\windows\update.tray-9-0
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-13 10:35 . 2009-08-10 09:06 25992 ----a-w- c:\windows\system32\pgdfgsvc.exe
2011-09-26 09:41 . 2008-07-29 17:59 611328 ----a-w- c:\windows\system32\uiautomationcore.dll
2011-09-26 09:41 . 2007-07-27 12:00 220160 ----a-w- c:\windows\system32\oleacc.dll
2011-09-26 09:41 . 2007-07-27 12:00 20480 ----a-w- c:\windows\system32\oleaccrc.dll
2011-09-09 09:12 . 2007-07-27 12:00 599040 ----a-w- c:\windows\system32\crypt32.dll
2011-09-06 13:20 . 2007-07-27 12:00 1858944 ----a-w- c:\windows\system32\win32k.sys
2011-08-22 23:48 . 2007-07-27 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2011-08-22 23:48 . 2007-07-27 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-08-22 23:48 . 2007-07-27 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-08-22 11:56 . 2007-07-27 12:00 385024 ----a-w- c:\windows\system32\html.iec
2011-11-13 10:44 . 2011-11-13 10:42 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Lotus iNotes Sync Manager"="c:\notes\LOTUSI~1\nDOLMgr.exe" [2008-08-08 409600]
"1133 Scan2PC"="c:\windows\twain_32\Dell\DELL1133\Scan2Pc.exe" [2009-12-24 1978880]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-09-23 258512]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
"LXDBCATS"="c:\windows\System32\spool\DRIVERS\W32X86\3\LXDBtime.dll" [2006-03-02 73728]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-2-6 561213]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableSecureUIAPaths"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Authentication Packages REG_MULTI_SZ msv1_0 nwprovau
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"DisableThumbnailCache"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Common Files\\Ahead\\Nero Web\\SetupX.exe"=
"c:\\Program Files\\Deutscher Ring\\Calculator SK\\Deutscher Ring Calculator SK.exe"=
"c:\\Program Files\\Google\\Google Earth\\client\\googleearth.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\ICQ7.4\\ICQ.exe"=
"c:\\Program Files\\Deutscher Ring\\Accident Calculator SK\\Deutscher Ring Accident Calculator SK.exe"=
"c:\\Program Files\\Google\\Google Earth\\plugin\\geplugin.exe"=
"c:\\WINDOWS\\twain_32\\Dell\\DELL1133\\Scan2Pc.exe"=
"c:\\WINDOWS\\twain_32\\Dell\\DELL1133\\Sscan2io.exe"=
"c:\\WINDOWS\\twain_32\\Dell\\ScanMgr.exe"=
"c:\\Program Files\\Google\\Update\\GoogleUpdate.exe"=
"c:\\Program Files\\Ask.com\\UpdateTask.exe"=
"c:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe"=
"c:\\Documents and Settings\\Janka\\Desktop\\KALKULACKY OVB\\run.exe"=
"c:\\Program Files\\Common Files\\Microsoft Shared\\Source Engine\\OSE.EXE"=
"c:\\Program Files\\Mozilla Firefox\\plugin-container.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Program Files\\Windows Media Player\\wmplayer.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
.
R1 avkmgr;avkmgr;c:\windows\system32\drivers\avkmgr.sys [12.11.2011 22:15 36000]
R2 Angelnt;Angelnt;c:\windows\system32\drivers\ANGELNT.SYS [19.3.2010 16:40 51072]
R2 AntiVirSchedulerService;Avira Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [12.11.2011 22:15 86224]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [15.11.2011 15:55 366152]
R3 FlrnUSB;Leadtek USB Network Interface;c:\windows\system32\drivers\LtkUSB.sys [13.8.2009 19:36 41907]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [15.11.2011 15:55 22216]
S2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service; [x]
S2 FMMService;FMMService; [x]
S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [28.10.2009 19:49 133104]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; [x]
S2 ICQ Service;ICQ Service; [x]
S2 SSPORT;SSPORT;\??\c:\windows\system32\Drivers\SSPORT.sys --> c:\windows\system32\Drivers\SSPORT.sys [?]
S3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [9.8.2009 20:32 193840]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [28.10.2009 19:49 133104]
S3 lxdb_device;lxdb_device; [x]
S3 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys --> c:\windows\system32\drivers\mbamswissarmy.sys [?]
S3 McComponentHostService;McAfee Security Scan Component Host Service; [x]
S3 TrueSight;TrueSight;c:\windows\system32\drivers\TrueSight.sys [17.11.2011 11:28 111872]
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2007-06-20 10:47 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Contents of the 'Scheduled Tasks' folder
.
2011-11-17 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-10-28 18:49]
.
2011-11-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-10-28 18:49]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://gmail.com/
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Send to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: SmarThru4 Capture Selection - c:\program files\SmarThru 4\WebCapture.dll2.htm
IE: SmarThru4 Save as HTML - c:\program files\SmarThru 4\WebCapture.dll1.htm
IE: SmarThru4 Save Selected Text - c:\program files\SmarThru 4\WebCapture.dll.htm
IE: SmarThru4 Web Capture - c:\program files\SmarThru 4\WebCapture.dll
IE: {{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - c:\program files\ICQ7.4\ICQ.exe
TCP: DhcpNameServer = 195.91.0.17 194.154.227.17
FF - ProfilePath - c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.gmail.com
.
- - - - ORPHANS REMOVED - - - -
.
BHO-{28387537-e3f9-4ed7-860c-11e69af4a8a0} - (no file)
Toolbar-{28387537-e3f9-4ed7-860c-11e69af4a8a0} - (no file)
Toolbar-10 - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-17 18:00
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Lotus iNotes Sync Manager = c:\notes\LOTUSI~1\nDOLMgr.exe -minimize?????????????P7m?t?????B~????????????&?B~????P7m???T?P???T?????????D~0?B~????&?B~?xB~?????????xB~???????? ???????(???s??|????0???????????Q?stA?B~????????????T????a???????????????????Ep??Ip???????????C~?????Ep??Ip????
LXDBCATS = rundll32 c:\windows\System32\spool\DRIVERS\W32X86\3\LXDBtime.dll,_RunDLLEntry@16???????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'explorer.exe'(2968)
c:\windows\system32\WININET.dll
c:\windows\system32\btmmhook.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\btncopy.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\windows\system32\wscntfy.exe
c:\progra~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
.
**************************************************************************
.
Completion time: 2011-11-17 18:09:36 - machine was rebooted
ComboFix-quarantined-files.txt 2011-11-17 17:09
.
Pre-Run: 97 189 552 128 bytes free
Post-Run: 25 adresárov, 97 453 187 072 voľných bajtov
.
WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=AlwaysOff /fastdetect
.
- - End Of File - - FF9F71AA173EBC41F4CA84E56A9E2812

Stahnete si TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe

Utilitu spustte a prikazte ji, at skenuje - klik na Start Scan
Pokud utilita najde infikekci, bude ji chtit lecit (Cure), povolte leceni kliknutim na Continue
Pokud utilita najde podezrely soubor (suspicious), bude jej chtit preskocit (Skip), povolte preskoceni kliknutim na Continue
Po dokonceni skenu bude mozna nutny restart PC, povolte jej kliknutim na Reboot now
Po restartu na Vas vyskoci log, pokud se tak nestane, najdete jej primo na disku, kde mate Windows (obvykle c:\) ve tvaru TDSSKiller.nejaka cisilka _log.txt - jeho obsah sem vlozte
Pokud restart nebude vyzadovan, kliknete na Close a nasledne na Report - vytvori se log - jeho obsah sem vlozte

Nasledujici soubory otestujte na VirusTotalu (viz muj podpis)

c:\windows\system32\pgdfgsvc.exe
Kliknete na Prochazet
Soubor nehledejte, jen vlozte cestu souboru, ktery chci otestovat
Kliknete na Send File
Pokud na Vas vyskoci obrazovka jako je nize, tak kliknete na ReAnalyse
Vysledek analyzy sem vlozte (jako odkaz)

No dufam som to dobre urobila:

18:24:10.0250 3696 TDSS rootkit removing tool 2.6.19.0 Nov 16 2011 12:18:50
18:24:10.0656 3696 ============================================================
18:24:10.0656 3696 Current date / time: 2011/11/17 18:24:10.0656
18:24:10.0656 3696 SystemInfo:
18:24:10.0656 3696
18:24:10.0656 3696 OS Version: 5.1.2600 ServicePack: 3.0
18:24:10.0656 3696 Product type: Workstation
18:24:10.0656 3696 ComputerName: NOTEBOOK
18:24:10.0656 3696 UserName: Janka
18:24:10.0656 3696 Windows directory: C:\WINDOWS
18:24:10.0656 3696 System windows directory: C:\WINDOWS
18:24:10.0656 3696 Processor architecture: Intel x86
18:24:10.0656 3696 Number of processors: 2
18:24:10.0656 3696 Page size: 0x1000
18:24:10.0656 3696 Boot type: Normal boot
18:24:10.0656 3696 ============================================================
18:24:10.0984 3696 Initialize success
18:24:13.0250 1732 ============================================================
18:24:13.0250 1732 Scan started
18:24:13.0250 1732 Mode: Manual;
18:24:13.0250 1732 ============================================================
18:24:14.0062 1732 Abiosdsk - ok
18:24:14.0078 1732 abp480n5 - ok
18:24:14.0140 1732 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:24:14.0156 1732 ACPI - ok
18:24:14.0187 1732 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
18:24:14.0187 1732 ACPIEC - ok
18:24:14.0250 1732 ADIHdAudAddService (4e12c97cbfe99be15d7680918f9899ec) C:\WINDOWS\system32\drivers\ADIHdAud.sys
18:24:14.0265 1732 ADIHdAudAddService - ok
18:24:14.0281 1732 adpu160m - ok
18:24:14.0296 1732 AEAudio (fff87a9b1ab36ee4b7bec98a4cb01b79) C:\WINDOWS\system32\drivers\AEAudio.sys
18:24:14.0296 1732 AEAudio - ok
18:24:14.0328 1732 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
18:24:14.0328 1732 aec - ok
18:24:14.0406 1732 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
18:24:14.0406 1732 AFD - ok
18:24:14.0515 1732 AgereSoftModem (3712986cc3abf0dc656b43525b9d1279) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
18:24:14.0578 1732 AgereSoftModem - ok
18:24:14.0765 1732 Aha154x - ok
18:24:14.0781 1732 aic78u2 - ok
18:24:14.0796 1732 aic78xx - ok
18:24:14.0828 1732 AliIde - ok
18:24:14.0843 1732 amsint - ok
18:24:14.0906 1732 Angelnt (4a8cb8fea9dcb6f93017f413e2646001) C:\WINDOWS\System32\Drivers\ANGELNT.SYS
18:24:14.0906 1732 Angelnt - ok
18:24:14.0937 1732 asc - ok
18:24:14.0953 1732 asc3350p - ok
18:24:14.0968 1732 asc3550 - ok
18:24:15.0046 1732 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:24:15.0046 1732 AsyncMac - ok
18:24:15.0078 1732 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
18:24:15.0078 1732 atapi - ok
18:24:15.0078 1732 Atdisk - ok
18:24:15.0125 1732 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:24:15.0140 1732 Atmarpc - ok
18:24:15.0171 1732 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
18:24:15.0171 1732 audstub - ok
18:24:15.0218 1732 avgntflt (7713e4eb0276702faa08e52a6e23f2a6) C:\WINDOWS\system32\DRIVERS\avgntflt.sys
18:24:15.0218 1732 avgntflt - ok
18:24:15.0281 1732 avipbb (912d23140cd05980f6cdae790ddafc8d) C:\WINDOWS\system32\DRIVERS\avipbb.sys
18:24:15.0281 1732 avipbb - ok
18:24:15.0296 1732 avkmgr (271cfd1a989209b1964e24d969552bf7) C:\WINDOWS\system32\DRIVERS\avkmgr.sys
18:24:15.0296 1732 avkmgr - ok
18:24:15.0515 1732 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
18:24:15.0515 1732 Beep - ok
18:24:15.0609 1732 btaudio (3aa4bf555c00c5b87fd48dd7bdbd4e97) C:\WINDOWS\system32\drivers\btaudio.sys
18:24:15.0625 1732 btaudio - ok
18:24:15.0687 1732 BTDriver (07f0a66cfa550b13ad0674ae09e3cba0) C:\WINDOWS\system32\DRIVERS\btport.sys
18:24:15.0687 1732 BTDriver - ok
18:24:15.0781 1732 BTKRNL (ba57f31eab93dc597d772f6f5b9ed54f) C:\WINDOWS\system32\DRIVERS\btkrnl.sys
18:24:15.0796 1732 BTKRNL - ok
18:24:15.0828 1732 BTWDNDIS (b1d350f3f13cf340fce93912d2ba1ebf) C:\WINDOWS\system32\DRIVERS\btwdndis.sys
18:24:15.0843 1732 BTWDNDIS - ok
18:24:15.0859 1732 BTWUSB (57e91e9925976bbc98984eebaaf1d84c) C:\WINDOWS\system32\Drivers\btwusb.sys
18:24:15.0859 1732 BTWUSB - ok
18:24:15.0875 1732 catchme - ok
18:24:15.0937 1732 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
18:24:15.0937 1732 cbidf2k - ok
18:24:16.0125 1732 cd20xrnt - ok
18:24:16.0156 1732 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
18:24:16.0156 1732 Cdaudio - ok
18:24:16.0218 1732 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
18:24:16.0234 1732 Cdfs - ok
18:24:16.0250 1732 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:24:16.0250 1732 Cdrom - ok
18:24:16.0265 1732 Changer - ok
18:24:16.0296 1732 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
18:24:16.0312 1732 CmBatt - ok
18:24:16.0312 1732 CmdIde - ok
18:24:16.0343 1732 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
18:24:16.0343 1732 Compbatt - ok
18:24:16.0375 1732 Cpqarray - ok
18:24:16.0390 1732 dac2w2k - ok
18:24:16.0406 1732 dac960nt - ok
18:24:16.0468 1732 DgiVecp (7f19dba1a467b838ccb23124a2c55568) C:\WINDOWS\system32\Drivers\DgiVecp.sys
18:24:16.0468 1732 DgiVecp - ok
18:24:16.0500 1732 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
18:24:16.0500 1732 Disk - ok
18:24:16.0562 1732 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
18:24:16.0609 1732 dmboot - ok
18:24:16.0625 1732 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
18:24:16.0656 1732 dmio - ok
18:24:16.0656 1732 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
18:24:16.0671 1732 dmload - ok
18:24:16.0703 1732 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
18:24:16.0718 1732 DMusic - ok
18:24:16.0734 1732 dpti2o - ok
18:24:16.0750 1732 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
18:24:16.0750 1732 drmkaud - ok
18:24:16.0890 1732 e1express (8942419786970adb32b05bb7950aee72) C:\WINDOWS\system32\DRIVERS\e1e5132.sys
18:24:16.0906 1732 e1express - ok
18:24:17.0093 1732 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
18:24:17.0109 1732 Fastfat - ok
18:24:17.0140 1732 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
18:24:17.0140 1732 Fdc - ok
18:24:17.0171 1732 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
18:24:17.0171 1732 Fips - ok
18:24:17.0187 1732 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
18:24:17.0187 1732 Flpydisk - ok
18:24:17.0234 1732 FlrnUSB (66d252e6bd9bc2d9ec961032b2246874) C:\WINDOWS\system32\DRIVERS\LtkUSB.sys
18:24:17.0234 1732 FlrnUSB - ok
18:24:17.0296 1732 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
18:24:17.0312 1732 FltMgr - ok
18:24:17.0343 1732 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:24:17.0343 1732 Fs_Rec - ok
18:24:17.0375 1732 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:24:17.0390 1732 Ftdisk - ok
18:24:17.0484 1732 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:24:17.0484 1732 Gpc - ok
18:24:17.0546 1732 hamachi (833051c6c6c42117191935f734cfbd97) C:\WINDOWS\system32\DRIVERS\hamachi.sys
18:24:17.0562 1732 hamachi - ok
18:24:17.0734 1732 HBtnKey (407e41ddb2bfece109132aec296e0d98) C:\WINDOWS\system32\DRIVERS\cpqbttn.sys
18:24:17.0734 1732 HBtnKey - ok
18:24:17.0781 1732 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:24:17.0781 1732 HDAudBus - ok
18:24:17.0843 1732 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:24:17.0843 1732 HidUsb - ok
18:24:17.0859 1732 hpn - ok
18:24:17.0875 1732 HpqKbFiltr (35956140e686d53bf676cf0c778880fc) C:\WINDOWS\system32\DRIVERS\HpqKbFiltr.sys
18:24:17.0890 1732 HpqKbFiltr - ok
18:24:17.0968 1732 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
18:24:17.0984 1732 HPZid412 - ok
18:24:18.0031 1732 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
18:24:18.0031 1732 HPZipr12 - ok
18:24:18.0125 1732 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
18:24:18.0140 1732 HPZius12 - ok
18:24:18.0203 1732 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
18:24:18.0203 1732 HTTP - ok
18:24:18.0343 1732 i2omgmt - ok
18:24:18.0359 1732 i2omp - ok
18:24:18.0421 1732 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:24:18.0421 1732 i8042prt - ok
18:24:18.0765 1732 ialm (42caa789a21014aa809a8ff59b3ccfd9) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
18:24:19.0062 1732 ialm - ok
18:24:19.0125 1732 iaStor (e5a0034847537eaee3c00349d5c34c5f) C:\WINDOWS\system32\drivers\iaStor.sys
18:24:19.0125 1732 iaStor - ok
18:24:19.0265 1732 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
18:24:19.0265 1732 Imapi - ok
18:24:19.0375 1732 ini910u - ok
18:24:19.0406 1732 IntelIde - ok
18:24:19.0453 1732 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
18:24:19.0453 1732 intelppm - ok
18:24:19.0484 1732 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
18:24:19.0500 1732 Ip6Fw - ok
18:24:19.0562 1732 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:24:19.0562 1732 IpFilterDriver - ok
18:24:19.0578 1732 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:24:19.0593 1732 IpInIp - ok
18:24:19.0625 1732 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:24:19.0625 1732 IpNat - ok
18:24:19.0656 1732 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:24:19.0656 1732 IPSec - ok
18:24:19.0687 1732 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
18:24:19.0703 1732 IRENUM - ok
18:24:19.0734 1732 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:24:19.0750 1732 isapnp - ok
18:24:19.0890 1732 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:24:19.0890 1732 Kbdclass - ok
18:24:20.0078 1732 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
18:24:20.0078 1732 kbdhid - ok
18:24:20.0140 1732 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
18:24:20.0140 1732 kmixer - ok
18:24:20.0187 1732 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
18:24:20.0187 1732 KSecDD - ok
18:24:20.0203 1732 lbrtfdc - ok
18:24:20.0250 1732 MBAMProtector (69a6268d7f81e53d568ab4e7e991caf3) C:\WINDOWS\system32\drivers\mbam.sys
18:24:20.0250 1732 MBAMProtector - ok
18:24:20.0312 1732 MBAMSwissArmy - ok
18:24:20.0375 1732 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
18:24:20.0375 1732 mnmdd - ok
18:24:20.0406 1732 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
18:24:20.0406 1732 Modem - ok
18:24:20.0546 1732 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:24:20.0546 1732 Mouclass - ok
18:24:20.0718 1732 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:24:20.0718 1732 mouhid - ok
18:24:20.0796 1732 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
18:24:20.0796 1732 MountMgr - ok
18:24:20.0812 1732 mraid35x - ok
18:24:20.0859 1732 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:24:20.0875 1732 MRxDAV - ok
18:24:20.0890 1732 MRxSmb - ok
18:24:20.0921 1732 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
18:24:20.0921 1732 Msfs - ok
18:24:20.0968 1732 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:24:20.0968 1732 MSKSSRV - ok
18:24:21.0000 1732 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:24:21.0000 1732 MSPCLOCK - ok
18:24:21.0031 1732 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
18:24:21.0031 1732 MSPQM - ok
18:24:21.0062 1732 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:24:21.0078 1732 mssmbios - ok
18:24:21.0171 1732 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
18:24:21.0171 1732 Mup - ok
18:24:21.0218 1732 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
18:24:21.0234 1732 NDIS - ok
18:24:21.0437 1732 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:24:21.0437 1732 NdisTapi - ok
18:24:21.0500 1732 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:24:21.0500 1732 Ndisuio - ok
18:24:21.0515 1732 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:24:21.0515 1732 NdisWan - ok
18:24:21.0593 1732 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
18:24:21.0593 1732 NDProxy - ok
18:24:21.0625 1732 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
18:24:21.0625 1732 NetBIOS - ok
18:24:21.0687 1732 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
18:24:21.0703 1732 NetBT - ok
18:24:21.0953 1732 NETw5x32 (05743fffc2bc88cc8e426321bc6a762e) C:\WINDOWS\system32\DRIVERS\NETw5x32.sys
18:24:22.0140 1732 NETw5x32 - ok
18:24:22.0328 1732 nmwcd (c82f4cc10ad315b6d6bcb14d0a7cad66) C:\WINDOWS\system32\drivers\ccdcmb.sys
18:24:22.0328 1732 nmwcd - ok
18:24:22.0437 1732 nmwcdc (60ef5f5621d7832f00a3f190a0c905e2) C:\WINDOWS\system32\drivers\ccdcmbo.sys
18:24:22.0453 1732 nmwcdc - ok
18:24:22.0500 1732 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
18:24:22.0500 1732 Npfs - ok
18:24:22.0546 1732 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
18:24:22.0546 1732 Ntfs - ok
18:24:22.0578 1732 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
18:24:22.0578 1732 Null - ok
18:24:22.0640 1732 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:24:22.0656 1732 NwlnkFlt - ok
18:24:22.0687 1732 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:24:22.0703 1732 NwlnkFwd - ok
18:24:22.0734 1732 NwlnkIpx (8b8b1be2dba4025da6786c645f77f123) C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
18:24:22.0734 1732 NwlnkIpx - ok
18:24:22.0921 1732 NwlnkNb (56d34a67c05e94e16377c60609741ff8) C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
18:24:22.0937 1732 NwlnkNb - ok
18:24:22.0968 1732 NwlnkSpx (c0bb7d1615e1acbdc99757f6ceaf8cf0) C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
18:24:22.0968 1732 NwlnkSpx - ok
18:24:23.0015 1732 NWRDR (36b9b950e3d2e100970a48d8bad86740) C:\WINDOWS\system32\DRIVERS\nwrdr.sys
18:24:23.0015 1732 NWRDR - ok
18:24:23.0078 1732 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys
18:24:23.0078 1732 Parport - ok
18:24:23.0093 1732 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
18:24:23.0109 1732 PartMgr - ok
18:24:23.0140 1732 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
18:24:23.0140 1732 ParVdm - ok
18:24:23.0156 1732 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
18:24:23.0171 1732 PCI - ok
18:24:23.0171 1732 PCIDump - ok
18:24:23.0218 1732 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
18:24:23.0234 1732 PCIIde - ok
18:24:23.0265 1732 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
18:24:23.0281 1732 Pcmcia - ok
18:24:23.0296 1732 PDCOMP - ok
18:24:23.0312 1732 PDFRAME - ok
18:24:23.0343 1732 PDRELI - ok
18:24:23.0359 1732 PDRFRAME - ok
18:24:23.0375 1732 perc2 - ok
18:24:23.0390 1732 perc2hib - ok
18:24:23.0468 1732 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:24:23.0468 1732 PptpMiniport - ok
18:24:23.0484 1732 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
18:24:23.0484 1732 PSched - ok
18:24:23.0500 1732 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:24:23.0500 1732 Ptilink - ok
18:24:23.0515 1732 ql1080 - ok
18:24:23.0515 1732 Ql10wnt - ok
18:24:23.0531 1732 ql12160 - ok
18:24:23.0546 1732 ql1240 - ok
18:24:23.0562 1732 ql1280 - ok
18:24:23.0578 1732 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:24:23.0578 1732 RasAcd - ok
18:24:23.0640 1732 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:24:23.0640 1732 Rasl2tp - ok
18:24:23.0796 1732 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:24:23.0796 1732 RasPppoe - ok
18:24:23.0812 1732 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
18:24:23.0812 1732 Raspti - ok
18:24:23.0828 1732 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:24:23.0828 1732 Rdbss - ok
18:24:23.0843 1732 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:24:23.0843 1732 RDPCDD - ok
18:24:23.0859 1732 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
18:24:23.0859 1732 rdpdr - ok
18:24:23.0921 1732 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
18:24:23.0921 1732 RDPWD - ok
18:24:23.0984 1732 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
18:24:23.0984 1732 redbook - ok
18:24:24.0062 1732 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:24:24.0062 1732 Secdrv - ok
18:24:24.0109 1732 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys
18:24:24.0109 1732 Serial - ok
18:24:24.0156 1732 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
18:24:24.0171 1732 Sfloppy - ok
18:24:24.0187 1732 Simbad - ok
18:24:24.0203 1732 Sparrow - ok
18:24:24.0265 1732 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
18:24:24.0265 1732 splitter - ok
18:24:24.0296 1732 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
18:24:24.0312 1732 sr - ok
18:24:24.0390 1732 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
18:24:24.0406 1732 Srv - ok
18:24:24.0484 1732 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
18:24:24.0484 1732 ssmdrv - ok
18:24:24.0625 1732 SSPORT - ok
18:24:24.0656 1732 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
18:24:24.0656 1732 swenum - ok
18:24:24.0687 1732 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
18:24:24.0703 1732 swmidi - ok
18:24:24.0718 1732 symc810 - ok
18:24:24.0734 1732 symc8xx - ok
18:24:24.0750 1732 sym_hi - ok
18:24:24.0765 1732 sym_u3 - ok
18:24:24.0843 1732 SynTP (926e0bb4cac05d9a0c3b59dc16fe2f1c) C:\WINDOWS\system32\DRIVERS\SynTP.sys
18:24:24.0843 1732 SynTP - ok
18:24:24.0875 1732 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
18:24:24.0875 1732 sysaudio - ok
18:24:24.0984 1732 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:24:24.0984 1732 Tcpip - ok
18:24:25.0031 1732 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
18:24:25.0031 1732 TDPIPE - ok
18:24:25.0078 1732 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
18:24:25.0078 1732 TDTCP - ok
18:24:25.0203 1732 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
18:24:25.0203 1732 TermDD - ok
18:24:25.0296 1732 TosIde - ok
18:24:25.0359 1732 TrueSight (f69641efdb19acb4753b0155f7fdeed5) c:\windows\system32\drivers\TrueSight.sys
18:24:25.0375 1732 TrueSight - ok
18:24:25.0406 1732 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
18:24:25.0421 1732 Udfs - ok
18:24:25.0437 1732 ultra - ok
18:24:25.0484 1732 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
18:24:25.0500 1732 Update - ok
18:24:25.0562 1732 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:24:25.0562 1732 usbccgp - ok
18:24:25.0593 1732 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:24:25.0609 1732 usbehci - ok
18:24:25.0671 1732 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:24:25.0671 1732 usbhub - ok
18:24:25.0734 1732 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
18:24:25.0734 1732 usbprint - ok
18:24:25.0937 1732 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
18:24:25.0937 1732 usbscan - ok
18:24:26.0031 1732 usbstor (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:24:26.0046 1732 usbstor - ok
18:24:26.0109 1732 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
18:24:26.0109 1732 usbuhci - ok
18:24:26.0187 1732 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
18:24:26.0187 1732 VgaSave - ok
18:24:26.0203 1732 ViaIde - ok
18:24:26.0234 1732 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
18:24:26.0234 1732 VolSnap - ok
18:24:26.0281 1732 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:24:26.0281 1732 Wanarp - ok
18:24:26.0359 1732 Wdf01000 (fd47474bd21794508af449d9d91af6e6) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
18:24:26.0375 1732 Wdf01000 - ok
18:24:26.0468 1732 WDICA - ok
18:24:26.0500 1732 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
18:24:26.0500 1732 wdmaud - ok
18:24:26.0656 1732 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
18:24:26.0656 1732 WmiAcpi - ok
18:24:26.0765 1732 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
18:24:26.0765 1732 WpdUsb - ok
18:24:26.0843 1732 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
18:24:26.0843 1732 WudfPf - ok
18:24:26.0906 1732 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
18:24:26.0921 1732 WudfRd - ok
18:24:27.0000 1732 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
18:24:27.0171 1732 \Device\Harddisk0\DR0 - ok
18:24:27.0171 1732 Boot (0x1200) (ef6b90e7f0d6f458b7822b878bd5de69) \Device\Harddisk0\DR0\Partition0
18:24:27.0171 1732 \Device\Harddisk0\DR0\Partition0 - ok
18:24:27.0171 1732 ============================================================
18:24:27.0171 1732 Scan finished
18:24:27.0171 1732 ============================================================
18:24:27.0203 1720 Detected object count: 0
18:24:27.0203 1720 Actual detected object count: 0
18:24:43.0531 3280 ============================================================
18:24:43.0531 3280 Scan started
18:24:43.0531 3280 Mode: Manual;
18:24:43.0531 3280 ============================================================
18:24:43.0906 3280 Abiosdsk - ok
18:24:43.0937 3280 abp480n5 - ok
18:24:44.0031 3280 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:24:44.0031 3280 ACPI - ok
18:24:44.0062 3280 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
18:24:44.0062 3280 ACPIEC - ok
18:24:44.0125 3280 ADIHdAudAddService (4e12c97cbfe99be15d7680918f9899ec) C:\WINDOWS\system32\drivers\ADIHdAud.sys
18:24:44.0125 3280 ADIHdAudAddService - ok
18:24:44.0140 3280 adpu160m - ok
18:24:44.0156 3280 AEAudio (fff87a9b1ab36ee4b7bec98a4cb01b79) C:\WINDOWS\system32\drivers\AEAudio.sys
18:24:44.0156 3280 AEAudio - ok
18:24:44.0187 3280 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
18:24:44.0187 3280 aec - ok
18:24:44.0250 3280 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
18:24:44.0250 3280 AFD - ok
18:24:44.0500 3280 AgereSoftModem (3712986cc3abf0dc656b43525b9d1279) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
18:24:44.0515 3280 AgereSoftModem - ok
18:24:44.0546 3280 Aha154x - ok
18:24:44.0593 3280 aic78u2 - ok
18:24:44.0625 3280 aic78xx - ok
18:24:44.0671 3280 AliIde - ok
18:24:44.0703 3280 amsint - ok
18:24:44.0796 3280 Angelnt (4a8cb8fea9dcb6f93017f413e2646001) C:\WINDOWS\System32\Drivers\ANGELNT.SYS
18:24:44.0796 3280 Angelnt - ok
18:24:44.0921 3280 asc - ok
18:24:44.0937 3280 asc3350p - ok
18:24:44.0953 3280 asc3550 - ok
18:24:45.0031 3280 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:24:45.0031 3280 AsyncMac - ok
18:24:45.0078 3280 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
18:24:45.0078 3280 atapi - ok
18:24:45.0093 3280 Atdisk - ok
18:24:45.0125 3280 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:24:45.0125 3280 Atmarpc - ok
18:24:45.0187 3280 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
18:24:45.0187 3280 audstub - ok
18:24:45.0203 3280 avgntflt (7713e4eb0276702faa08e52a6e23f2a6) C:\WINDOWS\system32\DRIVERS\avgntflt.sys
18:24:45.0203 3280 avgntflt - ok
18:24:45.0281 3280 avipbb (912d23140cd05980f6cdae790ddafc8d) C:\WINDOWS\system32\DRIVERS\avipbb.sys
18:24:45.0281 3280 avipbb - ok
18:24:45.0312 3280 avkmgr (271cfd1a989209b1964e24d969552bf7) C:\WINDOWS\system32\DRIVERS\avkmgr.sys
18:24:45.0312 3280 avkmgr - ok
18:24:45.0390 3280 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
18:24:45.0390 3280 Beep - ok
18:24:45.0578 3280 btaudio (3aa4bf555c00c5b87fd48dd7bdbd4e97) C:\WINDOWS\system32\drivers\btaudio.sys
18:24:45.0578 3280 btaudio - ok
18:24:45.0656 3280 BTDriver (07f0a66cfa550b13ad0674ae09e3cba0) C:\WINDOWS\system32\DRIVERS\btport.sys
18:24:45.0671 3280 BTDriver - ok
18:24:45.0718 3280 BTKRNL (ba57f31eab93dc597d772f6f5b9ed54f) C:\WINDOWS\system32\DRIVERS\btkrnl.sys
18:24:45.0734 3280 BTKRNL - ok
18:24:45.0765 3280 BTWDNDIS (b1d350f3f13cf340fce93912d2ba1ebf) C:\WINDOWS\system32\DRIVERS\btwdndis.sys
18:24:45.0781 3280 BTWDNDIS - ok
18:24:45.0796 3280 BTWUSB (57e91e9925976bbc98984eebaaf1d84c) C:\WINDOWS\system32\Drivers\btwusb.sys
18:24:45.0796 3280 BTWUSB - ok
18:24:45.0812 3280 catchme - ok
18:24:45.0859 3280 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
18:24:45.0859 3280 cbidf2k - ok
18:24:45.0875 3280 cd20xrnt - ok
18:24:45.0890 3280 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
18:24:45.0890 3280 Cdaudio - ok
18:24:45.0953 3280 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
18:24:45.0953 3280 Cdfs - ok
18:24:46.0031 3280 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:24:46.0031 3280 Cdrom - ok
18:24:46.0171 3280 Changer - ok
18:24:46.0234 3280 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
18:24:46.0234 3280 CmBatt - ok
18:24:46.0250 3280 CmdIde - ok
18:24:46.0265 3280 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
18:24:46.0265 3280 Compbatt - ok
18:24:46.0296 3280 Cpqarray - ok
18:24:46.0312 3280 dac2w2k - ok
18:24:46.0328 3280 dac960nt - ok
18:24:46.0390 3280 DgiVecp (7f19dba1a467b838ccb23124a2c55568) C:\WINDOWS\system32\Drivers\DgiVecp.sys
18:24:46.0390 3280 DgiVecp - ok
18:24:46.0406 3280 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
18:24:46.0406 3280 Disk - ok
18:24:46.0468 3280 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
18:24:46.0484 3280 dmboot - ok
18:24:46.0531 3280 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
18:24:46.0531 3280 dmio - ok
18:24:46.0546 3280 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
18:24:46.0546 3280 dmload - ok
18:24:46.0578 3280 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
18:24:46.0578 3280 DMusic - ok
18:24:46.0609 3280 dpti2o - ok
18:24:46.0671 3280 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
18:24:46.0671 3280 drmkaud - ok
18:24:46.0750 3280 e1express (8942419786970adb32b05bb7950aee72) C:\WINDOWS\system32\DRIVERS\e1e5132.sys
18:24:46.0765 3280 e1express - ok
18:24:46.0953 3280 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
18:24:46.0953 3280 Fastfat - ok
18:24:46.0984 3280 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
18:24:47.0000 3280 Fdc - ok
18:24:47.0015 3280 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
18:24:47.0015 3280 Fips - ok
18:24:47.0031 3280 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
18:24:47.0031 3280 Flpydisk - ok
18:24:47.0078 3280 FlrnUSB (66d252e6bd9bc2d9ec961032b2246874) C:\WINDOWS\system32\DRIVERS\LtkUSB.sys
18:24:47.0078 3280 FlrnUSB - ok
18:24:47.0125 3280 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
18:24:47.0125 3280 FltMgr - ok
18:24:47.0156 3280 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:24:47.0156 3280 Fs_Rec - ok
18:24:47.0171 3280 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:24:47.0171 3280 Ftdisk - ok
18:24:47.0250 3280 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:24:47.0250 3280 Gpc - ok
18:24:47.0312 3280 hamachi (833051c6c6c42117191935f734cfbd97) C:\WINDOWS\system32\DRIVERS\hamachi.sys
18:24:47.0312 3280 hamachi - ok
18:24:47.0375 3280 HBtnKey (407e41ddb2bfece109132aec296e0d98) C:\WINDOWS\system32\DRIVERS\cpqbttn.sys
18:24:47.0375 3280 HBtnKey - ok
18:24:47.0531 3280 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:24:47.0531 3280 HDAudBus - ok
18:24:47.0593 3280 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:24:47.0609 3280 HidUsb - ok
18:24:47.0625 3280 hpn - ok
18:24:47.0640 3280 HpqKbFiltr (35956140e686d53bf676cf0c778880fc) C:\WINDOWS\system32\DRIVERS\HpqKbFiltr.sys
18:24:47.0640 3280 HpqKbFiltr - ok
18:24:47.0703 3280 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
18:24:47.0703 3280 HPZid412 - ok
18:24:47.0750 3280 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
18:24:47.0750 3280 HPZipr12 - ok
18:24:47.0765 3280 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
18:24:47.0781 3280 HPZius12 - ok
18:24:47.0859 3280 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
18:24:47.0875 3280 HTTP - ok
18:24:47.0890 3280 i2omgmt - ok
18:24:47.0906 3280 i2omp - ok
18:24:47.0937 3280 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:24:47.0937 3280 i8042prt - ok
18:24:48.0437 3280 ialm (42caa789a21014aa809a8ff59b3ccfd9) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
18:24:48.0515 3280 ialm - ok
18:24:48.0562 3280 iaStor (e5a0034847537eaee3c00349d5c34c5f) C:\WINDOWS\system32\drivers\iaStor.sys
18:24:48.0562 3280 iaStor - ok
18:24:48.0640 3280 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
18:24:48.0640 3280 Imapi - ok
18:24:48.0656 3280 ini910u - ok
18:24:48.0671 3280 IntelIde - ok
18:24:48.0703 3280 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
18:24:48.0703 3280 intelppm - ok
18:24:48.0750 3280 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
18:24:48.0750 3280 Ip6Fw - ok
18:24:48.0812 3280 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:24:48.0812 3280 IpFilterDriver - ok
18:24:48.0968 3280 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:24:48.0968 3280 IpInIp - ok
18:24:48.0984 3280 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:24:48.0984 3280 IpNat - ok
18:24:49.0015 3280 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:24:49.0015 3280 IPSec - ok
18:24:49.0046 3280 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
18:24:49.0046 3280 IRENUM - ok
18:24:49.0093 3280 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:24:49.0093 3280 isapnp - ok
18:24:49.0171 3280 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:24:49.0171 3280 Kbdclass - ok
18:24:49.0234 3280 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
18:24:49.0250 3280 kbdhid - ok
18:24:49.0312 3280 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
18:24:49.0312 3280 kmixer - ok
18:24:49.0359 3280 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
18:24:49.0359 3280 KSecDD - ok
18:24:49.0546 3280 lbrtfdc - ok
18:24:49.0609 3280 MBAMProtector (69a6268d7f81e53d568ab4e7e991caf3) C:\WINDOWS\system32\drivers\mbam.sys
18:24:49.0609 3280 MBAMProtector - ok
18:24:49.0625 3280 MBAMSwissArmy - ok
18:24:49.0687 3280 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
18:24:49.0687 3280 mnmdd - ok
18:24:49.0750 3280 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
18:24:49.0750 3280 Modem - ok
18:24:49.0812 3280 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:24:49.0812 3280 Mouclass - ok
18:24:49.0875 3280 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:24:49.0875 3280 mouhid - ok
18:24:49.0937 3280 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
18:24:49.0937 3280 MountMgr - ok
18:24:49.0953 3280 mraid35x - ok
18:24:49.0984 3280 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:24:50.0000 3280 MRxDAV - ok
18:24:50.0031 3280 MRxSmb - ok
18:24:50.0062 3280 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
18:24:50.0062 3280 Msfs - ok
18:24:50.0093 3280 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:24:50.0093 3280 MSKSSRV - ok
18:24:50.0281 3280 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:24:50.0281 3280 MSPCLOCK - ok
18:24:50.0296 3280 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
18:24:50.0296 3280 MSPQM - ok
18:24:50.0343 3280 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:24:50.0343 3280 mssmbios - ok
18:24:50.0375 3280 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
18:24:50.0375 3280 Mup - ok
18:24:50.0421 3280 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
18:24:50.0437 3280 NDIS - ok
18:24:50.0500 3280 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:24:50.0500 3280 NdisTapi - ok
18:24:50.0531 3280 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:24:50.0531 3280 Ndisuio - ok
18:24:50.0562 3280 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:24:50.0562 3280 NdisWan - ok
18:24:50.0625 3280 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
18:24:50.0625 3280 NDProxy - ok
18:24:50.0671 3280 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
18:24:50.0671 3280 NetBIOS - ok
18:24:50.0718 3280 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
18:24:50.0718 3280 NetBT - ok
18:24:51.0109 3280 NETw5x32 (05743fffc2bc88cc8e426321bc6a762e) C:\WINDOWS\system32\DRIVERS\NETw5x32.sys
18:24:51.0171 3280 NETw5x32 - ok
18:24:51.0250 3280 nmwcd (c82f4cc10ad315b6d6bcb14d0a7cad66) C:\WINDOWS\system32\drivers\ccdcmb.sys
18:24:51.0250 3280 nmwcd - ok
18:24:51.0296 3280 nmwcdc (60ef5f5621d7832f00a3f190a0c905e2) C:\WINDOWS\system32\drivers\ccdcmbo.sys
18:24:51.0296 3280 nmwcdc - ok
18:24:51.0359 3280 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
18:24:51.0359 3280 Npfs - ok
18:24:51.0406 3280 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
18:24:51.0406 3280 Ntfs - ok
18:24:51.0437 3280 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
18:24:51.0437 3280 Null - ok
18:24:51.0500 3280 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:24:51.0500 3280 NwlnkFlt - ok
18:24:51.0562 3280 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:24:51.0562 3280 NwlnkFwd - ok
18:24:51.0718 3280 NwlnkIpx (8b8b1be2dba4025da6786c645f77f123) C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
18:24:51.0718 3280 NwlnkIpx - ok
18:24:51.0734 3280 NwlnkNb (56d34a67c05e94e16377c60609741ff8) C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
18:24:51.0734 3280 NwlnkNb - ok
18:24:51.0765 3280 NwlnkSpx (c0bb7d1615e1acbdc99757f6ceaf8cf0) C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
18:24:51.0765 3280 NwlnkSpx - ok
18:24:51.0812 3280 NWRDR (36b9b950e3d2e100970a48d8bad86740) C:\WINDOWS\system32\DRIVERS\nwrdr.sys
18:24:51.0812 3280 NWRDR - ok
18:24:51.0859 3280 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys
18:24:51.0875 3280 Parport - ok
18:24:51.0875 3280 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
18:24:51.0890 3280 PartMgr - ok
18:24:51.0921 3280 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
18:24:51.0921 3280 ParVdm - ok
18:24:51.0937 3280 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
18:24:51.0937 3280 PCI - ok
18:24:51.0953 3280 PCIDump - ok
18:24:51.0984 3280 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
18:24:52.0000 3280 PCIIde - ok
18:24:52.0046 3280 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
18:24:52.0046 3280 Pcmcia - ok
18:24:52.0062 3280 PDCOMP - ok
18:24:52.0078 3280 PDFRAME - ok
18:24:52.0093 3280 PDRELI - ok
18:24:52.0109 3280 PDRFRAME - ok
18:24:52.0140 3280 perc2 - ok
18:24:52.0156 3280 perc2hib - ok
18:24:52.0218 3280 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:24:52.0234 3280 PptpMiniport - ok
18:24:52.0250 3280 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
18:24:52.0250 3280 PSched - ok
18:24:52.0265 3280 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:24:52.0265 3280 Ptilink - ok
18:24:52.0281 3280 ql1080 - ok
18:24:52.0296 3280 Ql10wnt - ok
18:24:52.0312 3280 ql12160 - ok
18:24:52.0328 3280 ql1240 - ok
18:24:52.0343 3280 ql1280 - ok
18:24:52.0359 3280 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:24:52.0359 3280 RasAcd - ok
18:24:52.0437 3280 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:24:52.0437 3280 Rasl2tp - ok
18:24:52.0593 3280 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:24:52.0593 3280 RasPppoe - ok
18:24:52.0609 3280 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
18:24:52.0609 3280 Raspti - ok
18:24:52.0640 3280 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:24:52.0640 3280 Rdbss - ok
18:24:52.0656 3280 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:24:52.0656 3280 RDPCDD - ok
18:24:52.0687 3280 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
18:24:52.0687 3280 rdpdr - ok
18:24:52.0750 3280 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
18:24:52.0750 3280 RDPWD - ok
18:24:52.0781 3280 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
18:24:52.0796 3280 redbook - ok
18:24:52.0875 3280 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:24:52.0875 3280 Secdrv - ok
18:24:52.0921 3280 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys
18:24:52.0921 3280 Serial - ok
18:24:52.0968 3280 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
18:24:52.0984 3280 Sfloppy - ok
18:24:53.0000 3280 Simbad - ok
18:24:53.0015 3280 Sparrow - ok
18:24:53.0078 3280 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
18:24:53.0078 3280 splitter - ok
18:24:53.0281 3280 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
18:24:53.0296 3280 sr - ok
18:24:53.0375 3280 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
18:24:53.0375 3280 Srv - ok
18:24:53.0468 3280 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
18:24:53.0468 3280 ssmdrv - ok
18:24:53.0484 3280 SSPORT - ok
18:24:53.0500 3280 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
18:24:53.0500 3280 swenum - ok
18:24:53.0515 3280 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
18:24:53.0515 3280 swmidi - ok
18:24:53.0546 3280 symc810 - ok
18:24:53.0562 3280 symc8xx - ok
18:24:53.0578 3280 sym_hi - ok
18:24:53.0593 3280 sym_u3 - ok
18:24:53.0671 3280 SynTP (926e0bb4cac05d9a0c3b59dc16fe2f1c) C:\WINDOWS\system32\DRIVERS\SynTP.sys
18:24:53.0671 3280 SynTP - ok
18:24:53.0703 3280 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
18:24:53.0718 3280 sysaudio - ok
18:24:53.0796 3280 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:24:53.0796 3280 Tcpip - ok
18:24:54.0000 3280 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
18:24:54.0000 3280 TDPIPE - ok
18:24:54.0031 3280 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
18:24:54.0031 3280 TDTCP - ok
18:24:54.0078 3280 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
18:24:54.0078 3280 TermDD - ok
18:24:54.0093 3280 TosIde - ok
18:24:54.0156 3280 TrueSight (f69641efdb19acb4753b0155f7fdeed5) c:\windows\system32\drivers\TrueSight.sys
18:24:54.0156 3280 TrueSight - ok
18:24:54.0187 3280 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
18:24:54.0187 3280 Udfs - ok
18:24:54.0203 3280 ultra - ok
18:24:54.0250 3280 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
18:24:54.0265 3280 Update - ok
18:24:54.0328 3280 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:24:54.0328 3280 usbccgp - ok
18:24:54.0359 3280 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:24:54.0359 3280 usbehci - ok
18:24:54.0421 3280 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:24:54.0421 3280 usbhub - ok
18:24:54.0671 3280 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
18:24:54.0671 3280 usbprint - ok
18:24:54.0718 3280 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
18:24:54.0718 3280 usbscan - ok
18:24:54.0765 3280 usbstor (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:24:54.0765 3280 usbstor - ok
18:24:54.0796 3280 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
18:24:54.0796 3280 usbuhci - ok
18:24:54.0828 3280 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
18:24:54.0828 3280 VgaSave - ok
18:24:54.0843 3280 ViaIde - ok
18:24:54.0875 3280 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
18:24:54.0875 3280 VolSnap - ok
18:24:54.0906 3280 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:24:54.0921 3280 Wanarp - ok
18:24:55.0000 3280 Wdf01000 (fd47474bd21794508af449d9d91af6e6) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
18:24:55.0000 3280 Wdf01000 - ok
18:24:55.0203 3280 WDICA - ok
18:24:55.0218 3280 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
18:24:55.0234 3280 wdmaud - ok
18:24:55.0281 3280 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
18:24:55.0281 3280 WmiAcpi - ok
18:24:55.0359 3280 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
18:24:55.0359 3280 WpdUsb - ok
18:24:55.0421 3280 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
18:24:55.0421 3280 WudfPf - ok
18:24:55.0453 3280 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
18:24:55.0468 3280 WudfRd - ok
18:24:55.0515 3280 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
18:24:55.0734 3280 \Device\Harddisk0\DR0 - ok
18:24:55.0734 3280 Boot (0x1200) (ef6b90e7f0d6f458b7822b878bd5de69) \Device\Harddisk0\DR0\Partition0
18:24:55.0734 3280 \Device\Harddisk0\DR0\Partition0 - ok
18:24:55.0734 3280 ============================================================
18:24:55.0734 3280 Scan finished
18:24:55.0734 3280 ============================================================
18:24:55.0750 2208 Detected object count: 0
18:24:55.0750 2208 Actual detected object count: 0
18:25:22.0828 1348 Deinitialize success

A to druhe:

http://www.virustotal.com/file-scan/rep ... 1321550962

Pokud nemate, tak presunte Combofix na plochu

Spustte poznamkovy blok (Start-spustit-notepad)
Zkopirujte skript nize

Kód: Vybrat vše

KillAll::

Folder::
c:\program files\Yamicsoft
c:\program files\SpywareBlaster
c:\documents and settings\Janka\Application Data\IObit
c:\documents and settings\LocalService\Local Settings\Application Data\2ed99345
c:\documents and settings\Janka\Local Settings\Application Data\S2PC
c:\windows\update.tray-9-0-lnk
c:\windows\update.tray-9-0
C:\Program Files\IObit
C:\Program Files\ICQ6Toolbar
C:\Program Files\Ask.com
C:\Documents and Settings\All Users\Application Data\IObit

File::
c:\windows\unrar.exe
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\ASC4_AutoCare.job
C:\WINDOWS\tasks\ASC4_AutoConverter.job
C:\WINDOWS\tasks\ASC4_AutoSweep.job
C:\WINDOWS\tasks\ASC4_AutoUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\askcom.xml
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-1.xml
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-10.xml
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-11.xml
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-12.xml
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-13.xml
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-14.xml
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-15.xml
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-16.xml
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-17.xml
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-18.xml
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-19.xml
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-2.xml
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-20.xml
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-21.xml
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-22.xml
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-23.xml
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-3.xml
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-4.xml
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-5.xml
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-6.xml
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-7.xml
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-8.xml
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-9.xml
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin.xml
C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\iMeshWebSearch.xml

Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=-
"Malwarebytes' Anti-Malware"=-
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"DisableThumbnailCache"=dword:00000000

Driver::
AdvancedSystemCareService
FMMService
ICQ Service
gupdate
gupdatem
lxdb_device
McComponentHostService
NBService
NMIndexingService

AtJob::

ClearJavaCache::

FixCSet::

Reboot::

Ulozte vytvoreny TXT jako CFScript.txt
Pretahnete vytvoreny CFScript.txt nad Combofix a pustte (viz obrazek nize)
Po aplikaci skriptu (a pripadnem restartu) na Vas vypadne log, jeho obsah sem vlozte

Muze se stat, ze po aplikaci skriptu nenabehnou windows, v tomto pripade restartuje PC a mackejte F8 a zvolte Posledni znamou konfiguraci

ComboFix 11-11-17.03 - Janka 17.11.2011 19:16:04.2.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.421.1033.18.2039.1370 [GMT 1:00]
Running from: c:\documents and settings\Janka\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\Janka\Desktop\CFScript.txt
AV: Avira Desktop *Enabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
FILE ::
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\askcom.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-1.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-10.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-11.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-12.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-13.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-14.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-15.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-16.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-17.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-18.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-19.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-2.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-20.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-21.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-22.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-23.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-3.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-4.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-5.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-6.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-7.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-8.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-9.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin.xml"
"c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\iMeshWebSearch.xml"
"c:\windows\tasks\ASC4_AutoCare.job"
"c:\windows\tasks\ASC4_AutoConverter.job"
"c:\windows\tasks\ASC4_AutoSweep.job"
"c:\windows\tasks\ASC4_AutoUpdate.job"
"c:\windows\tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\tasks\GoogleUpdateTaskMachineUA.job"
"c:\windows\unrar.exe"
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Janka\Application Data\IObit
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\AutoSweep.ini
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Backup\ASCBackup-2011-11-13(01-47-48).reg
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Backup\ASCBackup-2011-11-14(20-11-36).reg
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Backup\ASCBackup-2011-11-15(20-34-34).reg
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Ignore.ini
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-13(01-47-48).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-13(11-10-11).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-13(11-37-25).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-13(12-07-15).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-13(15-59-51).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-13(16-14-15).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-14(08-38-03).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-14(18-43-03).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-14(19-19-51).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-14(19-48-34).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-14(20-11-36).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-15(08-19-39).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-15(16-57-55).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-15(19-46-39).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-15(20-34-34).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-15(20-47-26).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-15(21-14-35).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-16(08-17-55).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-16(09-53-53).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-16(14-34-02).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-16(21-23-08).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Log\ASCLog-2011-11-17(11-01-27).txt
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\Main.ini
c:\documents and settings\Janka\Application Data\IObit\Advanced SystemCare V4\PMonitor\Config.ini
c:\documents and settings\Janka\Application Data\IObit\Uninstall Programs.lnk
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\askcom.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-1.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-10.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-11.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-12.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-13.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-14.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-15.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-16.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-17.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-18.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-19.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-2.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-20.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-21.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-22.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-23.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-3.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-4.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-5.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-6.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-7.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-8.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin-9.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\icqplugin.xml
c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\searchplugins\iMeshWebSearch.xml
c:\documents and settings\Janka\Local Settings\Application Data\S2PC
c:\documents and settings\Janka\Local Settings\Application Data\S2PC\1133\pname.ini
c:\documents and settings\Janka\Local Settings\Application Data\S2PC\1133\s2mail.dat
c:\documents and settings\Janka\Local Settings\Application Data\S2PC\1133\scanopt.ini
c:\documents and settings\LocalService\Local Settings\Application Data\2ed99345
c:\documents and settings\LocalService\Local Settings\Application Data\2ed99345\@
c:\program files\Ask.com
c:\program files\Ask.com\cobrand.ico
c:\program files\Ask.com\config.xml
c:\program files\Ask.com\favicon.ico
c:\program files\Ask.com\fv_1e.ico
c:\program files\Ask.com\GenericAskToolbar.dll
c:\program files\Ask.com\mupcfg.xml
c:\program files\Ask.com\SaUpdate.exe
c:\program files\Ask.com\UpdateTask.exe
c:\program files\ICQ6Toolbar
c:\program files\ICQ6Toolbar\config.xml
c:\program files\ICQ6Toolbar\Icons.bmp
c:\program files\ICQ6Toolbar\icq6Toolbar.ico
c:\program files\ICQ6Toolbar\ICQToolBar.dll
c:\program files\ICQ6Toolbar\ICQUnToolbar.exe
c:\program files\ICQ6Toolbar\logo_small.gif
c:\program files\ICQ6Toolbar\ServiceStarter.exe
c:\program files\ICQ6Toolbar\short.wav
c:\program files\ICQ6Toolbar\Version.txt
c:\program files\ICQ6Toolbar\voucher.bmp
c:\program files\ICQ6Toolbar\voucher2.bmp
c:\program files\SpywareBlaster
c:\program files\SpywareBlaster\ckdatabase.dtb
c:\program files\SpywareBlaster\license.txt
c:\program files\SpywareBlaster\MSCOMCTL.OCX
c:\program files\SpywareBlaster\readme.txt
c:\program files\SpywareBlaster\rsdatabase.dtb
c:\program files\SpywareBlaster\sbautoupdate.exe
c:\program files\SpywareBlaster\sbdatabase.dtb
c:\program files\SpywareBlaster\sbdatabase2.dtb
c:\program files\SpywareBlaster\sbdatabaseinf.dtb
c:\program files\SpywareBlaster\sbdatabaseinf2.dtb
c:\program files\SpywareBlaster\sbhelp.chm
c:\program files\SpywareBlaster\sbinfo.dtb
c:\program files\SpywareBlaster\sburlhelper.exe
c:\program files\SpywareBlaster\sbversion5.txt
c:\program files\SpywareBlaster\spywareblaster.exe
c:\program files\SpywareBlaster\SQLite3SB.dll
c:\program files\SpywareBlaster\unins000.dat
c:\program files\SpywareBlaster\unins000.exe
c:\program files\Yamicsoft
c:\program files\Yamicsoft\WinXP Manager\1-ClickCleaner.exe
c:\program files\Yamicsoft\WinXP Manager\Addons.xml
c:\program files\Yamicsoft\WinXP Manager\advancedwizard.dll
c:\program files\Yamicsoft\WinXP Manager\AppletEngie.dll
c:\program files\Yamicsoft\WinXP Manager\AppletProxy.dll
c:\program files\Yamicsoft\WinXP Manager\AppShutdown.exe
c:\program files\Yamicsoft\WinXP Manager\ClearMem.exe
c:\program files\Yamicsoft\WinXP Manager\clsShortcut.dll
c:\program files\Yamicsoft\WinXP Manager\Config.ini
c:\program files\Yamicsoft\WinXP Manager\ContextMenuManager.exe
c:\program files\Yamicsoft\WinXP Manager\DesktopCleaner.exe
c:\program files\Yamicsoft\WinXP Manager\DevComponents.DotNetBar.dll
c:\program files\Yamicsoft\WinXP Manager\DevExpress.Data3.dll
c:\program files\Yamicsoft\WinXP Manager\DevExpress.Utils3.dll
c:\program files\Yamicsoft\WinXP Manager\DevExpress.XtraEditors3.dll
c:\program files\Yamicsoft\WinXP Manager\DevExpress.XtraTreeList3.dll
c:\program files\Yamicsoft\WinXP Manager\DiskAnalyzer.exe
c:\program files\Yamicsoft\WinXP Manager\DuplicateFilesFinder.exe
c:\program files\Yamicsoft\WinXP Manager\exptreelib.dll
c:\program files\Yamicsoft\WinXP Manager\FileSecurity.exe
c:\program files\Yamicsoft\WinXP Manager\FileSplitter.exe
c:\program files\Yamicsoft\WinXP Manager\FolderIcon.dll
c:\program files\Yamicsoft\WinXP Manager\FreeMem.exe
c:\program files\Yamicsoft\WinXP Manager\Help.chm
c:\program files\Yamicsoft\WinXP Manager\IconManager.exe
c:\program files\Yamicsoft\WinXP Manager\idll.exe
c:\program files\Yamicsoft\WinXP Manager\IE Logo\1-large.bmp
c:\program files\Yamicsoft\WinXP Manager\IEManager.exe
c:\program files\Yamicsoft\WinXP Manager\Interop.IWshRuntimeLibrary.dll
c:\program files\Yamicsoft\WinXP Manager\Interop.RadCtxMenu.dll
c:\program files\Yamicsoft\WinXP Manager\Interop.VBProgressDialog.dll
c:\program files\Yamicsoft\WinXP Manager\Interop.VBShellLib.dll
c:\program files\Yamicsoft\WinXP Manager\IPSwitcher.exe
c:\program files\Yamicsoft\WinXP Manager\JunkFileCleaner.exe
c:\program files\Yamicsoft\WinXP Manager\LiveUpdate.exe
c:\program files\Yamicsoft\WinXP Manager\LiveUpdateCopy.exe
c:\program files\Yamicsoft\WinXP Manager\OptimizationWizard.exe
c:\program files\Yamicsoft\WinXP Manager\PCL.dll
c:\program files\Yamicsoft\WinXP Manager\PieChart.dll
c:\program files\Yamicsoft\WinXP Manager\PrivacyProtector.exe
c:\program files\Yamicsoft\WinXP Manager\ProcessManager.exe
c:\program files\Yamicsoft\WinXP Manager\RegistryCleaner.exe
c:\program files\Yamicsoft\WinXP Manager\RegistryDefrag.exe
c:\program files\Yamicsoft\WinXP Manager\RepairCenter.exe
c:\program files\Yamicsoft\WinXP Manager\RunShortcutCreator.exe
c:\program files\Yamicsoft\WinXP Manager\ServiceControllerEx.dll
c:\program files\Yamicsoft\WinXP Manager\ServiceManager.exe
c:\program files\Yamicsoft\WinXP Manager\Shutdown.exe
c:\program files\Yamicsoft\WinXP Manager\ShutDownCommand.exe
c:\program files\Yamicsoft\WinXP Manager\sigcheck.exe
c:\program files\Yamicsoft\WinXP Manager\signtool.exe
c:\program files\Yamicsoft\WinXP Manager\StartupManager.exe
c:\program files\Yamicsoft\WinXP Manager\SystemInfo.exe
c:\program files\Yamicsoft\WinXP Manager\TaskScheduler.dll
c:\program files\Yamicsoft\WinXP Manager\ToolBarPic\1.bmp
c:\program files\Yamicsoft\WinXP Manager\ToolBarPic\2.bmp
c:\program files\Yamicsoft\WinXP Manager\ToolBarPic\3.bmp
c:\program files\Yamicsoft\WinXP Manager\tracker.dll
c:\program files\Yamicsoft\WinXP Manager\Uninstaller.exe
c:\program files\Yamicsoft\WinXP Manager\WallpaperChanger.exe
c:\program files\Yamicsoft\WinXP Manager\WinControls.ListView.dll
c:\program files\Yamicsoft\WinXP Manager\WinUtilities.exe
c:\program files\Yamicsoft\WinXP Manager\WinXP Manager.exe
c:\program files\Yamicsoft\WinXP Manager\XPCtxMenu.dll
c:\windows\tasks\GoogleUpdateTaskMachineCore.job
c:\windows\tasks\GoogleUpdateTaskMachineUA.job
c:\windows\unrar.exe
c:\windows\update.tray-9-0-lnk
c:\windows\update.tray-9-0
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_FMMSERVICE
-------\Legacy_GUPDATE
-------\Legacy_ICQ_SERVICE
-------\Legacy_LXDB_DEVICE
-------\Legacy_NMINDEXINGSERVICE
-------\Service_FMMService
-------\Service_gupdate
-------\Service_gupdatem
-------\Service_ICQ Service
-------\Service_lxdb_device
-------\Service_McComponentHostService
-------\Service_NBService
-------\Service_NMIndexingService
.
.
((((((((((((((((((((((((( Files Created from 2011-10-17 to 2011-11-17 )))))))))))))))))))))))))))))))
.
.
2011-11-17 18:24 . 2011-11-17 18:24 -------- d-----w- c:\documents and settings\Janka\Local Settings\Application Data\S2PC
2011-11-17 10:28 . 2011-11-17 10:30 111872 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2011-11-17 10:27 . 2011-11-17 10:27 -------- d-----w- C:\RK_Quarantine
2011-11-15 14:55 . 2011-11-15 14:55 -------- d-----w- c:\documents and settings\Janka\Application Data\Malwarebytes
2011-11-15 14:55 . 2011-11-15 14:55 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2011-11-15 14:55 . 2011-11-15 14:56 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-11-15 14:55 . 2011-08-31 16:00 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-11-14 19:55 . 2011-11-16 09:17 -------- d-----w- c:\program files\trend micro
2011-11-14 19:55 . 2011-11-14 19:55 -------- d-----w- C:\rsit
2011-11-13 10:42 . 2011-11-13 10:44 134104 ----a-w- c:\program files\Mozilla Firefox\components\browsercomps.dll
2011-11-13 10:42 . 2011-11-13 10:44 89048 ----a-w- c:\program files\Mozilla Firefox\libEGL.dll
2011-11-13 10:42 . 2011-11-13 10:44 801752 ----a-w- c:\program files\Mozilla Firefox\mozsqlite3.dll
2011-11-13 10:42 . 2011-11-13 10:44 478168 ----a-w- c:\program files\Mozilla Firefox\libGLESv2.dll
2011-11-13 10:42 . 2011-11-13 10:44 1989592 ----a-w- c:\program files\Mozilla Firefox\mozjs.dll
2011-11-13 10:42 . 2011-11-13 10:44 15832 ----a-w- c:\program files\Mozilla Firefox\mozalloc.dll
2011-11-13 10:42 . 2011-09-29 00:26 2106216 ----a-w- c:\program files\Mozilla Firefox\D3DCompiler_43.dll
2011-11-13 10:42 . 2011-09-29 00:26 1998168 ----a-w- c:\program files\Mozilla Firefox\d3dx9_43.dll
2011-11-12 21:36 . 2011-11-12 21:36 -------- d-----w- c:\program files\EMCO
2011-11-12 21:32 . 2011-11-17 10:20 -------- d-----w- c:\program files\Spybot - Search & Destroy
2011-11-12 21:16 . 2011-11-12 21:16 -------- d-----w- c:\documents and settings\Janka\Application Data\Avira
2011-11-12 21:15 . 2011-09-18 07:39 134344 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-11-12 21:15 . 2011-09-15 22:55 36000 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2011-11-12 21:15 . 2011-09-15 22:55 74640 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-11-12 21:14 . 2011-11-12 21:14 -------- d-----w- c:\program files\Avira
2011-11-12 21:14 . 2011-11-12 21:14 -------- d-----w- c:\documents and settings\All Users\Application Data\Avira
2011-11-03 10:15 . 2009-09-18 16:40 523264 ------w- c:\windows\system32\dsmgr.cpl
2011-11-03 10:12 . 2009-12-23 06:30 484592 ----a-w- c:\windows\SSndii.exe
2011-11-03 10:12 . 2009-09-18 09:32 21776 ----a-w- c:\windows\system32\msxml2a.dll
2011-11-03 10:12 . 2011-11-03 10:12 -------- d-----w- c:\windows\Dell
2011-11-03 10:10 . 1997-05-26 13:55 23040 ----a-w- c:\windows\system32\irisco32.dll
2011-11-03 10:09 . 2011-11-03 10:10 -------- d-----w- c:\program files\Readiris10
2011-11-03 10:09 . 2011-11-03 10:11 -------- d-----w- c:\program files\SmarThru 4
2011-11-03 10:08 . 2009-12-23 05:06 115952 ----a-r- c:\windows\Wiainst.exe
2011-11-03 10:06 . 2009-09-17 01:38 26624 ----a-w- c:\windows\system32\sdo1ml3.dll
2011-11-03 10:06 . 2009-09-17 01:38 19968 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\sdo1mpc.dll
2011-11-03 10:06 . 2009-09-17 01:38 151552 ----a-w- c:\windows\system32\sdo1mci.exe
2011-11-03 10:06 . 2009-09-17 01:38 65536 ----a-w- c:\windows\system32\sdo1mci.dll
2011-11-03 10:05 . 2011-11-03 10:05 -------- d-----w- c:\program files\Dell
2011-10-31 13:40 . 2011-11-13 10:23 -------- d-----w- C:\reports
2011-10-31 13:40 . 2011-08-14 14:23 -------- d-----w- C:\lib
2011-10-31 13:40 . 2011-08-14 14:23 -------- d-----w- C:\ProductDB
2011-10-31 13:40 . 2009-06-03 13:39 825 ----a-w- C:\jr.cmd
2011-10-31 13:40 . 2009-05-05 20:13 147 ----a-w- C:\Projekcie.cmd
2011-10-31 09:58 . 2011-11-16 07:15 -------- d-----w- c:\windows\ufa
2011-10-30 20:24 . 2011-11-14 18:42 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-13 10:35 . 2009-08-10 09:06 25992 ----a-w- c:\windows\system32\pgdfgsvc.exe
2011-09-26 09:41 . 2008-07-29 17:59 611328 ----a-w- c:\windows\system32\uiautomationcore.dll
2011-09-26 09:41 . 2007-07-27 12:00 220160 ----a-w- c:\windows\system32\oleacc.dll
2011-09-26 09:41 . 2007-07-27 12:00 20480 ----a-w- c:\windows\system32\oleaccrc.dll
2011-09-09 09:12 . 2007-07-27 12:00 599040 ----a-w- c:\windows\system32\crypt32.dll
2011-09-06 13:20 . 2007-07-27 12:00 1858944 ----a-w- c:\windows\system32\win32k.sys
2011-08-22 23:48 . 2007-07-27 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2011-08-22 23:48 . 2007-07-27 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-08-22 23:48 . 2007-07-27 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-08-22 11:56 . 2007-07-27 12:00 385024 ----a-w- c:\windows\system32\html.iec
2011-11-13 10:44 . 2011-11-13 10:42 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Lotus iNotes Sync Manager"="c:\notes\LOTUSI~1\nDOLMgr.exe" [2008-08-08 409600]
"1133 Scan2PC"="c:\windows\twain_32\Dell\DELL1133\Scan2Pc.exe" [2009-12-24 1978880]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-09-23 258512]
"LXDBCATS"="c:\windows\System32\spool\DRIVERS\W32X86\3\LXDBtime.dll" [2006-03-02 73728]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-2-6 561213]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableSecureUIAPaths"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Authentication Packages REG_MULTI_SZ msv1_0 nwprovau
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Common Files\\Ahead\\Nero Web\\SetupX.exe"=
"c:\\Program Files\\Deutscher Ring\\Calculator SK\\Deutscher Ring Calculator SK.exe"=
"c:\\Program Files\\Google\\Google Earth\\client\\googleearth.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\ICQ7.4\\ICQ.exe"=
"c:\\Program Files\\Deutscher Ring\\Accident Calculator SK\\Deutscher Ring Accident Calculator SK.exe"=
"c:\\Program Files\\Google\\Google Earth\\plugin\\geplugin.exe"=
"c:\\WINDOWS\\twain_32\\Dell\\DELL1133\\Scan2Pc.exe"=
"c:\\WINDOWS\\twain_32\\Dell\\DELL1133\\Sscan2io.exe"=
"c:\\WINDOWS\\twain_32\\Dell\\ScanMgr.exe"=
"c:\\Program Files\\Google\\Update\\GoogleUpdate.exe"=
"c:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe"=
"c:\\Documents and Settings\\Janka\\Desktop\\KALKULACKY OVB\\run.exe"=
"c:\\Program Files\\Common Files\\Microsoft Shared\\Source Engine\\OSE.EXE"=
"c:\\Program Files\\Mozilla Firefox\\plugin-container.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Program Files\\Windows Media Player\\wmplayer.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
.
R1 avkmgr;avkmgr;c:\windows\system32\drivers\avkmgr.sys [12.11.2011 22:15 36000]
R2 Angelnt;Angelnt;c:\windows\system32\drivers\ANGELNT.SYS [19.3.2010 16:40 51072]
R2 AntiVirSchedulerService;Avira Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [12.11.2011 22:15 86224]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [15.11.2011 15:55 366152]
R3 FlrnUSB;Leadtek USB Network Interface;c:\windows\system32\drivers\LtkUSB.sys [13.8.2009 19:36 41907]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [15.11.2011 15:55 22216]
S2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service; [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; [x]
S2 SSPORT;SSPORT;\??\c:\windows\system32\Drivers\SSPORT.sys --> c:\windows\system32\Drivers\SSPORT.sys [?]
S3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [9.8.2009 20:32 193840]
S3 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys --> c:\windows\system32\drivers\mbamswissarmy.sys [?]
S3 TrueSight;TrueSight;c:\windows\system32\drivers\TrueSight.sys [17.11.2011 11:28 111872]
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2007-06-20 10:47 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://gmail.com/
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Send to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: SmarThru4 Capture Selection - c:\program files\SmarThru 4\WebCapture.dll2.htm
IE: SmarThru4 Save as HTML - c:\program files\SmarThru 4\WebCapture.dll1.htm
IE: SmarThru4 Save Selected Text - c:\program files\SmarThru 4\WebCapture.dll.htm
IE: SmarThru4 Web Capture - c:\program files\SmarThru 4\WebCapture.dll
IE: {{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - c:\program files\ICQ7.4\ICQ.exe
TCP: DhcpNameServer = 195.91.0.17 194.154.227.17
FF - ProfilePath - c:\documents and settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.gmail.com
.
- - - - ORPHANS REMOVED - - - -
.
AddRemove-ICQToolbar - c:\program files\ICQ6Toolbar\ICQUnToolbar.exe
AddRemove-SpywareBlaster_is1 - c:\program files\SpywareBlaster\unins000.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-17 19:23
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Lotus iNotes Sync Manager = c:\notes\LOTUSI~1\nDOLMgr.exe -minimize?????????????P7m?t?????B~????????????&?B~????P7m???T?P???T?????????D~0?B~????&?B~?xB~?????????xB~???????? ???????(???s??|????0???????????Q?stA?B~????????????T????a???????????????????Ep??Ip???????????C~?????Ep??Ip????
LXDBCATS = rundll32 c:\windows\System32\spool\DRIVERS\W32X86\3\LXDBtime.dll,_RunDLLEntry@16???????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'explorer.exe'(1136)
c:\windows\system32\WININET.dll
c:\windows\system32\btmmhook.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\btncopy.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\progra~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
.
**************************************************************************
.
Completion time: 2011-11-17 19:30:15 - machine was rebooted
ComboFix-quarantined-files.txt 2011-11-17 18:30
ComboFix2.txt 2011-11-17 17:09
.
Pre-Run: 97 453 948 928 bytes free
Post-Run: 25 adresárov, 97 291 460 608 voľných bajtov
.
- - End Of File - - 1C25E9009CA884DB04B4F42F55670A95

Jak se chova nas pacient

No facebook stale nejde, tak neviem...

Stahnete OTM (viz muj podpis)

Pokud pouzivate Win Vista ci W7, kliknete na OTM pravym a dejte Run As Administrator ci Spustit jako spravce
Do leveho okna Paste Instructions for Items to be Moved (pod zlutou caru) vlozte obsah, ktery mate nize

Kód: Vybrat vše

:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]

Kliknete na cervene tlacitko MoveIt!
Budete vyzvani na restart, dejte Yes, log pote najdete C:\_OTM\MovedFiles, obsah sem vlozte

Files moved on Reboot...
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.

Registry entries deleted on Reboot...

Aaaa Facebook uz ide po tomto kroku. Je to v poriadku?

Odinstalujte Combofix

Prejmenujte ComboFix na Uninstall
Spustte jej
Tohle smaze Combofix a jeho slozky

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

Stahnete a spustte
Pro potvrzeni volby mackejte A, Enter
Po pouziti utilitu smazte
Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner (viz muj podpis)
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

Poprosim o novy log z RSIT a napiste jak se chova PC

Logfile of random's system information tool 1.09 (written by random/random)
Run by Janka at 2011-11-20 15:15:29
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 96 GB (63%) free of 153 GB
Total RAM: 2039 MB (69% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:15:52, on 20.11.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Notes\LOTUSI~1\nDOLMgr.exe
C:\WINDOWS\twain_32\Dell\DELL1133\Scan2Pc.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\Janka\Desktop\RSIT.exe
C:\Program Files\trend micro\Janka.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://gmail.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Google Gears Helper - {E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file)
O4 - HKLM\..\Run: [Lotus iNotes Sync Manager] C:\Notes\LOTUSI~1\nDOLMgr.exe -minimize
O4 - HKLM\..\Run: [1133 Scan2PC] "C:\WINDOWS\twain_32\Dell\DELL1133\Scan2Pc.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [LXDBCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXDBtime.dll,_RunDLLEntry@16
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: SmarThru4 Capture Selection - C:\Program Files\SmarThru 4\WebCapture.dll2.htm
O8 - Extra context menu item: SmarThru4 Save as HTML - C:\Program Files\SmarThru 4\WebCapture.dll1.htm
O8 - Extra context menu item: SmarThru4 Save Selected Text - C:\Program Files\SmarThru 4\WebCapture.dll.htm
O8 - Extra context menu item: SmarThru4 Web Capture - C:\Program Files\SmarThru 4\WebCapture.dll
O9 - Extra button: (no name) - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll
O9 - Extra 'Tools' menuitem: Nastavenia rozšírenia &Gears - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: SmarThru4 Web Capture - {5941A0E4-56C1-4a49-9B18-05762CAC5F9B} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra 'Tools' menuitem: SmarThru4 Web Capture - {5941A0E4-56C1-4a49-9B18-05762CAC5F9B} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra button: SmarThru4 Capture Selection - {A07BFEF7-DD11-4937-B23B-E70C11D2EDF4} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra 'Tools' menuitem: SmarThru4 Capture Selection - {A07BFEF7-DD11-4937-B23B-E70C11D2EDF4} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra button: SmarThru4 Save as HTML - {E753A93F-2367-4978-BFA0-83048C1E61CB} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra 'Tools' menuitem: SmarThru4 Save as HTML - {E753A93F-2367-4978-BFA0-83048C1E61CB} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra button: SmarThru4 Save Selected Text - {F1F53366-3E11-47ab-BF84-580C94F9C9AD} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O9 - Extra 'Tools' menuitem: SmarThru4 Save Selected Text - {F1F53366-3E11-47ab-BF84-580C94F9C9AD} - C:\Program Files\SmarThru 4\WebCapture.dll (HKCU)
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 9844419765
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 9844491625
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/s ... wflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ABBYY FineReader 9.0 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.9.0) - - (no file)
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Realtime Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - (no file)
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn, Inc. - (no file)
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - (no file)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

--
End of file - 8704 bytes

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default

prefs.js - "browser.startup.homepage" - "http://www.gmail.com"

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"{000a9d1c-beef-4f90-9363-039d445309b8}"=C:\Program Files\Google\Google Gears\Firefox\

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
xmlfiller@software602.cz
{800b5000-a755-47e1-992b-48a1c1357f07}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{B13721C7-F507-4982-B2E5-502A71474FED}

C:\Program Files\Mozilla Firefox\components\
AskHPRFF.js
binary.manifest
browsercomps.dll
nsIFillerPlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeploytk.dll
npfiller.dll
NPOFF12.DLL
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
iMeshWebSearch.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml

C:\Documents and Settings\Janka\Application Data\Mozilla\Firefox\Profiles\6lk4fek8.default\extensions\
{20a82645-c095-46ed-80e3-08825760534b}
{800b5000-a755-47e1-992b-48a1c1357f07}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-08-23 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53}]
Google Gears Helper - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll [2010-02-23 2121728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-08-23 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{855F3B16-6D32-4fe6-8A56-BBB695989046}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Lotus iNotes Sync Manager"=C:\Notes\LOTUSI~1\nDOLMgr.exe [2008-08-08 409600]
"1133 Scan2PC"=C:\WINDOWS\twain_32\Dell\DELL1133\Scan2Pc.exe [2009-12-24 1978880]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2011-09-23 258512]
"LXDBCATS"=rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXDBtime.dll,_RunDLLEntry@16 []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2007-09-18 208896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 239496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
nwprovau

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableSecureUIAPaths"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe"="C:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe:*:Enabled:Nero ProductSetup"
"C:\Program Files\Deutscher Ring\Calculator SK\Deutscher Ring Calculator SK.exe"="C:\Program Files\Deutscher Ring\Calculator SK\Deutscher Ring Calculator SK.exe:*:Enabled:Deutscher Ring Calculator SK"
"C:\Program Files\Google\Google Earth\client\googleearth.exe"="C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth"
"C:\Program Files\Deutscher Ring\Accident Calculator SK\Deutscher Ring Accident Calculator SK.exe"="C:\Program Files\Deutscher Ring\Accident Calculator SK\Deutscher Ring Accident Calculator SK.exe:*:Enabled:Deutscher Ring Accident Calculator SK"
"C:\Program Files\Google\Google Earth\plugin\geplugin.exe"="C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Disabled:Google Earth"
"C:\WINDOWS\twain_32\Dell\DELL1133\Scan2Pc.exe"="C:\WINDOWS\twain_32\Dell\DELL1133\Scan2Pc.exe:*:Enabled:Scan2PC.exe"
"C:\WINDOWS\twain_32\Dell\DELL1133\Sscan2io.exe"="C:\WINDOWS\twain_32\Dell\DELL1133\Sscan2io.exe:*:Enabled:Sscan2io.exe"
"C:\WINDOWS\twain_32\Dell\ScanMgr.exe"="C:\WINDOWS\twain_32\Dell\ScanMgr.exe:*:Enabled:ScanMgr.exe"
"C:\Program Files\Google\Update\GoogleUpdate.exe"="C:\Program Files\Google\Update\GoogleUpdate.exe:*:Enabled:Inštalačný program Google"
"C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe:*:Enabled:Adobe Reader and Acrobat Manager"
"C:\Documents and Settings\Janka\Desktop\KALKULACKY OVB\run.exe"="C:\Documents and Settings\Janka\Desktop\KALKULACKY OVB\run.exe:*:Enabled:Einstein"
"C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE"="C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE:*:Enabled:Office Source Engine"
"C:\Program Files\Mozilla Firefox\plugin-container.exe"="C:\Program Files\Mozilla Firefox\plugin-container.exe:*:Enabled:Plugin Container for Firefox"
"C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Windows Media Player\wmplayer.exe"="C:\Program Files\Windows Media Player\wmplayer.exe:*:Enabled:Windows Media Player"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\iMesh Applications\iMesh\iMesh.exe"="C:\Program Files\iMesh Applications\iMesh\iMesh.exe:*:Enabled:iMesh"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.DIVX"=DivX.dll
"vidc.yv12"=yv12vfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll
"vidc.dvsd"=pdvcodec.dll
"msacm.l3fhg"=mp3fhg.acm
"msacm.ac3acm"=ac3acm.acm
"VIDC.FFDS"=ff_vfw.dll

======List of files/folders created in the last 1 month======

2011-11-20 15:15:29 ----D---- C:\rsit
2011-11-20 15:07:09 ----D---- C:\Program Files\CCleaner
2011-11-20 14:51:59 ----SHD---- C:\RECYCLER
2011-11-18 13:02:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2544893-v2$
2011-11-18 13:00:05 ----D---- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2011-11-18 12:59:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2641690$
2011-11-17 19:30:18 ----D---- C:\WINDOWS\temp
2011-11-17 17:41:32 ----A---- C:\Boot.bak
2011-11-17 17:41:28 ----RASHD---- C:\cmdcons
2011-11-17 11:28:28 ----A---- C:\WINDOWS\system32\drivers\TrueSight.sys
2011-11-15 15:55:14 ----D---- C:\Documents and Settings\Janka\Application Data\Malwarebytes
2011-11-15 15:55:08 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2011-11-15 15:55:04 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-11-15 15:55:04 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2011-11-14 20:55:09 ----D---- C:\Program Files\trend micro
2011-11-12 22:36:40 ----D---- C:\Program Files\EMCO
2011-11-12 22:32:41 ----D---- C:\Program Files\Spybot - Search & Destroy
2011-11-12 22:16:53 ----D---- C:\Documents and Settings\Janka\Application Data\Avira
2011-11-12 22:15:03 ----A---- C:\WINDOWS\system32\drivers\ssmdrv.sys
2011-11-12 22:15:01 ----A---- C:\WINDOWS\system32\drivers\avkmgr.sys
2011-11-12 22:15:01 ----A---- C:\WINDOWS\system32\drivers\avipbb.sys
2011-11-12 22:15:01 ----A---- C:\WINDOWS\system32\drivers\avgntflt.sys
2011-11-12 22:14:54 ----D---- C:\Program Files\Avira
2011-11-12 22:14:54 ----D---- C:\Documents and Settings\All Users\Application Data\Avira
2011-11-03 11:15:36 ----A---- C:\WINDOWS\Dell1133.txt
2011-11-03 11:12:18 ----A---- C:\WINDOWS\system32\msxml2a.dll
2011-11-03 11:12:18 ----A---- C:\WINDOWS\SSndii.exe
2011-11-03 11:12:16 ----D---- C:\WINDOWS\Dell
2011-11-03 11:11:36 ----D---- C:\Documents and Settings\Janka\Application Data\SmarThru4
2011-11-03 11:11:20 ----N---- C:\WINDOWS\system32\drivers\DgivEcp.sys
2011-11-03 11:11:06 ----N---- C:\WINDOWS\system32\SecSNMP.dll
2011-11-03 11:11:05 ----A---- C:\WINDOWS\system32\LTRPR13n.DLL
2011-11-03 11:11:05 ----A---- C:\WINDOWS\system32\LTRIO13N.DLL
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lttwn13n.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\LTR13N.DLL
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lftif13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfpsd13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\LFPNM13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\Lfpng13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfpcx13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfpcd13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfmsp13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfjbg13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\LFJ2K13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfitg13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfitg13n.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfimg13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfimg13n.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfiff13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfiff13n.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lffax13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lffax13n.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfeps13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\LFCMP13s.DLL
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfclp13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfbmp13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfavi13s.dll
2011-11-03 11:11:04 ----A---- C:\WINDOWS\system32\lfani13s.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\PCDLIB32.DLL
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\lttmb13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\LTTLB13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\Ltpnt13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\ltpdg13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\LTOCR13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\ltkrn13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\ltimg13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\ltefx13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\LTDIS13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\LTCLR13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\ltbar13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\lftif13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\lfpsd13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\LFPNM13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\Lfpng13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\lfpcx13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\lfpcd13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\lfmsp13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\lfjbg13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\LFJ2K13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\lfeps13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\LFCMP13n.DLL
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\lfclp13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\lfbmp13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\lfavi13n.dll
2011-11-03 11:11:03 ----A---- C:\WINDOWS\system32\lfani13n.dll
2011-11-03 11:11:02 ----A---- C:\WINDOWS\system32\Mfcoleui.dll
2011-11-03 11:11:02 ----A---- C:\WINDOWS\system32\Ltwvc13n.dll
2011-11-03 11:11:02 ----A---- C:\WINDOWS\system32\ltlst13n.dll
2011-11-03 11:11:02 ----A---- C:\WINDOWS\system32\ltfil13n.DLL
2011-11-03 11:11:02 ----A---- C:\WINDOWS\system32\ltdlg13n.dll
2011-11-03 11:11:01 ----D---- C:\Program Files\Common Files\SRC Shared
2011-11-03 11:10:59 ----A---- C:\WINDOWS\Readiris.ini
2011-11-03 11:10:50 ----A---- C:\WINDOWS\system32\irisco32.dll
2011-11-03 11:09:38 ----D---- C:\Program Files\Readiris10
2011-11-03 11:09:26 ----D---- C:\Program Files\SmarThru 4
2011-11-03 11:08:37 ----RA---- C:\WINDOWS\Wiainst.exe
2011-11-03 11:06:34 ----A---- C:\WINDOWS\system32\sdo1ml3.dll
2011-11-03 11:06:23 ----A---- C:\WINDOWS\system32\sdo1mci.exe
2011-11-03 11:06:23 ----A---- C:\WINDOWS\system32\sdo1mci.dll
2011-11-03 11:05:42 ----D---- C:\Program Files\Dell
2011-10-31 14:40:13 ----D---- C:\reports
2011-10-31 14:40:13 ----D---- C:\ProductDB
2011-10-31 14:40:13 ----D---- C:\lib
2011-10-31 14:40:13 ----A---- C:\Projekcie.lnk
2011-10-31 14:40:13 ----A---- C:\Projekcie.cmd
2011-10-31 14:40:13 ----A---- C:\MetLife Amslico.lnk
2011-10-31 14:40:13 ----A---- C:\jr.cmd
2011-10-31 10:58:47 ----D---- C:\WINDOWS\ufa

======List of files/folders modified in the last 1 month======

2011-11-20 15:15:40 ----D---- C:\WINDOWS\Prefetch
2011-11-20 15:12:20 ----SHD---- C:\WINDOWS\Installer
2011-11-20 15:12:16 ----RD---- C:\Program Files\Skype
2011-11-20 15:10:49 ----RD---- C:\Program Files
2011-11-20 15:09:42 ----D---- C:\WINDOWS
2011-11-20 15:09:37 ----D---- C:\Program Files\Flexibil
2011-11-20 15:07:44 ----D---- C:\WINDOWS\Debug
2011-11-20 15:01:04 ----N---- C:\WINDOWS\SchedLgU.Txt
2011-11-20 14:55:26 ----SHD---- C:\System Volume Information
2011-11-20 14:55:26 ----D---- C:\WINDOWS\system32\Restore
2011-11-20 14:50:24 ----D---- C:\Program Files\Mozilla Firefox
2011-11-20 14:47:03 ----D---- C:\WINDOWS\system32\drivers
2011-11-20 14:40:26 ----D---- C:\WINDOWS\system32
2011-11-18 13:02:20 ----HD---- C:\WINDOWS\inf
2011-11-18 13:02:18 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-11-18 13:00:11 ----A---- C:\WINDOWS\system32\MRT.exe
2011-11-18 12:54:31 ----HD---- C:\WINDOWS\$hf_mig$
2011-11-18 12:53:28 ----D---- C:\WINDOWS\system32\CatRoot2
2011-11-17 20:08:10 ----D---- C:\WINDOWS\network diagnostic
2011-11-17 19:24:25 ----A---- C:\WINDOWS\system.ini
2011-11-17 19:21:56 ----D---- C:\WINDOWS\system32\config
2011-11-17 19:21:13 ----SD---- C:\WINDOWS\Tasks
2011-11-17 19:18:55 ----D---- C:\WINDOWS\AppPatch
2011-11-17 19:18:53 ----D---- C:\Program Files\Common Files
2011-11-17 17:56:51 ----D---- C:\WINDOWS\system32\drivers\etc
2011-11-17 17:41:32 ----RASH---- C:\boot.ini
2011-11-17 10:57:08 ----D---- C:\Program Files\Lx_cats
2011-11-16 23:24:53 ----D---- C:\Projection
2011-11-16 15:36:55 ----D---- C:\Program Files\Common Files\LightScribe
2011-11-16 08:16:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2279986$
2011-11-15 22:02:49 ----D---- C:\WINDOWS\system32\NtmsData
2011-11-15 21:29:47 ----D---- C:\Program Files\Mozilla Thunderbird
2011-11-15 21:19:37 ----D---- C:\WINDOWS\Registration
2011-11-15 16:55:12 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2011-11-14 20:47:19 ----AC---- C:\WINDOWS\WINCMD.INI
2011-11-14 19:42:38 ----SD---- C:\WINDOWS\Downloaded Program Files
2011-11-13 12:01:44 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2011-11-13 12:00:49 ----SD---- C:\Documents and Settings\Janka\Application Data\Microsoft
2011-11-13 12:00:49 ----D---- C:\Documents and Settings\Janka\Application Data\Adobe
2011-11-13 11:58:22 ----D---- C:\Program Files\Common Files\Adobe
2011-11-13 11:57:55 ----D---- C:\Program Files\Adobe
2011-11-13 11:45:13 ----D---- C:\Documents and Settings\Janka\Application Data\Thunderbird
2011-11-13 11:40:31 ----D---- C:\ALFA
2011-11-13 11:35:39 ----A---- C:\WINDOWS\system32\pgdfgsvc.exe
2011-11-13 11:23:15 ----D---- C:\Program Files\WinRAR
2011-11-13 11:23:15 ----D---- C:\Program Files\Winmail Opener
2011-11-12 23:25:00 ----D---- C:\Documents and Settings\Janka\Application Data\Media Player Classic
2011-11-12 22:49:11 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2011-11-12 16:48:00 ----D---- C:\Program Files\Mobility Manager
2011-11-12 16:46:55 ----D---- C:\Program Files\LogMeIn Hamachi
2011-11-12 15:56:57 ----D---- C:\Temp
2011-11-06 20:58:33 ----D---- C:\logs
2011-11-03 11:15:44 ----HD---- C:\Program Files\InstallShield Installation Information
2011-11-03 11:08:35 ----D---- C:\WINDOWS\twain_32
2011-11-01 20:35:45 ----A---- C:\WINDOWS\NeroDigital.ini
2011-10-31 14:42:28 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-10-28 08:49:16 ----D---- C:\WINDOWS\Minidump
2011-10-25 09:45:40 ----D---- C:\Program Files\Whitestein Technologies
2011-10-24 09:55:41 ----D---- C:\Program Files\ERGO

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\WINDOWS\system32\drivers\iaStor.sys [2007-09-29 308248]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2011-09-18 134344]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2011-09-15 36000]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 36352]
R1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14592]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2010-06-17 28520]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R2 Angelnt;Angelnt; C:\WINDOWS\System32\Drivers\ANGELNT.SYS [2010-03-19 51072]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2011-09-15 74640]
R2 NwlnkIpx;NWLink IPX/SPX/NetBIOS Compatible Transport Protocol; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2008-04-13 88320]
R2 NwlnkNb;NWLink NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2007-07-27 63232]
R2 NwlnkSpx;NWLink SPX/SPXII Protocol; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2007-07-27 55936]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2008-02-05 281600]
R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2007-07-13 94976]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2008-11-21 1204128]
R3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2007-02-14 530861]
R3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2007-02-14 30459]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2007-02-14 868298]
R3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2007-02-14 149123]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2007-02-14 67960]
R3 e1express;Intel(R) PRO/1000 PCI Express Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e1e5132.sys [2008-12-05 241296]
R3 FlrnUSB;Leadtek USB Network Interface; C:\WINDOWS\system32\DRIVERS\LtkUSB.sys [2008-05-14 41907]
R3 HBtnKey;HBtnKey; C:\WINDOWS\system32\DRIVERS\cpqbttn.sys [2008-04-28 9344]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\WINDOWS\system32\DRIVERS\HpqKbFiltr.sys [2007-06-18 16768]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2007-09-18 5779296]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys []
R3 NETw5x32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw5x32.sys [2008-11-17 3636864]
R3 NWRDR;NetWare Rdr; C:\WINDOWS\system32\DRIVERS\nwrdr.sys [2008-04-13 163584]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2008-03-28 224672]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S2 DgiVecp;DgiVecp; \??\C:\WINDOWS\system32\Drivers\DgiVecp.sys []
S2 SSPORT;SSPORT; \??\C:\WINDOWS\system32\Drivers\SSPORT.sys []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
S3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2009-08-26 49920]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2009-08-26 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2009-08-26 21568]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys []
S3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys [2008-05-02 17536]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2008-05-02 20864]
S3 TrueSight;TrueSight; \??\c:\windows\system32\drivers\TrueSight.sys []
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbstor;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirService;Avira Realtime Protection; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2011-09-23 110032]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2011-09-23 86224]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-06-28 79136]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]
R2 NWCWorkstation;Client Service for NetWare; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2009-08-10 72704]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-04-03 193840]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Zda sa, ze vsetko funguje ako ma.

MBAM muzete odinstalovat

Otevrete si poznamkovy blok

Start->spustit->notepad
Vlozte text nize

Kód: Vybrat vše

@ECHO OFF
sc stop ABBYY.Licensing.FineReader.Professional.9.0
sc delete ABBYY.Licensing.FineReader.Professional.9.0
sc stop btwdins
sc delete btwdins
sc stop Hamachi2Svc
sc delete Hamachi2Svc
sc stop hpqwmiex
sc delete hpqwmiex
reg delete "[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]" /v "{855F3B16-6D32-4fe6-8A56-BBB695989046}" /f
rmdir "C:\Program Files\Spybot - Search & Destroy" /s /q

Soubor ulozte jako del.bat
Pri ukladani dejte ulozit jako typ Vsechny soubory (nastevni je uvedeno na obrazku nize)
Zavrit notepad a spustit dvojklikem del.bat
Okno jen problikne a provede mazani - soubor muzete smazat

A melo by to byt vse

Hlasim vsetko vykonane podla pokynov

Dakujem hrozne moc

Nemate zac, rad jsem pomohl

Zase nekdy Obrázek

A na rozloucenou vam zahraje nase kapela :guitar:

Ale mam zaco, kludne by som vam poslala aj tych 20 eur co som dala pankovi

Este raz vdaka a pekny den

VIRY.CZ

Ani po odvireni NB nejde Facebook

Re: Ani po odvireni NB nejde Facebook

Re: Ani po odvireni NB nejde Facebook

Re: Ani po odvireni NB nejde Facebook

Re: Ani po odvireni NB nejde Facebook

Re: Ani po odvireni NB nejde Facebook

Re: Ani po odvireni NB nejde Facebook

Re: Ani po odvireni NB nejde Facebook

Re: Ani po odvireni NB nejde Facebook

Re: Ani po odvireni NB nejde Facebook

Re: Ani po odvireni NB nejde Facebook

Re: Ani po odvireni NB nejde Facebook

Re: Ani po odvireni NB nejde Facebook

Re: Ani po odvireni NB nejde Facebook

Re: Ani po odvireni NB nejde Facebook

Re: Ani po odvireni NB nejde Facebook